$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft File: ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft (raw, json) Hash identifier: dp+FpzUitdEUndcl9deXZ4a64WTHOfWd6HUOi8T/dBQ= Subject key identifier: 65:F8:3B:7E:86:D7:F2:12:78:C5:D1:3F:56:6A:D8:C7:B9:CD:DE:D9 Authority key identifier: 82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 Certificate issuer: /CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Certificate serial: 0549 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft Manifest number: 0545 Signing time: Sun 05 May 2024 01:04:08 +0000 Manifest this update: Sun 05 May 2024 01:04:07 +0000 Manifest next update: Sun 12 May 2024 01:04:07 +0000 Files and hashes: 1: ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl (hash: EKymhAQsES+iD78kB7ajY8V92tu9753DOgyPk5QwJSA=) 2: 92967BBA78F811ECAF1C286CC4F9AE02.roa (hash: 0zFQ1BRYNI+2cFpJMpx2xapZnaYr/Wv7xM9sKrY4jS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC777/serialNumber=8214F51A981441F15FB912225FD7D02FB943AE35 Validity Not Before: May 5 01:04:07 2024 GMT Not After : May 12 01:04:07 2024 GMT Subject: CN=6636db07-5122 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5c:90:3d:1c:bb:3d:f1:ca:c1:87:85:fd:7b: 04:5d:ea:f2:1b:20:4f:2c:29:fb:84:13:da:67:e3: 26:36:3c:40:28:5a:37:4c:59:2e:d1:9d:3c:f0:7f: d5:fd:cb:39:9f:58:ae:b8:f1:9c:1e:93:7a:f5:b6: c8:32:0b:df:39:ba:06:b4:bd:25:06:0d:d4:e0:ba: 9b:65:ca:23:ac:ba:b6:61:e1:35:ce:95:9a:cb:d2: 6a:d3:34:b0:21:81:d4:4b:4e:a3:cc:e7:dd:e7:d5: c1:8f:b6:00:94:5f:30:6b:ea:d5:af:00:93:fc:6c: 3d:96:43:50:59:53:4d:04:69:ee:b9:92:9a:86:a4: 6c:1d:eb:f0:94:cf:88:2f:c8:8e:19:43:e0:16:d0: 8a:84:b1:a6:53:5d:3c:de:da:53:bf:95:8c:32:63: 11:75:fd:e1:8a:8e:59:f3:e5:7b:6b:cd:2c:29:00: 9b:fc:fb:d1:ca:8f:d8:8c:25:b1:46:c3:b2:e1:d6: 7c:4d:98:2c:ea:41:73:4c:ef:09:ac:af:4b:fd:1e: d7:36:8f:99:dc:64:a2:8a:2c:5a:78:e7:e0:60:7a: b4:0c:fb:a5:55:10:5d:55:6d:fd:26:6b:d6:96:4f: 33:1d:3a:5c:85:36:ce:1e:74:f2:6b:18:26:1c:ff: 75:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F8:3B:7E:86:D7:F2:12:78:C5:D1:3F:56:6A:D8:C7:B9:CD:DE:D9 X509v3 Authority Key Identifier: keyid:82:14:F5:1A:98:14:41:F1:5F:B9:12:22:5F:D7:D0:2F:B9:43:AE:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghT1GpgUQfFfuRIiX9fQL7lDrjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC777/779760BAA3E511EBA18E937EC4F9AE02/ghT1GpgUQfFfuRIiX9fQL7lDrjU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:6a:47:18:51:71:db:3a:9a:46:04:f0:fc:37:78:95:aa:16: b6:b0:bf:a7:56:e6:0f:1f:1d:23:b1:c1:e8:a7:b9:d8:3b:cd: 49:f6:e1:e7:76:60:8f:d1:27:5f:cf:0d:35:ef:1e:ae:0b:12: 7c:20:f2:ba:5f:4d:29:a8:df:51:62:7e:6a:98:1f:74:6a:09: 5b:8e:d6:e4:2f:a9:f9:1d:e0:f6:0e:f6:7a:aa:fe:c3:0b:9f: 9f:2e:36:a0:97:10:fb:48:ce:89:58:a8:23:dc:67:49:15:08: 92:cd:97:f4:89:a2:6f:48:80:3b:8f:9d:49:69:04:ac:37:f5: 90:80:45:c9:f3:cb:72:ca:26:76:a7:5e:73:95:97:db:53:44: 47:ba:16:e0:d3:6f:d2:be:50:3c:c9:fe:92:4d:e7:d7:bd:32: 69:23:59:3b:71:71:7b:4f:ca:eb:c5:72:bb:6f:7a:f2:2c:ff: f3:13:f0:a3:07:e9:4f:65:72:5c:91:96:f4:a4:c8:5f:8b:df: f9:60:d4:a7:e0:4e:e3:b7:d4:c0:82:b6:49:08:9d:36:af:c7: 14:e0:93:51:29:53:cd:e3:98:21:4b:79:cb:a9:90:90:1f:fc: af:b7:31:81:a6:b7:69:59:df:00:48:53:99:e0:22:72:cf:39: 00:3b:d0:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3NzcxMTAvBgNVBAUTKDgyMTRGNTFBOTgxNDQxRjE1RkI5MTIyMjVGRDdEMDJG Qjk0M0FFMzUwHhcNMjQwNTA1MDEwNDA3WhcNMjQwNTEyMDEwNDA3WjAYMRYwFAYD VQQDEw02NjM2ZGIwNy01MTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FyQPRy7PfHKwYeF/XsEXeryGyBPLCn7hBPaZ+MmNjxAKFo3TFku0Z088H/V /cs5n1iuuPGcHpN69bbIMgvfOboGtL0lBg3U4LqbZcojrLq2YeE1zpWay9Jq0zSw IYHUS06jzOfd59XBj7YAlF8wa+rVrwCT/Gw9lkNQWVNNBGnuuZKahqRsHevwlM+I L8iOGUPgFtCKhLGmU1083tpTv5WMMmMRdf3hio5Z8+V7a80sKQCb/PvRyo/YjCWx RsOy4dZ8TZgs6kFzTO8JrK9L/R7XNo+Z3GSiiixaeOfgYHq0DPulVRBdVW39JmvW lk8zHTpchTbOHnTyaxgmHP91QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGX4O36G 1/ISeMXRP1Zq2Me5zd7ZMB8GA1UdIwQYMBaAFIIU9RqYFEHxX7kSIl/X0C+5Q641 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzc3Ny83Nzk3NjBCQUEz RTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFmRmZ1UklpWDlmUUw3bERy alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doVDFHcGdVUWZGZnVSSWlYOWZRTDdsRHJqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Qzc3Ny83Nzk3NjBCQUEzRTUxMUVCQTE4RTkzN0VDNEY5QUUwMi9naFQxR3BnVVFm RmZ1UklpWDlmUUw3bERyalUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxakcYUXHbOppGBPD8N3iVqha2sL+nVuYPHx0jscHop7nYO81J9uHn dmCP0Sdfzw017x6uCxJ8IPK6X00pqN9RYn5qmB90aglbjtbkL6n5HeD2DvZ6qv7D C5+fLjaglxD7SM6JWKgj3GdJFQiSzZf0iaJvSIA7j51JaQSsN/WQgEXJ88tyyiZ2 p15zlZfbU0RHuhbg02/SvlA8yf6STefXvTJpI1k7cXF7T8rrxXK7b3ryLP/zE/Cj B+lPZXJckZb0pMhfi9/5YNSn4E7jt9TAgrZJCJ02r8cU4JNRKVPN45ghS3nLqZCQ H/yvtzGBprdpWd8ASFOZ4CJyzzkAO9AF -----END CERTIFICATE-----Generated at Sun May 5 02:33:38 2024 by rpki-client on console-fra.rpki-client.org