$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft File: GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft (raw, json) Hash identifier: Dh6pEOYBGZ53hwSaVc42k09Saf0aeSe7/plriOzXfYY= Subject key identifier: 54:ED:07:0D:2E:27:32:8B:43:E6:B9:F9:F4:51:48:63:6B:95:4C:CA Authority key identifier: 18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 Certificate issuer: /CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft Manifest number: 01AA Signing time: Wed 15 May 2024 04:40:54 +0000 Manifest this update: Wed 15 May 2024 04:40:54 +0000 Manifest next update: Wed 22 May 2024 04:40:54 +0000 Files and hashes: 1: GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl (hash: oVcJdDzuXjbjhryC603nCOJjRZnqPippZD7IyuWvsqY=) 2: DD1FEE48C77311EEA5076E2CC4F9AE02.roa (hash: 7p0Y4QsUhfPL+C4yHEdBYOQA31bGWILkz42S5nrbhaI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE69C/serialNumber=186153CB988838A3A6D48CF0423C5B46230059E8 Validity Not Before: May 15 04:40:54 2024 GMT Not After : May 22 04:40:54 2024 GMT Subject: CN=66443cd6-15c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e2:3e:85:db:3d:b8:93:a3:b3:7a:e1:d3:34: 1e:8f:8b:60:ff:81:a7:8d:77:2b:1b:eb:84:fa:ed: 7c:ad:66:99:68:80:ee:43:e1:8e:d3:b7:9e:16:8e: f5:5a:b3:eb:b5:39:aa:33:8a:72:98:b0:78:5a:ef: b2:b2:f7:74:e3:36:46:d2:e0:2b:77:ae:55:5e:72: 3a:96:9a:47:e8:00:27:89:7f:4f:9a:f2:cb:df:38: b6:b8:f4:ae:4b:7a:b5:6b:e8:5d:6b:1b:aa:30:af: 23:27:21:a8:7d:1a:7d:92:33:1b:d5:79:bb:eb:ac: c7:0d:5f:78:eb:e3:5b:03:d6:5e:67:7f:96:ed:e8: 65:64:ae:89:28:4c:c6:a8:ab:6a:76:c9:fb:3d:b5: 9e:82:cb:d5:23:1e:6c:21:0c:a6:54:56:91:bf:0e: d7:97:0d:f1:ca:83:44:ba:c3:5d:24:6d:65:be:00: aa:a8:ea:8c:ca:f8:c4:f5:97:4e:03:a9:23:60:71: 91:e6:32:2e:f6:e6:0f:3c:9d:bf:e8:a2:49:f6:63: 6e:ce:eb:9c:19:42:98:54:17:68:f9:27:a6:a6:ca: c4:5d:54:dd:55:17:72:2e:21:d7:ac:18:86:7b:ae: ad:36:58:67:50:c8:09:79:87:0e:25:4c:63:67:ba: 8a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:ED:07:0D:2E:27:32:8B:43:E6:B9:F9:F4:51:48:63:6B:95:4C:CA X509v3 Authority Key Identifier: keyid:18:61:53:CB:98:88:38:A3:A6:D4:8C:F0:42:3C:5B:46:23:00:59:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GGFTy5iIOKOm1IzwQjxbRiMAWeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE69C/9EB07998127A11ED902DFE27C4F9AE02/GGFTy5iIOKOm1IzwQjxbRiMAWeg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:d3:4f:8f:ce:4a:f9:75:15:f8:db:30:2c:31:c6:11:bc:e1: ab:01:b9:15:d9:c4:e3:29:51:80:35:ba:6e:10:22:29:13:9c: 01:c7:49:75:30:44:45:28:9d:02:51:4b:5e:2f:75:ee:b3:5b: af:86:3b:f3:3c:bf:e4:70:b6:01:9b:da:b2:c3:7e:56:5a:5a: 17:4d:05:60:48:bd:3d:65:3f:65:da:70:aa:4c:f1:02:f5:a4: 9a:2f:8a:35:3d:b4:23:f6:bf:e4:23:0a:3f:2f:20:dc:57:4d: e2:22:21:fb:9b:fa:4e:8c:5a:46:78:87:78:84:94:45:7c:ea: 27:2f:09:93:56:d3:20:bc:ba:0d:01:04:ea:2b:05:a1:75:98: 41:54:93:b6:e4:34:fb:17:89:21:9e:0a:45:17:72:f8:d7:27: 95:33:5f:93:1d:fa:e3:bd:a9:5e:3c:6d:b6:08:d0:bf:c6:90: 52:8d:ed:fb:e3:ce:2a:fd:1b:d4:41:dc:98:01:37:52:a5:6e: ca:92:44:80:46:a5:dd:cf:27:cc:42:f3:28:b6:c2:31:f9:b6: ce:44:72:1c:48:fc:1b:93:04:db:59:b0:0d:13:b9:e9:af:52: c6:b9:92:fa:cd:2b:72:21:e2:98:97:26:e1:fa:06:85:c1:43: eb:6c:44:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2OUMxMTAvBgNVBAUTKDE4NjE1M0NCOTg4ODM4QTNBNkQ0OENGMDQyM0M1QjQ2 MjMwMDU5RTgwHhcNMjQwNTE1MDQ0MDU0WhcNMjQwNTIyMDQ0MDU0WjAYMRYwFAYD VQQDEw02NjQ0M2NkNi0xNWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+I+hds9uJOjs3rh0zQej4tg/4GnjXcrG+uE+u18rWaZaIDuQ+GO07eeFo71 WrPrtTmqM4pymLB4Wu+ysvd04zZG0uArd65VXnI6lppH6AAniX9PmvLL3zi2uPSu S3q1a+hdaxuqMK8jJyGofRp9kjMb1Xm766zHDV946+NbA9ZeZ3+W7ehlZK6JKEzG qKtqdsn7PbWegsvVIx5sIQymVFaRvw7Xlw3xyoNEusNdJG1lvgCqqOqMyvjE9ZdO A6kjYHGR5jIu9uYPPJ2/6KJJ9mNuzuucGUKYVBdo+SempsrEXVTdVRdyLiHXrBiG e66tNlhnUMgJeYcOJUxjZ7qKvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTtBw0u JzKLQ+a5+fRRSGNrlUzKMB8GA1UdIwQYMBaAFBhhU8uYiDijptSM8EI8W0YjAFno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTY5Qy85RUIwNzk5ODEy N0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9LT20xSXp3UWp4YlJpTUFX ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dHRlR5NWlJT0tPbTFJendRanhiUmlNQVdlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTY5Qy85RUIwNzk5ODEyN0ExMUVEOTAyREZFMjdDNEY5QUUwMi9HR0ZUeTVpSU9L T20xSXp3UWp4YlJpTUFXZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU00+Pzkr5dRX42zAsMcYRvOGrAbkV2cTjKVGANbpuECIpE5wBx0l1 MERFKJ0CUUteL3Xus1uvhjvzPL/kcLYBm9qyw35WWloXTQVgSL09ZT9l2nCqTPEC 9aSaL4o1PbQj9r/kIwo/LyDcV03iIiH7m/pOjFpGeId4hJRFfOonLwmTVtMgvLoN AQTqKwWhdZhBVJO25DT7F4khngpFF3L41yeVM1+THfrjvalePG22CNC/xpBSje37 484q/RvUQdyYATdSpW7KkkSARqXdzyfMQvMotsIx+bbORHIcSPwbkwTbWbANE7np r1LGuZL6zStyIeKYlybh+gaFwUPrbERk -----END CERTIFICATE-----Generated at Wed May 15 05:22:36 2024 by rpki-client on console-fra.rpki-client.org