$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft File: GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft (raw, json) Hash identifier: VKVjbdYn7LQLeI1pQjfkl9ZIhqlw1QZsOwENyWf0oFM= Subject key identifier: D2:E9:E6:4C:96:2B:67:20:71:36:B4:FF:04:7A:A3:64:2F:09:65:8B Authority key identifier: 1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D Certificate issuer: /CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft Manifest number: 02CC Signing time: Fri 03 May 2024 03:37:33 +0000 Manifest this update: Fri 03 May 2024 03:37:32 +0000 Manifest next update: Fri 10 May 2024 03:37:32 +0000 Files and hashes: 1: GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl (hash: R8LRp+olKUVusf5zjdkG3GVUpWcjNiCr0DbsmAafoDQ=) 2: B58877BC91ED11EE854A5B66C4F9AE02.roa (hash: vmnmX10oCnxZVRUutxsMKtpwmLOBL2sppNezvBFLjZg=) 3: 763C6FD691EE11EE88E19D67C4F9AE02.roa (hash: 9LVRB5RMPe+vCgNIqxUMj9EnEIWmX49NNG/2uR+dq+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:37:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0720/serialNumber=1B036BFF87807CBFC6E91236CB086D4FE2B0993D Validity Not Before: May 3 03:37:32 2024 GMT Not After : May 10 03:37:32 2024 GMT Subject: CN=66345bfd-193e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:60:c8:40:e1:81:66:16:40:a1:f6:48:db:90: 64:a1:12:02:8b:60:a3:f4:93:1a:cd:cd:e3:f2:56: b7:00:e0:ab:9b:df:60:59:7f:8e:7e:23:ec:64:91: 8c:66:68:c2:e8:3f:44:83:64:f7:46:b8:7f:3c:0d: 7b:84:7a:18:ce:8b:3b:c5:8d:92:1a:9a:91:b8:8f: 90:4f:49:2c:f1:81:a5:cb:8a:8b:69:00:76:bd:82: a3:a3:37:71:82:7f:2e:07:e7:2b:cb:31:fa:b2:98: e3:55:79:c2:9b:d8:35:38:40:d4:9b:e1:f7:e4:91: ff:ba:e4:77:76:ac:28:08:c4:bf:3f:a7:42:0d:e8: f9:c0:2a:05:7b:ca:8a:90:cc:75:0d:db:8d:29:e2: 32:54:2f:97:9b:2d:d5:39:03:aa:4d:93:74:89:9e: e7:28:84:fa:a7:8d:44:8a:80:7d:2b:4b:3a:00:e4: 3c:33:6f:a6:cc:fa:3c:6e:2e:d0:e1:3a:a6:12:a0: 24:e3:e8:f7:09:53:3a:71:33:a3:30:38:b9:1f:6b: 77:83:1e:1e:1a:0f:8c:a9:4b:95:af:e0:41:43:a9: 19:66:2c:01:01:31:7b:74:13:e2:37:08:e7:64:91: 2a:75:de:7e:d3:67:b7:46:f2:e4:b0:31:1d:28:4a: 42:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:E9:E6:4C:96:2B:67:20:71:36:B4:FF:04:7A:A3:64:2F:09:65:8B X509v3 Authority Key Identifier: keyid:1B:03:6B:FF:87:80:7C:BF:C6:E9:12:36:CB:08:6D:4F:E2:B0:99:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwNr_4eAfL_G6RI2ywhtT-KwmT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0720/209F8B74A79B11EC8DD2B157C4F9AE02/GwNr_4eAfL_G6RI2ywhtT-KwmT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e6:84:9b:45:de:79:72:3d:58:e0:a5:c3:01:18:a8:20:4a: 08:58:55:58:47:37:0d:ba:a4:b9:61:6f:02:05:f8:38:18:65: ee:85:cb:a4:27:95:0c:2a:8a:8d:2e:76:e7:5c:d4:8f:5d:c7: 7c:0a:f2:26:16:d2:32:c7:91:28:a8:eb:b2:f3:98:ab:a1:cf: 2e:0b:15:b7:84:d2:50:e6:38:95:73:4f:69:8b:4b:38:61:e8: 4b:da:f6:6a:25:1d:8e:47:03:61:b3:7f:64:6e:21:8f:c2:07: a4:98:c6:28:25:9e:b6:4e:92:88:53:ab:ec:9d:f6:f0:bc:e6: 76:86:a8:20:53:ce:62:90:ec:92:da:42:4d:6e:d6:10:ba:de: c6:f9:84:52:db:82:a3:fb:d8:0b:9e:c0:fa:21:a4:0a:26:db: f9:0c:dd:92:16:6b:fb:56:bc:da:97:8e:3d:d4:3b:b7:52:2a: 74:fa:a1:3c:73:c8:ef:08:b3:74:75:49:b4:0e:b0:c4:f8:b1: 7c:d5:c2:b5:d5:61:b4:9d:28:7c:2b:9e:a1:48:40:ea:f6:bf: ca:86:d7:72:b0:41:1f:11:76:17:66:5d:6d:79:21:fc:22:67: 8a:8f:8b:64:67:42:5a:7d:da:30:23:dd:da:ce:77:93:8d:c8: 2c:d2:30:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3MjAxMTAvBgNVBAUTKDFCMDM2QkZGODc4MDdDQkZDNkU5MTIzNkNCMDg2RDRG RTJCMDk5M0QwHhcNMjQwNTAzMDMzNzMyWhcNMjQwNTEwMDMzNzMyWjAYMRYwFAYD VQQDEw02NjM0NWJmZC0xOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWDIQOGBZhZAofZI25BkoRICi2Cj9JMazc3j8la3AOCrm99gWX+OfiPsZJGM ZmjC6D9Eg2T3Rrh/PA17hHoYzos7xY2SGpqRuI+QT0ks8YGly4qLaQB2vYKjozdx gn8uB+cryzH6spjjVXnCm9g1OEDUm+H35JH/uuR3dqwoCMS/P6dCDej5wCoFe8qK kMx1DduNKeIyVC+Xmy3VOQOqTZN0iZ7nKIT6p41EioB9K0s6AOQ8M2+mzPo8bi7Q 4TqmEqAk4+j3CVM6cTOjMDi5H2t3gx4eGg+MqUuVr+BBQ6kZZiwBATF7dBPiNwjn ZJEqdd5+02e3RvLksDEdKEpC8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLp5kyW K2cgcTa0/wR6o2QvCWWLMB8GA1UdIwQYMBaAFBsDa/+HgHy/xukSNssIbU/isJk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDcyMC8yMDlGOEI3NEE3 OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZMX0c2UkkyeXdodFQtS3dt VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3TnJfNGVBZkxfRzZSSTJ5d2h0VC1Ld21UMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDcyMC8yMDlGOEI3NEE3OUIxMUVDOEREMkIxNTdDNEY5QUUwMi9Hd05yXzRlQWZM X0c2UkkyeXdodFQtS3dtVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF5oSbRd55cj1Y4KXDARioIEoIWFVYRzcNuqS5YW8CBfg4GGXuhcuk J5UMKoqNLnbnXNSPXcd8CvImFtIyx5EoqOuy85iroc8uCxW3hNJQ5jiVc09pi0s4 YehL2vZqJR2ORwNhs39kbiGPwgekmMYoJZ62TpKIU6vsnfbwvOZ2hqggU85ikOyS 2kJNbtYQut7G+YRS24Kj+9gLnsD6IaQKJtv5DN2SFmv7Vrzal4491Du3Uip0+qE8 c8jvCLN0dUm0DrDE+LF81cK11WG0nSh8K56hSEDq9r/KhtdysEEfEXYXZl1teSH8 ImeKj4tkZ0JafdowI93azneTjcgs0jBr -----END CERTIFICATE-----Generated at Fri May 3 04:45:24 2024 by rpki-client on console-fra.rpki-client.org