$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft File: g1GgqJRYpHQmpXCgKQH45lQuguI.mft (raw, json) Hash identifier: S1/6jXYhtC+IgtoHHMeVQayKXJtkEOmh1YENAeCVXGk= Subject key identifier: B4:9D:6F:F1:17:91:42:27:42:2E:4D:78:20:E5:4C:77:8F:73:42:B1 Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Certificate serial: 037A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft Manifest number: 036D Signing time: Sun 05 May 2024 03:01:24 +0000 Manifest this update: Sun 05 May 2024 03:01:23 +0000 Manifest next update: Sun 12 May 2024 03:01:23 +0000 Files and hashes: 1: g1GgqJRYpHQmpXCgKQH45lQuguI.crl (hash: 0nJYLhowpIs6Hi+qNBFL4+gKR2tNs591/y+8dQJAZwk=) 2: D516EA2AA1E611EDABFD7D7FC4F9AE02.roa (hash: uo+yUsgFnzU14AqRZWM2Lz+UIF2PAx8lpiAS/6kec9k=) 3: D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa (hash: FU8xhnVOwfbqm6FrG/zWVEB3n1Nq5ojs+B77QpVCMfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 890 (0x37a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Validity Not Before: May 5 03:01:23 2024 GMT Not After : May 12 03:01:23 2024 GMT Subject: CN=6636f684-c87f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b0:c1:a2:47:86:23:c7:5f:57:48:1c:c2:03: 71:d5:6c:05:b3:53:e4:0c:e5:d1:ea:98:be:2e:ad: 8a:30:38:73:b4:30:55:f7:0b:39:80:91:52:86:ed: 79:3b:93:96:3f:6b:af:0c:23:b2:b5:9f:55:4e:c3: ab:00:a7:da:60:0a:34:4f:fb:3d:53:1b:f4:de:23: a4:83:d1:a3:5b:54:90:c8:c7:1a:8c:96:52:02:15: d1:17:77:05:76:24:12:4e:73:c3:f1:8d:7f:74:e8: 06:2a:9c:51:bf:6c:36:cf:1c:16:91:2d:ff:61:42: 99:e2:22:36:de:e0:19:a8:e8:4e:14:98:46:01:03: 36:df:c5:ad:fa:40:44:69:52:a6:5d:ec:07:55:ee: 1f:52:49:8e:da:b2:ad:56:19:c7:19:d0:7a:26:93: 9e:fb:16:39:51:ee:70:d5:e4:33:d1:78:af:3f:bd: e3:24:36:c1:63:07:91:d8:5c:d9:df:e3:5e:fc:f5: 0e:6e:01:bf:d7:07:96:0d:d0:94:82:c1:6c:ce:2e: e9:b4:d3:46:65:06:09:4a:88:a9:5a:60:4e:68:79: f0:8c:5a:a3:25:f0:e3:33:27:84:9f:b8:ea:7e:50: 3f:2c:d7:b2:46:6a:92:11:73:d1:2c:b0:eb:61:d6: 67:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9D:6F:F1:17:91:42:27:42:2E:4D:78:20:E5:4C:77:8F:73:42:B1 X509v3 Authority Key Identifier: keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:8c:ff:b5:dd:dc:1f:34:12:fc:1d:80:83:32:4d:30:48:5e: 4f:b0:a5:3b:2b:bc:2f:85:ee:88:54:ff:39:d7:a6:79:9f:aa: 52:47:9f:8e:f5:30:b8:26:11:cd:7e:c5:65:c9:0b:24:75:4f: 78:fb:50:a2:cd:cc:f8:c6:8d:a3:28:ad:7d:51:9a:b0:d2:67: ba:09:c9:59:21:82:4e:df:19:0b:d4:65:80:76:50:17:20:2f: 2a:78:69:48:83:6e:8e:71:38:3e:e7:02:47:3f:1e:48:89:64: 7a:44:b4:66:e7:35:6c:7a:ee:d2:4d:da:1f:73:ab:9e:7e:39: 43:3c:54:8b:3f:17:84:3f:4a:09:84:98:0c:c1:5f:7b:f1:9e: 2b:1a:2a:51:bc:37:7e:3f:81:3e:63:c2:df:95:a0:5a:7a:b2: 51:01:80:91:3d:f9:ec:7f:4e:eb:4d:97:5a:f2:0d:34:1c:6a: b5:81:21:b8:5a:9d:cd:e6:5d:7d:a0:88:c4:04:90:05:2f:bd: 55:21:b4:e1:2d:58:bd:65:76:a2:72:42:cd:dc:fa:fa:16:5b: 1c:95:a5:fd:84:dd:a6:38:a8:95:e2:55:35:2e:7e:8b:20:91: 55:fd:66:60:9f:e7:e7:31:39:f2:e4:0e:c1:6b:f0:c3:d6:f5: 45:50:10:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEM0QxMTAvBgNVBAUTKDgzNTFBMEE4OTQ1OEE0NzQyNkE1NzBBMDI5MDFGOEU2 NTQyRTgyRTIwHhcNMjQwNTA1MDMwMTIzWhcNMjQwNTEyMDMwMTIzWjAYMRYwFAYD VQQDEw02NjM2ZjY4NC1jODdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbDBokeGI8dfV0gcwgNx1WwFs1PkDOXR6pi+Lq2KMDhztDBV9ws5gJFShu15 O5OWP2uvDCOytZ9VTsOrAKfaYAo0T/s9Uxv03iOkg9GjW1SQyMcajJZSAhXRF3cF diQSTnPD8Y1/dOgGKpxRv2w2zxwWkS3/YUKZ4iI23uAZqOhOFJhGAQM238Wt+kBE aVKmXewHVe4fUkmO2rKtVhnHGdB6JpOe+xY5Ue5w1eQz0XivP73jJDbBYweR2FzZ 3+Ne/PUObgG/1weWDdCUgsFszi7ptNNGZQYJSoipWmBOaHnwjFqjJfDjMyeEn7jq flA/LNeyRmqSEXPRLLDrYdZnVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSdb/EX kUInQi5NeCDlTHePc0KxMB8GA1UdIwQYMBaAFINRoKiUWKR0JqVwoCkB+OZULoLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QzRC8yMzNDMEI0NjYz QkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBIUW1wWENnS1FINDVsUXVn dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QzRC8yMzNDMEI0NjYzQkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBI UW1wWENnS1FINDVsUXVndUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8jP+13dwfNBL8HYCDMk0wSF5PsKU7K7wvhe6IVP8516Z5n6pSR5+O 9TC4JhHNfsVlyQskdU94+1Cizcz4xo2jKK19UZqw0me6CclZIYJO3xkL1GWAdlAX IC8qeGlIg26OcTg+5wJHPx5IiWR6RLRm5zVseu7STdofc6uefjlDPFSLPxeEP0oJ hJgMwV978Z4rGipRvDd+P4E+Y8LflaBaerJRAYCRPfnsf07rTZda8g00HGq1gSG4 Wp3N5l19oIjEBJAFL71VIbThLVi9ZXaickLN3Pr6FlsclaX9hN2mOKiV4lU1Ln6L IJFV/WZgn+fnMTny5A7Ba/DD1vVFUBDe -----END CERTIFICATE-----Generated at Sun May 5 03:52:20 2024 by rpki-client on console-ams.rpki-client.org