$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: 2ZNiZmnoc/aDe3zTViylDfLZETDz83GyjHPcJCbx3A4= Subject key identifier: 4F:C9:0A:F8:27:4B:16:26:C9:F0:C4:B8:BB:96:66:D9:1F:66:38:AF Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0501 Signing time: Fri 03 May 2024 01:19:19 +0000 Manifest this update: Fri 03 May 2024 01:19:18 +0000 Manifest next update: Fri 10 May 2024 01:19:18 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: BG9yzvCfAhrH14V/EyJeNpJkmIuXwKFPSyF1fz7bbhY=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: 8xPWjkoE+zFud+TFxgnEq1UzwqrmQYh6gT2DXl5XDNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: May 3 01:19:18 2024 GMT Not After : May 10 01:19:18 2024 GMT Subject: CN=66343b96-e34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:89:29:25:25:66:a7:77:22:df:16:ad:1b:6b: e3:22:f6:54:c2:6b:aa:30:52:17:5e:e8:40:94:ab: 95:08:c6:11:bf:f4:da:20:62:18:a2:ef:d3:83:12: e3:a0:c9:d5:f9:ae:b5:56:21:72:2f:94:4b:4c:f4: aa:75:05:1e:c6:51:c1:97:d3:c9:43:b1:f5:14:e3: 23:c8:c5:50:bb:77:b8:6d:32:e2:63:cd:1b:9f:61: e8:1c:b1:11:77:d5:37:a4:bf:22:6d:1b:c9:22:63: 39:35:05:0c:bd:19:eb:58:02:aa:be:13:80:e2:7d: 6c:7e:4e:19:a2:a0:a4:2a:d2:7e:2e:cb:62:c5:9b: 0e:23:aa:6c:06:61:46:5e:88:85:b7:54:ed:2a:c2: dc:87:15:52:09:fd:8d:dd:ea:b1:c7:4a:48:46:1a: 51:77:ea:93:64:c4:7b:19:66:02:9f:d1:12:57:97: 62:b1:90:47:2f:87:23:7a:14:d0:ab:5f:f6:bf:da: b4:e0:66:38:b5:20:1a:b4:1b:7e:9f:27:80:02:8f: 78:d6:38:bb:61:a7:ca:35:3a:f6:74:f9:e4:e0:c5: 41:62:45:46:47:b0:1c:94:0e:a7:78:da:10:ed:a0: 1c:93:46:bf:03:c6:c7:fb:99:c8:d7:55:85:88:55: 8a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:C9:0A:F8:27:4B:16:26:C9:F0:C4:B8:BB:96:66:D9:1F:66:38:AF X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:42:4b:0f:3a:46:b6:2a:0d:4c:1e:88:69:b4:35:dc:4b:57: da:96:bd:76:f2:34:a0:d8:8e:c7:8e:bb:48:7d:a0:30:de:6b: db:a5:ee:d9:5b:e4:c3:6f:63:96:df:a0:70:a1:28:c6:54:9f: 41:7e:27:49:87:6f:c8:90:a5:df:9c:31:81:83:c0:8e:ef:1a: 28:98:40:2d:78:a1:84:dc:44:43:be:96:ac:98:56:14:42:e5: 4a:6b:3a:6c:2a:b3:57:91:38:5c:21:dc:aa:5c:c2:64:27:a9: 23:0a:c3:77:81:97:84:ae:34:d9:01:1c:e8:96:bb:13:80:cc: e4:3f:d9:00:a6:75:ee:9c:7d:8d:52:3d:d0:e9:38:cd:aa:d9: c9:30:c0:65:4f:7d:57:e0:1e:79:88:10:e8:1a:fb:d7:20:27: c8:25:de:d9:83:d6:75:77:04:91:3f:52:ae:2e:c7:2b:4b:9e: 66:51:a3:83:49:bc:75:40:8d:de:7d:50:46:64:9d:b2:9e:44: 29:7f:2e:58:a0:62:5a:43:03:7a:e6:35:f9:67:3d:a5:4b:82: 28:3e:03:60:01:2f:a5:0f:0b:65:12:d6:b1:ff:61:3f:ee:97: 36:b8:02:68:37:b4:ba:f7:a7:af:bf:40:4f:99:6a:fe:8b:da: ea:6f:2f:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjQwNTAzMDExOTE4WhcNMjQwNTEwMDExOTE4WjAYMRYwFAYD VQQDEw02NjM0M2I5Ni1lMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4kpJSVmp3ci3xatG2vjIvZUwmuqMFIXXuhAlKuVCMYRv/TaIGIYou/TgxLj oMnV+a61ViFyL5RLTPSqdQUexlHBl9PJQ7H1FOMjyMVQu3e4bTLiY80bn2HoHLER d9U3pL8ibRvJImM5NQUMvRnrWAKqvhOA4n1sfk4ZoqCkKtJ+LstixZsOI6psBmFG XoiFt1TtKsLchxVSCf2N3eqxx0pIRhpRd+qTZMR7GWYCn9ESV5disZBHL4cjehTQ q1/2v9q04GY4tSAatBt+nyeAAo941ji7YafKNTr2dPnk4MVBYkVGR7AclA6neNoQ 7aAck0a/A8bH+5nI11WFiFWKgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/JCvgn SxYmyfDEuLuWZtkfZjivMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8QksPOka2Kg1MHohptDXcS1falr128jSg2I7HjrtIfaAw3mvbpe7Z W+TDb2OW36BwoSjGVJ9BfidJh2/IkKXfnDGBg8CO7xoomEAteKGE3ERDvpasmFYU QuVKazpsKrNXkThcIdyqXMJkJ6kjCsN3gZeErjTZARzolrsTgMzkP9kApnXunH2N Uj3Q6TjNqtnJMMBlT31X4B55iBDoGvvXICfIJd7Zg9Z1dwSRP1KuLscrS55mUaOD Sbx1QI3efVBGZJ2ynkQpfy5YoGJaQwN65jX5Zz2lS4IoPgNgAS+lDwtlEtax/2E/ 7pc2uAJoN7S696evv0BPmWr+i9rqby9T -----END CERTIFICATE-----Generated at Fri May 3 04:45:26 2024 by rpki-client on console-fra.rpki-client.org