$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft File: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft (raw, json) Hash identifier: RgwvpVDOAiHAxvSRetwucVxKDM8WgeH3JLxYedZJAKg= Subject key identifier: F1:43:08:CE:FA:24:85:B7:9B:30:5E:66:22:EB:F8:DF:89:B1:9C:48 Authority key identifier: 82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD Certificate issuer: /CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Certificate serial: 33C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft Manifest number: 3F01 Signing time: Thu 02 May 2024 15:13:46 +0000 Manifest this update: Thu 02 May 2024 15:13:45 +0000 Manifest next update: Thu 09 May 2024 15:13:45 +0000 Files and hashes: 1: gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl (hash: nZeiB9pmEZmBam7ATMTJZ/D9g3jtpAti7gHeL+mcoq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13248 (0x33c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1C49/serialNumber=821F4DB22EE59AFD593A7E689EDA9FC94BE585DD Validity Not Before: May 2 15:13:45 2024 GMT Not After : May 9 15:13:45 2024 GMT Subject: CN=6633ada9-f5f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ca:d2:d4:c9:e3:30:bb:b6:26:7c:86:59:e9: 47:40:02:f0:69:35:61:90:06:4f:e8:e9:d3:f3:28: 1c:20:62:9b:9a:bf:2b:d6:d8:7f:43:7c:08:a0:66: e2:98:ef:7f:e5:ff:85:7a:25:0b:8d:20:7c:36:96: 15:ed:56:83:bd:b3:a5:ab:02:85:63:7e:a2:e7:05: 56:bc:7a:2c:48:ba:8f:24:60:8a:09:8d:62:19:84: a4:0c:24:6b:d0:e9:a9:d3:8f:7f:ed:c4:44:ca:74: a6:9a:a3:e2:8a:5d:17:6f:8b:9d:8b:e7:96:b6:5d: d4:27:44:50:2a:88:01:34:b6:02:8e:0c:3b:ad:4e: c5:5f:c9:bc:41:24:c0:de:79:94:ac:fe:4b:71:f4: 74:2d:c6:97:f1:c1:71:38:bb:64:f2:94:da:bd:99: fe:f9:b2:47:1b:75:33:93:ab:1b:45:f8:0e:f4:3b: e2:1b:50:91:f8:d8:b8:7f:4e:c9:a5:88:2f:a5:2d: ea:b9:08:25:87:f9:4c:c6:0c:cb:62:97:67:1e:be: 41:10:e7:89:e0:56:3a:25:ac:ed:a7:cb:98:2b:b1: 12:52:05:83:bc:ea:8f:74:a2:a4:ec:6e:1a:f4:ee: 04:b8:3b:15:b5:48:3a:62:3f:99:79:65:a1:03:dc: e6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:43:08:CE:FA:24:85:B7:9B:30:5E:66:22:EB:F8:DF:89:B1:9C:48 X509v3 Authority Key Identifier: keyid:82:1F:4D:B2:2E:E5:9A:FD:59:3A:7E:68:9E:DA:9F:C9:4B:E5:85:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1C49/C49F75F81D9F11E29EFBA29008B02CD2/gh9Nsi7lmv1ZOn5ontqfyUvlhd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:af:a8:55:15:54:8b:61:9c:ee:40:1d:51:6a:9b:f3:f4:2d: 11:be:21:77:c1:8e:f4:56:7d:44:9f:45:3f:2d:b9:5c:15:b4: cc:8b:7d:67:1a:3f:ac:1b:cc:ad:ec:a9:59:e1:d7:aa:08:ff: 70:88:15:cb:06:ff:64:93:06:59:25:1b:70:0b:5c:9a:0e:88: 8c:30:7f:ef:db:57:bb:16:c9:fd:d4:b0:81:33:93:fa:4b:00: fa:9b:b1:f7:05:43:5b:3e:15:50:11:6d:e3:64:c2:77:19:33: 2f:0f:1c:24:f6:8c:56:1a:f6:88:b8:7f:2e:92:a9:12:5a:26: 92:f3:04:82:3d:3d:5a:34:fc:25:05:3b:20:57:74:f8:70:f9: e2:80:aa:00:c9:ce:82:0a:72:57:86:14:dc:56:68:31:8f:c6: 30:42:04:de:29:77:d8:89:ee:4b:66:90:1a:df:50:69:5f:6e: f4:1d:4b:34:6c:4a:dd:c1:bf:3a:14:29:e6:5f:21:b6:1e:d3: 90:a1:7a:8a:c2:5f:d0:71:f4:a6:ce:f4:99:6e:57:0d:fa:f6: 47:67:e2:96:7a:40:23:4c:60:cf:50:6b:5f:39:1a:97:dc:40: e4:96:a4:a2:e9:7f:89:7a:6b:76:cb:8a:d6:46:07:f4:6f:dd: 78:4e:76:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFDNDkxMTAvBgNVBAUTKDgyMUY0REIyMkVFNTlBRkQ1OTNBN0U2ODlFREE5RkM5 NEJFNTg1REQwHhcNMjQwNTAyMTUxMzQ1WhcNMjQwNTA5MTUxMzQ1WjAYMRYwFAYD VQQDEw02NjMzYWRhOS1mNWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5srS1MnjMLu2JnyGWelHQALwaTVhkAZP6OnT8ygcIGKbmr8r1th/Q3wIoGbi mO9/5f+FeiULjSB8NpYV7VaDvbOlqwKFY36i5wVWvHosSLqPJGCKCY1iGYSkDCRr 0Omp049/7cREynSmmqPiil0Xb4udi+eWtl3UJ0RQKogBNLYCjgw7rU7FX8m8QSTA 3nmUrP5LcfR0LcaX8cFxOLtk8pTavZn++bJHG3Uzk6sbRfgO9DviG1CR+Ni4f07J pYgvpS3quQglh/lMxgzLYpdnHr5BEOeJ4FY6Jaztp8uYK7ESUgWDvOqPdKKk7G4a 9O4EuDsVtUg6Yj+ZeWWhA9zmvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFDCM76 JIW3mzBeZiLr+N+JsZxIMB8GA1UdIwQYMBaAFIIfTbIu5Zr9WTp+aJ7an8lL5YXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUM0OS9DNDlGNzVGODFE OUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12MVpPbjVvbnRxZnlVdmxo ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doOU5zaTdsbXYxWk9uNW9udHFmeVV2bGhkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUM0OS9DNDlGNzVGODFEOUYxMUUyOUVGQkEyOTAwOEIwMkNEMi9naDlOc2k3bG12 MVpPbjVvbnRxZnlVdmxoZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfr6hVFVSLYZzuQB1Rapvz9C0RviF3wY70Vn1En0U/LblcFbTMi31n Gj+sG8yt7KlZ4deqCP9wiBXLBv9kkwZZJRtwC1yaDoiMMH/v21e7Fsn91LCBM5P6 SwD6m7H3BUNbPhVQEW3jZMJ3GTMvDxwk9oxWGvaIuH8ukqkSWiaS8wSCPT1aNPwl BTsgV3T4cPnigKoAyc6CCnJXhhTcVmgxj8YwQgTeKXfYie5LZpAa31BpX270HUs0 bErdwb86FCnmXyG2HtOQoXqKwl/QcfSmzvSZblcN+vZHZ+KWekAjTGDPUGtfORqX 3EDklqSi6X+Jemt2y4rWRgf0b914TnYz -----END CERTIFICATE-----Generated at Thu May 2 17:43:49 2024 by rpki-client on console-fra.rpki-client.org