$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft File: g4L2GIxKbdZpVNVxij2cz5uL-JU.mft (raw, json) Hash identifier: Tp3o/BCiP9KfvB2853u+3Bv78LwDxP29SsjFVQz+TR0= Subject key identifier: 43:4B:B9:BF:FF:B2:06:DD:04:03:51:D7:E2:7B:C0:6E:66:1F:C0:B9 Authority key identifier: 83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 Certificate issuer: /CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Certificate serial: 071E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft Manifest number: 0719 Signing time: Sat 18 May 2024 21:57:28 +0000 Manifest this update: Sat 18 May 2024 21:57:28 +0000 Manifest next update: Sat 25 May 2024 21:57:28 +0000 Files and hashes: 1: g4L2GIxKbdZpVNVxij2cz5uL-JU.crl (hash: 6w/JO/sTODd5CVDkoIx+DDlRf+CPrVKm5CZT5xfHmvg=) 2: 21B96F2E7BC911EBABCF472DC4F9AE02.roa (hash: X9o/v5wYJkFdzl1FkFmnIPmrW4Pro2cDkxKRbU0epdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1822 (0x71e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA/serialNumber=8382F6188C4A6DD66954D5718A3D9CCF9B8BF895 Validity Not Before: May 18 21:57:28 2024 GMT Not After : May 25 21:57:28 2024 GMT Subject: CN=66492448-d1c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5e:7e:dc:68:e8:10:41:60:f4:9d:ad:81:e3: 06:56:db:55:84:cb:ed:9e:00:d7:82:c9:72:96:47: d4:6d:a8:90:72:1b:d5:4a:30:f3:9b:e9:eb:4a:1b: 61:2a:d2:e9:df:5a:12:18:94:4c:58:fa:50:97:1b: a6:24:e2:4f:c2:5e:3b:44:3d:41:fa:86:47:e7:2c: 98:42:1c:74:e7:06:ec:71:c8:53:eb:e7:68:30:0d: 8b:55:1a:c9:9c:a6:47:9b:9e:2e:7f:13:ee:14:f2: 8a:0e:94:87:81:a4:e3:90:4b:ee:42:51:1b:14:8f: 2e:cb:b0:57:b1:94:7b:5e:7d:a5:2b:6a:a2:72:e7: 88:d3:1f:21:aa:64:e5:67:c7:2e:68:5b:74:10:6f: 7c:94:1c:77:66:af:f8:38:73:20:73:e5:7b:68:39: 21:3e:6e:65:3c:56:62:0d:60:c9:2c:e6:7a:a6:7a: fe:d2:01:f3:54:f9:f4:31:1e:7c:6f:46:18:f6:8c: b5:f9:5b:7e:d0:fb:e8:7b:91:c8:d5:51:00:7d:f0: 8c:39:ee:6e:69:8b:95:95:fb:1d:99:2e:29:d3:0e: a8:c0:4f:ab:f8:47:dd:bb:84:74:7f:c4:ad:57:2b: 86:a2:fc:01:b2:af:90:89:c0:ef:2a:9d:72:55:e1: 9c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4B:B9:BF:FF:B2:06:DD:04:03:51:D7:E2:7B:C0:6E:66:1F:C0:B9 X509v3 Authority Key Identifier: keyid:83:82:F6:18:8C:4A:6D:D6:69:54:D5:71:8A:3D:9C:CF:9B:8B:F8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/g4L2GIxKbdZpVNVxij2cz5uL-JU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2510B4E6F0FC11EAB985FA5FC4F9AE02/g4L2GIxKbdZpVNVxij2cz5uL-JU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:84:5d:5c:88:a4:a2:df:16:af:fd:31:7a:a2:5b:6c:03:45: 81:71:41:b3:35:4b:56:f8:3e:01:11:bd:bd:31:ef:1e:48:77: 98:c7:9f:5c:01:31:e0:b0:02:40:35:10:af:82:f4:0f:ce:57: de:f2:94:58:1c:b3:d3:04:89:66:b2:74:62:37:41:71:3d:5d: c2:f0:a7:ca:bd:9e:97:44:d2:3c:26:85:e8:8c:4b:e5:c8:1a: 5b:81:db:9e:73:9b:a9:81:e1:fb:47:67:32:43:c0:fa:a5:12: 1b:e9:6e:d9:5d:81:42:8d:47:23:df:2c:43:fe:c5:df:d2:33: 09:00:d2:a8:bf:14:26:bc:1f:f0:83:7a:21:19:d4:15:67:6a: 96:e3:d9:e2:6b:cf:f6:aa:9d:fa:ff:9f:14:56:a2:48:5e:82: 70:65:35:fc:89:b5:11:79:00:92:23:5f:52:ef:1d:9f:f2:e1: bd:8c:ef:e4:8d:01:4a:28:de:c6:69:7c:01:95:af:8c:4b:38: 5d:d0:a1:d2:7f:e4:cc:6f:86:b1:7c:d6:f8:b9:58:f0:76:25: 33:a0:a9:e7:59:20:58:f8:0d:b0:05:6c:f1:0c:e1:27:d9:67: 0a:e2:ea:a8:7d:fb:a6:3b:47:ae:6a:de:f2:0a:a5:55:9c:81: 08:ec:46:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDgzODJGNjE4OEM0QTZERDY2OTU0RDU3MThBM0Q5Q0NG OUI4QkY4OTUwHhcNMjQwNTE4MjE1NzI4WhcNMjQwNTI1MjE1NzI4WjAYMRYwFAYD VQQDEw02NjQ5MjQ0OC1kMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv15+3GjoEEFg9J2tgeMGVttVhMvtngDXgslylkfUbaiQchvVSjDzm+nrShth KtLp31oSGJRMWPpQlxumJOJPwl47RD1B+oZH5yyYQhx05wbscchT6+doMA2LVRrJ nKZHm54ufxPuFPKKDpSHgaTjkEvuQlEbFI8uy7BXsZR7Xn2lK2qicueI0x8hqmTl Z8cuaFt0EG98lBx3Zq/4OHMgc+V7aDkhPm5lPFZiDWDJLOZ6pnr+0gHzVPn0MR58 b0YY9oy1+Vt+0Pvoe5HI1VEAffCMOe5uaYuVlfsdmS4p0w6owE+r+Efdu4R0f8St VyuGovwBsq+QicDvKp1yVeGc0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENLub// sgbdBANR1+J7wG5mH8C5MB8GA1UdIwQYMBaAFIOC9hiMSm3WaVTVcYo9nM+bi/iV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yNTEwQjRFNkYw RkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2JkWnBWTlZ4aWoyY3o1dUwt SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2c0TDJHSXhLYmRacFZOVnhpajJjejV1TC1KVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yNTEwQjRFNkYwRkMxMUVBQjk4NUZBNUZDNEY5QUUwMi9nNEwyR0l4S2Jk WnBWTlZ4aWoyY3o1dUwtSlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPhF1ciKSi3xav/TF6oltsA0WBcUGzNUtW+D4BEb29Me8eSHeYx59c ATHgsAJANRCvgvQPzlfe8pRYHLPTBIlmsnRiN0FxPV3C8KfKvZ6XRNI8JoXojEvl yBpbgduec5upgeH7R2cyQ8D6pRIb6W7ZXYFCjUcj3yxD/sXf0jMJANKovxQmvB/w g3ohGdQVZ2qW49nia8/2qp36/58UVqJIXoJwZTX8ibUReQCSI19S7x2f8uG9jO/k jQFKKN7GaXwBla+MSzhd0KHSf+TMb4axfNb4uVjwdiUzoKnnWSBY+A2wBWzxDOEn 2WcK4uqoffumO0euat7yCqVVnIEI7EZH -----END CERTIFICATE-----Generated at Sun May 19 00:16:19 2024 by rpki-client on console-fra.rpki-client.org