$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft File: gaOMiwlmciXuBPc67PoJWQ0fQUw.mft (raw, json) Hash identifier: 9i2+vOH/zXroGarOFTWwG5PYlK+80SAPKPpGo730P5U= Subject key identifier: B2:CA:39:E8:26:3E:1C:B5:A9:A7:08:FB:EC:48:10:05:2B:13:BF:94 Authority key identifier: 81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C Certificate issuer: /CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft Manifest number: 01E5 Signing time: Sun 05 May 2024 04:23:57 +0000 Manifest this update: Sun 05 May 2024 04:23:57 +0000 Manifest next update: Sun 12 May 2024 04:23:57 +0000 Files and hashes: 1: gaOMiwlmciXuBPc67PoJWQ0fQUw.crl (hash: ocWx39s1DDtxN3rrcZqD/fFOuEi2qe81X61ot3kU5lo=) 2: 2E18B9F4F91E11EC9E48A02BC4F9AE02.roa (hash: yAfRR/+DRnQdilFydbUlQYYyxtfNQlGh28KEstk9hsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE35F/serialNumber=81A38C8B09667225EE04F73AECFA09590D1F414C Validity Not Before: May 5 04:23:57 2024 GMT Not After : May 12 04:23:57 2024 GMT Subject: CN=663709dd-345f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:8f:e6:e2:a3:73:27:48:bf:d5:39:73:3f:8f: 6c:b0:1b:9f:f5:84:ff:a0:59:dc:42:1d:77:45:3f: c3:4c:12:f1:5d:58:05:b4:7c:e7:1b:d7:b0:3a:29: 3c:f0:b1:36:77:c3:b8:20:1c:3a:d0:81:2d:10:a6: 01:c6:f3:d0:fd:22:1a:c4:29:98:36:41:36:d3:9c: 8b:26:05:a3:0d:20:46:f8:42:3a:01:e6:47:16:34: 4e:d4:3a:73:1a:65:67:ae:4f:5c:76:a6:1f:87:61: 87:f2:55:f7:ff:bc:77:aa:16:a6:48:e1:1d:57:63: 1d:d4:05:06:46:72:b8:a3:81:e7:f2:5d:a2:60:bc: 93:56:f6:0d:44:b2:65:85:b8:bb:fd:68:ec:5c:5f: 21:b9:21:f4:3c:9a:de:51:dc:8f:fa:ce:2c:1e:da: 53:2f:b2:f5:98:bd:31:5b:67:7e:c8:5a:34:21:fe: 84:2f:fa:ef:d7:ce:ad:b3:7b:9c:ef:eb:c4:a0:0c: 27:e0:5c:00:ad:f3:c3:16:4c:80:7c:2c:5b:5d:4d: 80:0d:0d:03:ca:f2:70:c0:f5:26:c1:f1:89:dd:08: 60:a4:7e:26:68:27:a3:ea:2b:fd:40:4f:7b:dc:ad: ad:76:42:87:6d:c3:0e:22:ca:da:83:47:60:9f:35: dc:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:CA:39:E8:26:3E:1C:B5:A9:A7:08:FB:EC:48:10:05:2B:13:BF:94 X509v3 Authority Key Identifier: keyid:81:A3:8C:8B:09:66:72:25:EE:04:F7:3A:EC:FA:09:59:0D:1F:41:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gaOMiwlmciXuBPc67PoJWQ0fQUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE35F/EC34742CF91A11EC901B8F25C4F9AE02/gaOMiwlmciXuBPc67PoJWQ0fQUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:c7:c0:c5:bf:bd:58:19:b7:b5:0e:d6:d4:20:fe:5c:76:19: 10:c4:86:90:7e:a5:6f:41:1d:3e:46:0b:9f:6b:5a:af:3b:ab: a2:00:7a:5a:27:e9:b1:c5:17:2a:0a:12:77:d6:89:ba:2a:8c: a9:09:8e:9c:9d:25:43:63:b3:9b:90:19:28:90:4c:36:ab:e2: bf:08:e2:72:4c:aa:cf:c3:18:3e:a2:9b:5d:7e:59:b0:3b:63: 3e:34:29:69:94:b7:cc:1d:4c:a0:18:57:f5:c7:45:45:82:6a: a1:ca:85:21:c9:de:b2:b4:d2:6b:db:77:8c:7f:a1:bc:b2:af: f1:6d:f9:b5:f0:db:b1:26:da:7c:6b:7f:6e:96:86:33:53:7b: b9:1f:66:03:f8:48:2c:fd:f2:83:6b:31:10:33:3e:ef:0d:a7: cf:95:59:1d:d5:ce:a4:67:76:2a:f4:c5:a4:a6:14:9c:02:ff: 52:fd:be:fa:18:3f:96:e3:f4:3d:8b:34:6a:9e:7a:1b:8f:bb: 6e:a4:2d:4c:05:68:61:a2:23:2c:df:27:16:d7:b0:b9:52:66: 7f:28:73:de:90:72:2d:f0:6d:29:1d:45:5d:19:40:6d:f7:75: dd:36:1a:c6:c0:60:c9:d3:cb:a8:4a:cb:e5:d6:9a:12:69:59: b8:4a:26:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzNUYxMTAvBgNVBAUTKDgxQTM4QzhCMDk2NjcyMjVFRTA0RjczQUVDRkEwOTU5 MEQxRjQxNEMwHhcNMjQwNTA1MDQyMzU3WhcNMjQwNTEyMDQyMzU3WjAYMRYwFAYD VQQDEw02NjM3MDlkZC0zNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+I/m4qNzJ0i/1TlzP49ssBuf9YT/oFncQh13RT/DTBLxXVgFtHznG9ewOik8 8LE2d8O4IBw60IEtEKYBxvPQ/SIaxCmYNkE205yLJgWjDSBG+EI6AeZHFjRO1Dpz GmVnrk9cdqYfh2GH8lX3/7x3qhamSOEdV2Md1AUGRnK4o4Hn8l2iYLyTVvYNRLJl hbi7/WjsXF8huSH0PJreUdyP+s4sHtpTL7L1mL0xW2d+yFo0If6EL/rv186ts3uc 7+vEoAwn4FwArfPDFkyAfCxbXU2ADQ0DyvJwwPUmwfGJ3QhgpH4maCej6iv9QE97 3K2tdkKHbcMOIsrag0dgnzXcewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLKOegm Phy1qacI++xIEAUrE7+UMB8GA1UdIwQYMBaAFIGjjIsJZnIl7gT3Ouz6CVkNH0FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTM1Ri9FQzM0NzQyQ0Y5 MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNpWHVCUGM2N1BvSldRMGZR VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhT01pd2xtY2lYdUJQYzY3UG9KV1EwZlFVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTM1Ri9FQzM0NzQyQ0Y5MUExMUVDOTAxQjhGMjVDNEY5QUUwMi9nYU9NaXdsbWNp WHVCUGM2N1BvSldRMGZRVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+x8DFv71YGbe1DtbUIP5cdhkQxIaQfqVvQR0+Rgufa1qvO6uiAHpa J+mxxRcqChJ31om6KoypCY6cnSVDY7ObkBkokEw2q+K/COJyTKrPwxg+optdflmw O2M+NClplLfMHUygGFf1x0VFgmqhyoUhyd6ytNJr23eMf6G8sq/xbfm18NuxJtp8 a39uloYzU3u5H2YD+Egs/fKDazEQMz7vDafPlVkd1c6kZ3Yq9MWkphScAv9S/b76 GD+W4/Q9izRqnnobj7tupC1MBWhhoiMs3ycW17C5UmZ/KHPekHIt8G0pHUVdGUBt 93XdNhrGwGDJ08uoSsvl1poSaVm4Siad -----END CERTIFICATE-----Generated at Sun May 5 05:30:51 2024 by rpki-client on console-ams.rpki-client.org