$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft File: Gns-z0RjPh6iTJBhetOXRV505rI.mft (raw, json) Hash identifier: zn1UQ7s+Q7ipU5NijYxeEsPcEDwByAdkXa5CGMF7RvM= Subject key identifier: 23:64:43:40:42:E2:F9:21:A5:E7:89:99:A7:FC:4A:94:55:84:D8:DC Authority key identifier: 1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 Certificate issuer: /CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft Manifest number: 5E Signing time: Fri 17 May 2024 07:48:50 +0000 Manifest this update: Fri 17 May 2024 07:48:49 +0000 Manifest next update: Fri 24 May 2024 07:48:49 +0000 Files and hashes: 1: Gns-z0RjPh6iTJBhetOXRV505rI.crl (hash: 6ETgLCvXNmDvd7mMcqfkLEUuhztbxbveQxM7H+xUFn4=) 2: 398B4EEE875E11EEBCAB2514C4F9AE02.roa (hash: vYR9SjpP8jHKczAPek7eoEYqF72FxyEH5VDwe9plJnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9F1/serialNumber=1A7B3ECF44633E1EA24C90617AD397455E74E6B2 Validity Not Before: May 17 07:48:49 2024 GMT Not After : May 24 07:48:49 2024 GMT Subject: CN=66470be2-2473 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:86:34:bf:ff:a9:8d:eb:ba:c5:82:63:dd:4c: d9:81:44:40:9f:71:b3:8a:6f:13:89:cb:7b:58:21: 62:45:a0:04:b4:59:fe:fe:d9:3a:e7:68:f7:40:42: 56:1b:b1:c2:5a:b4:7f:c2:d9:8c:00:7e:a3:33:23: f3:3c:f0:08:2f:b1:19:e8:5b:ed:f0:7e:f8:b4:fd: 62:9e:3a:97:7d:6a:7b:06:00:44:05:32:3f:dc:86: 66:7c:7f:62:e7:52:80:99:c3:de:13:94:b4:3d:0d: 6d:d4:31:cb:99:6b:26:90:55:56:c6:f7:52:4e:22: 86:dd:14:af:12:2f:a7:8a:69:6e:78:3a:be:72:c2: a5:30:e2:37:59:bd:8f:51:e9:f0:91:19:17:8b:bf: aa:26:c4:29:18:9b:8d:d7:50:3f:62:7f:d3:66:d4: 4d:87:d1:63:8f:b1:d1:d4:47:6a:b8:a2:8d:0b:fe: ac:b8:e3:f4:ed:4b:94:6d:33:15:7a:21:eb:37:21: 5e:73:ee:e8:10:44:1c:dc:ad:99:2d:38:55:84:ba: c9:23:c3:ea:e0:a0:7c:70:90:3f:51:c2:49:92:87: f1:10:e8:db:de:5d:1d:da:2f:e8:bb:6c:90:24:44: 6b:ef:4f:49:cf:1e:97:70:65:69:29:f7:dd:be:dc: c4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:64:43:40:42:E2:F9:21:A5:E7:89:99:A7:FC:4A:94:55:84:D8:DC X509v3 Authority Key Identifier: keyid:1A:7B:3E:CF:44:63:3E:1E:A2:4C:90:61:7A:D3:97:45:5E:74:E6:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gns-z0RjPh6iTJBhetOXRV505rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9F1/EE695FE6875D11EE8F489913C4F9AE02/Gns-z0RjPh6iTJBhetOXRV505rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:4b:17:78:5f:91:01:74:e4:56:b0:6e:af:63:5b:28:71:82: 3b:1e:d7:85:c6:70:6d:e9:97:5c:22:24:93:e4:80:d7:1e:7d: 87:3a:30:2c:1b:66:83:de:75:c2:35:26:80:6f:d3:49:4e:4b: ee:47:d9:34:12:c5:c0:67:9f:fa:80:ff:c6:5d:59:49:53:af: 75:88:a7:92:f7:99:21:5a:94:18:65:26:ae:d8:a0:c6:64:57: 15:30:56:b1:da:7b:d5:87:76:29:a0:14:b3:92:fe:55:02:bc: cd:5b:5a:a6:2c:0f:0e:ad:4a:70:c1:b1:c4:ec:b9:50:22:a8: a7:97:54:13:74:cf:42:5c:d3:bc:69:1c:98:8b:85:4f:7e:60: 52:43:0b:9b:7f:e2:18:c5:eb:ad:2e:38:9a:70:2f:7a:45:21: 8c:dd:7b:62:ef:e6:c1:1f:d7:5e:43:31:f7:f6:ca:89:0b:21: 1c:91:d4:87:92:2a:c3:03:9c:03:0c:40:a8:a1:15:9b:d8:50: 8c:8a:7a:09:bf:49:5e:76:12:d5:28:86:1c:1b:05:dd:39:53: 1a:9e:b4:89:cd:30:1d:1b:b9:9d:0e:76:0b:a8:87:db:0e:42: b3:de:26:7d:40:0c:b2:47:6e:d9:4a:d6:64:ec:92:f3:94:8a: cb:ea:19:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTlGMTExMC8GA1UEBRMoMUE3QjNFQ0Y0NDYzM0UxRUEyNEM5MDYxN0FEMzk3NDU1 RTc0RTZCMjAeFw0yNDA1MTcwNzQ4NDlaFw0yNDA1MjQwNzQ4NDlaMBgxFjAUBgNV BAMTDTY2NDcwYmUyLTI0NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDThjS//6mN67rFgmPdTNmBRECfcbOKbxOJy3tYIWJFoAS0Wf7+2TrnaPdAQlYb scJatH/C2YwAfqMzI/M88AgvsRnoW+3wfvi0/WKeOpd9ansGAEQFMj/chmZ8f2Ln UoCZw94TlLQ9DW3UMcuZayaQVVbG91JOIobdFK8SL6eKaW54Or5ywqUw4jdZvY9R 6fCRGReLv6omxCkYm43XUD9if9Nm1E2H0WOPsdHUR2q4oo0L/qy44/TtS5RtMxV6 Ies3IV5z7ugQRBzcrZktOFWEuskjw+rgoHxwkD9RwkmSh/EQ6NveXR3aL+i7bJAk RGvvT0nPHpdwZWkp992+3MSpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI2RDQELi +SGl54mZp/xKlFWE2NwwHwYDVR0jBBgwFoAUGns+z0RjPh6iTJBhetOXRV505rIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFOUYxL0VFNjk1RkU2ODc1 RDExRUU4RjQ4OTkxM0M0RjlBRTAyL0ducy16MFJqUGg2aVRKQmhldE9YUlY1MDVy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR25zLXowUmpQaDZpVEpCaGV0T1hSVjUwNXJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF OUYxL0VFNjk1RkU2ODc1RDExRUU4RjQ4OTkxM0M0RjlBRTAyL0ducy16MFJqUGg2 aVRKQmhldE9YUlY1MDVySS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK5LF3hfkQF05Fawbq9jWyhxgjse14XGcG3pl1wiJJPkgNcefYc6MCwb ZoPedcI1JoBv00lOS+5H2TQSxcBnn/qA/8ZdWUlTr3WIp5L3mSFalBhlJq7YoMZk VxUwVrHae9WHdimgFLOS/lUCvM1bWqYsDw6tSnDBscTsuVAiqKeXVBN0z0Jc07xp HJiLhU9+YFJDC5t/4hjF660uOJpwL3pFIYzde2Lv5sEf115DMff2yokLIRyR1IeS KsMDnAMMQKihFZvYUIyKegm/SV52EtUohhwbBd05UxqetInNMB0buZ0Odguoh9sO QrPeJn1ADLJHbtlK1mTskvOUisvqGWQ= -----END CERTIFICATE-----Generated at Fri May 17 08:52:53 2024 by rpki-client on console-ams.rpki-client.org