$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft File: _GiPuVzFIF4D5wpgXJlMXUlaszI.mft (raw, json) Hash identifier: 6fEWfygGSPpEcRM2XL1Q2stejM/n+Lh7bOzAx2CxhRQ= Subject key identifier: 2F:0A:46:2A:E3:CF:BA:DC:76:FB:31:2B:8C:65:E2:10:49:71:2D:D9 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft Manifest number: 022D Signing time: Sun 05 May 2024 04:10:06 +0000 Manifest this update: Sun 05 May 2024 04:10:05 +0000 Manifest next update: Sun 12 May 2024 04:10:05 +0000 Files and hashes: 1: _GiPuVzFIF4D5wpgXJlMXUlaszI.crl (hash: 0bH92VCG3chip4MjoQMoWj8pKe69p7s6c/1n344pTQA=) 2: 1691259ADCD711EC87E30728C4F9AE02.roa (hash: C185C+rmE0a9mSx0M/vQd7gmQTZl9tIBUomuBj7QiJg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: May 5 04:10:05 2024 GMT Not After : May 12 04:10:05 2024 GMT Subject: CN=6637069e-786a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fa:52:23:f8:e2:d6:22:f1:ee:94:06:86:d5: 7f:de:9f:0d:2b:a1:3e:00:7b:db:a7:84:d2:22:c2: 8e:8f:fb:23:79:a8:04:23:99:e9:60:fe:9a:fc:2d: db:4c:27:66:4f:6c:09:88:75:37:68:7c:66:bf:7c: 3b:08:f8:73:16:ff:e3:e3:e7:4f:3a:85:37:e5:ba: 3a:0a:04:d6:47:bb:74:eb:48:5f:f0:19:d9:ca:c2: ca:c1:83:15:85:1a:e6:5e:b1:c8:66:cd:7c:d9:de: 9e:e8:c6:10:cd:52:08:7b:2c:1e:69:1f:50:7f:b7: 27:ce:ff:5e:6c:d5:2d:14:22:b9:a1:2a:52:d5:10: 4a:36:c1:ad:14:8e:55:ee:b5:83:03:de:ba:ed:0b: c8:e9:c9:51:aa:a1:2b:6a:52:b5:8b:f8:e5:56:f5: f9:c2:be:90:0d:81:94:23:41:5b:81:14:53:ba:20: 04:4e:82:64:c5:f2:5a:ea:6d:6c:0b:58:a8:fb:95: cd:95:43:3e:22:e2:86:a6:bb:3b:2b:2a:ce:14:61: df:54:d9:08:e6:ee:ad:79:c5:91:82:a7:e6:20:dd: 68:11:cd:dc:54:72:bb:27:38:8f:f2:40:83:dc:56: 78:dd:51:be:24:e4:24:e6:06:7d:9f:6b:00:0f:3a: 43:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0A:46:2A:E3:CF:BA:DC:76:FB:31:2B:8C:65:E2:10:49:71:2D:D9 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:da:3f:40:f1:73:56:46:c2:07:97:b9:66:33:e6:27:2a:1b: 84:63:5d:cc:5c:de:05:19:75:a1:f0:d0:23:35:9d:07:62:e8: f8:54:26:13:72:d7:b6:7e:a4:b5:08:8a:2b:c7:40:91:b8:d7: 25:d1:84:e1:53:e8:20:6d:f9:8d:0d:7f:a9:cb:15:3d:b7:06: d8:71:2d:cd:e4:91:97:2a:d2:fc:01:e2:62:6e:1e:2c:ea:98: 26:0a:ce:23:15:0d:09:53:00:2d:57:a8:6f:d9:4f:53:1f:96: 3e:8a:92:c3:c2:c6:0c:c8:75:da:93:59:31:7c:a7:5b:0d:96: a4:67:c1:ef:41:05:7d:fc:f3:ae:0e:67:c9:eb:f5:3e:f2:0d: 95:d4:de:c5:70:5e:f1:9d:33:3e:d3:11:95:21:9f:7b:09:fc: 0d:3c:84:67:12:12:6a:20:71:51:ab:33:0d:4a:d2:a7:65:e4: 9f:f2:94:1b:1e:87:9c:09:b0:52:2d:5e:8c:53:ef:97:fd:77: d3:9f:20:22:b0:26:00:f1:87:69:24:ac:87:67:c4:ec:28:48: fa:3d:3b:43:b9:1b:77:d5:c5:06:21:86:9f:7a:9a:2e:5c:e2: 38:e2:e9:a5:88:04:97:30:aa:d6:48:40:77:77:e4:b4:fa:bf: 9d:1d:cb:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjQwNTA1MDQxMDA1WhcNMjQwNTEyMDQxMDA1WjAYMRYwFAYD VQQDEw02NjM3MDY5ZS03ODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PpSI/ji1iLx7pQGhtV/3p8NK6E+AHvbp4TSIsKOj/sjeagEI5npYP6a/C3b TCdmT2wJiHU3aHxmv3w7CPhzFv/j4+dPOoU35bo6CgTWR7t060hf8BnZysLKwYMV hRrmXrHIZs182d6e6MYQzVIIeyweaR9Qf7cnzv9ebNUtFCK5oSpS1RBKNsGtFI5V 7rWDA9667QvI6clRqqEralK1i/jlVvX5wr6QDYGUI0FbgRRTuiAEToJkxfJa6m1s C1io+5XNlUM+IuKGprs7KyrOFGHfVNkI5u6tecWRgqfmIN1oEc3cVHK7JziP8kCD 3FZ43VG+JOQk5gZ9n2sADzpD6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8KRirj z7rcdvsxK4xl4hBJcS3ZMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ0My83RDk5ODA3NkRDRDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklG NEQ1d3BnWEpsTVhVbGFzekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw2j9A8XNWRsIHl7lmM+YnKhuEY13MXN4FGXWh8NAjNZ0HYuj4VCYT cte2fqS1CIorx0CRuNcl0YThU+ggbfmNDX+pyxU9twbYcS3N5JGXKtL8AeJibh4s 6pgmCs4jFQ0JUwAtV6hv2U9TH5Y+ipLDwsYMyHXak1kxfKdbDZakZ8HvQQV9/POu DmfJ6/U+8g2V1N7FcF7xnTM+0xGVIZ97CfwNPIRnEhJqIHFRqzMNStKnZeSf8pQb HoecCbBSLV6MU++X/XfTnyAisCYA8YdpJKyHZ8TsKEj6PTtDuRt31cUGIYafepou XOI44umliASXMKrWSEB3d+S0+r+dHcs1 -----END CERTIFICATE-----Generated at Sun May 5 04:40:01 2024 by rpki-client on console-ams.rpki-client.org