$ rpki-client -vvf rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft File: gmtVkqw4sBK358JzDdBgfhDbgQI.mft (raw, json) Hash identifier: YTyx5eZ2TIivOk2o+859K5dj9iV2L0k2ELYgkKgiW7Y= Subject key identifier: F6:63:C8:B1:2A:30:92:5A:85:45:7D:C2:F1:A7:07:8A:32:90:1E:62 Authority key identifier: 82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 Certificate issuer: /CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Certificate serial: 0464 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft Manifest number: 0460 Signing time: Tue 07 May 2024 01:46:29 +0000 Manifest this update: Tue 07 May 2024 01:46:28 +0000 Manifest next update: Tue 14 May 2024 01:46:28 +0000 Files and hashes: 1: gmtVkqw4sBK358JzDdBgfhDbgQI.crl (hash: VSL2nNR028TwTe8aOnKWtojghugw/kbum0n0znZiPNM=) 2: 25B713A4FE6B11EBB5DD176BC4F9AE02.roa (hash: hsu1nRsrxB92/H3wBg+za7Kd2ymxWAiZS5VlJ5RU8Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 01:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D23C7/serialNumber=826B5592AC38B012B7E7C2730DD0607E10DB8102 Validity Not Before: May 7 01:46:28 2024 GMT Not After : May 14 01:46:28 2024 GMT Subject: CN=663987f4-b930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:58:97:63:9f:bd:ac:d9:72:e1:dc:21:cb:55: 1c:6d:aa:28:d2:b9:b2:ab:f9:bd:e9:85:da:6a:96: f4:cc:af:56:44:69:36:81:96:71:9e:94:42:a6:1a: 08:67:7d:b3:c8:39:47:c8:2d:af:51:9f:52:89:1b: 6a:97:09:cf:74:88:2d:4d:70:53:1c:23:57:a6:e1: 7b:69:04:d3:01:89:c3:ba:19:d2:11:9b:5b:7e:77: 27:f9:b5:e7:9f:1b:7a:95:64:e1:53:9a:25:ae:9b: 34:7b:eb:c9:b4:1f:ca:bc:e0:c1:a7:39:93:67:1b: 4e:dd:73:4d:f8:ec:95:93:0d:9e:a6:99:f7:76:c0: e0:6f:cd:d1:21:3c:da:80:4e:c8:a8:f8:5e:30:63: 7c:ee:bd:cb:91:ba:69:d5:51:0f:63:da:0e:20:c2: e1:78:e7:0c:a4:06:c9:ab:7e:19:d4:b1:66:75:66: 0a:be:da:80:07:15:cb:bd:95:61:dd:a6:a5:69:da: 21:58:84:65:da:91:84:e3:d6:24:f5:e3:7c:a3:d3: 4f:48:c2:35:92:8d:b3:8c:95:ff:7f:af:c1:19:73: ad:ab:0d:3b:7c:cb:d6:d1:da:03:98:46:88:0e:c2: 60:fd:19:7e:8f:24:8a:f9:64:27:cc:43:08:be:c5: 07:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:63:C8:B1:2A:30:92:5A:85:45:7D:C2:F1:A7:07:8A:32:90:1E:62 X509v3 Authority Key Identifier: keyid:82:6B:55:92:AC:38:B0:12:B7:E7:C2:73:0D:D0:60:7E:10:DB:81:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gmtVkqw4sBK358JzDdBgfhDbgQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D23C7/7B2F538AFE6811EB88CC0E41C4F9AE02/gmtVkqw4sBK358JzDdBgfhDbgQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:84:c6:8f:31:e3:4e:ce:55:01:33:0d:2c:16:df:41:0b:0c: b7:07:f2:55:06:4b:7a:d8:87:43:1a:5b:1e:2c:3a:fb:b6:8c: 77:61:ca:93:8b:be:65:59:76:8e:fd:88:ac:56:86:a6:77:ad: 66:e2:cc:c1:b0:4d:32:f2:60:89:6e:f0:11:81:fc:99:ce:39: c9:b2:16:ba:59:5f:41:74:59:30:9c:65:74:ab:84:f3:d9:a9: fb:d1:42:27:2c:6b:3a:0d:b0:9a:78:c4:4e:37:de:6c:c0:14: 17:84:13:b9:9d:85:89:31:18:54:3f:b0:e1:f1:18:3b:84:3c: 09:46:2f:72:93:63:8d:22:b9:b5:8b:cb:3d:e2:f8:08:14:c5: 0d:68:c5:ab:b4:10:19:d2:a0:5a:3b:9b:82:76:3b:b9:21:7d: 82:80:73:97:34:28:5a:d3:8e:88:3f:03:71:3b:af:48:66:17: cc:4f:92:d0:94:b5:cd:0f:35:9e:07:0e:78:6d:8c:56:8f:86: 17:a1:37:0f:0c:92:a7:32:42:2e:b3:36:d3:94:14:2a:80:b9: fb:29:b6:ed:bf:b1:f1:53:b7:c1:af:ae:ea:2a:6d:6e:c3:38: 95:22:f3:9e:71:77:2b:31:2b:29:d1:ba:15:67:ad:a6:fc:43: 2d:b5:09:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDIzQzcxMTAvBgNVBAUTKDgyNkI1NTkyQUMzOEIwMTJCN0U3QzI3MzBERDA2MDdF MTBEQjgxMDIwHhcNMjQwNTA3MDE0NjI4WhcNMjQwNTE0MDE0NjI4WjAYMRYwFAYD VQQDEw02NjM5ODdmNC1iOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFiXY5+9rNly4dwhy1Ucbaoo0rmyq/m96YXaapb0zK9WRGk2gZZxnpRCphoI Z32zyDlHyC2vUZ9SiRtqlwnPdIgtTXBTHCNXpuF7aQTTAYnDuhnSEZtbfncn+bXn nxt6lWThU5olrps0e+vJtB/KvODBpzmTZxtO3XNN+OyVkw2eppn3dsDgb83RITza gE7IqPheMGN87r3Lkbpp1VEPY9oOIMLheOcMpAbJq34Z1LFmdWYKvtqABxXLvZVh 3aaladohWIRl2pGE49Yk9eN8o9NPSMI1ko2zjJX/f6/BGXOtqw07fMvW0doDmEaI DsJg/Rl+jySK+WQnzEMIvsUHUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZjyLEq MJJahUV9wvGnB4oykB5iMB8GA1UdIwQYMBaAFIJrVZKsOLASt+fCcw3QYH4Q24EC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjNDNy83QjJGNTM4QUZF NjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNCSzM1OEp6RGRCZ2ZoRGJn UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dtdFZrcXc0c0JLMzU4SnpEZEJnZmhEYmdRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjNDNy83QjJGNTM4QUZFNjgxMUVCODhDQzBFNDFDNEY5QUUwMi9nbXRWa3F3NHNC SzM1OEp6RGRCZ2ZoRGJnUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+hMaPMeNOzlUBMw0sFt9BCwy3B/JVBkt62IdDGlseLDr7tox3YcqT i75lWXaO/YisVoamd61m4szBsE0y8mCJbvARgfyZzjnJsha6WV9BdFkwnGV0q4Tz 2an70UInLGs6DbCaeMRON95swBQXhBO5nYWJMRhUP7Dh8Rg7hDwJRi9yk2ONIrm1 i8s94vgIFMUNaMWrtBAZ0qBaO5uCdju5IX2CgHOXNCha046IPwNxO69IZhfMT5LQ lLXNDzWeBw54bYxWj4YXoTcPDJKnMkIuszbTlBQqgLn7Kbbtv7HxU7fBr67qKm1u wziVIvOecXcrMSsp0boVZ62m/EMttQnb -----END CERTIFICATE-----Generated at Tue May 7 03:10:22 2024 by rpki-client on console-ams.rpki-client.org