$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft File: gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft (raw, json) Hash identifier: xfnnFxEQ+KiBCX5XfSg3WDVE55iDcfeleCTbo2H01y4= Subject key identifier: E4:DC:98:65:65:13:43:B9:5B:60:A4:52:93:13:2F:0B:C2:4C:2B:82 Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft Manifest number: 06BA Signing time: Fri 24 May 2024 23:16:25 +0000 Manifest this update: Fri 24 May 2024 23:16:25 +0000 Manifest next update: Fri 31 May 2024 23:16:25 +0000 Files and hashes: 1: gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl (hash: 8Gm7YS3tPtQzYicegcTjCmUxkSoBDiUtlNjL7RqYnyA=) 2: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (hash: 5SAa1n9kSmNTQaTvQplTwtDSKI+YYm+JK8fxQjwGZI0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 23:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: May 24 23:16:25 2024 GMT Not After : May 31 23:16:25 2024 GMT Subject: CN=66511fc9-a92e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ff:f1:41:45:0c:08:98:d4:97:2a:9d:9a:48: 4e:42:d4:b5:a6:d2:27:02:05:7a:11:c8:c9:09:0f: ff:1a:7f:1c:bc:31:55:11:77:65:ee:08:b4:af:f9: 8f:d6:4f:32:45:34:bd:f7:4b:d0:6c:f2:21:ee:c2: f2:d4:1b:53:ea:a3:93:05:c4:1f:08:ac:9e:e0:60: 35:89:d2:7c:f1:7f:7a:d1:e1:ee:46:58:22:5a:a6: 21:3f:fd:d2:f4:2d:0a:28:68:fc:f0:d4:97:69:bd: 64:b4:9f:ae:c2:3a:33:b0:54:12:0c:35:3e:2d:85: 28:64:1a:35:b9:37:90:43:46:9b:84:58:dc:68:8f: e4:68:13:f8:ca:3f:e8:27:bb:73:ed:71:26:d4:a7: 51:80:4d:40:a0:f5:da:44:bc:02:df:ee:b9:11:02: 24:51:07:3e:25:cf:2d:49:16:4c:48:e0:4e:79:a8: ee:b4:da:42:2b:28:ce:ed:02:cc:f8:35:32:5e:f8: 2f:4c:c5:b3:81:64:d7:25:68:d4:7f:87:bd:f7:8c: 42:e9:f7:91:2e:68:ee:b0:a3:7b:13:8a:72:a4:97: 58:8e:c6:26:03:92:c5:63:ab:f2:11:dc:0d:61:72: 4d:4e:04:55:34:2c:3a:24:5b:02:1e:b0:3a:37:09: 9c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DC:98:65:65:13:43:B9:5B:60:A4:52:93:13:2F:0B:C2:4C:2B:82 X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:61:2e:1d:23:f0:81:fc:a9:07:22:5c:ce:3f:eb:89:4e:44: ad:68:4d:0f:b1:21:58:61:c2:e0:55:eb:bd:cc:88:c6:f3:7d: 81:68:d3:f6:21:24:ec:bc:f5:84:48:ff:c9:d5:23:b3:b5:c8: f4:a9:b6:01:d7:ef:8e:a9:ff:9e:02:cc:f9:d1:ab:73:08:b9: d0:68:0a:2c:52:c7:bd:4c:f8:33:ed:18:65:72:8c:ed:13:77: e9:78:60:5a:7f:21:58:e6:e7:b8:24:e8:f6:00:dc:1d:e7:1d: 2c:56:0e:d3:f7:86:fb:98:71:3b:58:2a:d1:5b:a8:c4:99:cd: ce:80:b6:00:05:b5:45:3d:dc:7f:a2:60:f5:bb:7c:1e:e0:12: 74:32:44:fc:9a:8b:4b:17:0f:82:5e:ef:db:da:fc:ac:36:c6: 2c:19:d3:4a:27:c7:77:38:30:55:a6:ce:d0:8d:c1:fa:48:47: 9f:c5:d6:91:48:8d:f8:01:26:60:24:86:0c:58:53:a8:e0:b6: eb:65:5d:c3:c5:22:1c:82:b4:b2:6e:80:0a:1e:66:1b:0b:84: c0:ac:31:0e:f0:75:58:5f:c0:10:ca:c0:e3:9d:96:1f:17:ac: 8b:46:ee:8a:29:58:d6:3a:60:02:88:74:b7:a8:e1:7d:b8:85: df:87:e3:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjQwNTI0MjMxNjI1WhcNMjQwNTMxMjMxNjI1WjAYMRYwFAYD VQQDEw02NjUxMWZjOS1hOTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1f/xQUUMCJjUlyqdmkhOQtS1ptInAgV6EcjJCQ//Gn8cvDFVEXdl7gi0r/mP 1k8yRTS990vQbPIh7sLy1BtT6qOTBcQfCKye4GA1idJ88X960eHuRlgiWqYhP/3S 9C0KKGj88NSXab1ktJ+uwjozsFQSDDU+LYUoZBo1uTeQQ0abhFjcaI/kaBP4yj/o J7tz7XEm1KdRgE1AoPXaRLwC3+65EQIkUQc+Jc8tSRZMSOBOeajutNpCKyjO7QLM +DUyXvgvTMWzgWTXJWjUf4e994xC6feRLmjusKN7E4pypJdYjsYmA5LFY6vyEdwN YXJNTgRVNCw6JFsCHrA6NwmchQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTcmGVl E0O5W2CkUpMTLwvCTCuCMB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTU5Ri8wNjgxMDBFQTEzRjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZ UldyNW9Qc2wtTU1oeEpjTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcYS4dI/CB/KkHIlzOP+uJTkStaE0PsSFYYcLgVeu9zIjG832BaNP2 ISTsvPWESP/J1SOztcj0qbYB1++Oqf+eAsz50atzCLnQaAosUse9TPgz7Rhlcozt E3fpeGBafyFY5ue4JOj2ANwd5x0sVg7T94b7mHE7WCrRW6jEmc3OgLYABbVFPdx/ omD1u3we4BJ0MkT8motLFw+CXu/b2vysNsYsGdNKJ8d3ODBVps7QjcH6SEefxdaR SI34ASZgJIYMWFOo4LbrZV3DxSIcgrSyboAKHmYbC4TArDEO8HVYX8AQysDjnZYf F6yLRu6KKVjWOmACiHS3qOF9uIXfh+Mt -----END CERTIFICATE-----Generated at Sat May 25 01:24:53 2024 by rpki-client on console-fra.rpki-client.org