$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: zXPI6H8MQNZrfMLLWvrQKLJAiFw2BO/iuVTi142u07E= Subject key identifier: A7:EE:22:93:EC:DD:9D:65:4E:0A:12:2D:DE:AF:81:EE:9C:FB:DC:30 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 03BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 03B8 Signing time: Sun 05 May 2024 02:35:21 +0000 Manifest this update: Sun 05 May 2024 02:35:20 +0000 Manifest next update: Sun 12 May 2024 02:35:20 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: gK0H8wO/PmEQlWxJKWjnTUSk++opnaLMCD0yAhxMY8k=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: fS3+yJNBchofB2uTon0Ot8/ZsehIhcR0TMZX6/azUx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: May 5 02:35:20 2024 GMT Not After : May 12 02:35:20 2024 GMT Subject: CN=6636f069-aa4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1b:cb:01:a3:b4:2e:5f:3c:8f:32:b7:04:00: 13:32:c9:54:92:73:c3:57:b2:77:dc:f2:cc:dc:ec: 21:99:fc:cc:db:9f:5e:51:28:59:4f:f1:f1:57:35: 10:5e:1b:af:91:fc:37:c6:87:b1:5a:ad:eb:a9:2f: 40:d4:37:a8:ec:96:c1:a0:5d:3b:9d:70:76:5c:fd: 3c:43:6c:61:e8:13:b7:f8:68:48:0d:a6:1b:a4:a4: 66:16:33:f1:9c:c7:97:7f:46:d5:3f:e4:dc:56:68: 0a:7c:d3:88:c0:7a:d5:0f:00:d6:98:97:69:0d:20: 04:f5:61:7f:62:d7:f2:e4:d7:c4:91:45:f5:e6:cb: d3:35:6e:21:2a:4f:a3:db:57:f2:b6:6c:3f:f6:49: 61:70:04:8c:b3:cf:1e:25:18:7e:17:64:e1:59:34: 36:4d:a2:7e:af:35:49:80:6e:0e:93:ae:ed:95:fd: 21:9c:aa:06:4b:fa:cb:9e:db:cd:da:0c:f3:94:d9: 72:44:f5:64:ee:86:4b:18:7a:89:1c:71:29:4a:cc: ee:15:5d:9f:94:53:91:99:42:a4:44:f9:d2:5f:d7: d1:17:fe:06:75:a5:18:32:38:b3:0b:e4:62:fb:bd: 0e:63:f8:1a:50:48:23:d3:c6:c2:9b:dc:19:69:83: 8c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EE:22:93:EC:DD:9D:65:4E:0A:12:2D:DE:AF:81:EE:9C:FB:DC:30 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:9b:8d:3c:c7:46:f0:0d:24:b8:66:7c:1e:c4:74:71:be:8b: ad:20:fd:22:16:c7:da:4f:e5:4a:7d:b4:fc:a7:1c:8f:17:d0: fa:4c:fc:d6:ec:b6:cb:c8:27:b3:ff:82:1b:c1:29:88:c9:fa: 49:da:88:7a:44:a9:d0:d8:61:09:05:16:49:3a:f7:8b:36:fe: 90:5c:fe:88:30:5d:ee:13:0f:16:91:6b:ae:84:6c:4a:e1:e3: 43:69:c0:bf:5a:0c:38:8a:89:84:c9:78:e9:43:62:b4:52:e7: c8:43:35:f2:12:a9:7e:d6:1d:47:5a:74:eb:48:4f:de:b3:bc: 85:fa:46:09:40:a4:2f:f1:91:5c:c0:2e:a8:6c:d7:b4:32:f4: a8:85:16:a9:6f:f6:98:ca:ea:d9:50:11:30:0a:b4:61:e5:a1: d7:ec:2a:ee:49:a1:b2:b5:c8:b7:0e:87:c4:75:42:47:c5:e5: e8:8a:5f:7a:2e:f3:0f:bd:06:d5:5f:e3:4f:ba:2e:4a:61:40: f1:77:c4:80:85:f6:45:97:20:e6:52:3f:f9:32:58:e9:da:08: 5c:57:a9:70:5d:ff:74:f1:6b:ea:cc:ef:20:7c:0e:24:36:73: 56:4c:40:3f:64:20:d3:d5:e6:5d:46:a2:c6:94:8c:3d:49:05: 70:9b:17:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjQwNTA1MDIzNTIwWhcNMjQwNTEyMDIzNTIwWjAYMRYwFAYD VQQDEw02NjM2ZjA2OS1hYTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxvLAaO0Ll88jzK3BAATMslUknPDV7J33PLM3OwhmfzM259eUShZT/HxVzUQ Xhuvkfw3xoexWq3rqS9A1Deo7JbBoF07nXB2XP08Q2xh6BO3+GhIDaYbpKRmFjPx nMeXf0bVP+TcVmgKfNOIwHrVDwDWmJdpDSAE9WF/Ytfy5NfEkUX15svTNW4hKk+j 21fytmw/9klhcASMs88eJRh+F2ThWTQ2TaJ+rzVJgG4Ok67tlf0hnKoGS/rLntvN 2gzzlNlyRPVk7oZLGHqJHHEpSszuFV2flFORmUKkRPnSX9fRF/4GdaUYMjizC+Ri +70OY/gaUEgj08bCm9wZaYOMnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfuIpPs 3Z1lTgoSLd6vge6c+9wwMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABm408x0bwDSS4ZnwexHRxvoutIP0iFsfaT+VKfbT8pxyPF9D6TPzW 7LbLyCez/4IbwSmIyfpJ2oh6RKnQ2GEJBRZJOveLNv6QXP6IMF3uEw8WkWuuhGxK 4eNDacC/Wgw4iomEyXjpQ2K0UufIQzXyEql+1h1HWnTrSE/es7yF+kYJQKQv8ZFc wC6obNe0MvSohRapb/aYyurZUBEwCrRh5aHX7CruSaGytci3DofEdUJHxeXoil96 LvMPvQbVX+NPui5KYUDxd8SAhfZFlyDmUj/5Mljp2ghcV6lwXf908WvqzO8gfA4k NnNWTEA/ZCDT1eZdRqLGlIw9SQVwmxeA -----END CERTIFICATE-----Generated at Sun May 5 03:09:57 2024 by rpki-client on console-ams.rpki-client.org