$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft File: GLHIjO5o9jwhzWoMsbgx1db11s8.mft (raw, json) Hash identifier: zx030D6MfTkBmAOtVpQGuX8smCqwm1iZxdoCjcraIJ4= Subject key identifier: 8F:0C:36:12:BD:41:15:29:E6:19:38:A9:3B:A5:68:D0:87:E9:CA:86 Authority key identifier: 18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF Certificate issuer: /CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Certificate serial: 1B4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft Manifest number: 1B40 Signing time: Sun 02 Jun 2024 16:48:55 +0000 Manifest this update: Sun 02 Jun 2024 16:48:54 +0000 Manifest next update: Sun 09 Jun 2024 16:48:54 +0000 Files and hashes: 1: GLHIjO5o9jwhzWoMsbgx1db11s8.crl (hash: B+46a2tkHS8TF8LUl/ZixT/PixTWnZkC8RyOJSGGoAw=) 2: 02FB1DCAEF6A11E69A4AD551C4F9AE02.roa (hash: G3DBliFZu/VI4MFfGI8d8nacUbfmanba/FcPWi0Nxnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 16:48:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6986 (0x1b4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAFA2/serialNumber=18B1C88CEE68F63C21CD6A0CB1B831D5D6F5D6CF Validity Not Before: Jun 2 16:48:54 2024 GMT Not After : Jun 9 16:48:54 2024 GMT Subject: CN=665ca277-ef17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:75:44:85:9a:fa:3b:d5:97:13:c7:95:51:95: a4:06:72:a3:ca:22:f3:85:6c:e6:13:ac:67:17:b1: 72:ca:bb:0a:d2:74:ed:28:72:f1:6f:05:db:0c:ab: 02:9f:cf:c8:40:4a:21:22:a4:e2:1e:dd:6a:24:c1: f6:d1:03:f7:e6:d3:8e:04:2f:07:1e:ef:6d:bd:a2: 61:d7:e2:05:ba:e4:7e:88:77:a9:75:be:41:2b:76: fe:b5:f2:a5:7d:13:48:4b:b1:29:de:13:2f:2f:43: 6f:8e:18:5b:ed:b1:72:11:ea:20:1d:8e:30:63:ab: 24:02:bf:f0:e0:cb:4f:5e:f8:0b:18:d8:85:17:85: cd:bc:46:6a:ab:c4:ef:c2:d3:db:f5:18:37:4f:cc: e2:8a:37:be:35:32:a1:51:90:2e:e0:2e:22:1b:32: dc:aa:a6:f6:05:e0:be:2a:e6:cb:be:35:a2:e6:50: 98:d9:04:4d:72:a0:7a:d1:58:00:c7:2c:63:52:de: 00:f5:15:5f:e0:15:3e:5b:7e:12:91:da:1b:04:88: be:cb:41:10:e0:6e:ce:04:ed:fe:b9:d4:de:60:d2: f6:7a:4b:80:a4:1d:f5:61:a2:1d:25:3c:25:94:58: 3e:cd:f7:5e:a1:f1:33:9a:cf:1d:a2:e4:dc:bc:d3: 16:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:0C:36:12:BD:41:15:29:E6:19:38:A9:3B:A5:68:D0:87:E9:CA:86 X509v3 Authority Key Identifier: keyid:18:B1:C8:8C:EE:68:F6:3C:21:CD:6A:0C:B1:B8:31:D5:D6:F5:D6:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GLHIjO5o9jwhzWoMsbgx1db11s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAFA2/B7B67760EF6911E6BD73C651C4F9AE02/GLHIjO5o9jwhzWoMsbgx1db11s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ee:78:2c:f9:d1:96:c0:3c:88:7d:87:18:70:7f:ec:71:b2: 41:a1:0b:76:ab:81:84:9e:dd:be:e2:bd:08:e0:5a:5d:0b:2f: 5c:ca:5f:8d:92:e4:a1:b6:ff:c9:9b:7e:96:ee:cf:be:2a:7c: 49:4a:38:f7:a0:b4:5e:1d:5c:f9:04:40:28:a5:a8:4f:22:c1: 74:96:61:55:fa:bf:91:68:9f:bc:5f:3b:7d:d1:de:19:db:eb: 71:76:a2:bc:b1:fe:a8:36:ae:a8:e6:8d:de:53:bd:ce:cc:02: 91:7a:0d:cb:74:53:e8:57:85:5a:c3:5b:97:97:6e:c9:02:e4: 72:b1:d1:dc:47:df:56:91:f6:97:f7:2c:ad:b2:53:48:e2:da: 11:01:7c:99:c9:18:35:55:aa:ab:96:81:0c:47:73:68:b3:15: 3a:fc:be:ff:40:93:62:09:01:4a:32:4e:44:03:43:de:f7:60: 9a:4c:e4:0e:61:1b:f4:84:72:c7:6b:73:8e:3a:76:3f:ad:67: e2:ad:49:3d:4a:2f:02:af:21:0f:f8:d3:6f:70:57:61:63:73: 6b:7d:ee:e4:1b:25:b9:16:04:7d:6b:ed:4e:1c:22:1c:97:c7: bf:84:97:d6:db:e6:10:45:01:8b:95:5a:dc:08:c7:38:c1:43: 56:f0:08:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFGQTIxMTAvBgNVBAUTKDE4QjFDODhDRUU2OEY2M0MyMUNENkEwQ0IxQjgzMUQ1 RDZGNUQ2Q0YwHhcNMjQwNjAyMTY0ODU0WhcNMjQwNjA5MTY0ODU0WjAYMRYwFAYD VQQDEw02NjVjYTI3Ny1lZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33VEhZr6O9WXE8eVUZWkBnKjyiLzhWzmE6xnF7FyyrsK0nTtKHLxbwXbDKsC n8/IQEohIqTiHt1qJMH20QP35tOOBC8HHu9tvaJh1+IFuuR+iHepdb5BK3b+tfKl fRNIS7Ep3hMvL0Nvjhhb7bFyEeogHY4wY6skAr/w4MtPXvgLGNiFF4XNvEZqq8Tv wtPb9Rg3T8ziije+NTKhUZAu4C4iGzLcqqb2BeC+KubLvjWi5lCY2QRNcqB60VgA xyxjUt4A9RVf4BU+W34SkdobBIi+y0EQ4G7OBO3+udTeYNL2ekuApB31YaIdJTwl lFg+zfdeofEzms8douTcvNMWOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8MNhK9 QRUp5hk4qTulaNCH6cqGMB8GA1UdIwQYMBaAFBixyIzuaPY8Ic1qDLG4MdXW9dbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUZBMi9CN0I2Nzc2MEVG NjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlqd2h6V29Nc2JneDFkYjEx czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dMSElqTzVvOWp3aHpXb01zYmd4MWRiMTFzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUZBMi9CN0I2Nzc2MEVGNjkxMUU2QkQ3M0M2NTFDNEY5QUUwMi9HTEhJak81bzlq d2h6V29Nc2JneDFkYjExczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu7ngs+dGWwDyIfYcYcH/scbJBoQt2q4GEnt2+4r0I4FpdCy9cyl+N kuShtv/Jm36W7s++KnxJSjj3oLReHVz5BEAopahPIsF0lmFV+r+RaJ+8Xzt90d4Z 2+txdqK8sf6oNq6o5o3eU73OzAKReg3LdFPoV4Vaw1uXl27JAuRysdHcR99WkfaX 9yytslNI4toRAXyZyRg1VaqrloEMR3NosxU6/L7/QJNiCQFKMk5EA0Pe92CaTOQO YRv0hHLHa3OOOnY/rWfirUk9Si8CryEP+NNvcFdhY3Nrfe7kGyW5FgR9a+1OHCIc l8e/hJfW2+YQRQGLlVrcCMc4wUNW8AiI -----END CERTIFICATE-----Generated at Sun Jun 2 18:47:18 2024 by rpki-client on console-ams.rpki-client.org