$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: KYeTRAMZzZXPvkIIOof9r7lh6AS++AT5epAcNFVtV6E= Subject key identifier: EB:E9:4C:7D:2F:7E:6A:B9:90:93:85:76:42:2C:B6:98:2F:4F:53:95 Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0CCC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0CC4 Signing time: Thu 02 May 2024 18:53:14 +0000 Manifest this update: Thu 02 May 2024 18:53:13 +0000 Manifest next update: Thu 09 May 2024 18:53:13 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: chROX51N0PxVZ4+Q7A8XFJuQX65S9oeuMhd3tv3HjOI=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: /gYeXHKuLNjytyyeFHp/R1V+DYnstOYuJrrPT80MS8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: May 2 18:53:13 2024 GMT Not After : May 9 18:53:13 2024 GMT Subject: CN=6633e119-5d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:35:28:d1:fb:a9:59:e7:19:06:36:3a:42:08: 21:61:5e:cf:04:28:b4:94:3d:6b:15:95:08:c0:0c: f2:49:d8:76:31:7e:30:d5:10:d6:1b:00:8c:63:d8: e5:36:41:bf:a3:d1:6d:75:5d:48:72:4d:7c:da:3c: 70:d1:bd:19:59:d4:51:e2:10:dd:06:1f:ab:b7:8a: 7e:27:e8:84:d8:cf:e5:1e:31:ef:1c:03:ea:04:56: c8:47:67:1a:75:fb:58:49:54:3c:ee:41:ec:c9:6e: 23:ca:6d:61:d6:70:31:d9:f4:8d:c1:20:4c:26:e9: af:32:1d:3d:f8:71:ce:76:37:6e:88:69:ca:ae:3e: bd:3e:cf:4a:28:45:9e:d5:a9:63:27:9c:c3:56:1c: c7:5a:42:e6:d7:b9:c2:d1:4f:45:b0:e9:5a:cf:b7: 18:13:b9:6a:9d:95:b4:3d:35:fc:27:ad:b0:03:1f: 84:65:29:7c:05:65:7c:71:bd:8e:89:a1:57:6a:fe: 9b:59:e8:cc:f1:2e:42:91:df:15:70:f2:6e:83:e2: 22:97:18:0c:d4:c4:ea:35:b8:09:f5:74:bb:a4:89: ec:52:db:80:8e:52:bf:61:76:bc:c0:39:8e:4e:0a: e7:a6:bd:05:5e:8a:06:58:64:85:a3:5e:be:66:b8: aa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:E9:4C:7D:2F:7E:6A:B9:90:93:85:76:42:2C:B6:98:2F:4F:53:95 X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:84:fd:49:d0:cb:db:b1:ba:10:69:b3:94:61:ba:1e:47:40: eb:4e:38:d4:bc:98:a0:d0:55:e2:59:37:5d:d9:03:fa:f4:c1: 38:c6:0a:e5:35:91:4e:86:50:49:80:bb:47:34:4d:fa:12:8c: d4:03:f8:e5:e1:d4:55:57:df:0c:6a:f8:40:82:ed:bd:b6:62: 39:4d:a1:d3:25:2c:23:68:27:78:50:41:10:0a:a6:99:02:b9: 1e:da:e8:a7:1b:f0:14:73:69:d7:43:e5:a8:0f:9d:dc:f2:9b: 66:da:14:07:4a:98:f9:13:2c:99:64:9a:b1:38:e4:87:84:bd: 82:89:74:88:2c:87:02:3d:7c:7b:36:d5:d0:80:70:90:ef:58: d1:c8:d7:04:6e:bb:81:4a:35:eb:76:d2:0d:bd:ba:51:d1:84: fc:e3:24:cb:ef:cc:cf:fb:cd:76:cd:85:63:69:d9:11:5b:43: 2a:30:0d:2b:11:cd:c3:b0:c8:33:48:79:09:8e:7e:08:cb:a5: 1b:f4:2f:ea:45:45:dc:6d:53:ca:3b:99:7d:23:e3:80:e5:38: 83:fe:be:7e:56:c9:4d:c9:e7:86:2c:c4:d1:e0:58:1c:9c:42: 07:28:2f:86:cf:c5:9f:b3:5b:0b:5f:18:80:8c:df:70:68:3c: db:92:e9:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjQwNTAyMTg1MzEzWhcNMjQwNTA5MTg1MzEzWjAYMRYwFAYD VQQDEw02NjMzZTExOS01ZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDUo0fupWecZBjY6QgghYV7PBCi0lD1rFZUIwAzySdh2MX4w1RDWGwCMY9jl NkG/o9FtdV1Ick182jxw0b0ZWdRR4hDdBh+rt4p+J+iE2M/lHjHvHAPqBFbIR2ca dftYSVQ87kHsyW4jym1h1nAx2fSNwSBMJumvMh09+HHOdjduiGnKrj69Ps9KKEWe 1aljJ5zDVhzHWkLm17nC0U9FsOlaz7cYE7lqnZW0PTX8J62wAx+EZSl8BWV8cb2O iaFXav6bWejM8S5Ckd8VcPJug+IilxgM1MTqNbgJ9XS7pInsUtuAjlK/YXa8wDmO Tgrnpr0FXooGWGSFo16+Zriq5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvpTH0v fmq5kJOFdkIstpgvT1OVMB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrhP1J0MvbsboQabOUYboeR0DrTjjUvJig0FXiWTdd2QP69ME4xgrl NZFOhlBJgLtHNE36EozUA/jl4dRVV98MavhAgu29tmI5TaHTJSwjaCd4UEEQCqaZ Arke2uinG/AUc2nXQ+WoD53c8ptm2hQHSpj5EyyZZJqxOOSHhL2CiXSILIcCPXx7 NtXQgHCQ71jRyNcEbruBSjXrdtINvbpR0YT84yTL78zP+812zYVjadkRW0MqMA0r Ec3DsMgzSHkJjn4Iy6Ub9C/qRUXcbVPKO5l9I+OA5TiD/r5+VslNyeeGLMTR4Fgc nEIHKC+Gz8Wfs1sLXxiAjN9waDzbkumB -----END CERTIFICATE-----Generated at Thu May 2 20:05:00 2024 by rpki-client on console-ams.rpki-client.org