$ rpki-client -vvf rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft File: PxScskgQcfFD-NFWCCear8cdEVw.mft (raw, json) Hash identifier: NA4DknudLJjPm+6OBe9nqWVX9P2aa5kkZc1r60+xaYI= Subject key identifier: 7D:7D:77:39:D0:1E:C1:16:92:47:9E:86:86:86:C2:0B:77:CA:E7:1B Authority key identifier: 3F:14:9C:B2:48:10:71:F1:43:F8:D1:56:08:27:9A:AF:C7:1D:11:5C Certificate issuer: /CN=A911C18F/serialNumber=3F149CB2481071F143F8D15608279AAFC71D115C Certificate serial: 1E27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft Manifest number: 1E1E Signing time: Sat 18 May 2024 16:25:45 +0000 Manifest this update: Sat 18 May 2024 16:25:45 +0000 Manifest next update: Sat 25 May 2024 16:25:45 +0000 Files and hashes: 1: PxScskgQcfFD-NFWCCear8cdEVw.crl (hash: xpKWvlkXAREzSIWJ7QPwFcQtzJ9mL73i0MpvLQEigK4=) 2: A9FAE7FA5E1911E6B8CE9C5BC4F9AE02.roa (hash: K6kJczSKKAjTFjr1jKW/Ayrm+KFg9U/dUZ5cy/1fbfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.crl rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7719 (0x1e27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C18F/serialNumber=3F149CB2481071F143F8D15608279AAFC71D115C Validity Not Before: May 18 16:25:45 2024 GMT Not After : May 25 16:25:45 2024 GMT Subject: CN=6648d689-381d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:1c:15:22:e5:b8:d5:e7:4b:c8:2c:f1:b7:3b: 15:c6:88:8c:93:76:38:86:b9:a2:a8:75:80:31:07: dc:11:0a:ae:d5:f5:ad:e6:e2:94:65:b6:8f:bb:4e: 53:c7:bc:d9:ae:89:f4:5c:e0:f6:da:4d:45:d8:14: 74:45:30:6a:b8:50:20:fb:0f:a2:73:0b:15:8f:c0: 62:ec:a4:89:13:8e:59:0c:ec:90:5f:00:29:20:ce: e3:b4:76:8a:a8:a8:fa:b7:54:e6:2c:dd:45:e0:a9: 3d:2c:21:93:4d:7e:4f:a0:bf:54:cf:86:07:9b:99: b1:79:44:01:cb:4a:3d:24:c9:f2:2d:42:00:b8:91: 11:6a:a6:a1:3b:66:d7:aa:c8:13:50:bd:f8:2d:2e: 3a:b6:62:8a:92:49:43:81:48:55:51:7b:78:9c:2a: ca:a9:8f:7d:d6:2e:4c:0c:63:04:f6:14:c6:83:6a: 25:7b:51:b8:a8:b4:d1:b7:03:0b:b6:3b:88:3d:33: 56:ca:14:58:87:e5:46:5d:b6:da:f3:90:8d:15:a2: 07:9e:44:88:b0:18:6a:39:ce:ca:9d:9b:66:f6:4c: 60:49:30:1b:36:0a:bc:ac:29:c5:d2:0f:0d:7c:b8: e5:85:83:09:36:ea:21:7a:ca:be:45:67:ca:d6:12: a8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7D:77:39:D0:1E:C1:16:92:47:9E:86:86:86:C2:0B:77:CA:E7:1B X509v3 Authority Key Identifier: keyid:3F:14:9C:B2:48:10:71:F1:43:F8:D1:56:08:27:9A:AF:C7:1D:11:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PxScskgQcfFD-NFWCCear8cdEVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C18F/8E7A9BAC5E1811E6AC66C559C4F9AE02/PxScskgQcfFD-NFWCCear8cdEVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:02:e9:30:f2:a0:1b:48:90:8e:80:9b:1d:9b:e8:f1:fb:88: b8:ce:53:12:d5:3d:53:d7:53:38:ff:df:53:e8:1e:d5:b9:0d: 3b:b5:5d:5d:f4:c0:54:39:9f:fd:36:53:71:06:d2:1e:91:3b: fa:62:d0:0c:d2:8a:c0:57:4a:3a:de:f9:aa:e0:a8:64:72:f3: 8e:d1:7f:e4:34:01:d5:6b:01:61:a4:77:2d:5c:8e:54:96:a5: 2d:fc:5e:b9:51:3b:02:3b:e7:81:ee:91:c4:3c:d0:29:6c:bc: 53:5b:07:8d:6f:e1:f3:b9:3b:34:90:74:94:b7:43:dd:6f:b1: fd:bc:76:b7:b7:4c:64:65:94:35:ca:8f:52:a0:25:d2:1a:92: 3f:a0:95:eb:49:af:01:33:1c:84:3c:8c:41:a4:2a:d0:1f:77: 23:dc:61:a6:ee:5f:c0:fb:b4:df:8c:17:ed:2e:8c:08:44:01: 78:67:e5:49:f7:6d:14:44:b0:9f:b5:3c:e1:27:64:55:4a:63: 22:df:be:c7:48:f0:74:73:b7:2c:96:67:c7:ca:ba:51:ad:e8: f2:19:28:46:f5:f6:e8:0c:2e:5b:1d:bb:84:89:e1:27:8e:d3: db:b9:2e:f5:f0:68:d0:25:da:9b:0e:95:6d:08:07:27:ca:de: 24:06:e0:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMxOEYxMTAvBgNVBAUTKDNGMTQ5Q0IyNDgxMDcxRjE0M0Y4RDE1NjA4Mjc5QUFG QzcxRDExNUMwHhcNMjQwNTE4MTYyNTQ1WhcNMjQwNTI1MTYyNTQ1WjAYMRYwFAYD VQQDEw02NjQ4ZDY4OS0zODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xwVIuW41edLyCzxtzsVxoiMk3Y4hrmiqHWAMQfcEQqu1fWt5uKUZbaPu05T x7zZron0XOD22k1F2BR0RTBquFAg+w+icwsVj8Bi7KSJE45ZDOyQXwApIM7jtHaK qKj6t1TmLN1F4Kk9LCGTTX5PoL9Uz4YHm5mxeUQBy0o9JMnyLUIAuJERaqahO2bX qsgTUL34LS46tmKKkklDgUhVUXt4nCrKqY991i5MDGME9hTGg2ole1G4qLTRtwML tjuIPTNWyhRYh+VGXbba85CNFaIHnkSIsBhqOc7KnZtm9kxgSTAbNgq8rCnF0g8N fLjlhYMJNuohesq+RWfK1hKopQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH19dznQ HsEWkkeehoaGwgt3yucbMB8GA1UdIwQYMBaAFD8UnLJIEHHxQ/jRVggnmq/HHRFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzE4Ri84RTdBOUJBQzVF MTgxMUU2QUM2NkM1NTlDNEY5QUUwMi9QeFNjc2tnUWNmRkQtTkZXQ0NlYXI4Y2RF VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B4U2Nza2dRY2ZGRC1ORldDQ2VhcjhjZEVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzE4Ri84RTdBOUJBQzVFMTgxMUU2QUM2NkM1NTlDNEY5QUUwMi9QeFNjc2tnUWNm RkQtTkZXQ0NlYXI4Y2RFVncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Aukw8qAbSJCOgJsdm+jx+4i4zlMS1T1T11M4/99T6B7VuQ07tV1d 9MBUOZ/9NlNxBtIekTv6YtAM0orAV0o63vmq4KhkcvOO0X/kNAHVawFhpHctXI5U lqUt/F65UTsCO+eB7pHEPNApbLxTWweNb+HzuTs0kHSUt0Pdb7H9vHa3t0xkZZQ1 yo9SoCXSGpI/oJXrSa8BMxyEPIxBpCrQH3cj3GGm7l/A+7TfjBftLowIRAF4Z+VJ 920URLCftTzhJ2RVSmMi377HSPB0c7cslmfHyrpRrejyGShG9fboDC5bHbuEieEn jtPbuS718GjQJdqbDpVtCAcnyt4kBuDP -----END CERTIFICATE-----Generated at Sat May 18 17:20:03 2024 by rpki-client on console-ams.rpki-client.org