$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft File: PyDCnh1-UV3z49hapE51H4Fycxo.mft (raw, json) Hash identifier: gE1Q2xjkQe9ZXlEu+DC31Tr0voX2BOpsbPAGJ3Z9Yos= Subject key identifier: B0:29:6F:83:4A:7E:28:C0:9A:D9:B9:07:C3:C7:D7:42:17:69:3A:82 Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft Manifest number: 73 Signing time: Sun 19 May 2024 07:28:10 +0000 Manifest this update: Sun 19 May 2024 07:28:09 +0000 Manifest next update: Sun 26 May 2024 07:28:09 +0000 Files and hashes: 1: PyDCnh1-UV3z49hapE51H4Fycxo.crl (hash: RjLgJo+R4YDCOPE1O4ZZflK/rjufTqeVfFhotF008ws=) 2: 503E43126E5E11EEB39D9E48C4F9AE02.roa (hash: c9GNR8NeMbVcrDhg97LAFKm5i+SYI0xZQAH5pfSpcg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: May 19 07:28:09 2024 GMT Not After : May 26 07:28:09 2024 GMT Subject: CN=6649aa0a-4388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:91:9d:f8:56:7a:48:68:5a:9f:05:49:ac: 08:fa:f5:3e:68:d9:50:e9:31:c1:1f:55:39:d8:fc: 9d:a5:83:08:14:89:9e:cd:73:40:8c:e5:90:b5:dc: 99:29:94:12:bb:bc:d7:cf:0b:92:28:d5:d0:ab:f0: ec:e0:b9:09:fe:5a:63:ba:1a:45:fa:2b:a6:2b:a7: bb:1c:84:bb:c4:fc:cd:93:28:82:1a:e7:db:20:74: 9c:49:4a:67:1c:6e:5b:d5:e0:a1:ad:57:93:12:84: e5:e6:6c:23:79:43:ad:6f:13:07:14:57:c9:9c:5c: 3b:4d:2c:c4:9f:96:d8:89:9c:82:70:be:0b:eb:f3: 28:92:bd:4c:41:f0:8f:95:52:d4:fc:9a:de:1d:22: 08:da:20:62:57:95:c5:ed:03:7e:17:dc:d8:f7:a0: 22:2e:4d:d5:ab:c5:15:23:66:05:50:42:8a:89:ae: ee:00:fe:e4:2d:f2:37:47:3f:df:66:43:70:b8:9f: 6a:18:da:b1:48:43:7f:c5:19:00:67:d0:4b:82:f3: c5:7f:b6:ea:4d:da:05:16:79:f4:45:cb:b0:9a:bc: 76:06:d3:cd:60:91:78:a2:dc:c3:0e:ff:47:a5:08: 5d:9c:68:ef:1d:5d:f6:77:37:59:af:d1:d9:29:0d: 57:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:29:6F:83:4A:7E:28:C0:9A:D9:B9:07:C3:C7:D7:42:17:69:3A:82 X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:2e:f5:4a:49:9d:f9:c2:43:43:8b:42:08:fd:fb:13:c5:66: 00:57:f7:c4:2b:65:14:9d:be:62:04:0c:64:b1:92:67:0b:35: 89:98:c2:94:88:24:04:4b:4d:f3:19:07:11:a9:78:37:65:98: 16:a9:8e:d1:5c:6c:6e:24:38:a6:af:ae:cb:8c:1b:37:76:42: c1:f6:56:61:34:bf:b0:c7:9a:a3:10:06:97:c4:fb:40:ff:e7: 38:29:f7:6e:37:fd:ad:bf:35:0b:7c:fc:98:5a:26:ff:d6:ca: c8:31:a1:8f:97:db:7a:d1:2e:be:9b:70:ba:dc:f2:aa:7f:53: 27:87:84:a9:31:6a:31:d9:e7:8e:de:a0:f8:d6:ba:3d:6f:ca: f2:49:54:93:48:e2:08:93:c9:7f:af:61:cf:8e:9c:d2:c4:c7: e5:4f:f0:14:5d:12:ed:c0:f7:6d:8e:31:6e:19:da:77:74:24: de:cb:42:14:f5:b0:92:95:3d:75:f7:ff:5f:29:7f:cf:a2:96: d2:9f:71:d2:46:93:9f:09:a6:66:eb:1d:ad:ac:84:4d:07:6f: e0:45:7f:c4:da:3b:5f:f9:94:f6:73:bf:8a:03:ec:db:ee:ab: b5:80:d4:e0:15:96:13:fb:7c:f1:7f:31:46:54:39:ac:6d:bc: 50:ae:d5:19 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTBFMDExMC8GA1UEBRMoM0YyMEMyOUUxRDdFNTE1REYzRTNEODVBQTQ0RTc1MUY4 MTcyNzMxQTAeFw0yNDA1MTkwNzI4MDlaFw0yNDA1MjYwNzI4MDlaMBgxFjAUBgNV BAMTDTY2NDlhYTBhLTQzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7dZGd+FZ6SGhanwVJrAj69T5o2VDpMcEfVTnY/J2lgwgUiZ7Nc0CM5ZC13Jkp lBK7vNfPC5Io1dCr8OzguQn+WmO6GkX6K6Yrp7schLvE/M2TKIIa59sgdJxJSmcc blvV4KGtV5MShOXmbCN5Q61vEwcUV8mcXDtNLMSfltiJnIJwvgvr8yiSvUxB8I+V UtT8mt4dIgjaIGJXlcXtA34X3Nj3oCIuTdWrxRUjZgVQQoqJru4A/uQt8jdHP99m Q3C4n2oY2rFIQ3/FGQBn0EuC88V/tupN2gUWefRFy7CavHYG081gkXii3MMO/0el CF2caO8dXfZ3N1mv0dkpDVfpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsClvg0p+ KMCa2bkHw8fXQhdpOoIwHwYDVR0jBBgwFoAUPyDCnh1+UV3z49hapE51H4Fycxow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxMEUwLzNFQjEwQzlBNkQ5 ODExRUVBQTJBQTM2QUM0RjlBRTAyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHlEQ25oMS1VVjN6NDloYXBFNTFINEZ5Y3hvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIx MEUwLzNFQjEwQzlBNkQ5ODExRUVBQTJBQTM2QUM0RjlBRTAyL1B5RENuaDEtVVYz ejQ5aGFwRTUxSDRGeWN4by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKwu9UpJnfnCQ0OLQgj9+xPFZgBX98QrZRSdvmIEDGSxkmcLNYmYwpSI JARLTfMZBxGpeDdlmBapjtFcbG4kOKavrsuMGzd2QsH2VmE0v7DHmqMQBpfE+0D/ 5zgp9243/a2/NQt8/JhaJv/WysgxoY+X23rRLr6bcLrc8qp/UyeHhKkxajHZ547e oPjWuj1vyvJJVJNI4giTyX+vYc+OnNLEx+VP8BRdEu3A922OMW4Z2nd0JN7LQhT1 sJKVPXX3/18pf8+iltKfcdJGk58JpmbrHa2shE0Hb+BFf8TaO1/5lPZzv4oD7Nvu q7WA1OAVlhP7fPF/MUZUOaxtvFCu1Rk= -----END CERTIFICATE-----Generated at Sun May 19 08:24:57 2024 by rpki-client on console-ams.rpki-client.org