$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: G8FN10d0LOPDF+WMndnpo4sFGBzegZY5V4w11zjK1uU= Subject key identifier: 22:3C:51:B8:CF:6B:4B:B5:6C:86:1D:82:85:E6:77:2C:48:CD:24:DE Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1A20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1A1D Signing time: Sat 18 May 2024 16:46:46 +0000 Manifest this update: Sat 18 May 2024 16:46:45 +0000 Manifest next update: Sat 25 May 2024 16:46:45 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: hXQBcm5xMEbqlpD2NESfqk1d4Vm2iACN4wgD3uXqtFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6688 (0x1a20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: May 18 16:46:45 2024 GMT Not After : May 25 16:46:45 2024 GMT Subject: CN=6648db75-a79a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:eb:d6:7c:2f:c4:d2:7b:63:7b:79:6b:2b:99: 74:63:0e:0a:c7:0c:be:d3:fa:d9:6c:36:d2:7c:e1: b5:30:f3:6c:00:44:03:95:71:85:cb:da:96:a0:c0: 3d:af:98:6c:4e:ac:fe:2d:8b:80:1f:45:54:23:13: b9:c2:12:6f:eb:30:75:5a:a9:3a:79:91:3f:05:9e: 7d:66:56:b5:fe:bc:df:c4:fe:48:b1:59:dd:c0:92: 51:42:a4:23:d7:02:dc:c9:1a:66:e4:3a:68:fd:7d: 9a:26:66:50:0f:83:57:ab:da:80:41:03:fe:72:cd: 78:7a:e9:ba:97:f8:bc:ec:06:bb:9e:f3:58:2e:41: 14:eb:25:f5:41:be:9f:bd:4b:ec:1f:5b:ea:2b:f8: 0a:24:d6:22:3f:2c:79:72:23:d4:10:59:da:ca:8c: 72:ea:46:09:f8:9b:8a:4b:51:1a:80:20:b4:67:63: 8a:6d:9c:3b:9c:63:6e:5e:78:74:af:4e:f4:1d:13: 65:3e:e2:51:b1:35:65:d9:ce:3e:27:17:e7:72:40: 5f:7d:37:8a:73:b1:8f:85:d1:d3:f4:46:3b:78:fb: e8:cc:86:06:37:76:4e:dd:07:28:31:fe:fd:49:6b: da:75:52:19:70:d8:44:37:79:f7:12:e2:60:f5:b2: de:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3C:51:B8:CF:6B:4B:B5:6C:86:1D:82:85:E6:77:2C:48:CD:24:DE X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:1d:11:91:3f:56:8b:41:41:9b:14:28:53:b4:07:b2:10:45: 32:a6:f4:e4:0f:f1:36:fe:16:46:cd:53:f5:67:6f:fb:61:19: 2f:87:44:86:9a:86:78:dd:ce:eb:07:e2:42:a0:85:47:d8:2c: 11:05:00:86:2f:d6:60:19:26:b4:4a:29:4a:f7:94:93:c2:8d: e1:95:8f:d2:bf:85:80:01:85:5e:64:9c:4b:5b:71:d0:84:1b: 16:9c:49:28:96:6b:cf:11:28:41:1e:91:f2:df:d2:f0:9d:7d: a9:41:29:8d:77:eb:93:1c:ae:8e:93:a3:ff:f7:6d:b6:19:bc: 34:7a:6a:92:ac:34:82:78:07:69:be:cf:a5:88:f8:ac:91:83: d2:51:ea:d0:ad:b1:63:55:7b:f5:26:d6:e4:9f:82:5e:3f:b1: 29:2d:f2:23:56:5b:f5:05:31:87:45:66:81:bc:95:97:9a:68: b4:79:04:59:cc:f6:7d:07:5a:b9:e2:52:2f:1e:5c:63:f1:ec: be:1a:07:74:23:83:b6:a6:2e:0c:54:30:c4:1c:89:c3:18:1a: 80:bd:df:85:54:aa:87:d1:d4:f0:87:84:c1:80:8d:4b:f1:02: e1:fb:1c:77:80:1a:d3:82:67:86:98:85:3f:c9:30:a8:36:79: 54:0f:87:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjQwNTE4MTY0NjQ1WhcNMjQwNTI1MTY0NjQ1WjAYMRYwFAYD VQQDEw02NjQ4ZGI3NS1hNzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+vWfC/E0ntje3lrK5l0Yw4Kxwy+0/rZbDbSfOG1MPNsAEQDlXGFy9qWoMA9 r5hsTqz+LYuAH0VUIxO5whJv6zB1Wqk6eZE/BZ59Zla1/rzfxP5IsVndwJJRQqQj 1wLcyRpm5Dpo/X2aJmZQD4NXq9qAQQP+cs14eum6l/i87Aa7nvNYLkEU6yX1Qb6f vUvsH1vqK/gKJNYiPyx5ciPUEFnayoxy6kYJ+JuKS1EagCC0Z2OKbZw7nGNuXnh0 r070HRNlPuJRsTVl2c4+JxfnckBffTeKc7GPhdHT9EY7ePvozIYGN3ZO3QcoMf79 SWvadVIZcNhEN3n3EuJg9bLeNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI8UbjP a0u1bIYdgoXmdyxIzSTeMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMHRGRP1aLQUGbFChTtAeyEEUypvTkD/E2/hZGzVP1Z2/7YRkvh0SG moZ43c7rB+JCoIVH2CwRBQCGL9ZgGSa0SilK95STwo3hlY/Sv4WAAYVeZJxLW3HQ hBsWnEkolmvPEShBHpHy39LwnX2pQSmNd+uTHK6Ok6P/9222Gbw0emqSrDSCeAdp vs+liPiskYPSUerQrbFjVXv1Jtbkn4JeP7EpLfIjVlv1BTGHRWaBvJWXmmi0eQRZ zPZ9B1q54lIvHlxj8ey+Ggd0I4O2pi4MVDDEHInDGBqAvd+FVKqH0dTwh4TBgI1L 8QLh+xx3gBrTgmeGmIU/yTCoNnlUD4f4 -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org