$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft File: PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft (raw, json) Hash identifier: 9NGIXyRa3V7rRakssMWX3Og5rkVvU5UP0fr6BKPQZpU= Subject key identifier: 6A:C3:91:50:57:B3:74:BC:2C:20:C6:FF:33:6D:FE:B4:3A:1D:5B:4D Authority key identifier: 3E:C4:F7:5E:64:B7:2A:88:78:6A:F4:B9:7C:98:48:6C:BD:6D:2F:56 Certificate issuer: /CN=A914E0B6/serialNumber=3EC4F75E64B72A88786AF4B97C98486CBD6D2F56 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PsT3XmS3Koh4avS5fJhIbL1tL1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft Manifest number: 3A Signing time: Sun 19 May 2024 08:15:23 +0000 Manifest this update: Sun 19 May 2024 08:15:23 +0000 Manifest next update: Sun 26 May 2024 08:15:23 +0000 Files and hashes: 1: PsT3XmS3Koh4avS5fJhIbL1tL1Y.crl (hash: czv23ZQmc4iTdDW/D79H2Vwmvw7I4OyZH4Q/fF28e6Q=) 2: 36FC37FABF3111EE886C313CC4F9AE02.roa (hash: Oi/wjO5pl87EaRKCP4x5ACCYkYXxBJycl7Ltw0ZviNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.crl rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PsT3XmS3Koh4avS5fJhIbL1tL1Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6/serialNumber=3EC4F75E64B72A88786AF4B97C98486CBD6D2F56 Validity Not Before: May 19 08:15:23 2024 GMT Not After : May 26 08:15:23 2024 GMT Subject: CN=6649b51b-30e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1c:00:9f:b1:42:65:11:75:20:75:34:c5:b5: 56:90:7f:b2:4a:dd:d4:c0:68:4b:fc:5c:2a:b5:62: b6:63:7c:53:08:7a:44:e0:6b:2c:30:d9:ac:69:8c: 42:6b:bd:49:25:d4:df:9b:3f:47:09:ab:a7:5a:ec: 70:dd:6d:3c:c0:88:b2:57:e7:07:3a:91:47:02:e4: e8:06:7d:1c:92:4a:12:00:93:8b:97:68:05:78:78: af:a7:7a:b8:89:c0:a8:8a:62:4a:90:97:4d:23:03: 26:35:fb:0f:10:f7:06:78:8f:18:9c:24:e8:b1:d8: 7a:4c:ff:77:3c:b4:2d:f6:76:a6:0d:cb:6d:7e:88: 90:04:b3:53:62:0d:8f:56:28:74:a1:64:e9:60:6c: 86:8f:4f:70:7d:05:a0:a3:60:79:8c:49:2a:f9:ea: 19:63:c8:40:06:30:41:17:b5:b5:9b:3f:bf:d5:66: 18:59:37:c1:73:17:81:88:b1:f0:40:d4:68:f8:1c: 13:e7:b6:6d:be:be:f3:bd:23:03:e9:47:5d:c1:c4: c8:60:14:f1:6c:6a:f1:bc:1e:66:4b:c2:86:c4:72: cb:e5:4c:87:72:12:de:c5:c0:4c:c0:3a:74:80:35: 2f:af:c9:63:81:e3:8e:1f:1c:5d:92:52:98:7f:57: 32:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:C3:91:50:57:B3:74:BC:2C:20:C6:FF:33:6D:FE:B4:3A:1D:5B:4D X509v3 Authority Key Identifier: keyid:3E:C4:F7:5E:64:B7:2A:88:78:6A:F4:B9:7C:98:48:6C:BD:6D:2F:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PsT3XmS3Koh4avS5fJhIbL1tL1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/5FBE43B4BF3011EEBE4F3C1EC4F9AE02/PsT3XmS3Koh4avS5fJhIbL1tL1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:7d:0b:d6:ea:27:3d:0f:1c:09:12:0c:ed:ba:80:aa:d3:9f: 73:a7:b4:51:9b:e8:10:2d:b8:b6:22:cc:99:23:bb:fd:13:41: e9:71:ce:03:9e:df:9d:b8:14:2f:04:cf:d0:1c:5b:d1:fe:48: fe:34:91:cc:3a:23:b3:0a:ae:d2:95:04:5c:8c:91:a5:bf:0d: 42:46:13:bd:70:17:01:c1:84:e5:5c:77:81:3c:9c:bb:40:2e: 6f:72:a4:a8:ea:77:78:d9:60:4e:2a:3a:45:a5:0c:93:3f:87: a7:2c:24:8f:00:ac:2b:70:cb:07:31:e3:44:42:5e:aa:39:56: f1:ac:57:df:8d:c7:7f:e0:6f:a1:14:db:07:36:a6:d6:b0:b0: 13:45:90:eb:6b:60:e1:db:ba:5f:36:91:cd:16:02:45:58:d9: 7f:bc:3b:fd:65:dd:30:81:6c:8e:72:ce:8c:e2:7d:f9:2d:7d: ee:ff:74:b0:0f:0e:85:64:aa:cc:41:1a:d4:df:6a:c4:89:51: df:bf:fa:45:9c:1f:d8:a4:b2:16:d3:ac:91:d2:56:4c:bc:cd: e7:15:24:83:3e:3d:9e:03:f9:e1:3a:ec:a5:6e:a9:04:7f:ac: 2a:7c:30:77:e6:e1:d2:fa:d4:42:0d:f5:81:a0:d5:e3:56:4e: 9d:03:b4:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBCNjExMC8GA1UEBRMoM0VDNEY3NUU2NEI3MkE4ODc4NkFGNEI5N0M5ODQ4NkNC RDZEMkY1NjAeFw0yNDA1MTkwODE1MjNaFw0yNDA1MjYwODE1MjNaMBgxFjAUBgNV BAMTDTY2NDliNTFiLTMwZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAHACfsUJlEXUgdTTFtVaQf7JK3dTAaEv8XCq1YrZjfFMIekTgayww2axpjEJr vUkl1N+bP0cJq6da7HDdbTzAiLJX5wc6kUcC5OgGfRySShIAk4uXaAV4eK+neriJ wKiKYkqQl00jAyY1+w8Q9wZ4jxicJOix2HpM/3c8tC32dqYNy21+iJAEs1NiDY9W KHShZOlgbIaPT3B9BaCjYHmMSSr56hljyEAGMEEXtbWbP7/VZhhZN8FzF4GIsfBA 1Gj4HBPntm2+vvO9IwPpR13BxMhgFPFsavG8HmZLwobEcsvlTIdyEt7FwEzAOnSA NS+vyWOB444fHF2SUph/VzKvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUasORUFez dLwsIMb/M23+tDodW00wHwYDVR0jBBgwFoAUPsT3XmS3Koh4avS5fJhIbL1tL1Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEI2LzVGQkU0M0I0QkYz MDExRUVCRTRGM0MxRUM0RjlBRTAyL1BzVDNYbVMzS29oNGF2UzVmSmhJYkwxdEwx WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUHNUM1htUzNLb2g0YXZTNWZKaEliTDF0TDFZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEI2LzVGQkU0M0I0QkYzMDExRUVCRTRGM0MxRUM0RjlBRTAyL1BzVDNYbVMzS29o NGF2UzVmSmhJYkwxdEwxWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADJ9C9bqJz0PHAkSDO26gKrTn3OntFGb6BAtuLYizJkju/0TQelxzgOe 3524FC8Ez9AcW9H+SP40kcw6I7MKrtKVBFyMkaW/DUJGE71wFwHBhOVcd4E8nLtA Lm9ypKjqd3jZYE4qOkWlDJM/h6csJI8ArCtwywcx40RCXqo5VvGsV9+Nx3/gb6EU 2wc2ptawsBNFkOtrYOHbul82kc0WAkVY2X+8O/1l3TCBbI5yzoziffktfe7/dLAP DoVkqsxBGtTfasSJUd+/+kWcH9ikshbTrJHSVky8zecVJIM+PZ4D+eE67KVuqQR/ rCp8MHfm4dL61EIN9YGg1eNWTp0DtI4= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org