$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft File: PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft (raw, json) Hash identifier: K5kIT82TaNbY2ciKrb1jFg3yQZQta0YKaKyCc1oLaIA= Subject key identifier: 5C:D9:AE:45:49:52:7B:FC:AA:87:CC:90:DD:CF:E9:D6:99:E6:74:B3 Authority key identifier: 3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 Certificate issuer: /CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft Manifest number: 067C Signing time: Fri 31 May 2024 01:30:19 +0000 Manifest this update: Fri 31 May 2024 01:30:18 +0000 Manifest next update: Fri 07 Jun 2024 01:30:18 +0000 Files and hashes: 1: PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl (hash: Ze3O9GUxq3psordgDvkbiOE8gTqt//6Vn7oCPo3nqKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA/serialNumber=3D51EDC43A3999B1371CE5C04142083FE287D0F2 Validity Not Before: May 31 01:30:18 2024 GMT Not After : Jun 7 01:30:18 2024 GMT Subject: CN=6659282a-f9bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:9a:23:7f:70:7c:d4:0d:59:50:ce:53:12:35: 24:ff:ea:d3:6a:d0:b1:5f:24:5b:11:7e:c9:87:d9: f3:4f:4a:43:d0:3f:49:bd:05:8a:cb:79:a5:63:2e: 5b:92:82:41:d6:47:14:ea:7d:ef:92:13:a6:9b:3b: 18:22:32:d7:0c:75:73:86:1a:6b:15:ce:e1:77:89: 4f:3d:72:28:06:3d:0b:4b:49:f0:04:0c:d8:21:16: 49:29:43:bb:a4:72:fe:38:94:0e:8e:3f:8c:f0:d3: 99:f8:30:5d:14:c8:67:38:d2:02:20:4f:be:e6:2b: 6d:ec:7d:15:a7:5e:07:41:79:71:6a:25:08:0a:c2: a4:01:d9:a8:8a:b5:a8:1d:55:73:d5:78:4b:47:0b: c9:56:06:93:28:02:b8:22:ef:69:09:6e:bd:7c:e2: 03:ed:38:4f:cd:00:b3:a9:65:f2:6c:45:1c:28:e0: d3:a0:c1:27:d7:7e:02:0d:d7:80:25:c5:a6:86:17: 60:f1:b6:0d:c0:fd:0a:cd:a4:90:b6:bb:7f:6d:25: 64:c6:59:2c:ea:7c:f1:39:92:d2:6b:39:0b:a1:aa: aa:f2:e7:07:e5:28:46:51:22:0f:06:12:eb:13:b6: dd:90:bd:97:5f:35:8a:cd:5b:b6:2f:58:98:c4:70: 2a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D9:AE:45:49:52:7B:FC:AA:87:CC:90:DD:CF:E9:D6:99:E6:74:B3 X509v3 Authority Key Identifier: keyid:3D:51:ED:C4:3A:39:99:B1:37:1C:E5:C0:41:42:08:3F:E2:87:D0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVHtxDo5mbE3HOXAQUIIP-KH0PI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/PVHtxDo5mbE3HOXAQUIIP-KH0PI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:33:7c:eb:b8:a6:23:29:6c:cc:1e:04:13:ab:3b:69:33:6b: 18:d7:ca:eb:28:63:46:78:d1:ff:29:15:e7:38:40:be:1c:2d: b3:8c:6f:ba:98:66:3a:12:30:f5:37:1c:1c:3a:c8:ba:f2:b3: cf:98:dd:f6:1a:59:f9:e4:7c:40:4b:e7:1d:7d:c9:34:4f:61: 20:73:e8:23:64:e8:6d:18:40:92:58:5a:59:eb:45:9a:67:41: 8b:17:46:1d:eb:7b:aa:ea:9b:6e:50:68:e6:c5:30:08:35:05: 34:cd:7a:77:70:fe:74:fb:9e:16:6a:b0:2a:0a:5e:11:a3:92: 43:57:da:67:ef:ad:dd:c9:de:5e:b9:0e:32:7d:79:e1:3f:29: 1c:b4:19:8e:6c:14:59:14:a4:14:ba:a4:a3:27:5e:a9:fc:45: d2:d1:ee:28:b0:09:42:5d:70:cb:3a:69:8c:05:d0:20:1d:68: d4:c9:8c:b8:18:cc:c9:51:72:e1:ac:1b:8c:24:31:ee:4b:3e: 3b:30:c6:82:98:38:29:5a:9e:00:7e:d1:97:63:4c:b7:b5:c5: 57:63:64:34:b4:34:69:5f:38:91:42:a4:f7:cf:14:11:cd:99: a5:2b:9f:4d:f2:89:39:33:c2:28:30:0b:7e:00:d0:6e:ba:57: c5:d6:17:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2QUExMTAvBgNVBAUTKDNENTFFREM0M0EzOTk5QjEzNzFDRTVDMDQxNDIwODNG RTI4N0QwRjIwHhcNMjQwNTMxMDEzMDE4WhcNMjQwNjA3MDEzMDE4WjAYMRYwFAYD VQQDEw02NjU5MjgyYS1mOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pojf3B81A1ZUM5TEjUk/+rTatCxXyRbEX7Jh9nzT0pD0D9JvQWKy3mlYy5b koJB1kcU6n3vkhOmmzsYIjLXDHVzhhprFc7hd4lPPXIoBj0LS0nwBAzYIRZJKUO7 pHL+OJQOjj+M8NOZ+DBdFMhnONICIE++5itt7H0Vp14HQXlxaiUICsKkAdmoirWo HVVz1XhLRwvJVgaTKAK4Iu9pCW69fOID7ThPzQCzqWXybEUcKODToMEn134CDdeA JcWmhhdg8bYNwP0KzaSQtrt/bSVkxlks6nzxOZLSazkLoaqq8ucH5ShGUSIPBhLr E7bdkL2XXzWKzVu2L1iYxHAqDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzZrkVJ Unv8qofMkN3P6daZ5nSzMB8GA1UdIwQYMBaAFD1R7cQ6OZmxNxzlwEFCCD/ih9Dy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTZBQS84RURCMTA3RUFE QTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1iRTNIT1hBUVVJSVAtS0gw UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWSHR4RG81bWJFM0hPWEFRVUlJUC1LSDBQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi9QVkh0eERvNW1i RTNIT1hBUVVJSVAtS0gwUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjM3zruKYjKWzMHgQTqztpM2sY18rrKGNGeNH/KRXnOEC+HC2zjG+6 mGY6EjD1NxwcOsi68rPPmN32Gln55HxAS+cdfck0T2Egc+gjZOhtGECSWFpZ60Wa Z0GLF0Yd63uq6ptuUGjmxTAINQU0zXp3cP50+54WarAqCl4Ro5JDV9pn763dyd5e uQ4yfXnhPykctBmObBRZFKQUuqSjJ16p/EXS0e4osAlCXXDLOmmMBdAgHWjUyYy4 GMzJUXLhrBuMJDHuSz47MMaCmDgpWp4AftGXY0y3tcVXY2Q0tDRpXziRQqT3zxQR zZmlK59N8ok5M8IoMAt+ANBuulfF1hfZ -----END CERTIFICATE-----Generated at Fri May 31 02:50:45 2024 by rpki-client on console-fra.rpki-client.org