$ rpki-client -vvf rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft File: PitYQ36GJEE5rkzQPZf0A0KFBzY.mft (raw, json) Hash identifier: Qm0g34TsOLULbieeZnSjmunMyvXFxHCpiAyCu+ToRhU= Subject key identifier: B5:F4:82:3D:C8:2B:0A:02:A3:D2:DB:0B:9D:B4:4A:F9:E6:F4:8E:F0 Authority key identifier: 3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 Certificate issuer: /CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Certificate serial: 261C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft Manifest number: 25FC Signing time: Sat 18 May 2024 15:58:27 +0000 Manifest this update: Sat 18 May 2024 15:58:27 +0000 Manifest next update: Sat 25 May 2024 15:58:27 +0000 Files and hashes: 1: PitYQ36GJEE5rkzQPZf0A0KFBzY.crl (hash: +RUYzauY+4NaWQSCWVnQukwBvsur6043ztoCfOKT5hc=) 2: 7CEC0182B10C11E5BB6B2A16C4F9AE02.roa (hash: v59KDUhh58OVJHG3KXNm3s11s6PHTCbDBKRWT/77Fak=) 3: 7E75C196B10C11E5BB6B2A16C4F9AE02.roa (hash: sPTylHB0iBDOx3OUDN6R3nG798vv7YVV9q0LgZUPoEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9756 (0x261c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EE0C/serialNumber=3E2B58437E86244139AE4CD03D97F40342850736 Validity Not Before: May 18 15:58:27 2024 GMT Not After : May 25 15:58:27 2024 GMT Subject: CN=6648d023-0339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:15:58:82:f0:ce:0a:78:76:b9:fa:40:d4:69: 72:ec:67:f3:33:a4:c6:07:fd:4d:5a:af:3a:08:f0: e8:95:11:1a:20:4b:d8:bb:a2:07:90:25:b0:bc:87: f2:49:43:fd:a0:c2:00:8d:a3:9b:60:57:4d:be:be: db:a6:8f:02:15:f7:aa:d5:dd:a4:17:09:ec:54:22: 7a:1f:d5:3f:5d:20:be:53:6a:7f:2d:7a:03:ed:1c: 83:06:e1:76:d5:97:49:b8:11:01:af:51:16:ed:ad: 02:99:27:fc:a1:90:c5:1f:fc:b3:8e:b4:67:bf:b7: 96:2a:ff:bd:25:e6:17:a6:19:73:33:6b:e0:58:36: 56:02:4d:70:5d:21:9f:f5:4a:e0:41:d7:c3:96:58: 18:1c:32:1f:32:ec:7d:28:cc:32:75:41:9b:0c:86: d0:e5:a9:51:13:56:a9:5b:e6:67:c1:6e:30:0f:ca: 5b:f2:a7:4b:36:1f:08:89:75:1b:9e:8b:c3:db:8d: d5:2b:58:b5:5c:56:1a:77:f4:70:9e:10:9f:f6:f2: fe:b5:df:1d:bc:b8:00:c4:55:7a:fc:5c:49:d3:2f: 1a:e6:cc:f6:cc:76:46:6e:fa:d9:3f:cc:be:cc:0e: 92:e3:28:7b:9d:89:c3:b2:8a:b7:f4:1c:0c:cd:28: e1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F4:82:3D:C8:2B:0A:02:A3:D2:DB:0B:9D:B4:4A:F9:E6:F4:8E:F0 X509v3 Authority Key Identifier: keyid:3E:2B:58:43:7E:86:24:41:39:AE:4C:D0:3D:97:F4:03:42:85:07:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PitYQ36GJEE5rkzQPZf0A0KFBzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EE0C/22D53652D67211E4A2122351C4F9AE02/PitYQ36GJEE5rkzQPZf0A0KFBzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:67:b1:fd:01:73:4a:03:1f:a3:3f:c1:95:32:98:6d:6f:a9: cb:6b:a7:70:10:d4:b8:8a:96:d5:e5:09:2b:c7:77:df:93:9b: 7b:b0:ba:c6:08:13:95:96:a0:48:14:c7:95:be:1c:9f:85:a8: b1:d4:4e:65:3a:c9:b6:8b:26:0e:89:05:46:93:65:87:0b:34: 1d:c8:75:27:29:a7:a8:56:1b:fa:97:77:cf:30:42:24:dd:e3: 0a:f9:81:d6:ac:d9:c0:74:f4:54:97:8f:05:2d:08:85:ad:94: 3c:91:4c:30:68:c6:c6:a5:44:d7:05:5f:55:4a:d5:90:b1:77: a8:a3:b5:e8:d1:ab:cd:9b:b1:2f:48:cc:29:8d:88:a5:66:c7: ae:1e:a3:43:d9:12:b7:18:04:ce:1e:df:ce:72:ed:c9:36:ad: 21:fa:37:09:3e:9c:64:36:a0:af:2e:d5:8e:56:b7:6f:2b:2c: 22:20:2f:64:4a:69:8c:b3:76:ef:ca:8e:6a:6f:78:a9:f8:f4: ca:af:cf:6d:90:e5:4c:39:cc:a5:8a:b5:77:92:37:2e:28:48: 44:c4:44:c0:65:b0:d2:8d:e2:b1:57:c4:0e:92:5a:c8:28:26: be:08:b5:bd:f8:bb:a0:9a:17:6d:bf:fe:c4:e9:51:55:bb:25: 1e:d2:87:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFMEMxMTAvBgNVBAUTKDNFMkI1ODQzN0U4NjI0NDEzOUFFNENEMDNEOTdGNDAz NDI4NTA3MzYwHhcNMjQwNTE4MTU1ODI3WhcNMjQwNTI1MTU1ODI3WjAYMRYwFAYD VQQDEw02NjQ4ZDAyMy0wMzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBVYgvDOCnh2ufpA1Gly7GfzM6TGB/1NWq86CPDolREaIEvYu6IHkCWwvIfy SUP9oMIAjaObYFdNvr7bpo8CFfeq1d2kFwnsVCJ6H9U/XSC+U2p/LXoD7RyDBuF2 1ZdJuBEBr1EW7a0CmSf8oZDFH/yzjrRnv7eWKv+9JeYXphlzM2vgWDZWAk1wXSGf 9UrgQdfDllgYHDIfMux9KMwydUGbDIbQ5alRE1apW+ZnwW4wD8pb8qdLNh8IiXUb novD243VK1i1XFYad/RwnhCf9vL+td8dvLgAxFV6/FxJ0y8a5sz2zHZGbvrZP8y+ zA6S4yh7nYnDsoq39BwMzSjh0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLX0gj3I KwoCo9LbC520Svnm9I7wMB8GA1UdIwQYMBaAFD4rWEN+hiRBOa5M0D2X9ANChQc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUUwQy8yMkQ1MzY1MkQ2 NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pFRTVya3pRUFpmMEEwS0ZC elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BpdFlRMzZHSkVFNXJrelFQWmYwQTBLRkJ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUUwQy8yMkQ1MzY1MkQ2NzIxMUU0QTIxMjIzNTFDNEY5QUUwMi9QaXRZUTM2R0pF RTVya3pRUFpmMEEwS0ZCelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Z7H9AXNKAx+jP8GVMphtb6nLa6dwENS4ipbV5Qkrx3ffk5t7sLrG CBOVlqBIFMeVvhyfhaix1E5lOsm2iyYOiQVGk2WHCzQdyHUnKaeoVhv6l3fPMEIk 3eMK+YHWrNnAdPRUl48FLQiFrZQ8kUwwaMbGpUTXBV9VStWQsXeoo7Xo0avNm7Ev SMwpjYilZseuHqND2RK3GATOHt/Ocu3JNq0h+jcJPpxkNqCvLtWOVrdvKywiIC9k SmmMs3bvyo5qb3ip+PTKr89tkOVMOcylirV3kjcuKEhExETAZbDSjeKxV8QOklrI KCa+CLW9+Lugmhdtv/7E6VFVuyUe0odN -----END CERTIFICATE-----Generated at Sat May 18 17:20:04 2024 by rpki-client on console-ams.rpki-client.org