$ rpki-client -vvf rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft File: PQqIwMyj7oZ3zRffPuht5x38ESk.mft (raw, json) Hash identifier: rzSCvD0CAPyJUCuHpAb/PDZF2GhLjzqufC90wx33dEM= Subject key identifier: 5D:1A:0F:03:D7:E7:D6:8B:1D:1F:C4:97:CD:D4:3C:5F:B9:D9:49:41 Authority key identifier: 3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 Certificate issuer: /CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft Manifest number: 0288 Signing time: Sun 19 May 2024 03:40:53 +0000 Manifest this update: Sun 19 May 2024 03:40:53 +0000 Manifest next update: Sun 26 May 2024 03:40:53 +0000 Files and hashes: 1: PQqIwMyj7oZ3zRffPuht5x38ESk.crl (hash: 6Yg7o3h7kGn+N0EmQ5FfsTMWrssV5/rZ7GGMePd97cM=) 2: FD398FA0BB5D11ECA62F8674C4F9AE02.roa (hash: ngzU8QB7i4tCBFQKzKTakz7IG0FyAIZ5cCHaYgEeQJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91607DE/serialNumber=3D0A88C0CCA3EE8677CD17DF3EE86DE71DFC1129 Validity Not Before: May 19 03:40:53 2024 GMT Not After : May 26 03:40:53 2024 GMT Subject: CN=664974c5-b178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:98:c6:50:36:3c:93:c5:5b:44:a2:9a:b9: 8d:ea:a2:71:66:0f:4d:60:47:88:67:8a:6b:90:f4: 3d:5a:73:39:c5:74:74:6f:5a:13:db:38:48:65:d3: 90:bf:14:dd:71:b1:a4:0f:3d:35:f6:57:1b:bb:3e: 1e:0d:d9:92:7d:67:61:3e:a6:2e:43:fd:0b:13:99: 44:e4:f8:f5:b1:8d:62:e5:ba:b0:cb:ec:dc:e6:1b: 96:26:46:c6:a3:8a:e2:81:1b:17:ab:83:19:0b:ee: a5:4c:23:d9:86:21:59:84:77:3e:82:e1:5b:2f:77: e2:b6:55:4b:29:61:d8:d1:3b:18:1a:60:9a:4d:66: 2a:c0:36:c7:2c:b2:0d:5a:36:69:1e:27:b9:c0:30: 3a:02:31:97:d3:b4:39:c0:f3:9c:89:6f:fd:19:f5: 11:fb:93:4f:68:e8:98:54:b4:34:94:48:f7:dc:a9: 12:4e:f9:a7:d4:b4:df:7b:da:ce:4d:12:0c:9e:71: 29:56:81:3e:ee:29:75:75:c5:69:53:7a:18:e4:53: bf:aa:71:e4:0a:e4:06:49:bd:89:82:95:50:65:ff: e2:f6:48:cc:7f:54:e5:2c:69:7e:80:3f:11:96:47: 64:0d:9c:f1:5f:f6:85:61:c4:a4:94:af:df:a6:0a: 94:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:1A:0F:03:D7:E7:D6:8B:1D:1F:C4:97:CD:D4:3C:5F:B9:D9:49:41 X509v3 Authority Key Identifier: keyid:3D:0A:88:C0:CC:A3:EE:86:77:CD:17:DF:3E:E8:6D:E7:1D:FC:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQqIwMyj7oZ3zRffPuht5x38ESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91607DE/C76814C6BB5A11EC908AC96EC4F9AE02/PQqIwMyj7oZ3zRffPuht5x38ESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c1:d6:1a:53:f6:dd:25:af:47:63:6e:61:e9:f8:ff:cd:ab: c2:6c:ad:ef:53:bb:b3:69:f7:63:c1:39:f3:5e:e7:64:b4:9a: 1d:2f:9f:cb:58:aa:d7:e4:bd:a9:9c:62:6c:26:5c:b5:36:3b: b4:e6:84:22:0e:2f:4f:d1:43:40:0b:06:2c:8c:67:14:6e:27: 3f:31:52:1d:3f:99:48:c4:c4:4a:d7:aa:3e:0a:22:3f:7a:8a: c5:ee:f7:12:60:3c:1e:3d:37:b9:e3:f6:8f:a7:21:d5:f0:7f: c5:eb:23:3f:eb:eb:e0:5f:0b:f2:0b:8c:57:58:38:66:33:8c: c4:05:6b:2c:e8:88:ff:05:6a:55:8d:fc:ce:b9:af:7e:cc:d6: ee:e0:b3:91:a5:5b:14:9e:56:ad:45:42:07:ba:de:35:89:d7: 06:c8:7f:8e:cc:2b:34:28:30:47:25:23:f9:d6:4f:d0:aa:84: e9:d9:c9:15:0c:67:9e:e9:71:7d:d3:a8:b0:8f:93:8e:94:ad: 18:28:3f:fa:87:e5:b1:af:d4:9c:ee:44:86:59:4f:7c:ee:a5: ab:ef:db:34:2b:0d:8a:ef:04:4b:5d:83:77:b3:8c:fd:ec:92: 43:6f:a3:02:72:28:38:43:8b:13:12:70:c0:9d:fb:30:ba:3f: e3:1b:6b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3REUxMTAvBgNVBAUTKDNEMEE4OEMwQ0NBM0VFODY3N0NEMTdERjNFRTg2REU3 MURGQzExMjkwHhcNMjQwNTE5MDM0MDUzWhcNMjQwNTI2MDM0MDUzWjAYMRYwFAYD VQQDEw02NjQ5NzRjNS1iMTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHSYxlA2PJPFW0SimrmN6qJxZg9NYEeIZ4prkPQ9WnM5xXR0b1oT2zhIZdOQ vxTdcbGkDz019lcbuz4eDdmSfWdhPqYuQ/0LE5lE5Pj1sY1i5bqwy+zc5huWJkbG o4rigRsXq4MZC+6lTCPZhiFZhHc+guFbL3fitlVLKWHY0TsYGmCaTWYqwDbHLLIN WjZpHie5wDA6AjGX07Q5wPOciW/9GfUR+5NPaOiYVLQ0lEj33KkSTvmn1LTfe9rO TRIMnnEpVoE+7il1dcVpU3oY5FO/qnHkCuQGSb2JgpVQZf/i9kjMf1TlLGl+gD8R lkdkDZzxX/aFYcSklK/fpgqUbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0aDwPX 59aLHR/El83UPF+52UlBMB8GA1UdIwQYMBaAFD0KiMDMo+6Gd80X3z7obecd/BEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDdERS9DNzY4MTRDNkJC NUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdvWjN6UmZmUHVodDV4MzhF U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRcUl3TXlqN29aM3pSZmZQdWh0NXgzOEVTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDdERS9DNzY4MTRDNkJCNUExMUVDOTA4QUM5NkVDNEY5QUUwMi9QUXFJd015ajdv WjN6UmZmUHVodDV4MzhFU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOwdYaU/bdJa9HY25h6fj/zavCbK3vU7uzafdjwTnzXudktJodL5/L WKrX5L2pnGJsJly1Nju05oQiDi9P0UNACwYsjGcUbic/MVIdP5lIxMRK16o+CiI/ eorF7vcSYDwePTe54/aPpyHV8H/F6yM/6+vgXwvyC4xXWDhmM4zEBWss6Ij/BWpV jfzOua9+zNbu4LORpVsUnlatRUIHut41idcGyH+OzCs0KDBHJSP51k/QqoTp2ckV DGee6XF906iwj5OOlK0YKD/6h+Wxr9Sc7kSGWU987qWr79s0Kw2K7wRLXYN3s4z9 7JJDb6MCcig4Q4sTEnDAnfswuj/jG2u/ -----END CERTIFICATE-----Generated at Sun May 19 04:22:04 2024 by rpki-client on console-fra.rpki-client.org