$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft File: PWRH1yl0gylOzsuFOl5QCTXRuNc.mft (raw, json) Hash identifier: USV+Z6WKOYEyzjKNhqxR5ETtHk1JT0WMeRedMmzHZto= Subject key identifier: 94:7A:9C:18:A9:F6:B5:8D:D0:62:86:F6:7E:03:9C:39:C1:88:AB:4C Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 03AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft Manifest number: 038D Signing time: Sun 19 May 2024 02:44:09 +0000 Manifest this update: Sun 19 May 2024 02:44:08 +0000 Manifest next update: Sun 26 May 2024 02:44:08 +0000 Files and hashes: 1: PWRH1yl0gylOzsuFOl5QCTXRuNc.crl (hash: K8FR+HY8GTSYZPSOU5rAatwmyENCSg0iu5oDDilWQQg=) 2: 5997A6A624E011EDAEC0E529C4F9AE02.roa (hash: 6p9TqnChUnyfm26ZZLBLmmyndB/671MOguxKaFX62F4=) 3: 793803867DEA11EC9FC67D66C4F9AE02.roa (hash: WtBhf+2wV0FG+D0dG09G0N6uOWOutj/QTC9UQ4o3FqU=) 4: 2CE5BE065BDA11ECAA855355C4F9AE02.roa (hash: GXouMFAOJVC9NIYsZ23uZYKCTXWXo1NKnPdMvbwSfZE=) 5: 5A892D6424E011EDAEC0E529C4F9AE02.roa (hash: hD/ATLAAYUyRMW6O66/4L+ra15DS1ajdFvliMlcn8tc=) 6: 18611004B42A11EC9BD3DE42C4F9AE02.roa (hash: HEB34Hkp/m9L/BxeJv7XDWdKw2MGO2ilQuFX47vSU/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 939 (0x3ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Validity Not Before: May 19 02:44:08 2024 GMT Not After : May 26 02:44:08 2024 GMT Subject: CN=66496778-9282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:44:db:7e:bd:9e:37:58:a8:fd:bc:dd:e7:c2: 26:e8:77:fe:84:72:d2:f1:27:29:fd:a5:95:70:d9: 18:ca:33:5c:19:76:63:6d:3d:e5:91:67:dd:ef:5e: 78:90:6b:64:2e:27:65:47:4f:7f:a8:58:f9:60:c6: b4:39:db:f9:27:1f:b7:33:36:54:34:78:f7:5e:50: 94:d5:64:47:bb:a3:86:1b:43:47:34:37:ea:55:9f: 5d:f4:2c:60:e7:05:6b:05:7a:cd:c3:63:9f:97:45: 6b:42:4c:1a:ad:f9:e3:51:50:8b:c8:08:5b:bb:78: c8:1b:04:d1:2a:93:68:56:bb:10:16:7f:e7:75:67: 9c:d9:4d:3f:40:27:3c:96:c2:4a:18:2a:50:be:63: 09:9c:3e:bd:6c:f1:be:bb:24:c2:97:fd:bd:0c:d4: 73:bc:a3:fc:bf:53:9b:99:f9:35:f9:4f:7f:f0:4b: 0e:ae:cd:b4:7b:fc:58:c7:08:cb:86:3a:ff:ea:76: d2:34:7d:d1:e5:16:d0:2b:58:06:30:6e:72:bc:fb: 78:35:d8:de:b6:bc:78:55:91:b7:00:90:d7:09:7f: 71:02:aa:8a:c4:45:56:29:6a:fc:81:9e:fc:b9:18: b9:8e:2c:33:4a:30:06:ab:e3:9e:3a:c8:50:14:d6: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:7A:9C:18:A9:F6:B5:8D:D0:62:86:F6:7E:03:9C:39:C1:88:AB:4C X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:56:4c:6a:d4:28:08:80:d0:6a:ff:71:f7:ed:f6:c0:7c:3b: 85:7d:cc:2e:e7:74:93:34:ee:01:c7:cf:9d:25:af:b7:dd:40: 0d:7a:67:5c:7c:5d:57:68:2d:ed:46:c4:93:7b:4c:77:f8:57: 61:b8:4b:09:b4:f7:b8:fb:ba:b8:e8:50:15:6d:5b:22:0b:ba: c0:25:af:5c:34:1f:b3:bc:40:1b:6e:c9:68:8c:71:6c:d3:49: d7:fc:6d:0c:e7:04:40:9f:a0:ef:a3:b1:6d:81:79:b1:63:4e: 10:ed:86:5f:47:6b:f6:84:c9:c7:23:42:e4:f1:95:39:cc:5e: 88:c8:c4:1d:02:67:71:2d:c0:51:71:d9:03:7e:66:12:0a:72: 84:d8:a1:99:b3:a0:81:4a:46:40:d0:58:27:4c:15:70:f7:2c: 94:af:b4:c4:1c:5e:90:3c:be:75:74:b2:57:b6:28:95:5d:5f: d5:22:a5:ee:6c:95:8d:99:99:bc:36:27:45:04:ae:9e:38:f7: d8:80:59:06:b4:4b:64:1b:50:12:76:40:1d:64:4e:61:6d:44: f0:9d:a8:78:b8:dd:af:b5:42:b9:c0:d7:e3:95:54:4a:f2:90: 50:37:06:f9:91:1a:01:ac:ef:a6:bd:93:aa:9f:41:a2:d1:ce: a5:3d:c0:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjQwNTE5MDI0NDA4WhcNMjQwNTI2MDI0NDA4WjAYMRYwFAYD VQQDEw02NjQ5Njc3OC05MjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0Tbfr2eN1io/bzd58Im6Hf+hHLS8Scp/aWVcNkYyjNcGXZjbT3lkWfd7154 kGtkLidlR09/qFj5YMa0Odv5Jx+3MzZUNHj3XlCU1WRHu6OGG0NHNDfqVZ9d9Cxg 5wVrBXrNw2Ofl0VrQkwarfnjUVCLyAhbu3jIGwTRKpNoVrsQFn/ndWec2U0/QCc8 lsJKGCpQvmMJnD69bPG+uyTCl/29DNRzvKP8v1Obmfk1+U9/8EsOrs20e/xYxwjL hjr/6nbSNH3R5RbQK1gGMG5yvPt4Ndjetrx4VZG3AJDXCX9xAqqKxEVWKWr8gZ78 uRi5jiwzSjAGq+OeOshQFNYfDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJR6nBip 9rWN0GKG9n4DnDnBiKtMMB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEUxMS9EMDYwQzlCMjVCRDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5 bE96c3VGT2w1UUNUWFJ1TmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhVkxq1CgIgNBq/3H37fbAfDuFfcwu53STNO4Bx8+dJa+33UANemdc fF1XaC3tRsSTe0x3+FdhuEsJtPe4+7q46FAVbVsiC7rAJa9cNB+zvEAbbslojHFs 00nX/G0M5wRAn6Dvo7FtgXmxY04Q7YZfR2v2hMnHI0Lk8ZU5zF6IyMQdAmdxLcBR cdkDfmYSCnKE2KGZs6CBSkZA0FgnTBVw9yyUr7TEHF6QPL51dLJXtiiVXV/VIqXu bJWNmZm8NidFBK6eOPfYgFkGtEtkG1ASdkAdZE5hbUTwnah4uN2vtUK5wNfjlVRK 8pBQNwb5kRoBrO+mvZOqn0Gi0c6lPcAh -----END CERTIFICATE-----Generated at Sun May 19 03:14:49 2024 by rpki-client on console-fra.rpki-client.org