$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: VVMmJ9pFq+1/ZdQHw0jZqI+xKrJZ8moZDVYtxe9DGNI= Subject key identifier: 2D:9E:AA:4F:7D:7C:D6:5C:A1:BC:0A:79:4E:7A:A6:55:C7:92:7B:10 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 33DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 33CD Signing time: Sat 18 May 2024 14:28:06 +0000 Manifest this update: Sat 18 May 2024 14:28:06 +0000 Manifest next update: Sat 25 May 2024 14:28:06 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: p1KQONQvw3cDt91QZLUmqsRMaVfrR27o7bLWs5J/cjA=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: hnSK7EnYl2dAShOri2I5pXVfZa/CnYFVcrAafQeQ3vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13275 (0x33db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: May 18 14:28:06 2024 GMT Not After : May 25 14:28:06 2024 GMT Subject: CN=6648baf6-e6cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4b:a9:93:e8:2a:06:ef:d6:10:91:3c:61:a3: 91:b2:31:a4:97:db:db:5d:a5:84:80:0a:19:6d:fb: 59:f3:57:27:73:65:c9:7a:53:ca:88:4f:9f:33:c5: dd:82:ac:9e:9f:b9:53:ce:cb:f4:df:6d:23:a5:cd: 0b:bb:38:3b:e5:45:da:8d:6c:1c:bb:44:22:61:4c: 08:4d:ab:13:b9:20:fa:7c:5d:27:c6:58:06:4e:00: a8:5f:11:b9:27:53:28:f1:28:3d:70:fe:ca:ef:86: 9b:aa:50:36:49:84:96:2d:76:8b:da:9e:74:70:35: 22:e1:4c:7d:51:59:d0:3f:74:bb:76:8b:c1:0b:da: 72:fd:74:e4:ed:bd:57:4b:6e:3c:0a:dc:26:c0:0d: e5:7d:e0:a8:90:50:a0:9c:bb:43:70:04:36:1f:f5: 50:07:3d:11:5e:58:d4:b0:b5:45:7e:41:22:68:76: 24:09:c3:ff:c7:43:78:9c:d2:f2:16:78:18:52:4d: 59:97:23:7c:30:30:79:eb:f0:17:be:3d:f8:ef:37: 9d:5f:6a:12:f0:77:ff:9a:48:f1:f2:25:49:0c:cd: 75:14:48:1f:65:e5:0c:93:c2:5f:26:a4:8e:17:fc: 54:e7:b7:0d:14:0c:61:16:93:c5:41:23:26:26:e5: 58:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:9E:AA:4F:7D:7C:D6:5C:A1:BC:0A:79:4E:7A:A6:55:C7:92:7B:10 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:30:aa:d1:aa:8b:82:30:14:1a:81:46:18:13:18:04:16:e6: ee:fd:4b:68:98:e5:ad:51:aa:93:dd:f7:bb:98:a3:a8:2d:3e: 32:05:fd:5f:cf:51:31:76:f2:81:69:d2:68:56:a3:21:9e:26: 82:6f:38:ed:b6:d4:f3:97:da:05:57:c2:c6:55:07:e1:ef:81: 37:34:02:c3:58:1d:aa:48:0f:6b:e2:d0:c2:c9:cd:b6:60:16: f4:fa:c5:05:e0:72:3c:69:d3:16:b2:74:e1:88:b2:4c:1a:2d: 00:21:f8:02:3e:1a:68:2a:e6:9b:21:7a:00:6d:dc:96:2d:69: 05:7a:17:2d:15:87:2c:68:59:c7:f7:19:1b:77:e7:ec:f4:96: a1:b5:74:a7:a3:c7:b6:2f:ac:6d:18:d6:c6:e8:48:5b:d9:86: ae:3d:b8:93:e1:b5:88:e2:e5:a3:5b:e0:d5:d3:4e:77:4f:7d: b7:fe:c9:1a:a6:0d:eb:c1:60:75:75:a8:29:db:84:1f:74:64: 33:75:d1:1d:b2:28:c0:fe:bf:1c:e3:a8:9c:67:6f:99:29:b5: 9f:7f:b0:69:b5:f0:b1:d7:50:f2:8e:de:51:85:1b:32:46:64: eb:02:ba:1f:dd:a7:65:dd:fa:d1:4b:56:f4:f7:ff:be:1a:be: 59:4a:1d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjQwNTE4MTQyODA2WhcNMjQwNTI1MTQyODA2WjAYMRYwFAYD VQQDEw02NjQ4YmFmNi1lNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Uupk+gqBu/WEJE8YaORsjGkl9vbXaWEgAoZbftZ81cnc2XJelPKiE+fM8Xd gqyen7lTzsv0320jpc0Luzg75UXajWwcu0QiYUwITasTuSD6fF0nxlgGTgCoXxG5 J1Mo8Sg9cP7K74abqlA2SYSWLXaL2p50cDUi4Ux9UVnQP3S7dovBC9py/XTk7b1X S248CtwmwA3lfeCokFCgnLtDcAQ2H/VQBz0RXljUsLVFfkEiaHYkCcP/x0N4nNLy FngYUk1ZlyN8MDB56/AXvj347zedX2oS8Hf/mkjx8iVJDM11FEgfZeUMk8JfJqSO F/xU57cNFAxhFpPFQSMmJuVYkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2eqk99 fNZcobwKeU56plXHknsQMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMMKrRqouCMBQagUYYExgEFubu/UtomOWtUaqT3fe7mKOoLT4yBf1f z1ExdvKBadJoVqMhniaCbzjtttTzl9oFV8LGVQfh74E3NALDWB2qSA9r4tDCyc22 YBb0+sUF4HI8adMWsnThiLJMGi0AIfgCPhpoKuabIXoAbdyWLWkFehctFYcsaFnH 9xkbd+fs9JahtXSno8e2L6xtGNbG6Ehb2YauPbiT4bWI4uWjW+DV0053T323/ska pg3rwWB1dagp24QfdGQzddEdsijA/r8c46icZ2+ZKbWff7BptfCx11Dyjt5RhRsy RmTrArof3adl3frRS1b09/++Gr5ZSh0F -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org