$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: vIiB+l9n7PHjGpIYg2zj03H92dK4tF3FdQ3EzFDyac0= Subject key identifier: D6:1A:1B:9E:5F:8F:96:2C:98:87:8E:CB:CF:7D:43:7E:99:DA:42:29 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0466 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 0462 Signing time: Sun 19 May 2024 01:47:00 +0000 Manifest this update: Sun 19 May 2024 01:47:00 +0000 Manifest next update: Sun 26 May 2024 01:47:00 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: KWSDeLYcLXTHlI1ydy9f0fhMCw3X1Tb3VRpS8+zyOfw=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: LKaE5Y785UxVOloyK6YaYndhpDYFIUGPJ/ZUzeCp7AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: May 19 01:47:00 2024 GMT Not After : May 26 01:47:00 2024 GMT Subject: CN=66495a14-c84c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:e4:4a:cf:c5:ec:de:c3:78:eb:cb:3f:f3: fa:fa:04:59:3e:4b:41:b8:3a:8f:d4:0c:84:40:d2: 7c:2e:51:33:d8:20:b6:61:b8:69:17:d1:89:26:3a: ed:43:a9:4e:4b:14:9f:93:9b:6b:e2:72:5a:89:64: 5c:ab:db:59:d8:56:72:9c:4d:a7:43:09:87:81:e5: a5:7f:fa:9e:81:42:83:2b:82:59:a7:a9:56:be:62: 8e:b0:72:6c:7c:f8:16:e8:db:3a:93:3f:e5:32:04: e4:54:50:ac:44:e2:32:42:4a:6b:e6:01:a6:2e:28: f7:3d:bf:65:d4:1e:c3:d1:a1:07:45:84:16:6f:80: cc:27:c5:c9:64:51:ab:54:b9:08:95:4d:f7:60:5c: 3d:81:11:d4:e0:7a:32:d7:95:d8:c2:45:ab:46:a1: bb:29:51:40:86:6d:bc:f5:38:4d:4f:d4:7a:6b:9b: bf:54:df:0b:c6:03:25:f6:4f:84:90:41:36:3b:24: 20:ba:91:79:34:01:26:06:94:4c:2c:69:96:9f:51: f8:93:a4:7c:f8:f9:5c:1f:1b:ec:e8:5d:fd:0e:9d: cd:30:1b:78:b8:f9:75:29:7b:14:43:5c:fd:cd:cd: 1d:ce:42:a5:ad:c0:ad:39:e9:62:c8:14:0b:0c:af: 30:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:1A:1B:9E:5F:8F:96:2C:98:87:8E:CB:CF:7D:43:7E:99:DA:42:29 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ae:ac:a5:d2:6e:ea:d5:f5:1f:89:e0:d3:ae:4a:b0:33:71: 99:c4:da:0d:ab:bc:73:4c:ad:b5:e3:e4:88:91:94:95:9e:f3: fa:7b:ae:19:bd:93:0c:ec:7c:2e:f9:5e:11:f3:d3:ce:fc:d1: f5:0b:60:b4:ea:a2:6d:b4:7b:2e:58:51:b3:81:1e:30:5b:a7: 61:f1:54:7d:1e:c1:c4:cb:74:57:c7:3e:c8:fa:7a:1c:0c:3a: ff:6d:f1:c8:21:04:a9:48:ea:8b:7c:04:af:87:8d:9e:d4:42: f4:8d:36:4c:ce:e3:22:a5:e7:48:bf:83:0e:cc:b5:db:f2:18: fa:27:06:43:7f:f4:17:9c:82:a9:48:89:4d:f1:ce:f4:68:0d: f2:98:80:58:22:5a:5c:d6:25:6b:55:9b:c3:42:de:ab:9c:53: 49:b1:60:40:02:34:7f:d8:c1:a7:85:d7:36:c0:8c:76:1c:75: 39:54:06:16:6e:82:5d:1b:67:e4:d6:8a:c9:a8:8e:bf:9b:aa: 6a:af:9e:96:c6:64:51:13:4a:bb:a2:2b:e3:08:f8:23:f2:bf: ef:89:0a:bf:9c:f6:79:87:a2:3e:49:a7:1f:5b:54:fa:d9:b9: e4:14:3f:36:43:71:e0:23:84:7e:ea:6e:7c:b6:07:74:22:f6: d0:72:86:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjQwNTE5MDE0NzAwWhcNMjQwNTI2MDE0NzAwWjAYMRYwFAYD VQQDEw02NjQ5NWExNC1jODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDzkSs/F7N7DeOvLP/P6+gRZPktBuDqP1AyEQNJ8LlEz2CC2YbhpF9GJJjrt Q6lOSxSfk5tr4nJaiWRcq9tZ2FZynE2nQwmHgeWlf/qegUKDK4JZp6lWvmKOsHJs fPgW6Ns6kz/lMgTkVFCsROIyQkpr5gGmLij3Pb9l1B7D0aEHRYQWb4DMJ8XJZFGr VLkIlU33YFw9gRHU4Hoy15XYwkWrRqG7KVFAhm289ThNT9R6a5u/VN8LxgMl9k+E kEE2OyQgupF5NAEmBpRMLGmWn1H4k6R8+PlcHxvs6F39Dp3NMBt4uPl1KXsUQ1z9 zc0dzkKlrcCtOeliyBQLDK8wzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYaG55f j5YsmIeOy899Q36Z2kIpMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAerqyl0m7q1fUfieDTrkqwM3GZxNoNq7xzTK214+SIkZSVnvP6e64Z vZMM7Hwu+V4R89PO/NH1C2C06qJttHsuWFGzgR4wW6dh8VR9HsHEy3RXxz7I+noc DDr/bfHIIQSpSOqLfASvh42e1EL0jTZMzuMipedIv4MOzLXb8hj6JwZDf/QXnIKp SIlN8c70aA3ymIBYIlpc1iVrVZvDQt6rnFNJsWBAAjR/2MGnhdc2wIx2HHU5VAYW boJdG2fk1orJqI6/m6pqr56WxmRRE0q7oivjCPgj8r/viQq/nPZ5h6I+SacfW1T6 2bnkFD82Q3HgI4R+6m58tgd0IvbQcoYc -----END CERTIFICATE-----Generated at Sun May 19 02:39:36 2024 by rpki-client on console-fra.rpki-client.org