$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft File: PG7AmwlfpfUTYVEIpUR8rLcasaE.mft (raw, json) Hash identifier: 14IRc8Y0ur+12GDaZCChmgGH17mU3JuB07irIMKnk+g= Subject key identifier: 63:97:79:CD:AD:70:5F:EC:B9:8D:82:B5:D9:D8:02:77:36:04:33:86 Authority key identifier: 3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 Certificate issuer: /CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Certificate serial: 09F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft Manifest number: 09F2 Signing time: Sat 18 May 2024 20:41:21 +0000 Manifest this update: Sat 18 May 2024 20:41:20 +0000 Manifest next update: Sat 25 May 2024 20:41:20 +0000 Files and hashes: 1: PG7AmwlfpfUTYVEIpUR8rLcasaE.crl (hash: tFjtOTR2kvSI8XJGTfsJoibn5rgtCqCqIHFPF9L4ATo=) 2: 66F91334ED4911ED9A90391BC4F9AE02.roa (hash: WvS4HSGnpo6fnRnI8xEz6Pg+dqflFwbhWNvLJvMQfCs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA/serialNumber=3C6EC09B095FA5F513615108A5447CACB71AB1A1 Validity Not Before: May 18 20:41:20 2024 GMT Not After : May 25 20:41:20 2024 GMT Subject: CN=66491271-eeee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a3:e1:a9:d6:1d:8b:ab:ba:56:f9:1f:cc:05: 44:f4:e3:36:91:4b:74:83:d1:73:e7:72:f9:e2:15: 4f:9f:5f:dc:57:0f:f0:c1:76:86:66:7a:86:ca:29: c2:71:21:63:8c:5c:e8:f5:39:73:5f:df:81:9d:2f: 67:91:97:cb:5a:1a:2a:84:3f:7e:20:5b:c8:11:00: 10:00:c6:85:cf:86:d9:77:48:ca:6d:cc:1e:b6:c4: a7:e7:98:e9:d3:f4:ac:45:e1:b5:84:8a:45:79:b0: 9d:38:58:8a:b8:2c:19:6e:fe:af:c4:fc:22:43:d4: 7a:5e:3a:e9:e0:3f:5b:ae:19:2a:64:d5:64:19:c3: 18:57:67:76:31:64:6b:16:ff:a4:e3:b3:31:e8:f7: 77:46:d8:b6:37:4e:32:e3:eb:ff:63:98:88:62:69: de:87:8a:21:44:b7:8f:94:ff:ee:85:53:7b:cc:f8: c2:0f:24:30:d7:c3:91:f5:f5:0d:84:8f:19:38:50: 93:69:32:54:80:85:be:3e:e6:b4:72:52:3d:66:7d: ab:02:59:09:ff:07:5d:fc:bd:8d:f2:e6:0b:96:0f: c7:21:f7:5f:03:2f:dd:79:2e:46:37:3b:dd:fe:10: a2:c0:39:42:ba:86:a0:c8:74:53:cf:3e:a9:75:de: 9c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:97:79:CD:AD:70:5F:EC:B9:8D:82:B5:D9:D8:02:77:36:04:33:86 X509v3 Authority Key Identifier: keyid:3C:6E:C0:9B:09:5F:A5:F5:13:61:51:08:A5:44:7C:AC:B7:1A:B1:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PG7AmwlfpfUTYVEIpUR8rLcasaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/C952AC9E52DC11EA82601B0FC4F9AE02/PG7AmwlfpfUTYVEIpUR8rLcasaE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:92:f4:d3:b9:7d:81:6f:15:34:8f:44:4e:41:c9:ad:9a:dc: 89:ad:28:a0:cf:d8:f2:ae:44:46:f0:57:8c:1c:5c:d8:0e:9e: 0d:d1:6d:32:92:79:7c:b2:4f:22:2d:36:1f:54:e0:c3:e9:68: 76:61:35:26:f5:dd:44:cf:97:55:90:b9:1e:08:04:38:2d:ed: 01:68:f4:bc:3d:05:de:f1:a6:04:f8:47:e7:35:be:7a:58:f9: 56:30:01:46:3c:14:d9:20:21:4e:12:39:63:5b:a8:da:b4:a8: 60:53:39:ac:eb:90:e6:3b:6a:bb:3a:1d:be:12:92:49:a1:f2: e4:61:54:aa:d2:34:d9:6c:f7:02:d1:24:63:2d:76:b2:2f:7a: 2c:b4:40:bd:4c:1f:e6:18:0d:90:96:c6:4b:75:42:d1:27:98: 2d:d4:67:6c:16:30:34:5b:e5:61:71:0c:da:f6:1e:77:70:e7: 80:e9:cc:db:84:29:4d:b2:d3:ee:8c:83:0e:47:ba:0a:29:b2: fd:99:e0:ad:a7:25:82:94:a5:40:1e:0f:ba:c0:3c:cc:1c:eb: 75:b4:bf:ae:a8:98:0a:9d:8c:e9:13:ca:12:f8:a1:49:87:92: 1e:e7:95:f0:f4:9b:07:be:39:27:dc:8c:29:bc:a2:02:06:15: ec:49:2c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKDNDNkVDMDlCMDk1RkE1RjUxMzYxNTEwOEE1NDQ3Q0FD QjcxQUIxQTEwHhcNMjQwNTE4MjA0MTIwWhcNMjQwNTI1MjA0MTIwWjAYMRYwFAYD VQQDEw02NjQ5MTI3MS1lZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqPhqdYdi6u6VvkfzAVE9OM2kUt0g9Fz53L54hVPn1/cVw/wwXaGZnqGyinC cSFjjFzo9TlzX9+BnS9nkZfLWhoqhD9+IFvIEQAQAMaFz4bZd0jKbcwetsSn55jp 0/SsReG1hIpFebCdOFiKuCwZbv6vxPwiQ9R6Xjrp4D9brhkqZNVkGcMYV2d2MWRr Fv+k47Mx6Pd3Rti2N04y4+v/Y5iIYmneh4ohRLePlP/uhVN7zPjCDyQw18OR9fUN hI8ZOFCTaTJUgIW+Pua0clI9Zn2rAlkJ/wdd/L2N8uYLlg/HIfdfAy/deS5GNzvd /hCiwDlCuoagyHRTzz6pdd6cFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOXec2t cF/suY2CtdnYAnc2BDOGMB8GA1UdIwQYMBaAFDxuwJsJX6X1E2FRCKVEfKy3GrGh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9DOTUyQUM5RTUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBmVVRZVkVJcFVSOHJMY2Fz YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BHN0Ftd2xmcGZVVFlWRUlwVVI4ckxjYXNhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9DOTUyQUM5RTUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9QRzdBbXdsZnBm VVRZVkVJcFVSOHJMY2FzYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgkvTTuX2BbxU0j0ROQcmtmtyJrSigz9jyrkRG8FeMHFzYDp4N0W0y knl8sk8iLTYfVODD6Wh2YTUm9d1Ez5dVkLkeCAQ4Le0BaPS8PQXe8aYE+EfnNb56 WPlWMAFGPBTZICFOEjljW6jatKhgUzms65DmO2q7Oh2+EpJJofLkYVSq0jTZbPcC 0SRjLXayL3ostEC9TB/mGA2QlsZLdULRJ5gt1GdsFjA0W+VhcQza9h53cOeA6czb hClNstPujIMOR7oKKbL9meCtpyWClKVAHg+6wDzMHOt1tL+uqJgKnYzpE8oS+KFJ h5Ie55Xw9JsHvjkn3IwpvKICBhXsSSzY -----END CERTIFICATE-----Generated at Sat May 18 21:24:22 2024 by rpki-client on console-fra.rpki-client.org