$ rpki-client -vvf rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft File: pS-PmFnKxH1oVCcjTSYW655TljQ.mft (raw, json) Hash identifier: qAaNTVIqGbm4LioEWVjV3oxqbRHphBeqhiQInzDup10= Subject key identifier: F6:16:57:8F:2B:4C:72:F7:B7:0C:60:D3:0C:5E:A6:80:CB:59:36:07 Authority key identifier: A5:2F:8F:98:59:CA:C4:7D:68:54:27:23:4D:26:16:EB:9E:53:96:34 Certificate issuer: /CN=A9188D8F/serialNumber=A52F8F9859CAC47D685427234D2616EB9E539634 Certificate serial: 0A4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pS-PmFnKxH1oVCcjTSYW655TljQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft Manifest number: 0A49 Signing time: Fri 31 May 2024 21:07:38 +0000 Manifest this update: Fri 31 May 2024 21:07:37 +0000 Manifest next update: Fri 07 Jun 2024 21:07:37 +0000 Files and hashes: 1: pS-PmFnKxH1oVCcjTSYW655TljQ.crl (hash: kqrps3Fs2HA01hn/c0y3+dZ0GXEDiVsP1Vxo1b/hs+4=) 2: A84F7CEE432711EA87CB0E53C4F9AE02.roa (hash: MpvzI6CZw61K9EHN7FjBJQlJM7cvj1uvm28ieQf0lOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.crl rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pS-PmFnKxH1oVCcjTSYW655TljQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2639 (0xa4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188D8F/serialNumber=A52F8F9859CAC47D685427234D2616EB9E539634 Validity Not Before: May 31 21:07:37 2024 GMT Not After : Jun 7 21:07:37 2024 GMT Subject: CN=665a3c19-0996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:31:71:5e:f3:9f:ef:bc:f2:c4:38:e2:21: be:06:1e:51:fd:49:37:0b:6d:e5:e5:7c:1e:d1:21: 9b:9f:23:a8:7a:9f:73:30:11:23:53:7c:27:95:df: 0f:28:b9:77:c3:9e:d0:89:3d:69:05:76:30:cf:44: 0f:8f:17:3d:5e:a7:77:1d:56:c0:f0:9a:21:2f:d5: 68:63:c8:95:6f:96:09:ef:7d:77:b9:e5:d1:8a:de: 5f:59:5f:ef:b3:51:c5:01:b9:47:a5:9b:6d:d7:ce: 8c:54:a1:3d:dc:d8:a0:aa:b9:64:b1:89:28:7c:a0: 73:58:c6:5e:cf:11:21:ae:cf:38:57:5e:08:84:eb: 9c:13:18:cb:8c:a9:98:34:79:7b:61:f0:27:d2:58: 47:c3:a5:ef:13:59:8d:82:5a:df:72:f6:5a:c1:ce: bf:84:30:ea:21:5f:ee:f9:0c:94:ca:b1:f4:df:2e: 74:e8:7a:c1:4a:25:5c:7d:33:00:c8:78:bb:4e:61: 05:06:6b:94:58:75:30:50:fc:7f:20:f8:fd:85:06: bb:53:d6:b5:09:a2:a3:5f:78:c3:cd:6a:d3:e3:b0: db:e4:6a:c8:1b:b6:89:e1:83:fb:43:25:95:63:92: a2:a5:20:d7:2e:92:99:3e:35:50:01:6a:67:79:43: ef:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:16:57:8F:2B:4C:72:F7:B7:0C:60:D3:0C:5E:A6:80:CB:59:36:07 X509v3 Authority Key Identifier: keyid:A5:2F:8F:98:59:CA:C4:7D:68:54:27:23:4D:26:16:EB:9E:53:96:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pS-PmFnKxH1oVCcjTSYW655TljQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188D8F/B852FB3C432411EA9263254AC4F9AE02/pS-PmFnKxH1oVCcjTSYW655TljQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:b7:1b:70:10:33:71:ac:73:70:fd:b6:fe:9c:44:2c:49:29: 6f:34:80:cd:c1:f7:e0:13:ee:d3:7d:b0:1c:37:7a:3c:30:1c: 4e:77:cc:17:e6:12:fb:af:c8:e7:8e:e1:a0:4a:a6:d9:e4:bb: c0:ed:9e:e4:dd:7e:3b:a1:4f:25:7e:c8:30:f9:dd:3b:c4:ee: 1b:0a:7b:e1:84:0d:f7:2e:ad:08:94:b8:ba:1b:ed:7a:ea:66: 3b:6e:89:4c:9e:62:0a:67:f0:ea:9f:9b:1a:1b:59:e0:d6:24: d4:03:6a:97:5b:70:5c:b5:b1:63:3a:99:7a:5e:68:3b:14:d0: 7a:17:bf:b2:33:ed:05:d4:47:ca:10:f4:10:81:b4:fa:85:1d: b8:48:1c:a8:b5:17:dd:ef:13:26:80:c2:26:e0:ce:94:17:fe: bf:7d:67:8c:35:33:97:84:89:f6:9a:44:66:0a:1a:14:ec:ef: 83:10:00:98:36:d5:b6:ee:e8:83:49:34:46:14:e0:d1:b6:4a: bb:1f:76:06:c0:44:d8:27:21:79:cd:87:f1:f0:87:8b:15:52: 2e:38:b7:8c:03:44:db:4a:ba:6a:20:60:3e:31:cb:f9:0d:37: 83:55:20:b1:31:59:1e:ac:7d:11:cc:e1:aa:44:16:1f:90:50: 85:e6:47:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhEOEYxMTAvBgNVBAUTKEE1MkY4Rjk4NTlDQUM0N0Q2ODU0MjcyMzREMjYxNkVC OUU1Mzk2MzQwHhcNMjQwNTMxMjEwNzM3WhcNMjQwNjA3MjEwNzM3WjAYMRYwFAYD VQQDEw02NjVhM2MxOS0wOTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp8xcV7zn++88sQ44iG+Bh5R/Uk3C23l5Xwe0SGbnyOoep9zMBEjU3wnld8P KLl3w57QiT1pBXYwz0QPjxc9Xqd3HVbA8JohL9VoY8iVb5YJ7313ueXRit5fWV/v s1HFAblHpZtt186MVKE93NigqrlksYkofKBzWMZezxEhrs84V14IhOucExjLjKmY NHl7YfAn0lhHw6XvE1mNglrfcvZawc6/hDDqIV/u+QyUyrH03y506HrBSiVcfTMA yHi7TmEFBmuUWHUwUPx/IPj9hQa7U9a1CaKjX3jDzWrT47Db5GrIG7aJ4YP7QyWV Y5KipSDXLpKZPjVQAWpneUPv7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYWV48r THL3twxg0wxepoDLWTYHMB8GA1UdIwQYMBaAFKUvj5hZysR9aFQnI00mFuueU5Y0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEQ4Ri9CODUyRkIzQzQz MjQxMUVBOTI2MzI1NEFDNEY5QUUwMi9wUy1QbUZuS3hIMW9WQ2NqVFNZVzY1NVRs alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTLVBtRm5LeEgxb1ZDY2pUU1lXNjU1VGxqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEQ4Ri9CODUyRkIzQzQzMjQxMUVBOTI2MzI1NEFDNEY5QUUwMi9wUy1QbUZuS3hI MW9WQ2NqVFNZVzY1NVRsalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvtxtwEDNxrHNw/bb+nEQsSSlvNIDNwffgE+7TfbAcN3o8MBxOd8wX 5hL7r8jnjuGgSqbZ5LvA7Z7k3X47oU8lfsgw+d07xO4bCnvhhA33Lq0IlLi6G+16 6mY7bolMnmIKZ/Dqn5saG1ng1iTUA2qXW3BctbFjOpl6Xmg7FNB6F7+yM+0F1EfK EPQQgbT6hR24SByotRfd7xMmgMIm4M6UF/6/fWeMNTOXhIn2mkRmChoU7O+DEACY NtW27uiDSTRGFODRtkq7H3YGwETYJyF5zYfx8IeLFVIuOLeMA0TbSrpqIGA+Mcv5 DTeDVSCxMVkerH0RzOGqRBYfkFCF5keV -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:21 2024 by rpki-client on console-ams.rpki-client.org