$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: ARzyLCGkZwd4TpFB5KGC9eVn0NAwUMUEKB/x9irihhI= Subject key identifier: 40:C4:35:C9:05:2F:23:EF:2B:D2:5E:D0:63:EF:7C:D9:B3:DC:D3:4C Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 026E Signing time: Sun 19 May 2024 03:46:59 +0000 Manifest this update: Sun 19 May 2024 03:46:59 +0000 Manifest next update: Sun 26 May 2024 03:46:59 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: JQukDsLUD02oOmLs7zp48+kxw+qWld1zifqk96EKfm8=) 2: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: D4T8qq0efxv5z1lC+iJz+9+E3h2oYEBovn1LDhiYq1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: May 19 03:46:59 2024 GMT Not After : May 26 03:46:59 2024 GMT Subject: CN=66497633-6f00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2f:78:1f:cc:70:31:38:17:84:1a:7e:c2:aa: 06:2e:69:3d:80:25:1c:32:df:9d:4c:9a:6b:35:20: 6f:25:17:ec:d8:dc:1e:1e:90:0c:4d:59:67:e2:fe: 22:6f:d5:5c:0d:dc:6c:f7:6d:34:32:24:5e:75:7c: eb:a2:fe:2f:57:fb:e5:6b:2f:81:31:13:8d:0a:30: bf:7f:dc:ca:4a:1f:3e:ec:35:ed:26:f6:81:7e:01: b5:d3:f1:ff:5c:11:97:47:3b:d1:95:f0:aa:90:c2: c6:29:c5:a2:24:02:ee:26:d9:c6:f6:ef:14:41:6e: a4:1f:cf:45:dc:d4:c1:a3:ae:d8:f8:45:cc:d7:9f: 0c:a6:01:73:90:be:a5:9c:b8:f3:79:95:81:fe:0b: 42:4d:70:30:37:ca:83:2c:99:78:67:f0:97:40:55: d1:c9:b9:9c:fc:67:d3:68:6b:c7:9f:c9:50:67:4a: 34:4a:d6:5b:b6:2f:75:89:b6:7e:9b:09:c0:d1:05: 19:f7:1d:60:4c:80:6c:ad:55:fd:c5:b9:b5:96:48: 2d:3e:b3:d6:88:1c:b8:22:72:0c:0c:d0:92:9d:76: 10:c8:41:ec:3a:5c:06:87:bd:b9:66:78:2e:d4:19: 9f:41:d9:7d:58:59:18:1e:b4:2d:fc:fa:02:44:41: ed:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:C4:35:C9:05:2F:23:EF:2B:D2:5E:D0:63:EF:7C:D9:B3:DC:D3:4C X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:67:3e:1a:ff:7f:01:a0:b8:b1:de:7e:08:fc:07:fd:30:51: 57:98:3a:72:2f:d0:86:10:b1:fd:7f:9e:53:d5:c8:57:0a:a5: ed:57:77:6a:7d:f8:10:57:02:51:9e:56:8a:02:ee:8e:1e:eb: 97:96:c6:b5:4d:0d:60:71:95:06:85:57:f3:ff:9f:30:74:81: 50:6a:3a:1e:eb:2b:e7:aa:e6:10:15:7f:00:a5:6a:a5:25:08: 1e:fc:31:96:b8:b6:72:95:8e:3a:9c:fb:b4:b6:7f:ab:8e:ef: 34:ee:dc:e6:22:29:a5:bf:1a:9b:96:a0:16:09:aa:b5:d2:70: 1c:16:7a:b0:ce:8f:02:30:85:32:98:89:89:fd:87:c6:cd:d2: 1e:3c:6c:c5:ea:9a:4b:b6:4c:be:48:6c:76:09:b3:53:74:4f: c4:f1:fb:46:b9:08:38:9a:62:3f:4c:ad:ba:ee:66:d8:fc:08: 0c:46:da:60:9b:ed:a9:0a:d6:17:0d:73:fd:88:7f:7a:f9:8f: ca:9f:af:ad:ea:c2:d0:03:db:60:f2:23:82:7a:de:39:20:44: 9b:cc:3d:ba:c0:0a:e9:61:ac:e6:dc:c1:f7:af:4e:d3:3b:9a: 20:f9:ae:89:ec:59:cf:9b:c0:42:88:73:6c:db:61:dc:f4:cf: 8c:12:1e:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjQwNTE5MDM0NjU5WhcNMjQwNTI2MDM0NjU5WjAYMRYwFAYD VQQDEw02NjQ5NzYzMy02ZjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAti94H8xwMTgXhBp+wqoGLmk9gCUcMt+dTJprNSBvJRfs2NweHpAMTVln4v4i b9VcDdxs9200MiRedXzrov4vV/vlay+BMRONCjC/f9zKSh8+7DXtJvaBfgG10/H/ XBGXRzvRlfCqkMLGKcWiJALuJtnG9u8UQW6kH89F3NTBo67Y+EXM158MpgFzkL6l nLjzeZWB/gtCTXAwN8qDLJl4Z/CXQFXRybmc/GfTaGvHn8lQZ0o0StZbti91ibZ+ mwnA0QUZ9x1gTIBsrVX9xbm1lkgtPrPWiBy4InIMDNCSnXYQyEHsOlwGh725Zngu 1BmfQdl9WFkYHrQt/PoCREHtEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDENckF LyPvK9Je0GPvfNmz3NNMMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASZz4a/38BoLix3n4I/Af9MFFXmDpyL9CGELH9f55T1chXCqXtV3dq ffgQVwJRnlaKAu6OHuuXlsa1TQ1gcZUGhVfz/58wdIFQajoe6yvnquYQFX8ApWql JQge/DGWuLZylY46nPu0tn+rju807tzmIimlvxqblqAWCaq10nAcFnqwzo8CMIUy mImJ/YfGzdIePGzF6ppLtky+SGx2CbNTdE/E8ftGuQg4mmI/TK267mbY/AgMRtpg m+2pCtYXDXP9iH96+Y/Kn6+t6sLQA9tg8iOCet45IESbzD26wArpYazm3MH3r07T O5og+a6J7FnPm8BCiHNs22Hc9M+MEh7P -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org