$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: 3+yLab+905TTYOyXHH4yIzAGAtJvAHmyJpKKCfeeuzQ= Subject key identifier: F5:7F:4C:A3:9F:92:3F:A4:7A:22:F6:82:5A:BC:6C:1B:15:3E:48:D9 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: 69 Signing time: Fri 31 May 2024 08:27:17 +0000 Manifest this update: Fri 31 May 2024 08:27:17 +0000 Manifest next update: Fri 07 Jun 2024 08:27:17 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: rVPEaRxlGo0oOBXnjbdSXYRt9x9pEzXR1AlMa4W1EYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: May 31 08:27:17 2024 GMT Not After : Jun 7 08:27:17 2024 GMT Subject: CN=665989e5-3df7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:70:6e:17:02:22:3f:36:75:5d:75:d3:a9:2d: 18:c0:b2:e1:8e:6b:e7:af:73:08:f9:29:08:b1:ce: 8d:41:3b:a7:dd:5f:b7:16:d4:02:f1:d7:b6:19:86: 37:f7:aa:7f:45:4f:69:ef:34:ab:15:75:2b:e1:6a: df:b8:95:4b:c3:58:be:18:71:d7:59:b7:48:ab:3e: 72:18:e0:42:df:ee:bd:11:40:2b:61:b4:4c:16:cc: 21:8e:45:69:79:5c:7c:c3:f0:09:d1:78:99:f1:8b: c3:c2:38:28:5e:67:24:3c:ed:91:c6:28:c3:76:2d: 21:ad:cd:d4:f8:69:1c:c3:b8:76:26:64:64:32:4e: ff:9d:ad:c6:a1:d2:b9:48:94:dd:48:a0:c9:a5:c5: b3:05:23:17:30:d8:b3:f5:55:25:e7:c2:56:86:8f: 7c:e0:4d:d7:61:e1:4c:b9:6c:1f:96:d1:c1:33:12: 4b:17:0f:a2:d6:57:ac:de:9b:a9:d8:8d:c4:28:f7: b8:9d:c9:06:95:14:d4:b1:7e:be:2a:6d:43:9f:46: f5:db:bf:57:bd:54:c4:d9:a3:e3:4a:a9:5d:61:2c: 3b:8c:fa:51:e5:e1:a6:51:d2:da:78:8d:cc:cb:5e: 73:7f:22:7f:df:75:a6:20:3d:5b:eb:85:92:99:7a: 2b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7F:4C:A3:9F:92:3F:A4:7A:22:F6:82:5A:BC:6C:1B:15:3E:48:D9 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:70:c1:33:86:8d:68:6b:1a:5a:88:4c:34:f6:39:86:50:10: 70:ae:7f:17:bf:1c:16:e5:29:da:fb:19:bf:32:a5:a9:4f:e8: c3:b9:30:25:69:3c:29:c1:e2:c6:70:99:10:8f:33:13:e7:8a: 85:50:d1:d0:91:48:2e:5f:7b:2d:cc:25:be:0b:0e:c2:8d:fc: 13:d3:96:8d:40:c5:5a:a6:37:0c:94:31:da:79:e1:f9:6f:dd: 86:5b:6c:5e:fc:a5:f8:cd:e2:49:0c:3d:01:83:c7:63:d1:09: 1d:a8:73:fa:b9:50:ac:57:4a:53:19:13:1e:0b:14:69:0a:70: ae:f3:25:26:9e:11:ab:c0:d2:c7:98:c1:d2:7b:e6:13:22:3b: 17:4b:12:6d:51:d0:6b:14:4b:40:22:7b:36:ca:d2:d9:1a:76: 5d:21:0e:ae:d3:07:db:61:7c:d7:5b:81:fb:17:2d:f3:6e:72: a7:12:23:ed:44:d2:13:f1:44:f8:99:c5:55:e0:77:7f:f5:96: c6:2f:21:29:2d:99:be:f5:35:18:ba:4a:89:f3:73:e5:c7:9e: 80:bc:7c:43:4f:ae:b6:7f:e5:b5:78:f0:ed:c5:11:a6:0c:40: 50:0b:64:f3:0b:b1:f7:28:a0:8c:8e:77:71:1c:08:e0:94:3c: 06:3f:f5:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkQ5RTExMC8GA1UEBRMoM0QyRDkzQUM4QjEwODY1ODE3RDlBNzRDQzgxQTAzMEQ3 RDM1RDA3NDAeFw0yNDA1MzEwODI3MTdaFw0yNDA2MDcwODI3MTdaMBgxFjAUBgNV BAMTDTY2NTk4OWU1LTNkZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAcG4XAiI/NnVdddOpLRjAsuGOa+evcwj5KQixzo1BO6fdX7cW1ALx17YZhjf3 qn9FT2nvNKsVdSvhat+4lUvDWL4YcddZt0irPnIY4ELf7r0RQCthtEwWzCGORWl5 XHzD8AnReJnxi8PCOCheZyQ87ZHGKMN2LSGtzdT4aRzDuHYmZGQyTv+drcah0rlI lN1IoMmlxbMFIxcw2LP1VSXnwlaGj3zgTddh4Uy5bB+W0cEzEksXD6LWV6zem6nY jcQo97idyQaVFNSxfr4qbUOfRvXbv1e9VMTZo+NKqV1hLDuM+lHl4aZR0tp4jczL XnN/In/fdaYgPVvrhZKZeivNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9X9Mo5+S P6R6IvaCWrxsGxU+SNkwHwYDVR0jBBgwFoAUPS2TrIsQhlgX2adMyBoDDX010HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RDlFLzc3QkI5ODRDN0Q2 MTExRUVCNDYzQzg1QUM0RjlBRTAyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBI US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUFMyVHJJc1FobGdYMmFkTXlCb0REWDAxMEhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RDlFLzc3QkI5ODRDN0Q2MTExRUVCNDYzQzg1QUM0RjlBRTAyL1BTMlRySXNRaGxn WDJhZE15Qm9ERFgwMTBIUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAJwwTOGjWhrGlqITDT2OYZQEHCufxe/HBblKdr7Gb8ypalP6MO5MCVp PCnB4sZwmRCPMxPnioVQ0dCRSC5fey3MJb4LDsKN/BPTlo1AxVqmNwyUMdp54flv 3YZbbF78pfjN4kkMPQGDx2PRCR2oc/q5UKxXSlMZEx4LFGkKcK7zJSaeEavA0seY wdJ75hMiOxdLEm1R0GsUS0AiezbK0tkadl0hDq7TB9thfNdbgfsXLfNucqcSI+1E 0hPxRPiZxVXgd3/1lsYvISktmb71NRi6Sonzc+XHnoC8fENPrrZ/5bV48O3FEaYM QFALZPMLsfcooIyOd3EcCOCUPAY/9d8= -----END CERTIFICATE-----Generated at Fri May 31 10:02:38 2024 by rpki-client on console-ams.rpki-client.org