$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft File: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft (raw, json) Hash identifier: 599QpC+Q2IVvHwPq37aw0ABXwGEp5FHZQKOPLCOOp/M= Subject key identifier: BE:30:9B:05:D8:C8:DE:32:8F:11:45:7E:B6:9D:B4:62:9F:92:62:EC Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft Manifest number: 0252 Signing time: Sun 19 May 2024 03:55:17 +0000 Manifest this update: Sun 19 May 2024 03:55:17 +0000 Manifest next update: Sun 26 May 2024 03:55:17 +0000 Files and hashes: 1: pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl (hash: HwdeorzQJyFKOM/jNODdfFHTSuKHsWcX9syYLF8Gyl8=) 2: B6EB7E8ED14511EC89527642C4F9AE02.roa (hash: cSKaNOP2pjKd327QhRYBF8AGbzqiuaYZiL9Zg1h+Iok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: May 19 03:55:17 2024 GMT Not After : May 26 03:55:17 2024 GMT Subject: CN=66497825-3314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e2:23:26:70:40:62:79:63:7f:e1:73:9e:51: a9:35:76:13:83:69:66:1e:be:ff:48:f9:b9:f0:ec: 2b:34:6d:ec:33:8a:b5:c0:f7:9f:16:f3:58:8d:cd: 33:cd:22:4a:7d:35:15:7c:e9:b3:63:85:33:8b:42: 9b:38:21:d6:82:6a:35:f6:9c:42:45:38:df:55:a8: e3:5b:46:d0:81:07:49:92:27:19:76:b9:42:51:37: 44:86:7c:f4:e9:51:05:75:93:bd:06:56:9c:a3:25: 28:34:f9:53:2e:ec:67:bd:7e:3f:e7:6f:5e:d7:a9: e6:e0:fa:5b:3a:25:c9:46:5a:69:b2:67:a1:21:b2: 42:e4:42:9e:99:4e:37:1c:be:0e:97:f3:22:0f:a5: 72:0d:46:13:2d:94:33:93:d9:f6:26:ba:16:65:e4: 24:36:9c:81:13:d8:28:10:64:cf:a7:55:df:69:33: 03:15:0d:21:23:7d:dd:10:da:aa:fd:e7:44:33:01: 72:6f:4a:13:5f:7d:d6:92:91:70:1f:90:3f:34:f9: e9:ae:a0:bb:ed:f9:ab:7d:21:ea:95:27:e2:f1:75: 93:18:0a:f3:9e:fb:ba:80:da:26:31:d1:27:9a:f9: f3:22:12:1d:03:e0:fa:9f:cb:b4:47:ec:ce:aa:15: 8d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:30:9B:05:D8:C8:DE:32:8F:11:45:7E:B6:9D:B4:62:9F:92:62:EC X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b4:9d:12:31:41:28:5d:e2:58:01:f7:1a:0a:c3:5c:b6:61: df:64:77:ca:31:70:e6:d8:02:08:6a:7e:34:fa:fd:d4:05:26: 83:e4:38:a4:e5:c7:9b:05:db:85:6b:43:d7:2e:c2:17:f7:b5: 27:53:15:0b:d7:e0:47:d2:c7:a1:b5:c0:37:af:f6:8f:ba:bc: d1:01:0f:17:4c:36:97:e2:06:df:5f:0e:75:a7:17:b9:a0:5c: e3:53:60:90:d3:f2:09:17:ab:f9:b1:83:88:d4:1a:68:a4:cc: cc:8e:6f:ab:f7:88:0c:71:e1:29:71:af:3a:67:e3:d8:63:5a: 43:06:e0:10:07:2c:52:f5:eb:35:fb:62:2a:c2:68:71:73:88: 28:6a:ef:5f:a5:f2:a5:00:1f:b2:e5:3f:15:6f:aa:81:d3:d8: 1e:4f:15:86:ce:b7:05:4a:5a:90:5a:13:d1:d4:16:00:8e:37: b0:4d:3f:45:35:a8:5c:98:06:cb:65:b9:0f:c0:07:d3:a5:6c: ed:40:79:b8:08:97:7a:31:c5:44:08:0c:a6:83:3d:2a:90:40: 7c:da:86:ae:35:f1:b2:17:26:6e:f2:1f:49:b8:4b:c5:a1:84: 7c:45:13:62:1d:2d:3d:96:f8:c5:71:5e:e1:a6:0a:f9:fe:7c: 4e:82:d1:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjQwNTE5MDM1NTE3WhcNMjQwNTI2MDM1NTE3WjAYMRYwFAYD VQQDEw02NjQ5NzgyNS0zMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+IjJnBAYnljf+FznlGpNXYTg2lmHr7/SPm58OwrNG3sM4q1wPefFvNYjc0z zSJKfTUVfOmzY4Uzi0KbOCHWgmo19pxCRTjfVajjW0bQgQdJkicZdrlCUTdEhnz0 6VEFdZO9BlacoyUoNPlTLuxnvX4/529e16nm4PpbOiXJRlppsmehIbJC5EKemU43 HL4Ol/MiD6VyDUYTLZQzk9n2JroWZeQkNpyBE9goEGTPp1XfaTMDFQ0hI33dENqq /edEMwFyb0oTX33WkpFwH5A/NPnprqC77fmrfSHqlSfi8XWTGArznvu6gNomMdEn mvnzIhIdA+D6n8u0R+zOqhWNuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4wmwXY yN4yjxFFfradtGKfkmLsMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OURGNS9DMjQwQjc5NEQxNDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBD UlV4WC1EN3NQazlFcDZpM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6tJ0SMUEoXeJYAfcaCsNctmHfZHfKMXDm2AIIan40+v3UBSaD5Dik 5cebBduFa0PXLsIX97UnUxUL1+BH0sehtcA3r/aPurzRAQ8XTDaX4gbfXw51pxe5 oFzjU2CQ0/IJF6v5sYOI1BpopMzMjm+r94gMceEpca86Z+PYY1pDBuAQByxS9es1 +2Iqwmhxc4goau9fpfKlAB+y5T8Vb6qB09geTxWGzrcFSlqQWhPR1BYAjjewTT9F NahcmAbLZbkPwAfTpWztQHm4CJd6McVECAymgz0qkEB82oauNfGyFyZu8h9JuEvF oYR8RRNiHS09lvjFcV7hpgr5/nxOgtGJ -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org