$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: PiUAsYE3VVFvMpkwOPF48plUNqTvZfzJqqfWY5zZIQo= Subject key identifier: EF:C0:98:C6:D6:90:4E:46:36:6F:7C:0D:D5:A4:D2:97:58:20:0A:7E Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 82 Signing time: Sun 19 May 2024 07:19:11 +0000 Manifest this update: Sun 19 May 2024 07:19:10 +0000 Manifest next update: Sun 26 May 2024 07:19:10 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: zBMoFcrXwxh2mNIeaXHYSGG+niMb8+f/UWSlh4fbOYI=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: gDmDD80pdAtxR7kWdrSorJjGFvcNrOczalrHzesai4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: May 19 07:19:10 2024 GMT Not After : May 26 07:19:10 2024 GMT Subject: CN=6649a7ef-8e33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:95:c8:b8:97:23:a3:14:50:ef:9e:05:2b: 51:0b:75:cf:dd:2b:ed:8e:50:47:ba:49:ee:67:1d: 20:7e:43:47:b9:be:1f:d7:d8:c2:30:c0:b8:66:46: 79:2d:01:46:d1:72:26:bc:9f:1a:11:e3:24:5d:1a: 47:cb:3d:c3:e3:a2:4f:2e:fe:b4:c4:bf:ef:89:48: 61:96:c2:5f:3e:75:c7:7f:64:c1:38:b1:29:24:48: e9:fb:2d:1f:df:f9:9f:5e:7b:0a:22:59:e9:74:1a: f8:9e:fa:92:8b:df:c7:f3:8c:87:72:4a:88:28:84: 6f:8c:5f:f9:d0:0b:be:a1:63:b6:5d:f0:d7:4d:c8: 6f:7f:1c:29:86:da:f7:76:e7:b7:2e:c7:be:eb:60: c6:b4:7c:ef:d7:e2:0b:37:5b:79:1f:b0:34:b4:23: 5b:75:9e:b9:60:d3:78:56:a1:bb:25:ee:6f:82:64: 88:37:fb:ef:86:f9:e3:ba:7e:f9:db:d0:9b:99:ef: e1:e6:ad:b7:33:a4:4c:2e:ce:fb:fd:0b:50:9b:4f: dd:9e:bc:b9:3f:b1:6d:0f:c0:93:20:42:32:9a:89: ac:93:e5:7a:c0:25:ef:76:05:22:ca:f1:22:dc:75: 64:d1:0b:bf:db:97:be:7b:e4:92:c6:81:c7:69:95: 42:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:C0:98:C6:D6:90:4E:46:36:6F:7C:0D:D5:A4:D2:97:58:20:0A:7E X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:f4:93:6d:59:ca:b6:09:08:c7:fb:33:b0:29:a2:7e:11:a3: 38:78:50:68:19:a5:3f:87:31:24:34:09:93:f1:0c:4a:ac:3e: ad:a9:a0:7b:bf:5e:1f:cb:e3:eb:ee:54:67:0d:71:df:bf:2d: 10:63:2c:29:e5:58:76:d4:3a:80:31:de:9c:af:c5:7f:fd:41: 17:fc:90:5b:2a:5e:fc:3f:2a:65:65:39:1b:d6:90:0c:14:bd: fe:2e:b6:04:c5:88:5d:2a:da:4f:e5:b6:5b:e4:64:30:22:da: 18:3d:3c:0b:cf:0e:cb:07:8d:42:6b:88:c4:a1:ea:c4:24:95: 24:b7:a6:e1:4a:6d:a0:3e:a7:82:15:09:96:e4:1f:fb:cd:b3: 04:0e:73:8e:69:19:a9:76:86:bd:3f:6f:78:bd:b5:5e:eb:f6: 0e:a5:b2:5b:f1:d2:d1:a7:99:39:ea:6c:f3:ba:c7:63:07:04: 79:74:ef:7c:75:5d:9e:9d:e9:14:52:e1:60:07:70:ff:20:2e: 26:87:59:d8:1d:59:85:e4:ab:49:f1:f4:5e:c2:6e:a7:12:53: 30:cc:99:b9:30:18:c6:f7:f5:89:f5:f3:68:d4:e8:80:b1:91: 97:16:4e:99:cf:9b:20:35:32:33:03:ad:a2:31:58:f2:cc:13: 4f:43:0a:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjQwNTE5MDcxOTEwWhcNMjQwNTI2MDcxOTEwWjAYMRYwFAYD VQQDEw02NjQ5YTdlZi04ZTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dWVyLiXI6MUUO+eBStRC3XP3SvtjlBHuknuZx0gfkNHub4f19jCMMC4ZkZ5 LQFG0XImvJ8aEeMkXRpHyz3D46JPLv60xL/viUhhlsJfPnXHf2TBOLEpJEjp+y0f 3/mfXnsKIlnpdBr4nvqSi9/H84yHckqIKIRvjF/50Au+oWO2XfDXTchvfxwphtr3 due3Lse+62DGtHzv1+ILN1t5H7A0tCNbdZ65YNN4VqG7Je5vgmSIN/vvhvnjun75 29Cbme/h5q23M6RMLs77/QtQm0/dnry5P7FtD8CTIEIymomsk+V6wCXvdgUiyvEi 3HVk0Qu/25e+e+SSxoHHaZVCrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/AmMbW kE5GNm98DdWk0pdYIAp+MB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM9JNtWcq2CQjH+zOwKaJ+EaM4eFBoGaU/hzEkNAmT8QxKrD6tqaB7 v14fy+Pr7lRnDXHfvy0QYywp5Vh21DqAMd6cr8V//UEX/JBbKl78PyplZTkb1pAM FL3+LrYExYhdKtpP5bZb5GQwItoYPTwLzw7LB41Ca4jEoerEJJUkt6bhSm2gPqeC FQmW5B/7zbMEDnOOaRmpdoa9P294vbVe6/YOpbJb8dLRp5k56mzzusdjBwR5dO98 dV2enekUUuFgB3D/IC4mh1nYHVmF5KtJ8fRewm6nElMwzJm5MBjG9/WJ9fNo1OiA sZGXFk6Zz5sgNTIzA62iMVjyzBNPQwrM -----END CERTIFICATE-----Generated at Sun May 19 08:25:05 2024 by rpki-client on console-ams.rpki-client.org