$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft File: P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft (raw, json) Hash identifier: pMLayu/H8Gq2qHiGDNMAio1DnUbKZEYrEDGt1VlMR68= Subject key identifier: 38:E4:BC:B9:01:FD:64:E9:8E:4F:84:72:E5:23:A3:FF:25:C3:A9:80 Authority key identifier: 3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 Certificate issuer: /CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Certificate serial: 33CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft Manifest number: 5DEB Signing time: Sat 18 May 2024 14:15:27 +0000 Manifest this update: Sat 18 May 2024 14:15:26 +0000 Manifest next update: Sat 25 May 2024 14:15:26 +0000 Files and hashes: 1: P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl (hash: L0Oo+wGhhhpomUBq++hHwY1jxN+fIs5Uh2zTzd3RkQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13258 (0x33ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA/serialNumber=3F41E048D22B2A1AEA4CE0B844952A4A39D6CB37 Validity Not Before: May 18 14:15:26 2024 GMT Not After : May 25 14:15:26 2024 GMT Subject: CN=6648b7fe-243e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:c3:50:7a:15:66:40:b5:b0:01:97:71:22: 72:92:50:a0:be:39:26:d9:98:eb:bd:09:8c:9f:15: f5:49:22:f6:6e:9f:1b:30:ff:d6:6f:cf:8a:cc:e3: 6c:f2:0d:08:45:fb:3f:f7:53:a0:7f:ae:7c:f7:e8: bf:c5:4b:0c:4f:e8:a5:88:f1:8d:1d:c3:6e:55:57: 70:6d:46:28:bd:1a:47:ca:c9:f1:a2:2a:b7:16:48: 1f:3e:4f:57:eb:0d:ea:ad:64:d4:9a:bb:56:af:55: eb:81:15:e0:43:7e:a4:e3:d4:80:5b:b5:67:85:d9: 38:40:f9:55:e1:89:05:4f:78:ed:39:69:22:58:9d: 0d:25:c5:13:84:89:f2:15:96:79:2d:58:6d:57:c5: 5a:1e:9c:2d:f2:f4:42:cb:2c:87:d3:57:6b:8b:8c: 35:f8:ab:db:22:ec:4e:73:6f:78:6f:cc:24:fe:23: 12:d0:01:42:e5:bb:0f:0b:85:bb:29:87:65:a1:cb: 7d:22:0e:fb:79:60:c9:14:86:64:b9:24:ac:b6:43: 73:2b:5d:53:59:36:9d:77:00:59:20:5b:d8:68:75: 69:96:d1:33:15:0e:9a:f2:97:65:2e:41:90:4e:5c: 61:39:c2:6b:1b:0e:28:bc:72:a4:5a:1e:e2:16:5d: 37:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:E4:BC:B9:01:FD:64:E9:8E:4F:84:72:E5:23:A3:FF:25:C3:A9:80 X509v3 Authority Key Identifier: keyid:3F:41:E0:48:D2:2B:2A:1A:EA:4C:E0:B8:44:95:2A:4A:39:D6:CB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/P0HgSNIrKhrqTOC4RJUqSjnWyzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:0c:0b:dc:33:1b:d3:e0:72:44:a0:0a:df:5f:03:5a:71:20: 0b:c4:04:3a:9b:a6:95:7d:09:31:b5:77:98:75:4a:bb:47:75: 82:4d:6d:cf:6b:f0:e9:14:97:a2:2f:ac:01:43:8d:5b:d1:3a: 8a:f8:18:02:75:05:a1:41:40:08:23:ab:3e:fd:45:6c:6b:71: d2:99:31:6e:2f:d8:32:e9:c2:85:77:8d:c8:e2:4a:ed:31:b4: 88:22:2a:79:a2:ba:4b:56:65:30:72:ff:d2:80:9e:e1:73:0d: 6d:f9:de:8c:be:aa:75:45:79:d1:bb:98:c4:9d:a3:17:5c:a2: 09:40:42:e3:a6:c7:a1:41:64:d7:29:a6:42:c6:50:84:b0:67: c9:12:63:42:0b:18:ad:c8:f1:01:7c:a4:e4:bc:47:64:de:0a: b4:94:72:de:74:2c:6f:99:58:b9:67:95:3d:c0:01:78:18:13: c1:f7:98:c9:fb:1b:ec:b9:d7:11:1a:2d:7e:e9:10:fd:71:07: 68:ea:92:0c:84:9d:45:94:d7:e0:ad:98:d0:6e:e1:6a:67:24: 6a:3b:8b:49:63:6f:6f:9a:24:f8:e2:79:f3:0c:fb:90:1b:31: 90:85:28:5d:bb:f2:93:b3:68:c6:dd:05:c4:16:a7:27:4e:a3: f0:a7:bc:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDNGNDFFMDQ4RDIyQjJBMUFFQTRDRTBCODQ0OTUyQTRB MzlENkNCMzcwHhcNMjQwNTE4MTQxNTI2WhcNMjQwNTI1MTQxNTI2WjAYMRYwFAYD VQQDEw02NjQ4YjdmZS0yNDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGrDUHoVZkC1sAGXcSJyklCgvjkm2ZjrvQmMnxX1SSL2bp8bMP/Wb8+KzONs 8g0IRfs/91Ogf6589+i/xUsMT+iliPGNHcNuVVdwbUYovRpHysnxoiq3FkgfPk9X 6w3qrWTUmrtWr1XrgRXgQ36k49SAW7Vnhdk4QPlV4YkFT3jtOWkiWJ0NJcUThIny FZZ5LVhtV8VaHpwt8vRCyyyH01dri4w1+KvbIuxOc294b8wk/iMS0AFC5bsPC4W7 KYdloct9Ig77eWDJFIZkuSSstkNzK11TWTaddwBZIFvYaHVpltEzFQ6a8pdlLkGQ TlxhOcJrGw4ovHKkWh7iFl03kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjkvLkB /WTpjk+EcuUjo/8lw6mAMB8GA1UdIwQYMBaAFD9B4EjSKyoa6kzguESVKko51ss3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05JcktocnFUT0M0UkpVcVNqbld5 emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwSGdTTklyS2hycVRPQzRSSlVxU2puV3l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9QMEhnU05Jckto cnFUT0M0UkpVcVNqbld5emMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6DAvcMxvT4HJEoArfXwNacSALxAQ6m6aVfQkxtXeYdUq7R3WCTW3P a/DpFJeiL6wBQ41b0TqK+BgCdQWhQUAII6s+/UVsa3HSmTFuL9gy6cKFd43I4krt MbSIIip5orpLVmUwcv/SgJ7hcw1t+d6Mvqp1RXnRu5jEnaMXXKIJQELjpsehQWTX KaZCxlCEsGfJEmNCCxityPEBfKTkvEdk3gq0lHLedCxvmVi5Z5U9wAF4GBPB95jJ +xvsudcRGi1+6RD9cQdo6pIMhJ1FlNfgrZjQbuFqZyRqO4tJY29vmiT44nnzDPuQ GzGQhShdu/KTs2jG3QXEFqcnTqPwp7yO -----END CERTIFICATE-----Generated at Sat May 18 15:58:23 2024 by rpki-client on console-ams.rpki-client.org