$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: aZSHM+DjOTOseuh9qahuvlHWQYEDd78VQgmJe6rm4vA= Subject key identifier: C7:53:45:E1:C9:17:DE:0C:8C:A3:E1:90:4B:4B:38:5A:5B:82:B1:91 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: E6 Signing time: Sun 19 May 2024 05:55:19 +0000 Manifest this update: Sun 19 May 2024 05:55:18 +0000 Manifest next update: Sun 26 May 2024 05:55:18 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: xkXPL3OOVOHIeG8wwwUdPBSJljMXQAw3+8Vl120a+bM=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: xtZobSpVadX58ZzyO31O4JKq8FMyE70P6iRmsiuP7EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: May 19 05:55:18 2024 GMT Not After : May 26 05:55:18 2024 GMT Subject: CN=66499447-ed93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:9b:60:b6:e3:d4:3f:7a:4a:9f:b7:05:21: d0:da:79:09:66:09:62:bd:27:d4:14:9b:cb:c5:af: 35:79:f6:25:2a:a1:18:c5:2f:da:4a:c4:81:bc:13: e8:c6:77:79:61:bd:7f:31:5b:28:4c:63:c8:a6:f4: 86:8f:40:9d:37:ca:95:f1:da:68:a9:50:ef:7c:1d: a3:31:6e:8b:42:89:97:b9:ff:d2:93:4b:e4:b2:fc: df:ed:c1:d0:5e:a0:6f:79:f2:0c:dc:2d:68:20:f1: f6:f8:f5:4c:67:26:9d:33:e0:99:98:25:5a:da:d6: 29:c0:75:c4:2f:eb:fe:72:99:45:d1:65:c1:2f:9f: 56:36:b8:70:2f:a6:d0:34:5c:cb:2d:25:27:76:d8: f7:c9:b9:61:1a:ce:0b:09:e2:5b:2b:b4:06:1b:53: 8d:0e:0e:c8:28:5c:49:28:da:ab:a9:48:fd:3c:25: 30:20:d4:11:35:32:0d:36:3e:67:f5:3f:5a:2c:b7: 3f:83:a8:9a:e3:be:86:82:6c:1a:f9:a1:a0:28:b3: 49:23:28:88:37:59:e0:c2:b0:36:8f:fa:a6:e0:1a: e3:38:9c:33:e7:9f:d9:58:9e:8d:60:4f:b8:fd:7b: a6:bb:40:a1:cd:6d:8a:bb:f6:64:04:fa:3b:74:7b: 4e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:53:45:E1:C9:17:DE:0C:8C:A3:E1:90:4B:4B:38:5A:5B:82:B1:91 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:3b:22:f7:ae:05:9e:98:a1:dc:eb:1c:28:0f:37:3a:fb:d7: ee:b6:40:07:1a:18:51:c8:0a:71:08:e8:58:72:a7:91:43:5a: 69:b1:c3:c1:60:fb:d6:c7:17:88:a4:68:7d:ca:86:37:53:11: 5e:a2:00:ab:3e:1e:ac:55:2e:13:a6:21:4b:89:0f:da:d1:bf: b8:9b:7d:3a:d0:14:a0:82:81:24:6b:d8:0e:54:49:69:56:cb: 0e:8b:af:e6:16:da:67:ba:be:ae:9a:70:91:32:6e:a8:b8:d5: 0c:36:83:8b:e1:51:a0:c7:d5:3d:b9:e8:e9:00:73:bf:96:ea: 8c:b7:e4:f4:1b:55:09:6e:c8:55:f6:78:a0:b6:bb:d7:c9:12: 05:c6:3f:c9:88:ab:79:de:96:22:18:3f:42:f0:5c:8f:ee:70: e5:76:f4:51:e6:4b:b6:3b:39:fd:43:cf:91:72:d2:67:a7:9b: 55:c9:42:56:4c:8a:c1:b6:5e:5b:2d:16:a1:35:a9:51:81:97: c0:63:ff:d9:f8:a8:72:da:33:24:59:4a:27:79:98:a0:5b:a0: d9:b5:77:22:d8:34:77:79:4a:dc:ab:71:17:83:1d:47:3f:ad: ff:09:d3:16:b1:58:d7:d3:83:2f:84:f9:be:61:f4:86:80:21: 6e:ee:75:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjQwNTE5MDU1NTE4WhcNMjQwNTI2MDU1NTE4WjAYMRYwFAYD VQQDEw02NjQ5OTQ0Ny1lZDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzabYLbj1D96Sp+3BSHQ2nkJZglivSfUFJvLxa81efYlKqEYxS/aSsSBvBPo xnd5Yb1/MVsoTGPIpvSGj0CdN8qV8dpoqVDvfB2jMW6LQomXuf/Sk0vksvzf7cHQ XqBvefIM3C1oIPH2+PVMZyadM+CZmCVa2tYpwHXEL+v+cplF0WXBL59WNrhwL6bQ NFzLLSUndtj3yblhGs4LCeJbK7QGG1ONDg7IKFxJKNqrqUj9PCUwINQRNTINNj5n 9T9aLLc/g6ia476Ggmwa+aGgKLNJIyiIN1ngwrA2j/qm4BrjOJwz55/ZWJ6NYE+4 /Xumu0ChzW2Ku/ZkBPo7dHtOVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdTReHJ F94MjKPhkEtLOFpbgrGRMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOOyL3rgWemKHc6xwoDzc6+9futkAHGhhRyApxCOhYcqeRQ1ppscPB YPvWxxeIpGh9yoY3UxFeogCrPh6sVS4TpiFLiQ/a0b+4m3060BSggoEka9gOVElp VssOi6/mFtpnur6umnCRMm6ouNUMNoOL4VGgx9U9uejpAHO/luqMt+T0G1UJbshV 9nigtrvXyRIFxj/JiKt53pYiGD9C8FyP7nDldvRR5ku2Ozn9Q8+RctJnp5tVyUJW TIrBtl5bLRahNalRgZfAY//Z+Khy2jMkWUoneZigW6DZtXci2DR3eUrcq3EXgx1H P63/CdMWsVjX04MvhPm+YfSGgCFu7nVu -----END CERTIFICATE-----Generated at Sun May 19 07:40:42 2024 by rpki-client on console-fra.rpki-client.org