$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: hNpmc0mRWrTxBHen+iOPduP3yLGaa2qZwcBaJQGBfwI= Subject key identifier: B0:09:FF:A4:01:F8:E1:88:8F:F2:3B:83:86:65:4E:E5:24:AC:CD:93 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 92 Signing time: Fri 31 May 2024 07:57:20 +0000 Manifest this update: Fri 31 May 2024 07:57:19 +0000 Manifest next update: Fri 07 Jun 2024 07:57:19 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: pJfSlU9/v3XoFTVZ3LrQnf3oILPhAxOwmkBVYjivlIs=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: Da/S1vhffx2bAniYArf13My2tD2OTRCkqaPJ4eK7KVQ=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: Ox5AwkvCEJ/TKKbHnF8ZLm6Kbk7Vf84i4Zu7/tK4dFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: May 31 07:57:19 2024 GMT Not After : Jun 7 07:57:19 2024 GMT Subject: CN=665982e0-3b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:20:16:02:f2:92:96:1f:f5:8b:b7:c9:fd:2b: 20:26:8a:af:5a:ab:a2:9f:e8:b3:67:db:f2:a4:7b: b1:6b:28:2d:09:bf:8d:b1:ce:97:ff:e2:bd:90:2a: 74:db:65:bc:7e:8f:86:cb:24:b4:26:f5:35:cb:89: 92:3e:87:8a:26:f4:e3:58:88:af:20:c0:23:46:1f: d0:53:4e:5d:f2:79:97:fe:e9:65:7b:75:86:8b:6d: 6b:2e:09:28:cf:01:1f:39:5e:c6:53:d9:54:5d:06: e1:5d:0c:5d:33:12:32:05:fb:cd:82:ce:95:d6:5f: 2d:45:9c:44:fa:d1:c2:a4:9f:bf:7c:b8:fa:9b:a7: 42:4e:02:e5:ec:5b:7b:fd:8b:c7:19:9f:b2:71:9f: 8d:b8:d6:08:fd:41:fc:b6:2b:88:bb:4a:06:85:30: 0e:49:0c:6e:93:71:8f:80:fd:26:8f:4d:7b:79:b4: 63:ef:6e:0f:79:e7:bc:bd:cd:4c:ac:5e:4d:5a:8e: 64:c0:b9:54:cc:17:9b:93:a1:cf:5e:84:e9:2b:9c: d3:ad:d8:74:f1:be:67:37:2b:9a:f6:a8:ff:ef:e9: 6b:12:fc:7c:00:58:00:66:ab:19:c3:99:61:96:0d: e1:a7:1b:48:61:99:53:a6:5c:6b:e3:95:cc:05:e8: fe:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:09:FF:A4:01:F8:E1:88:8F:F2:3B:83:86:65:4E:E5:24:AC:CD:93 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:d7:42:4f:70:f6:2f:58:dd:56:1d:63:42:30:15:d8:6c:6e: 48:4b:8d:6f:37:fc:16:6d:b5:30:c9:53:b1:93:a1:f9:65:41: 86:d8:1d:20:81:73:96:d3:6b:ea:65:66:37:54:dc:27:4a:18: 27:41:5b:4a:93:b6:9c:26:70:ee:40:1b:54:cf:7f:9f:14:30: 6c:9d:ae:06:dd:63:48:bb:34:9b:17:7d:ff:98:cf:54:7f:48: 81:90:90:00:09:c3:45:f4:52:bd:67:0e:b0:45:55:f2:3a:71: 38:8a:34:61:ea:15:cc:76:ec:19:2b:39:d3:c2:1e:ab:27:8f: f0:29:b5:2d:b2:03:52:6a:a6:8d:8d:14:85:de:5f:c0:fa:0a: 17:64:eb:d4:27:35:a0:3d:fc:73:1c:16:b8:6d:d5:9b:92:8c: 65:ed:5a:6c:d8:91:df:4c:a5:eb:69:c9:4e:f0:ae:fe:97:be: 2a:41:e2:fa:31:de:73:a0:5a:6e:6b:6f:84:9a:4f:0e:1e:02: fa:77:67:1d:6a:03:c8:bc:ec:ce:85:47:bc:b2:28:cc:8d:db: 6d:9e:1e:2d:e2:f6:b0:7b:86:7d:ab:1f:3c:ce:aa:2f:9f:bd: 5c:fd:ef:ea:d2:52:52:c3:67:b2:82:95:e4:b3:4f:5e:44:1f: 4a:8c:6c:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjQwNTMxMDc1NzE5WhcNMjQwNjA3MDc1NzE5WjAYMRYwFAYD VQQDEw02NjU5ODJlMC0zYjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiAWAvKSlh/1i7fJ/SsgJoqvWquin+izZ9vypHuxaygtCb+Nsc6X/+K9kCp0 22W8fo+GyyS0JvU1y4mSPoeKJvTjWIivIMAjRh/QU05d8nmX/ulle3WGi21rLgko zwEfOV7GU9lUXQbhXQxdMxIyBfvNgs6V1l8tRZxE+tHCpJ+/fLj6m6dCTgLl7Ft7 /YvHGZ+ycZ+NuNYI/UH8tiuIu0oGhTAOSQxuk3GPgP0mj017ebRj724Peee8vc1M rF5NWo5kwLlUzBebk6HPXoTpK5zTrdh08b5nNyua9qj/7+lrEvx8AFgAZqsZw5lh lg3hpxtIYZlTplxr45XMBej+nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAJ/6QB +OGIj/I7g4ZlTuUkrM2TMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw10JPcPYvWN1WHWNCMBXYbG5IS41vN/wWbbUwyVOxk6H5ZUGG2B0g gXOW02vqZWY3VNwnShgnQVtKk7acJnDuQBtUz3+fFDBsna4G3WNIuzSbF33/mM9U f0iBkJAACcNF9FK9Zw6wRVXyOnE4ijRh6hXMduwZKznTwh6rJ4/wKbUtsgNSaqaN jRSF3l/A+goXZOvUJzWgPfxzHBa4bdWbkoxl7Vps2JHfTKXraclO8K7+l74qQeL6 Md5zoFpua2+Emk8OHgL6d2cdagPIvOzOhUe8sijMjdttnh4t4vawe4Z9qx88zqov n71c/e/q0lJSw2eygpXks09eRB9KjGx3 -----END CERTIFICATE-----Generated at Fri May 31 08:38:59 2024 by rpki-client on console-fra.rpki-client.org