$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft File: PTiRpGy8urR0eN6kDSkI9nzOOyo.mft (raw, json) Hash identifier: 50tWc794e6Md3hATbFOpYI0JDtrYGeDbHWuqbm1CiQw= Subject key identifier: D0:37:F7:BE:F1:C6:DA:1A:A2:D8:F2:28:6A:2C:83:35:B2:25:60:18 Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Certificate serial: 07BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft Manifest number: 07B7 Signing time: Sat 18 May 2024 22:06:27 +0000 Manifest this update: Sat 18 May 2024 22:06:26 +0000 Manifest next update: Sat 25 May 2024 22:06:26 +0000 Files and hashes: 1: PTiRpGy8urR0eN6kDSkI9nzOOyo.crl (hash: 0PGt6DO/DoagpYr1Oyl4NB89uOMo7cArXVAZHYUMAe8=) 2: DFEA30745C3011EEB250DE0EC4F9AE02.roa (hash: cTSrLheCGGRQ/E8bldowJz9Xd3wsB7QLr/NetAYA5V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Validity Not Before: May 18 22:06:26 2024 GMT Not After : May 25 22:06:26 2024 GMT Subject: CN=66492662-e371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:dd:b2:cc:90:91:14:5f:b8:85:84:04:03:14: 1d:a7:20:81:13:e3:1a:27:da:49:bd:33:a0:a4:21: a0:95:e8:4b:6f:19:48:57:c6:85:94:00:3c:98:da: a8:75:04:df:54:ae:83:89:03:66:54:f4:38:5e:4f: e1:e8:70:b0:a2:3f:3b:e4:a4:d1:bb:fd:41:70:8f: 21:63:cd:28:72:bb:a6:16:61:6f:c6:c8:4f:fa:85: 81:fd:65:57:9d:61:5a:b6:93:71:45:fb:a6:4b:91: 1b:fb:89:0d:c9:bb:38:e2:cc:7f:fc:2f:59:b3:df: 1b:a8:8e:11:9d:c8:32:55:89:8c:33:48:cc:89:af: 8a:90:01:b5:fe:7b:2a:66:e1:80:38:ff:01:67:b5: 24:e0:0d:71:16:bc:d4:c2:3f:b7:73:51:9f:2d:56: 64:d7:70:61:70:ab:c9:0c:1a:da:93:2f:b5:58:41: a3:b2:16:9f:b3:09:d5:b6:a7:15:40:57:ce:a0:6f: 65:b1:bc:cd:fa:90:ac:80:1e:23:b8:64:79:3e:11: ba:cf:a7:44:63:91:1e:aa:0b:66:e8:94:54:c8:8f: cf:ea:7a:5a:dd:bb:a8:d1:f0:74:11:66:b6:ba:39: 2d:8f:32:fe:6d:9d:c8:24:79:1a:9d:f4:48:e2:79: b9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:37:F7:BE:F1:C6:DA:1A:A2:D8:F2:28:6A:2C:83:35:B2:25:60:18 X509v3 Authority Key Identifier: keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b6:7f:80:00:d8:78:bb:5f:81:76:47:ce:34:43:7c:74:4e: de:1a:bb:99:96:a3:4d:ed:72:db:3a:33:c1:22:a2:b0:ad:70: a4:43:28:46:20:0f:91:f5:7b:b0:a5:8c:82:94:49:29:38:3b: 5c:db:fc:9d:1a:12:ee:d5:79:86:ba:4c:da:97:06:70:13:fc: c6:44:cf:30:8f:b4:f9:b6:c0:62:1d:fe:2a:56:7a:33:0e:f7: 7c:ce:6c:ac:65:d0:d4:60:37:7d:cb:2f:4e:35:43:cd:11:04: 4e:49:9b:08:ed:3a:4b:84:98:82:5f:92:aa:61:eb:25:b5:0b: 3c:8c:25:e4:c2:4b:cc:ac:b9:f5:46:ca:43:55:a8:20:cd:b3: 78:22:47:50:a7:73:7f:5b:84:07:8e:6c:f9:f4:44:5a:a3:b6: 36:3b:82:83:a8:11:a1:64:9a:dd:2d:ad:41:91:7f:d0:da:4c: a8:a4:58:76:9b:51:15:85:78:1e:9b:06:13:af:c7:6a:df:a4: 8f:c0:42:f4:1d:04:f8:58:9c:68:87:90:1a:25:90:9f:f9:8f: 45:c9:ec:ad:c6:b6:e8:53:4b:0c:fa:55:c2:67:ce:49:c6:63: 83:45:17:d1:67:b7:52:6c:a6:e8:96:a9:88:3c:df:81:20:2e: 45:4d:54:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQzIxMTAvBgNVBAUTKDNEMzg5MUE0NkNCQ0JBQjQ3NDc4REVBNDBEMjkwOEY2 N0NDRTNCMkEwHhcNMjQwNTE4MjIwNjI2WhcNMjQwNTI1MjIwNjI2WjAYMRYwFAYD VQQDEw02NjQ5MjY2Mi1lMzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvd2yzJCRFF+4hYQEAxQdpyCBE+MaJ9pJvTOgpCGglehLbxlIV8aFlAA8mNqo dQTfVK6DiQNmVPQ4Xk/h6HCwoj875KTRu/1BcI8hY80ocrumFmFvxshP+oWB/WVX nWFatpNxRfumS5Eb+4kNybs44sx//C9Zs98bqI4RncgyVYmMM0jMia+KkAG1/nsq ZuGAOP8BZ7Uk4A1xFrzUwj+3c1GfLVZk13BhcKvJDBraky+1WEGjshafswnVtqcV QFfOoG9lsbzN+pCsgB4juGR5PhG6z6dEY5Eeqgtm6JRUyI/P6npa3buo0fB0EWa2 ujktjzL+bZ3IJHkanfRI4nm5rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNA3977x xtoaotjyKGosgzWyJWAYMB8GA1UdIwQYMBaAFD04kaRsvLq0dHjepA0pCPZ8zjsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVDMi8yRERERDI2Q0My QzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVyUjBlTjZrRFNrSTluek9P eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUaVJwR3k4dXJSMGVONmtEU2tJOW56T095by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVDMi8yRERERDI2Q0MyQzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVy UjBlTjZrRFNrSTluek9PeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCltn+AANh4u1+BdkfONEN8dE7eGruZlqNN7XLbOjPBIqKwrXCkQyhG IA+R9XuwpYyClEkpODtc2/ydGhLu1XmGukzalwZwE/zGRM8wj7T5tsBiHf4qVnoz Dvd8zmysZdDUYDd9yy9ONUPNEQROSZsI7TpLhJiCX5KqYesltQs8jCXkwkvMrLn1 RspDVaggzbN4IkdQp3N/W4QHjmz59ERao7Y2O4KDqBGhZJrdLa1BkX/Q2kyopFh2 m1EVhXgemwYTr8dq36SPwEL0HQT4WJxoh5AaJZCf+Y9FyeytxrboU0sM+lXCZ85J xmODRRfRZ7dSbKbolqmIPN+BIC5FTVSK -----END CERTIFICATE-----Generated at Sun May 19 00:30:20 2024 by rpki-client on console-ams.rpki-client.org