$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft File: PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft (raw, json) Hash identifier: O9ZsKFXiXKDDIR0ipTjQ+nWT3F+SQTOjxYf4Z86pqdA= Subject key identifier: B9:0F:83:F5:5E:E2:8D:61:41:32:40:FC:2C:B6:13:23:07:33:37:3F Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 02D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft Manifest number: 02CD Signing time: Sun 19 May 2024 03:27:54 +0000 Manifest this update: Sun 19 May 2024 03:27:54 +0000 Manifest next update: Sun 26 May 2024 03:27:54 +0000 Files and hashes: 1: PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl (hash: 5htyOH+SaIUx3Yx9t1n4b+fcpoXWHCc/TpG3KWetW04=) 2: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (hash: CUkiAWG5K4Q1HdHEYFRgbc4bpAS6g17dNYGvM1oOAQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 721 (0x2d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: May 19 03:27:54 2024 GMT Not After : May 26 03:27:54 2024 GMT Subject: CN=664971ba-c9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b5:e7:67:02:80:50:5a:9d:e1:91:bd:a7:41: 03:f9:56:a0:a6:67:60:bb:f9:47:e0:50:a5:f7:ce: df:13:af:14:79:21:8a:b9:52:3d:58:a9:e7:b6:91: 6d:a8:6b:4a:1d:89:64:80:28:6f:b2:a4:55:34:b1: 56:5a:9d:36:f5:c4:09:88:30:12:e2:01:77:3c:1b: 5f:ef:ca:cf:ae:11:54:8b:fc:44:c1:dd:b1:9d:f8: 89:2e:5c:55:76:2e:3d:c6:d7:5e:8d:67:33:86:3a: 18:c3:e9:20:ef:66:84:5f:f2:74:a1:ac:43:df:80: 6b:04:e7:d1:22:0d:cf:7d:8d:1c:5d:51:02:6b:ee: e5:15:d0:29:51:8b:22:fb:a1:5d:20:cc:aa:98:cc: f5:8c:1c:d4:33:ee:8a:39:02:44:44:f4:ef:6a:a5: ba:6a:47:89:27:23:34:b2:39:f1:4b:d2:4a:1e:15: f8:35:e5:42:55:23:b2:01:e8:fe:5f:72:bd:02:81: 15:9a:08:5d:19:4a:7d:31:87:d6:55:78:0e:67:ea: b5:c9:12:e4:fb:88:14:69:a0:a5:e7:99:d2:b2:66: 00:69:2b:fe:f8:47:22:67:26:e7:5a:13:5c:04:fe: 56:a1:93:51:c7:9a:d1:89:77:ac:48:b7:f8:b4:eb: 1c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:0F:83:F5:5E:E2:8D:61:41:32:40:FC:2C:B6:13:23:07:33:37:3F X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:66:52:86:d2:b2:45:2b:c3:57:fd:64:22:6f:24:b3:78:6c: b8:7c:9b:c1:7a:c3:b2:81:a7:62:98:84:ed:f1:b4:0e:65:4a: f4:72:62:ff:9f:67:bc:17:9e:52:a2:41:04:34:01:5c:96:69: f2:fa:e9:c7:7a:1d:d0:2b:e6:6b:11:56:08:92:6f:72:8e:e0: 57:84:07:61:39:13:15:ca:e7:e9:ff:76:b1:8e:51:f6:f4:8f: 5c:6a:93:d7:69:08:b6:c0:81:1e:f0:99:f2:9b:a4:f5:4f:19: 54:b3:5c:da:4c:c7:56:bf:50:4b:79:d6:d0:53:87:03:c2:a3: dd:fd:66:3c:7b:0d:19:be:55:1c:89:85:b0:d7:57:04:ea:aa: dd:fc:ac:f3:ca:2c:55:b8:28:62:80:a3:d3:53:5e:c3:a1:ba: d9:d1:3b:29:43:27:8c:f5:d0:68:9f:60:34:5a:0c:fa:ab:bb: 0f:05:05:b5:ba:bb:80:41:72:fe:bf:fb:3d:f3:42:62:09:eb: 15:a2:ed:1d:34:6c:c8:aa:0c:0b:bd:43:da:5c:2d:fe:76:62: 5d:a6:2f:07:a3:4a:ae:b6:36:ef:2d:3f:cb:dc:4d:8b:f7:53: f8:b2:13:b4:6c:c4:66:0b:5a:37:48:a6:00:ff:fe:04:5f:ef: 06:75:88:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjQwNTE5MDMyNzU0WhcNMjQwNTI2MDMyNzU0WjAYMRYwFAYD VQQDEw02NjQ5NzFiYS1jOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77XnZwKAUFqd4ZG9p0ED+Vagpmdgu/lH4FCl987fE68UeSGKuVI9WKnntpFt qGtKHYlkgChvsqRVNLFWWp029cQJiDAS4gF3PBtf78rPrhFUi/xEwd2xnfiJLlxV di49xtdejWczhjoYw+kg72aEX/J0oaxD34BrBOfRIg3PfY0cXVECa+7lFdApUYsi +6FdIMyqmMz1jBzUM+6KOQJERPTvaqW6akeJJyM0sjnxS9JKHhX4NeVCVSOyAej+ X3K9AoEVmghdGUp9MYfWVXgOZ+q1yRLk+4gUaaCl55nSsmYAaSv++EciZybnWhNc BP5WoZNRx5rRiXesSLf4tOsc+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkPg/Ve 4o1hQTJA/Cy2EyMHMzc/MB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTBCOS9EMTNCRUFBQUEwRkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdz Vmp0a0psSmlpUjFOcEdwNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHZlKG0rJFK8NX/WQibySzeGy4fJvBesOygadimITt8bQOZUr0cmL/ n2e8F55SokEENAFclmny+unHeh3QK+ZrEVYIkm9yjuBXhAdhORMVyufp/3axjlH2 9I9capPXaQi2wIEe8Jnym6T1TxlUs1zaTMdWv1BLedbQU4cDwqPd/WY8ew0ZvlUc iYWw11cE6qrd/KzzyixVuChigKPTU17DobrZ0TspQyeM9dBon2A0Wgz6q7sPBQW1 uruAQXL+v/s980JiCesVou0dNGzIqgwLvUPaXC3+dmJdpi8Ho0qutjbvLT/L3E2L 91P4shO0bMRmC1o3SKYA//4EX+8GdYif -----END CERTIFICATE-----Generated at Sun May 19 04:22:05 2024 by rpki-client on console-fra.rpki-client.org