$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: xpvNdpAiUza+G3cgVsyUZzHzf8MM0CGjY8+VDxQ2flI= Subject key identifier: 70:84:9A:DE:41:EF:9D:DA:5A:D9:F0:53:AB:91:5C:03:27:08:D5:42 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 01CA Signing time: Wed 29 May 2024 04:54:56 +0000 Manifest this update: Wed 29 May 2024 04:54:56 +0000 Manifest next update: Wed 05 Jun 2024 04:54:56 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: T7CMFx5GTABCZGkqrTG5ttB68+ifE9/37i4Th0QvgRc=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: 7nzz5YKwwXZf09jz37XzY7781RRAJLlb5nuGsk6+Jak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 04:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: May 29 04:54:56 2024 GMT Not After : Jun 5 04:54:56 2024 GMT Subject: CN=6656b520-36b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b9:2a:3e:b9:83:cf:b3:af:39:3b:f9:4f:23: c1:b9:e5:ab:96:e0:2f:4c:78:02:1a:e6:d4:8f:ec: c6:ab:07:aa:1b:6f:44:25:18:a0:c8:50:e3:5a:3d: 3e:8e:fc:0b:8c:ef:68:84:c1:05:ab:a9:ba:fc:6d: df:f8:40:18:8b:32:0e:89:a0:1e:96:b5:6f:1d:c8: c1:74:2c:58:54:d4:b2:b8:c0:63:72:57:e6:e1:cb: 7c:31:78:a8:28:a3:a8:de:9c:34:8b:b7:73:fe:96: bf:39:90:9c:de:d3:78:ed:91:6d:e3:c0:96:57:69: f5:15:c5:40:df:10:d3:f1:1f:2a:59:1b:2e:e6:ed: 90:90:ea:48:8f:10:5c:42:b4:70:db:b0:55:62:f1: c3:46:8b:18:62:98:ec:2d:ef:e8:7f:20:24:72:a5: 08:14:1a:b8:7d:46:8e:17:3a:aa:13:d8:3c:fb:b6: 52:cf:e0:ff:f4:f7:c9:91:cb:c8:8a:96:18:23:88: c6:6f:9d:0e:13:c7:78:8f:0d:75:d2:50:e6:ac:32: 07:21:f5:26:8c:d4:4a:9a:ad:21:73:82:29:8f:a4: 51:a1:58:b7:af:ae:17:f7:53:50:8c:19:1b:24:9e: 88:8f:fb:48:22:d1:09:72:62:b1:c8:e8:14:34:c5: c9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:84:9A:DE:41:EF:9D:DA:5A:D9:F0:53:AB:91:5C:03:27:08:D5:42 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6c:bb:3e:30:a5:69:ab:99:b1:ff:a2:8d:f8:06:44:89:74: 4b:7d:3b:59:07:08:78:48:02:f4:75:82:08:42:9c:4c:ce:85: cd:82:d5:52:d2:62:f1:73:cb:14:54:48:0e:5e:b8:6c:3e:91: 70:9e:ac:91:ce:4f:44:59:24:84:56:1e:de:8e:13:21:f0:8f: 96:80:83:e2:b6:65:bd:0b:0e:ec:a0:35:53:5d:78:c3:90:0c: f5:81:5d:90:ec:f4:42:85:c4:f0:4b:39:22:28:59:27:81:cc: 9a:d4:89:5a:54:a7:51:e0:cb:4d:a8:87:78:99:18:a6:71:85: df:bd:e6:31:a6:58:7c:9b:50:48:4a:e9:b6:81:94:c7:7c:e1: b9:9a:d6:12:6d:9b:d8:2f:08:95:52:13:8f:0c:ea:5b:51:55: aa:c0:e1:34:a3:e3:a7:16:d9:af:af:a6:74:4c:7b:02:ba:16: b6:de:9c:1e:12:5c:0e:a4:00:65:e2:a0:98:ea:f1:6c:ab:39: 5a:5a:10:25:c8:44:a3:41:e4:60:05:d7:63:67:31:a6:9a:67: 93:72:78:c3:a1:09:4c:37:0a:95:a7:ef:9b:42:8d:94:b2:e0: 7f:4c:a8:72:a4:88:94:31:9e:19:1c:1c:71:4a:1e:ef:11:62: 58:13:17:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjQwNTI5MDQ1NDU2WhcNMjQwNjA1MDQ1NDU2WjAYMRYwFAYD VQQDEw02NjU2YjUyMC0zNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7kqPrmDz7OvOTv5TyPBueWrluAvTHgCGubUj+zGqweqG29EJRigyFDjWj0+ jvwLjO9ohMEFq6m6/G3f+EAYizIOiaAelrVvHcjBdCxYVNSyuMBjclfm4ct8MXio KKOo3pw0i7dz/pa/OZCc3tN47ZFt48CWV2n1FcVA3xDT8R8qWRsu5u2QkOpIjxBc QrRw27BVYvHDRosYYpjsLe/ofyAkcqUIFBq4fUaOFzqqE9g8+7ZSz+D/9PfJkcvI ipYYI4jGb50OE8d4jw110lDmrDIHIfUmjNRKmq0hc4Ipj6RRoVi3r64X91NQjBkb JJ6Ij/tIItEJcmKxyOgUNMXJ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCEmt5B 753aWtnwU6uRXAMnCNVCMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBbLs+MKVpq5mx/6KN+AZEiXRLfTtZBwh4SAL0dYIIQpxMzoXNgtVS 0mLxc8sUVEgOXrhsPpFwnqyRzk9EWSSEVh7ejhMh8I+WgIPitmW9Cw7soDVTXXjD kAz1gV2Q7PRChcTwSzkiKFkngcya1IlaVKdR4MtNqId4mRimcYXfveYxplh8m1BI Sum2gZTHfOG5mtYSbZvYLwiVUhOPDOpbUVWqwOE0o+OnFtmvr6Z0THsCuha23pwe ElwOpABl4qCY6vFsqzlaWhAlyESjQeRgBddjZzGmmmeTcnjDoQlMNwqVp++bQo2U suB/TKhypIiUMZ4ZHBxxSh7vEWJYExdM -----END CERTIFICATE-----Generated at Wed May 29 05:26:31 2024 by rpki-client on console-fra.rpki-client.org