$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: sOE1fp6l0S5mzfYXK7VWi7iQPNLN/q/5KqS+nabfD70= Subject key identifier: 5E:70:3B:9F:EA:0D:0B:93:53:25:D2:05:6A:85:55:5A:B9:34:FC:96 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: DA Signing time: Sun 19 May 2024 06:02:53 +0000 Manifest this update: Sun 19 May 2024 06:02:52 +0000 Manifest next update: Sun 26 May 2024 06:02:52 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: mrPvk7oQmteaH97hUYrCCWus4OsdYMn9AtekPu20j+Y=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: eaj1x+LHWE1tayPFLAKmkFEzxsjJ2bVZZVDGPQjbtdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: May 19 06:02:52 2024 GMT Not After : May 26 06:02:52 2024 GMT Subject: CN=6649960c-0a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d3:57:9c:03:09:07:bd:d1:76:6a:97:dc:ad: 34:46:93:ca:a7:ab:cb:d2:31:09:85:7b:62:86:88: 10:d7:64:fd:5f:71:4f:0f:fa:04:a5:ce:27:c5:ee: 5f:2c:eb:85:78:7c:8d:09:10:0c:15:d2:13:a4:94: c7:cf:45:2d:2d:4a:4e:1e:71:d0:0d:6e:09:8b:16: 92:27:a8:59:80:c8:52:b4:e5:cb:65:07:7d:97:90: b9:66:0d:0e:e6:de:1f:5b:09:cf:12:29:39:4f:a6: 41:49:56:8b:b1:a8:08:62:4b:f1:55:53:f8:4c:3f: 6a:3d:13:7c:aa:e3:a0:77:06:93:33:75:82:ac:4c: a8:7f:12:ba:02:24:da:aa:f2:c5:67:18:66:d8:e4: 01:f6:7a:aa:7f:a4:c2:1e:d6:4a:80:cc:25:88:ea: b7:f4:08:df:d0:37:a0:76:f6:37:bd:63:09:84:f2: ce:57:28:e7:c5:54:8c:d1:26:33:0d:22:b3:4a:be: a5:34:66:e6:b0:36:a5:ff:d5:d4:1c:21:3f:8e:87: 5c:d1:79:95:16:50:1d:b8:34:72:b6:cd:cf:36:8e: be:e3:47:6d:ed:74:cd:3d:5b:c4:a0:3a:c6:dd:bc: a2:80:67:67:2f:8a:ed:c8:7c:ce:cd:95:80:a7:c1: 3b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:70:3B:9F:EA:0D:0B:93:53:25:D2:05:6A:85:55:5A:B9:34:FC:96 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:3d:1f:0e:58:df:ef:a1:a3:87:b8:f5:74:78:19:ff:29:a7: 1c:e0:ab:7d:78:79:98:75:2c:35:17:fa:2d:e1:6f:b3:77:d5: 64:6e:85:f2:12:48:82:4b:60:b1:60:60:ca:b5:c7:39:87:87: 35:61:40:ea:dd:27:90:8e:7e:b1:7e:3a:73:42:b3:06:0b:91: c7:9b:43:8b:01:1e:82:57:6a:b0:1e:cc:2e:cd:64:c0:0b:12: cc:86:1a:55:ea:b7:ee:1c:b3:0e:ee:15:cb:5c:74:4d:8e:bb: d4:86:47:11:07:df:99:49:bf:82:9c:fa:fe:6f:25:0f:16:b8: d1:0c:7a:8e:f2:55:39:95:68:1d:d2:e4:4f:62:dc:3c:c8:97: 0c:98:2d:fb:46:73:42:03:9d:fd:96:6e:fa:4c:90:50:81:24: 4a:f6:4b:29:c8:f0:fa:cc:68:7c:f0:dc:44:a8:09:ad:18:35: f7:1a:85:b8:65:61:32:65:5f:f6:d6:5f:e5:c5:7d:78:29:a0: ce:8b:2a:73:6e:f9:c6:de:05:28:7b:e4:85:b8:15:1a:f3:53: ac:e8:13:ef:36:75:59:86:9c:73:4e:51:1c:f0:42:21:22:09: 80:7d:58:83:56:e2:94:61:6f:30:ec:c8:9c:f6:8c:ec:c0:15: af:47:a0:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjQwNTE5MDYwMjUyWhcNMjQwNTI2MDYwMjUyWjAYMRYwFAYD VQQDEw02NjQ5OTYwYy0wYTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dNXnAMJB73RdmqX3K00RpPKp6vL0jEJhXtihogQ12T9X3FPD/oEpc4nxe5f LOuFeHyNCRAMFdITpJTHz0UtLUpOHnHQDW4JixaSJ6hZgMhStOXLZQd9l5C5Zg0O 5t4fWwnPEik5T6ZBSVaLsagIYkvxVVP4TD9qPRN8quOgdwaTM3WCrEyofxK6AiTa qvLFZxhm2OQB9nqqf6TCHtZKgMwliOq39Ajf0DegdvY3vWMJhPLOVyjnxVSM0SYz DSKzSr6lNGbmsDal/9XUHCE/jodc0XmVFlAduDRyts3PNo6+40dt7XTNPVvEoDrG 3byigGdnL4rtyHzOzZWAp8E7nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5wO5/q DQuTUyXSBWqFVVq5NPyWMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASPR8OWN/voaOHuPV0eBn/Kacc4Kt9eHmYdSw1F/ot4W+zd9VkboXy EkiCS2CxYGDKtcc5h4c1YUDq3SeQjn6xfjpzQrMGC5HHm0OLAR6CV2qwHswuzWTA CxLMhhpV6rfuHLMO7hXLXHRNjrvUhkcRB9+ZSb+CnPr+byUPFrjRDHqO8lU5lWgd 0uRPYtw8yJcMmC37RnNCA539lm76TJBQgSRK9kspyPD6zGh88NxEqAmtGDX3GoW4 ZWEyZV/21l/lxX14KaDOiypzbvnG3gUoe+SFuBUa81Os6BPvNnVZhpxzTlEc8EIh IgmAfViDVuKUYW8w7Mic9ozswBWvR6B5 -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org