$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: ZEEhr8HxqyG+QQUmifhDbkskT9mgMxFTDPoJX7ljHfc= Subject key identifier: 8D:55:6B:31:67:55:5A:AC:FD:03:E0:82:81:3D:7E:39:DD:7C:70:89 Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 0354 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 0351 Signing time: Sun 19 May 2024 02:54:18 +0000 Manifest this update: Sun 19 May 2024 02:54:17 +0000 Manifest next update: Sun 26 May 2024 02:54:17 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: SvJpWW8i5ngGAuCAj0bEQ8463q10rCWrovzvo39SlDo=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: KmVrkzGGgoECvjd3YrTWzHyML72Oq980lXI0J//0brU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 852 (0x354) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: May 19 02:54:17 2024 GMT Not After : May 26 02:54:17 2024 GMT Subject: CN=664969d9-9da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3d:4e:d8:3e:89:a1:05:72:7d:f4:0b:79:82: f2:0e:ed:c2:b5:98:eb:f0:9f:b8:95:ea:cd:f4:c1: 64:80:2b:b1:db:61:f0:e9:41:af:eb:a5:13:a0:24: 7b:cd:78:6c:81:83:7c:1e:10:d6:74:d8:ac:ec:d9: 31:bc:36:a0:90:b5:b5:6c:4f:41:32:71:5f:3b:85: 19:bc:20:97:33:3e:f2:54:62:4a:5f:a8:41:a4:55: 8a:61:e2:a4:83:29:9f:1a:24:37:ec:ce:75:72:43: 4b:02:5f:65:26:92:b6:f8:ee:64:e9:6c:ae:1d:2c: be:d3:7b:90:00:1d:88:0c:dd:8c:e6:c4:ce:7c:7e: 70:1d:e0:ac:60:7e:50:87:d5:2a:07:e1:fe:55:77: 35:b2:e0:05:0e:be:f1:00:e2:b7:28:0e:64:1d:d1: f8:ef:f4:a3:a1:52:f6:26:80:da:eb:28:b1:e4:4f: 78:48:d9:df:d5:45:c6:80:67:1e:89:04:09:fe:57: 10:df:5c:98:a3:9a:a5:bc:0e:51:02:e1:3d:78:01: 9e:1c:30:df:c4:2c:5a:d2:bc:41:59:c1:29:b3:f7: 40:96:6f:bc:1c:d1:28:f4:43:b1:7f:36:87:de:e4: 33:59:c2:12:c1:af:52:d3:01:cb:f1:30:56:a7:41: 70:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:55:6B:31:67:55:5A:AC:FD:03:E0:82:81:3D:7E:39:DD:7C:70:89 X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:db:84:44:20:49:b5:05:92:af:51:2b:93:d8:83:9d:7b:0d: 82:65:53:6c:03:57:ae:0d:7a:e2:57:aa:f4:74:20:4f:3b:19: 31:e9:49:ab:21:a5:7f:7c:9c:7b:56:46:45:2a:a9:5a:fa:76: fd:dd:be:42:6d:df:39:2c:3a:5f:58:29:53:ff:81:df:26:54: 85:2a:71:93:9e:a2:9f:e9:14:c9:f1:2d:07:c5:1d:d3:a3:75: 57:6e:a8:b3:e1:71:4d:fc:f3:14:a3:1a:8d:a6:37:00:bd:aa: 62:2d:8f:fb:28:cb:d1:c6:22:70:cc:63:57:61:60:10:4c:59: 4f:b6:48:bb:c2:e4:10:ee:53:d4:51:b4:bf:cd:80:dc:b9:f5: 65:00:d9:4b:14:23:82:e9:ba:a3:db:af:b6:13:fc:eb:12:24: 32:28:01:f9:3d:00:92:05:45:bf:ef:98:38:34:b4:87:33:b4: bc:30:14:81:80:6d:3d:35:aa:f5:4d:e9:b6:29:05:f9:4c:1a: c6:11:73:9f:0a:75:5d:8a:15:c9:db:60:94:13:36:71:83:1e: da:e2:9b:26:8d:b6:01:62:10:00:1f:7b:39:f5:e2:0b:1c:e7: 15:f5:80:20:ad:4e:a3:b6:aa:5e:fe:82:ab:41:a4:ff:53:41: e8:e5:01:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjQwNTE5MDI1NDE3WhcNMjQwNTI2MDI1NDE3WjAYMRYwFAYD VQQDEw02NjQ5NjlkOS05ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoj1O2D6JoQVyffQLeYLyDu3CtZjr8J+4lerN9MFkgCux22Hw6UGv66UToCR7 zXhsgYN8HhDWdNis7NkxvDagkLW1bE9BMnFfO4UZvCCXMz7yVGJKX6hBpFWKYeKk gymfGiQ37M51ckNLAl9lJpK2+O5k6WyuHSy+03uQAB2IDN2M5sTOfH5wHeCsYH5Q h9UqB+H+VXc1suAFDr7xAOK3KA5kHdH47/SjoVL2JoDa6yix5E94SNnf1UXGgGce iQQJ/lcQ31yYo5qlvA5RAuE9eAGeHDDfxCxa0rxBWcEps/dAlm+8HNEo9EOxfzaH 3uQzWcISwa9S0wHL8TBWp0FwiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1VazFn VVqs/QPggoE9fjndfHCJMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa24REIEm1BZKvUSuT2IOdew2CZVNsA1euDXriV6r0dCBPOxkx6Umr IaV/fJx7VkZFKqla+nb93b5Cbd85LDpfWClT/4HfJlSFKnGTnqKf6RTJ8S0HxR3T o3VXbqiz4XFN/PMUoxqNpjcAvapiLY/7KMvRxiJwzGNXYWAQTFlPtki7wuQQ7lPU UbS/zYDcufVlANlLFCOC6bqj26+2E/zrEiQyKAH5PQCSBUW/75g4NLSHM7S8MBSB gG09Nar1Tem2KQX5TBrGEXOfCnVdihXJ22CUEzZxgx7a4psmjbYBYhAAH3s59eIL HOcV9YAgrU6jtqpe/oKrQaT/U0Ho5QEL -----END CERTIFICATE-----Generated at Sun May 19 03:38:15 2024 by rpki-client on console-ams.rpki-client.org