$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: lZloTw+lQODjByWA9gkmWhhpMxCmLmU11BuhcUkZddU= Subject key identifier: B6:47:B9:B8:CD:09:3D:45:FB:D7:83:9E:A5:E2:CE:D6:A0:21:E7:B6 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 037E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0379 Signing time: Sun 19 May 2024 02:47:32 +0000 Manifest this update: Sun 19 May 2024 02:47:31 +0000 Manifest next update: Sun 26 May 2024 02:47:31 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: ol4URLb7tBZ33Ic/CuaLtpTUJCwNjlRvw3UgnoKIr9k=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: iehwdc5g9sl8RTSyVN8ksy1mA6Zv+UzQYUuHN7LzFHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: May 19 02:47:31 2024 GMT Not After : May 26 02:47:31 2024 GMT Subject: CN=66496844-7104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:16:d9:73:ec:dc:6d:e4:96:93:af:58:97:42: a4:d7:8a:e8:d4:9c:da:35:29:54:be:78:9f:1a:1e: 4e:c4:2c:65:09:64:85:b8:f6:6f:6e:05:85:9e:75: c2:2c:c1:30:e9:11:b8:d4:5b:da:88:11:2c:b3:53: 5f:ea:7b:f5:a7:7e:94:44:72:c0:bf:6c:88:65:db: b3:25:16:f2:a9:da:6f:e6:a8:17:3b:15:9b:78:5e: 07:18:b3:21:47:bd:4d:2c:b6:57:f4:f3:29:57:87: e2:fa:c4:25:a5:81:88:ca:9d:cf:a4:91:ea:3c:de: c9:04:db:11:3a:99:63:73:9d:d2:82:22:67:83:18: e1:73:cf:de:90:7a:5f:8a:31:0d:27:93:6c:c2:da: 84:23:4f:80:46:14:d2:cc:24:b5:3f:3c:c5:5c:c7: 64:a6:da:e3:ee:88:fa:2e:17:51:cc:f9:55:c2:15: 24:64:ee:9e:e7:98:94:d9:3c:79:1b:d0:81:67:de: 1e:d4:02:0e:c0:3d:ec:c6:d4:0d:9d:30:2c:ab:10: bb:84:24:89:19:ca:54:fa:96:40:13:2b:95:5e:d5: 6b:57:57:46:b2:dd:05:08:63:e1:ef:99:91:d2:1b: d6:04:f0:cd:3a:76:d6:16:df:62:04:37:02:40:26: ff:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:47:B9:B8:CD:09:3D:45:FB:D7:83:9E:A5:E2:CE:D6:A0:21:E7:B6 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:42:d7:31:cb:46:07:bf:37:cb:ca:83:8a:ff:68:83:77:f1: 73:03:f0:52:81:16:23:fa:31:d5:1f:f1:2a:71:06:4b:f9:4c: 88:ef:9e:89:2b:3b:91:5f:51:e6:09:2d:c5:8c:8e:65:cf:17: 8e:d7:f9:e9:af:3d:9c:f0:63:5e:af:d4:b5:8d:7a:fc:ea:95: 2e:13:0f:32:07:24:51:3e:bc:33:50:df:ff:d8:e6:0c:f5:69: 01:77:a5:eb:f7:cc:d6:96:74:d3:97:a3:b8:48:7a:fe:51:c3: 27:f4:c9:ac:f0:7d:07:d5:57:4a:4e:f4:0e:48:a6:b4:19:7c: 07:b8:2f:0b:7d:17:1d:83:ac:8a:50:a7:9e:eb:9f:1d:a7:91: ea:6f:43:2c:ad:8b:31:ec:9e:7f:ee:c7:93:2c:95:81:69:27: 01:97:09:4d:2e:1e:82:2e:3a:87:77:a3:1b:aa:36:90:5a:fc: 9e:8f:bb:36:81:07:15:b6:54:72:a3:89:d4:6e:49:47:6b:91: ce:12:48:f1:6d:94:85:99:5d:b7:f2:22:52:3a:cb:10:88:67: c0:45:aa:c2:c0:a2:cf:ca:1f:c9:ba:6d:6c:ad:3a:70:69:55: cd:32:89:39:75:74:15:68:56:c1:7d:e6:fa:0b:87:13:bb:12: 11:92:e8:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjQwNTE5MDI0NzMxWhcNMjQwNTI2MDI0NzMxWjAYMRYwFAYD VQQDEw02NjQ5Njg0NC03MTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxbZc+zcbeSWk69Yl0Kk14ro1JzaNSlUvnifGh5OxCxlCWSFuPZvbgWFnnXC LMEw6RG41FvaiBEss1Nf6nv1p36URHLAv2yIZduzJRbyqdpv5qgXOxWbeF4HGLMh R71NLLZX9PMpV4fi+sQlpYGIyp3PpJHqPN7JBNsROpljc53SgiJngxjhc8/ekHpf ijENJ5NswtqEI0+ARhTSzCS1PzzFXMdkptrj7oj6LhdRzPlVwhUkZO6e55iU2Tx5 G9CBZ94e1AIOwD3sxtQNnTAsqxC7hCSJGcpU+pZAEyuVXtVrV1dGst0FCGPh75mR 0hvWBPDNOnbWFt9iBDcCQCb/cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLZHubjN CT1F+9eDnqXiztagIee2MB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADQtcxy0YHvzfLyoOK/2iDd/FzA/BSgRYj+jHVH/EqcQZL+UyI756J KzuRX1HmCS3FjI5lzxeO1/nprz2c8GNer9S1jXr86pUuEw8yByRRPrwzUN//2OYM 9WkBd6Xr98zWlnTTl6O4SHr+UcMn9Mms8H0H1VdKTvQOSKa0GXwHuC8LfRcdg6yK UKee658dp5Hqb0MsrYsx7J5/7seTLJWBaScBlwlNLh6CLjqHd6MbqjaQWvyej7s2 gQcVtlRyo4nUbklHa5HOEkjxbZSFmV238iJSOssQiGfARarCwKLPyh/Jum1srTpw aVXNMok5dXQVaFbBfeb6C4cTuxIRkujQ -----END CERTIFICATE-----Generated at Sun May 19 03:14:50 2024 by rpki-client on console-fra.rpki-client.org