$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft File: pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft (raw, json) Hash identifier: +ojcu2r2Ton6uZhpRlS0WVktwqsgr14grMti/2z7/3Q= Subject key identifier: 0A:87:24:35:E8:A7:8E:25:8F:9B:D9:12:F8:AE:82:60:88:90:CA:C5 Authority key identifier: A6:0C:98:21:F5:30:B0:D5:3A:67:A9:8B:76:71:96:C4:0A:2D:5A:66 Certificate issuer: /CN=A91E3B25/serialNumber=A60C9821F530B0D53A67A98B767196C40A2D5A66 Certificate serial: 1603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft Manifest number: 1E3D Signing time: Sat 18 May 2024 17:12:32 +0000 Manifest this update: Sat 18 May 2024 17:12:32 +0000 Manifest next update: Sat 25 May 2024 17:12:32 +0000 Files and hashes: 1: pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl (hash: j/OebE8qCApDqerLprApjJmM4ip/AFSxqgb9SFDJCfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5635 (0x1603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25/serialNumber=A60C9821F530B0D53A67A98B767196C40A2D5A66 Validity Not Before: May 18 17:12:32 2024 GMT Not After : May 25 17:12:32 2024 GMT Subject: CN=6648e180-0b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:45:c0:c9:ce:12:f6:89:e5:c5:4c:a9:f4: 57:79:64:d8:4d:0c:3f:fb:5e:a5:81:21:74:1d:3d: ed:8c:0c:45:aa:a6:4c:07:56:6c:90:65:d7:4f:1d: 03:2b:1d:3b:de:67:93:02:1d:0a:73:80:29:f1:9f: 29:ad:b5:f0:f9:cb:ad:41:88:d5:f9:21:08:1d:5e: 32:a4:0b:54:5f:37:7d:43:04:9b:87:95:31:31:be: bd:68:c2:d9:ff:dc:15:61:5b:60:08:63:69:38:f7: 2d:a5:94:2d:b6:1f:b9:cc:0f:e2:82:f5:ab:74:2b: 8d:2b:33:bc:7e:36:46:4e:71:63:c5:e7:ea:4b:9a: 4b:96:5b:33:80:64:27:c2:44:2c:8d:f1:53:17:65: ad:e8:a1:e8:21:d8:ff:95:c0:d9:b7:a9:75:4a:4f: e3:54:fd:2b:63:6a:8a:01:d9:c4:2c:cb:d7:76:93: 46:ae:10:f5:b6:56:8d:cc:f4:d8:26:1d:a6:64:fe: a3:4a:ac:08:4c:e8:3f:b5:8d:45:a8:42:18:3f:9a: a6:41:08:ab:53:b5:88:83:7c:bc:bf:38:2c:31:14: 18:b6:28:d1:bf:d8:6f:8e:ad:7d:df:5c:f4:f9:ad: 39:dc:b4:12:51:99:b3:cb:db:f1:3a:36:38:4a:e3: 1a:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:87:24:35:E8:A7:8E:25:8F:9B:D9:12:F8:AE:82:60:88:90:CA:C5 X509v3 Authority Key Identifier: keyid:A6:0C:98:21:F5:30:B0:D5:3A:67:A9:8B:76:71:96:C4:0A:2D:5A:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgyYIfUwsNU6Z6mLdnGWxAotWmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/pgyYIfUwsNU6Z6mLdnGWxAotWmY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:00:e9:3b:3f:64:ed:5b:5d:5f:9e:dc:a9:7a:b1:a7:43:51: 14:4f:fc:19:17:43:ad:9f:59:7e:55:e1:ed:ff:65:ee:8a:2b: d8:51:8f:77:8c:2e:25:4e:af:72:e6:b3:bb:e9:c6:b7:eb:38: 04:62:59:a6:fe:15:56:ac:b3:15:d2:7f:c6:43:f2:3b:7f:0f: 81:00:2b:c8:2f:4f:17:96:ef:85:80:da:4a:1a:43:ad:7f:bc: 4e:7e:ed:d0:9f:bb:a8:e9:2c:33:33:07:c7:1c:eb:9a:49:5a: 82:d7:a4:ab:12:e8:99:22:1e:e2:d9:e9:40:f9:07:ac:9b:cc: 6b:c6:e4:61:ca:ee:82:33:c1:cb:63:36:7f:89:06:35:1f:78: 85:bf:2a:bd:0d:b5:2a:3e:80:dc:43:82:02:26:a0:77:f2:2e: 91:30:2c:79:16:27:e8:e8:d4:7c:0e:18:fd:e7:7c:04:5a:2a: a2:ac:e6:ef:a3:b6:ff:e3:26:ba:87:1a:9e:8f:17:35:a5:63: 84:50:da:18:bc:bd:1d:3c:08:af:f0:a3:a0:e3:60:0b:07:93: c0:00:43:d2:ef:ca:cb:b8:51:c8:ff:9c:bb:f8:b4:2d:44:68: 91:ed:7f:a5:1c:24:d8:38:bb:70:f5:8f:fd:aa:ec:c5:61:ef: 2e:54:bf:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEE2MEM5ODIxRjUzMEIwRDUzQTY3QTk4Qjc2NzE5NkM0 MEEyRDVBNjYwHhcNMjQwNTE4MTcxMjMyWhcNMjQwNTI1MTcxMjMyWjAYMRYwFAYD VQQDEw02NjQ4ZTE4MC0wYjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx09FwMnOEvaJ5cVMqfRXeWTYTQw/+16lgSF0HT3tjAxFqqZMB1ZskGXXTx0D Kx073meTAh0Kc4Ap8Z8prbXw+cutQYjV+SEIHV4ypAtUXzd9QwSbh5UxMb69aMLZ /9wVYVtgCGNpOPctpZQtth+5zA/igvWrdCuNKzO8fjZGTnFjxefqS5pLllszgGQn wkQsjfFTF2Wt6KHoIdj/lcDZt6l1Sk/jVP0rY2qKAdnELMvXdpNGrhD1tlaNzPTY Jh2mZP6jSqwITOg/tY1FqEIYP5qmQQirU7WIg3y8vzgsMRQYtijRv9hvjq1931z0 +a053LQSUZmzy9vxOjY4SuMaCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqHJDXo p44lj5vZEviugmCIkMrFMB8GA1UdIwQYMBaAFKYMmCH1MLDVOmepi3ZxlsQKLVpm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi9wZ3lZSWZVd3NOVTZaNm1MZG5HV3hBb3RX bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BneVlJZlV3c05VNlo2bUxkbkdXeEFvdFdtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi9wZ3lZSWZVd3NO VTZaNm1MZG5HV3hBb3RXbVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGAOk7P2TtW11fntyperGnQ1EUT/wZF0Otn1l+VeHt/2XuiivYUY93 jC4lTq9y5rO76ca36zgEYlmm/hVWrLMV0n/GQ/I7fw+BACvIL08Xlu+FgNpKGkOt f7xOfu3Qn7uo6SwzMwfHHOuaSVqC16SrEuiZIh7i2elA+Qesm8xrxuRhyu6CM8HL YzZ/iQY1H3iFvyq9DbUqPoDcQ4ICJqB38i6RMCx5Fifo6NR8Dhj953wEWiqirObv o7b/4ya6hxqejxc1pWOEUNoYvL0dPAiv8KOg42ALB5PAAEPS78rLuFHI/5y7+LQt RGiR7X+lHCTYOLtw9Y/9quzFYe8uVL8h -----END CERTIFICATE-----Generated at Sat May 18 17:37:34 2024 by rpki-client on console-fra.rpki-client.org