$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: HLPYVZu/rsahbF2jtJxPDeacNJ+nRdF4r8r6UBajBSA= Subject key identifier: 06:CD:DE:D3:DF:8B:4D:4C:9D:E4:2B:41:C2:41:23:BF:1C:E3:68:61 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 0788 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0783 Signing time: Sat 18 May 2024 22:12:43 +0000 Manifest this update: Sat 18 May 2024 22:12:43 +0000 Manifest next update: Sat 25 May 2024 22:12:43 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: 9P73LnZNQswoQIytQ9Ca4DYDhA+8e5Ttyv7ph0gW9A4=) 2: 0BCF58E2015A11EC94EA2C43C4F9AE02.roa (hash: Ad2dkpVpWsGxqATbvl0xMJkc/zspOSMKAdkhD/aSZtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1928 (0x788) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: May 18 22:12:43 2024 GMT Not After : May 25 22:12:43 2024 GMT Subject: CN=664927db-b5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:76:ab:89:1e:bb:48:43:77:4a:a4:3a:2f:b9: 94:4f:41:ec:be:f6:f2:de:68:8d:85:fb:57:43:43: 3b:18:57:48:cd:59:e8:01:0e:e3:36:7d:56:f9:74: 86:d5:fc:34:9b:c8:a5:de:0a:72:bc:04:12:27:23: dc:b4:c2:1d:d4:16:2f:84:96:49:d2:86:89:f7:91: f1:fe:66:bb:ef:f7:a4:41:26:98:2b:d5:af:36:79: ee:0c:56:73:ab:54:8b:33:57:a2:39:82:fb:a2:8f: f0:ae:92:e2:13:e3:f0:93:74:dc:52:df:da:7a:a6: 7d:94:75:5c:9b:e4:b7:34:37:47:62:c2:6c:63:73: 5e:06:15:c7:e6:7a:69:9a:a3:de:42:11:fc:b3:59: 34:33:72:77:0b:db:6f:d8:41:96:08:5b:16:8e:3b: e0:43:2e:53:1c:48:f4:7f:e8:6f:00:d6:da:34:31: 62:56:75:6e:77:12:e1:dd:a6:7e:98:85:77:10:61: 7b:ab:9a:d4:18:87:8e:55:aa:34:e7:14:66:09:76: 6d:0b:af:8d:96:36:9b:8b:22:4a:e2:7e:fd:8a:ab: 83:8b:8b:08:48:40:e7:fc:87:6e:da:b5:d3:b8:2b: de:42:90:33:4c:0b:c6:0d:44:e1:b5:1d:bc:57:2a: e5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:CD:DE:D3:DF:8B:4D:4C:9D:E4:2B:41:C2:41:23:BF:1C:E3:68:61 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:13:a8:3a:ef:44:1a:a7:6a:9f:94:7f:76:eb:de:b1:9c:2b: 54:49:af:c6:74:6a:2f:e2:63:f9:c0:bc:2e:ec:64:81:6f:6d: 28:79:86:40:bb:fe:6b:4b:f7:ae:cd:a7:90:77:be:af:d2:93: e0:49:34:dc:6f:d4:3a:e1:7c:0c:3f:5f:6d:41:b4:05:e5:d2: 10:f4:d4:cb:09:23:ec:fc:4d:81:ce:97:50:b0:f0:7f:ac:61: dc:99:3a:e5:fe:8d:4c:75:b7:1c:72:67:c1:c3:49:4d:e5:18: 57:48:d2:dc:4a:d4:df:9c:e8:97:79:49:92:ea:ba:14:8f:bc: 77:91:3f:69:d6:8d:8b:53:86:47:d8:70:60:b0:63:4b:2b:f4: 88:51:32:e9:20:88:01:06:9b:f1:ac:49:95:9f:41:8b:2d:4f: c7:cd:24:7e:b1:a2:1c:78:a4:c0:d8:b6:92:3f:f8:c3:e2:d7: 63:ad:7c:d4:d1:73:8c:0f:39:bb:d3:86:90:f9:e7:51:0d:70: 8a:c6:45:a5:44:7e:28:58:eb:58:81:bc:37:2c:3d:f9:ff:fd: 37:2b:ce:fa:0f:8a:f9:b9:e0:98:0c:40:53:c4:68:a9:a4:d6: 47:45:9a:19:7e:49:27:da:84:ad:a9:7e:73:30:45:44:2a:d4: 40:63:64:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjQwNTE4MjIxMjQzWhcNMjQwNTI1MjIxMjQzWjAYMRYwFAYD VQQDEw02NjQ5MjdkYi1iNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHariR67SEN3SqQ6L7mUT0Hsvvby3miNhftXQ0M7GFdIzVnoAQ7jNn1W+XSG 1fw0m8il3gpyvAQSJyPctMId1BYvhJZJ0oaJ95Hx/ma77/ekQSaYK9WvNnnuDFZz q1SLM1eiOYL7oo/wrpLiE+Pwk3TcUt/aeqZ9lHVcm+S3NDdHYsJsY3NeBhXH5npp mqPeQhH8s1k0M3J3C9tv2EGWCFsWjjvgQy5THEj0f+hvANbaNDFiVnVudxLh3aZ+ mIV3EGF7q5rUGIeOVao05xRmCXZtC6+NljabiyJK4n79iquDi4sISEDn/Idu2rXT uCveQpAzTAvGDUThtR28VyrlAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbN3tPf i01MneQrQcJBI78c42hhMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/E6g670Qap2qflH92696xnCtUSa/GdGov4mP5wLwu7GSBb20oeYZA u/5rS/euzaeQd76v0pPgSTTcb9Q64XwMP19tQbQF5dIQ9NTLCSPs/E2BzpdQsPB/ rGHcmTrl/o1MdbcccmfBw0lN5RhXSNLcStTfnOiXeUmS6roUj7x3kT9p1o2LU4ZH 2HBgsGNLK/SIUTLpIIgBBpvxrEmVn0GLLU/HzSR+saIceKTA2LaSP/jD4tdjrXzU 0XOMDzm704aQ+edRDXCKxkWlRH4oWOtYgbw3LD35//03K876D4r5ueCYDEBTxGip pNZHRZoZfkkn2oStqX5zMEVEKtRAY2TW -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org