$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: kcmLIsW5iCavE1AYPYnKHToC3TOzKkLS4NXMcupjWiY= Subject key identifier: 93:84:68:77:7D:0C:37:A6:FA:87:A1:7C:50:03:C0:9B:CF:B3:F8:6E Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0D61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0D49 Signing time: Sat 18 May 2024 18:40:08 +0000 Manifest this update: Sat 18 May 2024 18:40:07 +0000 Manifest next update: Sat 25 May 2024 18:40:07 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: h95m62seI7USR/hMqg4C/RGPfVWWkyumwUJIHQzrFks=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: 6DLxtAbKI0TdBhmj3SbmREK/S1JyCj5OlF8tz2zn8hE=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: BFItKdByLIEkXoft9kFeiVrhIrvjybyyrxXKRRvzUHA=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: TrGSIyh6C09xmAUxJKHOBcNW39FMNadQbNfVuEP5YqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3425 (0xd61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: May 18 18:40:07 2024 GMT Not After : May 25 18:40:07 2024 GMT Subject: CN=6648f608-9cd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:09:6e:db:b0:89:c3:f1:4f:cb:88:e1:e0: 10:96:3e:e2:9c:ba:50:ab:8c:a8:b2:22:c1:a0:f9: 26:7e:5e:8b:c6:e9:9f:51:fa:b0:a1:7c:3b:a0:6c: a4:7e:28:52:f9:93:6d:8e:0f:e4:53:21:3d:96:78: 35:22:58:c3:2e:cb:51:ba:0b:85:c5:90:46:90:5a: db:6a:e4:03:b6:41:6a:9d:af:46:a5:bb:c9:a1:f3: 85:02:ab:0d:3c:12:10:f4:0a:3b:78:5e:50:6d:fa: 07:f9:af:23:e7:5b:1f:a7:d1:8f:4d:d5:5c:e1:25: f9:ea:7f:5f:46:ae:39:e3:06:12:d8:86:2a:66:5b: 41:9d:46:6d:0d:1b:89:9c:ec:09:96:51:e2:f8:36: 93:18:f1:25:92:37:a6:4a:ee:8d:e0:ae:db:49:b0: 0b:e8:64:e1:12:4c:47:2d:c9:fe:64:5c:c4:47:09: 0a:4a:11:a6:ca:3c:54:60:40:3d:10:21:e7:3b:84: 7a:de:78:4a:ac:6b:fa:b2:8d:d5:6e:63:74:fb:ae: ae:c5:03:65:e7:1b:7e:68:68:b0:7b:b6:dc:66:5e: c2:eb:10:fc:26:18:fc:f3:b1:7a:a7:31:c5:33:f1: a3:64:8c:da:ee:69:a6:d1:ec:ae:ab:90:1f:34:6e: e8:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:84:68:77:7D:0C:37:A6:FA:87:A1:7C:50:03:C0:9B:CF:B3:F8:6E X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:c4:4b:63:8f:60:fc:9d:5b:6e:ec:db:36:c5:2c:32:83:4b: c9:95:13:77:5a:61:a4:48:ec:24:ae:05:44:24:a9:09:97:77: 97:d0:f5:dd:2e:29:db:54:18:18:b9:19:c5:be:57:9b:5f:3c: c9:e4:a2:9f:1f:96:87:33:fd:23:bc:70:2e:74:63:ed:26:18: 05:ce:bd:1b:ee:4d:ae:09:94:88:8a:37:ea:72:45:bf:40:c7: 6e:c4:93:22:49:8c:30:97:f7:d5:28:70:4b:68:8f:1c:8a:65: d9:2c:8a:d2:29:d5:f0:7d:58:52:f5:bc:5f:cb:99:4e:3b:96: 06:68:7a:49:f5:1f:b1:6d:bd:07:b0:7b:59:70:43:67:ac:f5: 7a:f2:17:cf:ae:78:61:1d:72:c8:12:a6:11:f1:42:79:8f:d4: 09:66:50:4d:f7:2b:95:a4:ed:8c:cb:f9:d3:bb:2b:7a:82:af: e5:bc:e7:3b:15:c8:67:5c:59:15:60:9f:16:7d:67:f8:fa:ed: 2e:b7:af:aa:94:56:6e:4d:3e:d6:e6:ad:5c:42:3a:c3:5b:de: 3d:a1:3e:d6:32:5c:df:f8:0c:48:38:41:fb:ca:ef:b9:94:94: d7:2b:c1:c8:4c:6a:e5:f3:5c:65:45:e1:fc:c3:b2:86:c8:69: 8b:70:cf:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjQwNTE4MTg0MDA3WhcNMjQwNTI1MTg0MDA3WjAYMRYwFAYD VQQDEw02NjQ4ZjYwOC05Y2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2MJbtuwicPxT8uI4eAQlj7inLpQq4yosiLBoPkmfl6LxumfUfqwoXw7oGyk fihS+ZNtjg/kUyE9lng1IljDLstRuguFxZBGkFrbauQDtkFqna9GpbvJofOFAqsN PBIQ9Ao7eF5QbfoH+a8j51sfp9GPTdVc4SX56n9fRq454wYS2IYqZltBnUZtDRuJ nOwJllHi+DaTGPElkjemSu6N4K7bSbAL6GThEkxHLcn+ZFzERwkKShGmyjxUYEA9 ECHnO4R63nhKrGv6so3VbmN0+66uxQNl5xt+aGiwe7bcZl7C6xD8Jhj887F6pzHF M/GjZIza7mmm0eyuq5AfNG7oVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOEaHd9 DDem+oehfFADwJvPs/huMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9xEtjj2D8nVtu7Ns2xSwyg0vJlRN3WmGkSOwkrgVEJKkJl3eX0PXd LinbVBgYuRnFvlebXzzJ5KKfH5aHM/0jvHAudGPtJhgFzr0b7k2uCZSIijfqckW/ QMduxJMiSYwwl/fVKHBLaI8cimXZLIrSKdXwfVhS9bxfy5lOO5YGaHpJ9R+xbb0H sHtZcENnrPV68hfPrnhhHXLIEqYR8UJ5j9QJZlBN9yuVpO2My/nTuyt6gq/lvOc7 FchnXFkVYJ8WfWf4+u0ut6+qlFZuTT7W5q1cQjrDW949oT7WMlzf+AxIOEH7yu+5 lJTXK8HITGrl81xlReH8w7KGyGmLcM8r -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org