$ rpki-client -vvf rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft File: PShwiOOGgqTkudgoRQszZr3q1d0.mft (raw, json) Hash identifier: qSjWRY+BzWjWC5yKEo2Am6lPordmG1fXRzgDrM9Ps28= Subject key identifier: 34:47:7B:E7:D3:FB:0E:E9:FE:C3:44:2D:8B:0E:8E:B4:59:76:04:77 Authority key identifier: 3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD Certificate issuer: /CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Certificate serial: 0B59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft Manifest number: 0B4A Signing time: Sat 18 May 2024 19:44:03 +0000 Manifest this update: Sat 18 May 2024 19:44:03 +0000 Manifest next update: Sat 25 May 2024 19:44:03 +0000 Files and hashes: 1: PShwiOOGgqTkudgoRQszZr3q1d0.crl (hash: TIvYVNntp8WtB5t1weisd5rVNQl7t4qkzjNA3U1iPWQ=) 2: 7716938A416211EB9B0F3C54C4F9AE02.roa (hash: hCaAEWq2eMhrSimlnmRSol9Ew4VVk2u8ZIHdiArRPpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:44:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F02EA/serialNumber=3D287088E38682A4E4B9D828450B3366BDEAD5DD Validity Not Before: May 18 19:44:03 2024 GMT Not After : May 25 19:44:03 2024 GMT Subject: CN=66490503-22ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:fd:ce:a8:64:84:41:79:72:bc:01:35:86:d7: 78:15:69:95:6f:e9:98:20:51:8d:1b:2c:c4:20:05: 47:0f:0b:fd:8d:54:59:23:a4:ad:f2:22:50:fc:0b: 72:d5:9d:a0:e3:06:e3:13:f9:b2:7d:9d:0f:ca:50: 19:4b:47:80:52:55:42:59:89:64:41:48:68:5b:80: e5:a8:8d:dd:6d:8e:a9:51:39:39:f4:93:3c:e8:1c: 7b:0c:11:cb:df:8d:9b:ae:c6:06:1a:6b:98:51:94: cf:da:1a:a0:71:95:a0:3d:b1:7d:08:fd:f1:8b:36: f2:23:31:ef:c1:50:bc:f5:a7:9c:29:02:3a:da:1f: f8:eb:47:3f:7e:77:36:07:cb:b4:86:1e:a8:8d:b3: f5:6d:e9:1c:c1:9e:9f:22:fa:46:0d:b4:50:dc:90: de:81:c5:9f:b5:27:f7:eb:7b:91:05:f6:7f:66:98: be:9e:08:d0:5f:72:c4:f5:51:82:3a:29:e6:f1:58: 1a:32:1b:d8:b2:56:d4:6d:6a:05:69:87:34:a5:63: 79:80:f0:49:a1:3e:0e:86:30:f5:fe:3a:8e:84:5a: 6e:b9:e4:ab:a4:4e:e7:da:3c:c0:c6:90:64:3d:3a: b4:ab:67:6f:7f:00:37:cd:32:9f:a9:c4:c0:5c:80: 63:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:47:7B:E7:D3:FB:0E:E9:FE:C3:44:2D:8B:0E:8E:B4:59:76:04:77 X509v3 Authority Key Identifier: keyid:3D:28:70:88:E3:86:82:A4:E4:B9:D8:28:45:0B:33:66:BD:EA:D5:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PShwiOOGgqTkudgoRQszZr3q1d0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F02EA/DB15CDE011DB11EA95F2B059C4F9AE02/PShwiOOGgqTkudgoRQszZr3q1d0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:74:2e:fe:b0:2d:bd:4c:62:e8:cc:f0:c4:00:97:f0:aa:9e: 00:df:f3:08:87:21:fe:b2:6d:35:e9:16:3e:a4:7a:91:87:78: e0:35:75:2b:18:bd:26:d5:9a:14:4d:92:4d:11:c7:f0:05:0a: 9e:03:13:19:61:c1:e0:72:40:9c:7f:b2:e5:4f:21:73:79:c6: 57:af:63:f7:bb:9b:08:75:a8:9e:d6:cc:a8:73:a5:5d:92:4a: e9:a7:ce:c7:1b:c3:99:81:45:53:fb:2e:4f:12:8c:af:6d:6a: 03:22:1f:9c:32:1e:39:10:ca:f9:29:f9:3d:ad:3e:84:03:0b: 26:a5:25:73:6c:d9:98:95:a7:c3:08:a7:c5:57:68:ef:9d:0d: dd:e6:6a:a9:e2:ad:ae:e0:b8:1d:b2:1f:8e:6e:27:98:76:c8: c0:b9:b5:79:16:55:78:10:0d:9d:76:4b:2a:b3:73:49:78:e0: 7e:70:02:bd:c9:53:22:b7:98:24:a3:28:ce:68:6b:72:d9:4f: dc:fd:1c:08:60:07:a1:ef:37:7c:90:46:87:79:43:d9:1f:35: 31:52:be:56:26:ec:0a:a2:28:8f:d9:f9:a1:25:67:d3:24:45: 2f:eb:b1:9c:0a:62:50:31:bc:6a:d6:8a:35:8f:e7:43:9e:f6: 53:37:9e:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAyRUExMTAvBgNVBAUTKDNEMjg3MDg4RTM4NjgyQTRFNEI5RDgyODQ1MEIzMzY2 QkRFQUQ1REQwHhcNMjQwNTE4MTk0NDAzWhcNMjQwNTI1MTk0NDAzWjAYMRYwFAYD VQQDEw02NjQ5MDUwMy0yMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/3OqGSEQXlyvAE1htd4FWmVb+mYIFGNGyzEIAVHDwv9jVRZI6St8iJQ/Aty 1Z2g4wbjE/myfZ0PylAZS0eAUlVCWYlkQUhoW4DlqI3dbY6pUTk59JM86Bx7DBHL 342brsYGGmuYUZTP2hqgcZWgPbF9CP3xizbyIzHvwVC89aecKQI62h/460c/fnc2 B8u0hh6ojbP1bekcwZ6fIvpGDbRQ3JDegcWftSf363uRBfZ/Zpi+ngjQX3LE9VGC Oinm8VgaMhvYslbUbWoFaYc0pWN5gPBJoT4OhjD1/jqOhFpuueSrpE7n2jzAxpBk PTq0q2dvfwA3zTKfqcTAXIBjpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRHe+fT +w7p/sNELYsOjrRZdgR3MB8GA1UdIwQYMBaAFD0ocIjjhoKk5LnYKEULM2a96tXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDJFQS9EQjE1Q0RFMDEx REIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dxVGt1ZGdvUlFzelpyM3Ex ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTaHdpT09HZ3FUa3VkZ29SUXN6WnIzcTFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDJFQS9EQjE1Q0RFMDExREIxMUVBOTVGMkIwNTlDNEY5QUUwMi9QU2h3aU9PR2dx VGt1ZGdvUlFzelpyM3ExZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFdC7+sC29TGLozPDEAJfwqp4A3/MIhyH+sm016RY+pHqRh3jgNXUr GL0m1ZoUTZJNEcfwBQqeAxMZYcHgckCcf7LlTyFzecZXr2P3u5sIdaie1syoc6Vd kkrpp87HG8OZgUVT+y5PEoyvbWoDIh+cMh45EMr5Kfk9rT6EAwsmpSVzbNmYlafD CKfFV2jvnQ3d5mqp4q2u4Lgdsh+ObieYdsjAubV5FlV4EA2ddksqs3NJeOB+cAK9 yVMit5gkoyjOaGty2U/c/RwIYAeh7zd8kEaHeUPZHzUxUr5WJuwKoiiP2fmhJWfT JEUv67GcCmJQMbxq1oo1j+dDnvZTN56p -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org