$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: +KUvi4JeHYSstPylgDEWKegE5SSsOz0VsXS9Fv0/THs= Subject key identifier: 19:72:99:CE:F4:EE:84:C2:0C:D8:A4:44:9F:9B:61:E8:FC:29:D9:FE Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0A74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0A6F Signing time: Tue 30 Apr 2024 20:37:03 +0000 Manifest this update: Tue 30 Apr 2024 20:37:03 +0000 Manifest next update: Tue 07 May 2024 20:37:03 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: gJ04Ci9TBl3diIySGj+mJEbFdI7RZQvnM77H+mGiJbs=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: ZKl8ZS9GjVj0g18F2jv/rDCZr/m5D23OwiqZ7fI/VrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2676 (0xa74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Apr 30 20:37:03 2024 GMT Not After : May 7 20:37:03 2024 GMT Subject: CN=6631566f-e927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f9:bc:27:99:76:c4:5e:52:e6:2f:20:0d:84: c2:34:61:5a:f0:f3:3f:8b:97:e1:ce:2e:92:39:fb: 77:8b:08:38:a6:07:92:1f:3a:7b:de:9c:7f:a6:30: 9a:4a:97:4f:3d:85:51:f5:cf:d7:fc:4a:c3:d9:6e: 6c:b6:a0:b8:69:7e:17:da:88:f3:be:73:c7:56:0e: 61:df:97:c6:d5:8e:bf:ec:28:1c:cb:4d:64:78:ac: 23:7f:8d:47:3c:75:f8:1b:1e:1b:aa:d9:25:fa:72: 26:5c:96:96:a9:dc:9a:9e:eb:b7:4b:b0:2c:15:42: 71:c9:5a:24:07:3e:79:5b:11:1e:39:4b:0b:64:4b: 05:11:51:fa:53:d7:79:da:a4:f1:8f:3b:0f:be:1b: 2c:b2:d6:d4:45:fc:53:a7:a1:38:fa:3f:be:40:59: c1:78:e2:6f:27:5b:73:8d:34:80:95:91:8e:84:ac: aa:29:9c:18:0e:a9:07:56:43:1e:08:17:c3:a4:de: e8:91:4a:57:7e:63:1a:e6:01:68:3e:8b:90:f2:27: 48:9e:87:51:5d:74:16:eb:9c:a9:ef:c5:c8:60:24: 47:58:b0:f4:d7:15:90:46:6b:c9:5d:44:19:52:00: 7a:59:e1:59:b3:98:e4:38:5b:31:65:89:0b:70:4e: ae:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:72:99:CE:F4:EE:84:C2:0C:D8:A4:44:9F:9B:61:E8:FC:29:D9:FE X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:a3:b8:6d:ce:a2:ff:87:5b:34:f0:c6:a0:aa:a9:7d:42:38: 82:6e:fc:4d:52:8c:10:3a:ad:d7:f9:be:21:63:59:53:8d:08: 29:16:8f:24:d9:85:90:73:ea:8a:ba:7c:17:18:7b:df:11:ac: 4c:9a:05:90:de:e8:9b:43:7a:26:2e:7e:05:f4:53:db:de:03: fd:59:77:c9:66:b6:17:b3:54:5c:70:eb:32:34:db:9f:7d:7e: 73:38:4a:45:bb:68:99:36:e4:29:97:ef:80:33:51:8c:d9:75: 7a:c1:f4:f2:6b:69:e7:f6:fc:27:bf:48:7c:27:77:43:af:e5: 50:4a:b4:5f:c9:22:1d:83:bb:3c:e7:42:92:42:41:58:a6:08: d9:db:c7:00:24:06:72:34:9f:57:e4:7b:ee:90:fd:13:4d:61: 37:2a:58:43:b6:1c:8d:16:da:c2:45:62:81:57:4a:9e:7b:b3: 80:cd:f4:a6:ea:f2:64:5b:15:78:dc:44:99:f2:73:4b:1e:25: 6a:81:8c:99:e0:ee:07:ce:1e:72:cb:61:2e:15:17:9d:7e:c6: df:0c:ab:9f:dc:4d:7a:9e:81:8c:09:bd:26:8e:0d:37:e9:da: f4:60:f0:0c:33:de:99:95:27:28:d6:7f:a7:e5:1f:35:36:0c: f9:8a:cc:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjQwNDMwMjAzNzAzWhcNMjQwNTA3MjAzNzAzWjAYMRYwFAYD VQQDEw02NjMxNTY2Zi1lOTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pm8J5l2xF5S5i8gDYTCNGFa8PM/i5fhzi6SOft3iwg4pgeSHzp73px/pjCa SpdPPYVR9c/X/ErD2W5stqC4aX4X2ojzvnPHVg5h35fG1Y6/7Cgcy01keKwjf41H PHX4Gx4bqtkl+nImXJaWqdyanuu3S7AsFUJxyVokBz55WxEeOUsLZEsFEVH6U9d5 2qTxjzsPvhssstbURfxTp6E4+j++QFnBeOJvJ1tzjTSAlZGOhKyqKZwYDqkHVkMe CBfDpN7okUpXfmMa5gFoPouQ8idInodRXXQW65yp78XIYCRHWLD01xWQRmvJXUQZ UgB6WeFZs5jkOFsxZYkLcE6ukwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBlymc70 7oTCDNikRJ+bYej8Kdn+MB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXo7htzqL/h1s08Magqql9QjiCbvxNUowQOq3X+b4hY1lTjQgpFo8k 2YWQc+qKunwXGHvfEaxMmgWQ3uibQ3omLn4F9FPb3gP9WXfJZrYXs1RccOsyNNuf fX5zOEpFu2iZNuQpl++AM1GM2XV6wfTya2nn9vwnv0h8J3dDr+VQSrRfySIdg7s8 50KSQkFYpgjZ28cAJAZyNJ9X5HvukP0TTWE3KlhDthyNFtrCRWKBV0qee7OAzfSm 6vJkWxV43ESZ8nNLHiVqgYyZ4O4Hzh5yy2EuFRedfsbfDKuf3E16noGMCb0mjg03 6dr0YPAMM96ZlSco1n+n5R81Ngz5iswg -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:48 2024 by rpki-client on console-ams.rpki-client.org