$ rpki-client -vvf rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft File: pOlXbOhgyP9flyr1k7QFTngj5kI.mft (raw, json) Hash identifier: J+AjiVk1fXZYhUvT7BykXAiG78tXlG6hIRSF353QgHU= Subject key identifier: F7:62:EC:CD:F6:02:99:63:94:C9:AA:65:A2:C0:F1:24:68:42:60:B9 Authority key identifier: A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 Certificate issuer: /CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Certificate serial: 2B7C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft Manifest number: 2B79 Signing time: Sun 26 May 2024 14:28:30 +0000 Manifest this update: Sun 26 May 2024 14:28:29 +0000 Manifest next update: Sun 02 Jun 2024 14:28:29 +0000 Files and hashes: 1: pOlXbOhgyP9flyr1k7QFTngj5kI.crl (hash: LOKntHn/CbtboEPb/1dXzdTp6xpghtsbY3AWk8yCXwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 14:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11132 (0x2b7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117E4D/serialNumber=A4E9576CE860C8FF5F972AF593B4054E7823E642 Validity Not Before: May 26 14:28:29 2024 GMT Not After : Jun 2 14:28:29 2024 GMT Subject: CN=6653470e-8d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:28:d0:58:d6:6b:08:c6:93:db:66:56:fb:90: bc:52:24:da:b1:59:12:ae:35:eb:81:55:23:48:d5: 80:61:51:df:a8:8b:45:95:ee:64:e8:13:a8:41:15: 12:2c:12:44:ff:0c:7b:d0:db:81:44:ad:74:0b:85: 49:04:e7:6e:69:2c:28:06:e4:53:3d:18:5b:f2:3b: 8a:18:b9:c5:68:3b:87:7a:26:8b:be:b7:dd:5f:44: ab:73:6e:3e:f7:17:09:e5:b4:6b:dc:d0:b0:56:83: da:ee:de:ef:2a:1d:99:37:07:01:95:50:3d:c1:dc: 5f:d8:e9:65:61:c0:6e:17:29:5f:77:20:83:11:8d: 99:32:02:6e:0d:f9:ae:34:ee:87:90:50:b4:b1:d2: cf:02:73:9e:69:9e:c7:d4:b1:1d:f8:c1:8e:69:51: f7:31:39:ad:91:4f:9e:51:04:6e:56:99:88:13:4a: 06:fc:72:c7:1e:0f:fc:54:73:9c:2e:1e:8a:d0:a3: 7a:7a:b2:5c:dd:be:e4:81:f0:ff:e8:6c:b6:04:f7: 56:5a:13:a2:cf:34:8a:d2:be:57:33:cc:9f:e0:03: 9c:77:26:20:1f:31:72:a4:b9:af:be:2e:b8:1b:4d: 12:09:09:17:68:71:f5:ab:06:cc:cb:75:2a:90:d8: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:62:EC:CD:F6:02:99:63:94:C9:AA:65:A2:C0:F1:24:68:42:60:B9 X509v3 Authority Key Identifier: keyid:A4:E9:57:6C:E8:60:C8:FF:5F:97:2A:F5:93:B4:05:4E:78:23:E6:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/pOlXbOhgyP9flyr1k7QFTngj5kI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117E4D/A64FBCE0C05811E39D8A06645911EA32/pOlXbOhgyP9flyr1k7QFTngj5kI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:38:f7:eb:a0:b3:bc:af:6e:ba:82:1c:ca:ff:be:e9:b2:3c: 75:a0:17:c1:1c:6c:29:cf:e8:dc:97:9d:73:b4:bd:a8:bc:bd: bf:2a:86:8c:03:47:af:5c:d8:41:73:23:c7:55:81:b4:1d:09: 7a:09:bf:11:d0:2d:f9:3d:86:e4:b1:4f:cf:36:18:11:09:33: e7:fa:d0:af:3b:2e:79:2f:fe:bb:50:21:af:97:7e:bd:51:fe: 50:9b:37:57:92:10:8f:37:1e:41:c7:44:85:2e:51:86:71:f5: d2:f7:ff:3d:6c:08:5f:ba:ae:de:2a:0d:0a:71:4c:a9:cd:b7: 6a:02:02:ad:d7:ab:0d:f2:e1:0c:a1:3e:25:81:4d:e3:74:55: 92:02:81:aa:d1:15:7f:03:d4:7d:ac:90:2c:1c:f6:64:a3:6e: 5d:48:3c:70:58:ff:74:6d:fd:b6:c6:0c:8b:a2:d8:7d:10:9f: e2:86:a6:de:c3:fe:65:1c:bf:ca:d7:6b:b7:e7:f0:19:26:3c: 8a:0c:3c:70:57:ea:47:f3:1f:fd:c4:e6:12:50:7a:8b:ce:8d: f4:b1:c8:e3:7b:0f:7c:cf:e5:3e:f3:87:88:86:4a:ca:47:6e: 29:0f:bc:6b:0f:cb:d5:c7:a3:9c:30:4d:60:cb:ca:07:bc:23: eb:2f:c7:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdFNEQxMTAvBgNVBAUTKEE0RTk1NzZDRTg2MEM4RkY1Rjk3MkFGNTkzQjQwNTRF NzgyM0U2NDIwHhcNMjQwNTI2MTQyODI5WhcNMjQwNjAyMTQyODI5WjAYMRYwFAYD VQQDEw02NjUzNDcwZS04ZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyjQWNZrCMaT22ZW+5C8UiTasVkSrjXrgVUjSNWAYVHfqItFle5k6BOoQRUS LBJE/wx70NuBRK10C4VJBOduaSwoBuRTPRhb8juKGLnFaDuHeiaLvrfdX0Src24+ 9xcJ5bRr3NCwVoPa7t7vKh2ZNwcBlVA9wdxf2OllYcBuFylfdyCDEY2ZMgJuDfmu NO6HkFC0sdLPAnOeaZ7H1LEd+MGOaVH3MTmtkU+eUQRuVpmIE0oG/HLHHg/8VHOc Lh6K0KN6erJc3b7kgfD/6Gy2BPdWWhOizzSK0r5XM8yf4AOcdyYgHzFypLmvvi64 G00SCQkXaHH1qwbMy3UqkNiSnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdi7M32 ApljlMmqZaLA8SRoQmC5MB8GA1UdIwQYMBaAFKTpV2zoYMj/X5cq9ZO0BU54I+ZC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0U0RC9BNjRGQkNFMEMw NTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQOWZseXIxazdRRlRuZ2o1 a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3BPbFhiT2hneVA5Zmx5cjFrN1FGVG5najVrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx N0U0RC9BNjRGQkNFMEMwNTgxMUUzOUQ4QTA2NjQ1OTExRUEzMi9wT2xYYk9oZ3lQ OWZseXIxazdRRlRuZ2o1a0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyOPfroLO8r266ghzK/77psjx1oBfBHGwpz+jcl51ztL2ovL2/KoaM A0evXNhBcyPHVYG0HQl6Cb8R0C35PYbksU/PNhgRCTPn+tCvOy55L/67UCGvl369 Uf5QmzdXkhCPNx5Bx0SFLlGGcfXS9/89bAhfuq7eKg0KcUypzbdqAgKt16sN8uEM oT4lgU3jdFWSAoGq0RV/A9R9rJAsHPZko25dSDxwWP90bf22xgyLoth9EJ/ihqbe w/5lHL/K12u35/AZJjyKDDxwV+pH8x/9xOYSUHqLzo30scjjew98z+U+84eIhkrK R24pD7xrD8vVx6OcME1gy8oHvCPrL8cZ -----END CERTIFICATE-----Generated at Sun May 26 19:10:21 2024 by rpki-client on console-ams.rpki-client.org