$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: n/AvUPq0eVYQp5w1P8On85l9XbMA/C49WbisBVwiuns= Subject key identifier: B7:A7:78:67:17:B5:F3:72:20:C8:45:39:ED:7E:48:72:10:90:04:B1 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: BA Signing time: Wed 22 May 2024 20:13:47 +0000 Manifest this update: Wed 22 May 2024 20:13:47 +0000 Manifest next update: Wed 29 May 2024 20:13:47 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: g20gyutRXZfl0l0zu4T6O7WD8mskdNtc0uLgFcq4cEg=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: kH6YTyg5VZFCMs5Bi0gDr+yta9bat2gmJ7apVoefsTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 20:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: May 22 20:13:47 2024 GMT Not After : May 29 20:13:47 2024 GMT Subject: CN=664e51fb-a58f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:d7:ab:e8:92:5a:39:8d:52:0d:b6:41:f7: 08:e4:6d:e5:ac:12:e5:7f:59:3f:aa:03:b5:77:49: 94:b2:4d:1b:05:42:66:5d:46:1e:8c:71:5d:c8:19: b3:9a:79:5c:1b:ed:76:d2:55:76:4f:a5:29:05:77: b4:7b:01:35:59:46:1e:6e:3c:da:04:35:c1:5e:c4: 1b:01:ff:9e:3c:0f:b1:89:a9:16:e0:1e:03:e7:16: f7:51:7f:cd:23:5c:58:26:6a:b8:61:05:2c:34:4c: af:fb:8f:d5:4d:e9:fe:f2:0b:d0:62:ec:de:f8:ed: 54:e3:c8:6a:a8:48:9d:43:db:44:5f:70:91:cd:b4: 68:f9:4e:6f:80:38:ae:d6:20:da:40:c6:5e:63:b6: f4:e2:c8:78:a0:49:22:5e:80:15:80:02:7d:9c:58: 94:13:ce:1f:f5:39:c8:eb:00:27:37:b5:db:bb:b4: 38:e3:23:7c:8f:f3:75:9e:16:5e:bc:55:0a:90:eb: 0f:ba:5e:43:fe:8b:c1:5b:4a:bd:94:dc:5b:14:cf: 1c:e7:1b:d0:6e:00:83:35:e4:22:3b:f3:c4:e3:00: 65:3e:30:08:11:3d:ae:b9:6a:f7:42:1d:d6:92:6d: 09:3d:ae:98:63:ea:1a:77:76:c9:a4:bd:da:7e:8f: fe:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:A7:78:67:17:B5:F3:72:20:C8:45:39:ED:7E:48:72:10:90:04:B1 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:75:76:20:be:31:8a:08:c0:28:af:7a:d6:35:75:68:df:09: 2a:0e:a2:7d:df:1a:ec:75:09:86:f9:0b:75:f8:c1:64:08:19: 8f:89:a5:71:ce:24:b8:c1:4e:b7:7c:01:49:0b:10:e3:35:31: f2:6e:f8:8d:23:b3:a4:1d:a8:1b:9d:cc:02:bc:53:0f:cf:bd: c0:c4:47:3a:a9:f0:6d:2a:5b:57:e3:f5:b8:dc:0c:b6:06:c5: a8:79:f5:07:b5:e7:32:02:52:e6:6b:6f:81:40:52:b4:e9:1f: 48:af:c3:c9:ec:26:05:b4:2a:b0:73:8d:5e:92:ed:63:4c:a7: 09:d5:7a:ca:83:e0:76:b2:71:4e:2e:32:77:ca:d3:37:a7:f8: 66:c9:9b:da:36:1d:af:0e:6e:c8:92:1f:2a:44:c3:d8:fa:6e: a5:ae:31:9a:51:c8:f1:4f:68:1f:ca:9e:ca:44:bd:ba:a0:8b: ec:5f:d6:a6:39:16:4e:1b:af:29:c0:0c:1a:8e:24:bc:42:dd: 9c:50:99:82:07:34:80:5f:8e:5e:b0:cf:d5:94:1e:58:00:fa: 7a:8a:ed:53:19:77:3d:3b:ab:67:9c:63:1d:63:da:33:70:c1: 43:0f:9f:b1:4e:e9:32:1b:d2:aa:e8:f0:a8:01:14:11:b5:e3: 10:1a:1a:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjQwNTIyMjAxMzQ3WhcNMjQwNTI5MjAxMzQ3WjAYMRYwFAYD VQQDEw02NjRlNTFmYi1hNThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA217Xq+iSWjmNUg22QfcI5G3lrBLlf1k/qgO1d0mUsk0bBUJmXUYejHFdyBmz mnlcG+120lV2T6UpBXe0ewE1WUYebjzaBDXBXsQbAf+ePA+xiakW4B4D5xb3UX/N I1xYJmq4YQUsNEyv+4/VTen+8gvQYuze+O1U48hqqEidQ9tEX3CRzbRo+U5vgDiu 1iDaQMZeY7b04sh4oEkiXoAVgAJ9nFiUE84f9TnI6wAnN7Xbu7Q44yN8j/N1nhZe vFUKkOsPul5D/ovBW0q9lNxbFM8c5xvQbgCDNeQiO/PE4wBlPjAIET2uuWr3Qh3W km0JPa6YY+oad3bJpL3afo/+dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeneGcX tfNyIMhFOe1+SHIQkASxMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEdXYgvjGKCMAor3rWNXVo3wkqDqJ93xrsdQmG+Qt1+MFkCBmPiaVx ziS4wU63fAFJCxDjNTHybviNI7OkHagbncwCvFMPz73AxEc6qfBtKltX4/W43Ay2 BsWoefUHtecyAlLma2+BQFK06R9Ir8PJ7CYFtCqwc41eku1jTKcJ1XrKg+B2snFO LjJ3ytM3p/hmyZvaNh2vDm7Ikh8qRMPY+m6lrjGaUcjxT2gfyp7KRL26oIvsX9am ORZOG68pwAwajiS8Qt2cUJmCBzSAX45esM/VlB5YAPp6iu1TGXc9O6tnnGMdY9oz cMFDD5+xTukyG9Kq6PCoARQRteMQGhpz -----END CERTIFICATE-----Generated at Wed May 22 23:16:37 2024 by rpki-client on console-ams.rpki-client.org