$ rpki-client -vvf rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft File: pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft (raw, json) Hash identifier: naWQ/lQsd2pVHf3jBbCKzjHsFIfax95+FC9MtGyEZOc= Subject key identifier: 4A:4D:4B:A0:D6:BB:E4:E0:99:2D:A7:E1:43:2E:76:F9:C8:58:10:92 Authority key identifier: A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC Certificate issuer: /CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Certificate serial: 046F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft Manifest number: 046B Signing time: Sun 05 May 2024 01:52:50 +0000 Manifest this update: Sun 05 May 2024 01:52:50 +0000 Manifest next update: Sun 12 May 2024 01:52:50 +0000 Files and hashes: 1: pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl (hash: Y39oUu8/uUCsTn94D1fGqmMFcThbK8I0Y5TqvM1qJyE=) 2: 4CBECA5CF9C311EBBA064C70C4F9AE02.roa (hash: NW9Dnogo6fzVe8/NSDdkiJhVqi35HTsWrAj7gpi+A34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1135 (0x46f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DCFB/serialNumber=A51741DC19CB9390402676A03A1FDAEBE0E7F2BC Validity Not Before: May 5 01:52:50 2024 GMT Not After : May 12 01:52:50 2024 GMT Subject: CN=6636e672-cbf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:78:02:44:b6:7d:30:d4:69:50:3d:10:c6:d4: eb:1c:c5:de:bb:1f:17:c9:d2:f2:68:64:73:1c:ba: 22:a0:e4:af:69:6c:ca:88:3e:4c:2d:fc:fa:32:1a: 8e:e5:81:a7:c2:ac:c5:5f:87:e7:a3:ac:e4:8f:1b: 64:90:d9:15:a1:cb:8a:b5:3e:b7:f9:86:d6:bd:da: 60:8c:3b:0f:e5:e1:e5:a9:9a:3e:a5:f5:f4:f3:c1: 01:f5:03:f7:42:78:ee:71:fb:8f:00:01:ff:07:61: ea:02:61:8f:cb:7c:18:d1:c0:af:a3:ac:b6:80:60: 10:67:2b:b9:1d:6c:11:0c:5c:18:28:af:d4:d6:ff: 8a:8b:5f:32:15:ef:df:e9:7b:92:88:b5:b8:98:90: da:0e:45:c2:40:07:59:67:0f:c1:27:1e:ad:e4:ae: be:cc:86:75:f2:29:f1:3f:2e:b8:51:68:d9:78:99: 27:2d:08:7c:9f:90:15:69:c0:4e:bb:14:bf:91:36: c4:39:2e:2a:33:48:fd:c2:ce:a1:6b:53:7d:b9:2b: 48:59:7a:94:21:4a:f7:0d:02:77:4e:17:2b:0a:51: 6c:a8:30:bf:d6:56:f3:e7:e4:4e:4a:82:48:33:3e: 4a:e3:26:9b:b0:05:3c:df:0f:6f:a6:c3:ed:88:b9: 9e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4D:4B:A0:D6:BB:E4:E0:99:2D:A7:E1:43:2E:76:F9:C8:58:10:92 X509v3 Authority Key Identifier: keyid:A5:17:41:DC:19:CB:93:90:40:26:76:A0:3A:1F:DA:EB:E0:E7:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pRdB3BnLk5BAJnagOh_a6-Dn8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DCFB/AAEA0DC0F9BF11EB80245E6AC4F9AE02/pRdB3BnLk5BAJnagOh_a6-Dn8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:2e:5e:fa:42:9b:ff:61:40:94:37:13:13:ff:c3:94:a0:68: 52:90:f6:ba:18:2c:1e:b2:7c:6b:a7:4d:1f:fa:f4:0f:92:b8: 7b:25:38:68:35:97:d1:08:62:90:da:41:36:25:1f:17:1b:3a: ef:9a:7f:08:8c:23:59:f5:1e:cf:f1:22:63:1d:2d:44:fd:9f: d8:90:34:53:be:82:25:b2:7e:47:c1:a7:40:36:f0:2a:1d:c0: 3b:a6:15:59:38:2b:f0:26:7a:95:72:9c:55:fd:04:e2:bc:61: b7:ac:12:8e:99:a3:53:f3:90:5a:7b:cc:ca:ef:e1:2e:cf:2d: af:75:b7:03:93:86:fb:b6:8d:26:4e:54:6a:11:b0:0a:c2:91: 07:c3:35:94:a1:d4:af:72:88:86:4c:3f:04:7a:00:36:29:50: dc:55:d1:d0:63:2e:7b:fc:8f:67:8c:ef:d4:71:23:20:aa:f3: ef:10:2f:3b:3b:c1:8d:43:4c:b6:dc:7d:4d:6a:20:ae:b5:e3: 08:48:c7:cf:73:38:9d:7f:52:93:18:8e:f2:18:9b:40:39:10: d1:bf:00:42:42:d2:b4:6a:c4:63:ad:b5:22:9a:c3:c2:d3:88: ed:25:9e:56:80:80:1b:db:55:79:e0:9d:f8:14:2f:2b:62:9a: 75:af:78:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURDRkIxMTAvBgNVBAUTKEE1MTc0MURDMTlDQjkzOTA0MDI2NzZBMDNBMUZEQUVC RTBFN0YyQkMwHhcNMjQwNTA1MDE1MjUwWhcNMjQwNTEyMDE1MjUwWjAYMRYwFAYD VQQDEw02NjM2ZTY3Mi1jYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArngCRLZ9MNRpUD0QxtTrHMXeux8XydLyaGRzHLoioOSvaWzKiD5MLfz6MhqO 5YGnwqzFX4fno6zkjxtkkNkVocuKtT63+YbWvdpgjDsP5eHlqZo+pfX088EB9QP3 QnjucfuPAAH/B2HqAmGPy3wY0cCvo6y2gGAQZyu5HWwRDFwYKK/U1v+Ki18yFe/f 6XuSiLW4mJDaDkXCQAdZZw/BJx6t5K6+zIZ18inxPy64UWjZeJknLQh8n5AVacBO uxS/kTbEOS4qM0j9ws6ha1N9uStIWXqUIUr3DQJ3ThcrClFsqDC/1lbz5+ROSoJI Mz5K4yabsAU83w9vpsPtiLmeFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpNS6DW u+TgmS2n4UMudvnIWBCSMB8GA1UdIwQYMBaAFKUXQdwZy5OQQCZ2oDof2uvg5/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRENGQi9BQUVBMERDMEY5 QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1QkFKbmFnT2hfYTYtRG44 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BSZEIzQm5MazVCQUpuYWdPaF9hNi1Ebjhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RENGQi9BQUVBMERDMEY5QkYxMUVCODAyNDVFNkFDNEY5QUUwMi9wUmRCM0JuTGs1 QkFKbmFnT2hfYTYtRG44cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiLl76Qpv/YUCUNxMT/8OUoGhSkPa6GCwesnxrp00f+vQPkrh7JTho NZfRCGKQ2kE2JR8XGzrvmn8IjCNZ9R7P8SJjHS1E/Z/YkDRTvoIlsn5HwadANvAq HcA7phVZOCvwJnqVcpxV/QTivGG3rBKOmaNT85Bae8zK7+Euzy2vdbcDk4b7to0m TlRqEbAKwpEHwzWUodSvcoiGTD8EegA2KVDcVdHQYy57/I9njO/UcSMgqvPvEC87 O8GNQ0y23H1NaiCuteMISMfPczidf1KTGI7yGJtAORDRvwBCQtK0asRjrbUimsPC 04jtJZ5WgIAb21V54J34FC8rYpp1r3gq -----END CERTIFICATE-----Generated at Sun May 5 03:09:53 2024 by rpki-client on console-ams.rpki-client.org