$ rpki-client -vvf rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft File: pgmpTmohAbr5XIwvVc7EF5Jb788.mft (raw, json) Hash identifier: bcvbZMrnYI7llc4EHFIyXmqu0sGz96FIVTLBqJ53/Ak= Subject key identifier: D6:BA:87:C2:59:5C:49:4B:A2:08:20:7F:87:D8:F0:34:68:89:51:D7 Authority key identifier: A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF Certificate issuer: /CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft Manifest number: 29 Signing time: Wed 15 May 2024 08:39:17 +0000 Manifest this update: Wed 15 May 2024 08:39:17 +0000 Manifest next update: Wed 22 May 2024 08:39:17 +0000 Files and hashes: 1: pgmpTmohAbr5XIwvVc7EF5Jb788.crl (hash: BR24X6rypO0XYbCj4NrqRsBM8G1hwI2v3dXsqNQbHZQ=) 2: 2FA91770D61A11EE9BDDD627C4F9AE02.roa (hash: LhQg3v+DKEuqfQ1guUzcTe46O/GbPPONw8o80pMgN8E=) 3: EF260118D54211EEA18A7234C4F9AE02.roa (hash: 2TNI2Bme8Dtnxp1P56AVS7vS8btEgm8hcjowYVLO74I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Validity Not Before: May 15 08:39:17 2024 GMT Not After : May 22 08:39:17 2024 GMT Subject: CN=664474b5-d5db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:27:24:54:64:77:63:fe:87:e4:b0:60:8e:df: 97:1b:98:e7:eb:f8:fc:28:5f:07:e3:b2:db:96:4e: 84:77:21:99:8d:46:8d:c4:63:ba:a4:fb:f5:1b:71: 95:0c:35:79:f4:bc:59:94:ba:89:77:0a:1a:44:fe: ae:b1:0f:e4:24:23:3c:dc:29:6f:72:a6:f6:bd:2e: 00:a0:39:c5:9a:5b:1f:05:52:53:e3:ca:58:ae:b1: 4f:32:78:ef:11:37:4e:51:d8:80:2a:c3:7d:c7:7c: db:6d:2b:27:b8:7e:40:7c:cb:0b:8e:9e:13:85:77: 4b:6e:dc:dc:7f:cb:6b:a0:8f:75:8e:46:74:36:eb: 6a:9f:e3:a0:88:74:40:43:7d:24:c5:70:23:59:16: 8a:62:57:c0:cd:4c:fa:36:fe:39:77:84:73:ed:58: b9:76:ba:56:21:3e:5e:e4:33:4f:4b:a7:90:fe:9a: 06:97:ae:79:3c:e2:5d:98:cd:e5:80:83:ef:52:5b: b2:5f:c2:68:69:88:f8:9e:84:27:3f:f3:f8:5d:fc: c7:90:d0:b8:97:7a:f4:8a:4d:53:2c:56:f5:53:64: 29:32:40:8a:96:8f:48:ee:f7:ca:46:33:9c:02:9e: da:bc:50:eb:9b:94:3f:be:21:b8:70:b8:4d:a3:5d: 26:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BA:87:C2:59:5C:49:4B:A2:08:20:7F:87:D8:F0:34:68:89:51:D7 X509v3 Authority Key Identifier: keyid:A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:7f:57:0b:f3:84:64:f2:cd:c1:e6:40:13:ec:21:d1:0a:b5: d6:7c:b7:46:ee:8b:71:83:8e:bb:ef:c0:7a:38:9b:07:ac:30: e8:72:73:20:6e:7d:17:4b:bf:80:ad:93:9f:ca:57:08:8c:f1: 25:16:be:52:bd:4e:0d:f0:b9:33:83:7f:81:01:ca:4d:0c:75: 9e:ba:69:12:97:c4:12:65:0e:b1:a4:6f:fe:f5:c3:88:e5:fe: 6f:ad:a1:be:4a:38:62:71:3c:0a:8c:a1:f5:f6:e6:8d:4e:0a: 59:d1:18:69:cf:23:02:4e:b4:d5:39:86:bc:86:d2:8b:6e:ed: 0d:8b:73:b8:e8:41:d2:86:80:c7:c8:71:28:58:79:70:e8:e8: 19:9f:8e:f5:04:1b:d5:5c:cc:5b:22:6c:db:30:69:9c:bc:c9: 9d:4e:83:73:97:c1:0c:1a:68:b2:1f:b6:26:55:04:86:a1:9b: 44:03:f5:39:e8:32:5e:c4:eb:7a:18:7b:4c:c8:d5:fb:5c:46: 38:c9:c7:44:da:0c:f9:c9:fc:bb:11:ec:0e:ab:28:59:9d:a1: 7c:10:e0:3c:4b:bc:90:d1:cd:e8:9a:01:31:3a:09:79:89:ed: b7:6a:a5:15:47:9b:00:b8:e2:3e:77:77:37:6a:8b:46:b5:7e: a8:8e:80:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjAxMDExMC8GA1UEBRMoQTYwOUE5NEU2QTIxMDFCQUY5NUM4QzJGNTVDRUM0MTc5 MjVCRUZDRjAeFw0yNDA1MTUwODM5MTdaFw0yNDA1MjIwODM5MTdaMBgxFjAUBgNV BAMTDTY2NDQ3NGI1LWQ1ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTJyRUZHdj/ofksGCO35cbmOfr+PwoXwfjstuWToR3IZmNRo3EY7qk+/UbcZUM NXn0vFmUuol3ChpE/q6xD+QkIzzcKW9ypva9LgCgOcWaWx8FUlPjyliusU8yeO8R N05R2IAqw33HfNttKye4fkB8ywuOnhOFd0tu3Nx/y2ugj3WORnQ262qf46CIdEBD fSTFcCNZFopiV8DNTPo2/jl3hHPtWLl2ulYhPl7kM09Lp5D+mgaXrnk84l2YzeWA g+9SW7JfwmhpiPiehCc/8/hd/MeQ0LiXevSKTVMsVvVTZCkyQIqWj0ju98pGM5wC ntq8UOublD++IbhwuE2jXSbnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1rqHwllc SUuiCCB/h9jwNGiJUdcwHwYDVR0jBBgwFoAUpgmpTmohAbr5XIwvVc7EF5Jb788w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyMDEwL0VBMDIxQTk0RDUz RjExRUVBOEQ2MjQwRkM0RjlBRTAyL3BnbXBUbW9oQWJyNVhJd3ZWYzdFRjVKYjc4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGdtcFRtb2hBYnI1WEl3dlZjN0VGNUpiNzg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIy MDEwL0VBMDIxQTk0RDUzRjExRUVBOEQ2MjQwRkM0RjlBRTAyL3BnbXBUbW9oQWJy NVhJd3ZWYzdFRjVKYjc4OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACV/VwvzhGTyzcHmQBPsIdEKtdZ8t0bui3GDjrvvwHo4mwesMOhycyBu fRdLv4Ctk5/KVwiM8SUWvlK9Tg3wuTODf4EByk0MdZ66aRKXxBJlDrGkb/71w4jl /m+tob5KOGJxPAqMofX25o1OClnRGGnPIwJOtNU5hryG0otu7Q2Lc7joQdKGgMfI cShYeXDo6BmfjvUEG9VczFsibNswaZy8yZ1Og3OXwQwaaLIftiZVBIahm0QD9Tno Ml7E63oYe0zI1ftcRjjJx0TaDPnJ/LsR7A6rKFmdoXwQ4DxLvJDRzeiaATE6CXmJ 7bdqpRVHmwC44j53dzdqi0a1fqiOgFY= -----END CERTIFICATE-----Generated at Wed May 15 09:27:28 2024 by rpki-client on console-fra.rpki-client.org