$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: vCez+Vd2uJqarYoD+bfaf2iyp90D78DyuIQ5PmF0UwQ= Subject key identifier: 32:D0:E4:44:29:9B:85:66:57:DF:05:E4:AC:8C:7D:84:9A:0F:41:AB Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 0475 Signing time: Wed 01 May 2024 01:59:49 +0000 Manifest this update: Wed 01 May 2024 01:59:49 +0000 Manifest next update: Wed 08 May 2024 01:59:49 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: FsBjjP8AfdxD+wVvY+aWq7ofRnRod/ilbzYTwgs/mDI=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: 7nJ+ZOkvTomcLacrU2HfPbU/loA6pHI5U2yYqZs8rpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 01:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: May 1 01:59:49 2024 GMT Not After : May 8 01:59:49 2024 GMT Subject: CN=6631a215-2ee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f2:50:d7:dd:30:c4:67:02:9c:7d:af:c1:d3: 47:32:62:6c:23:1e:69:09:85:2f:63:72:7d:a4:dc: 88:4c:75:f3:94:42:c5:ee:0f:eb:58:fb:6a:cf:35: a4:0b:db:3d:05:3c:63:52:38:88:7f:52:cb:ef:ab: 97:28:57:a2:8f:92:97:89:7d:68:0d:9f:c3:df:12: 36:73:36:0e:81:87:80:5c:92:d0:a0:80:27:1c:3f: c8:d5:c1:12:de:2a:0e:22:91:79:2b:de:ef:91:0a: 8a:b2:d9:dd:9b:fb:99:18:7f:aa:de:25:db:81:62: a5:77:40:41:a4:ad:2e:b6:57:0c:81:c5:69:f1:89: 4a:60:91:06:7f:5a:d1:d1:6f:3f:38:a1:a7:92:07: ae:0a:cb:b1:c6:8c:cf:4d:7d:ee:3c:4c:9e:e4:a8: 8e:d0:46:8a:60:eb:9d:62:6a:a5:52:f2:c6:30:8f: 20:3b:1c:eb:40:cc:a7:34:90:d9:c8:f7:17:97:25: a6:3d:d7:ee:50:40:8e:c8:76:db:74:b7:f1:a8:44: d6:be:d1:88:2e:8b:9d:9e:15:e1:59:50:8b:d2:7f: 98:1f:a9:53:88:9b:14:b1:f8:99:46:96:2e:66:e0: 04:5c:9f:46:b8:3c:d3:bb:86:28:f2:d6:42:1b:ae: 38:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D0:E4:44:29:9B:85:66:57:DF:05:E4:AC:8C:7D:84:9A:0F:41:AB X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:45:99:dc:4c:83:3f:6c:0d:8e:ac:6b:e3:72:34:98:77:87: 72:29:8c:8e:dd:68:60:58:6b:7c:b8:09:be:98:14:30:97:60: 07:3c:16:bc:d0:0d:83:d1:e1:75:2c:f4:06:26:f4:01:3c:15: f6:d3:ff:fa:66:3c:16:45:f3:59:cf:3d:90:d6:62:ff:dc:a9: e3:96:05:6a:a1:c3:a4:5e:47:26:d5:db:dc:04:81:d0:83:95: 4c:aa:fd:55:6a:70:bb:c7:cb:27:fa:bc:fa:ff:10:46:c7:3d: 20:25:cb:ae:3a:a2:41:0b:a4:cc:cf:34:2d:d5:7a:13:5b:20: b6:9b:58:fd:f7:9a:24:e8:f7:d3:35:15:5f:25:05:f9:4c:a8: 21:9b:3f:3b:a7:e1:1b:9f:51:3a:99:1a:f8:9f:d2:f9:68:2c: f6:5d:5b:27:b3:b8:b5:1d:a7:d8:b9:a2:cd:a1:c4:1b:ad:71: ab:19:dc:fa:e0:0f:eb:f0:09:5d:5b:11:35:b1:d3:2c:c9:88: 27:41:43:4c:7c:f3:02:4f:e7:84:7d:2e:b6:98:31:4e:00:b9: 7d:fa:0c:8a:57:d6:8a:91:68:83:56:86:79:a7:08:03:97:ff: 28:ee:99:2b:02:75:af:2c:c0:c3:6a:4d:63:bc:cb:c2:f7:fc: 47:86:14:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjQwNTAxMDE1OTQ5WhcNMjQwNTA4MDE1OTQ5WjAYMRYwFAYD VQQDEw02NjMxYTIxNS0yZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPJQ190wxGcCnH2vwdNHMmJsIx5pCYUvY3J9pNyITHXzlELF7g/rWPtqzzWk C9s9BTxjUjiIf1LL76uXKFeij5KXiX1oDZ/D3xI2czYOgYeAXJLQoIAnHD/I1cES 3ioOIpF5K97vkQqKstndm/uZGH+q3iXbgWKld0BBpK0utlcMgcVp8YlKYJEGf1rR 0W8/OKGnkgeuCsuxxozPTX3uPEye5KiO0EaKYOudYmqlUvLGMI8gOxzrQMynNJDZ yPcXlyWmPdfuUECOyHbbdLfxqETWvtGILoudnhXhWVCL0n+YH6lTiJsUsfiZRpYu ZuAEXJ9GuDzTu4Yo8tZCG644LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLQ5EQp m4VmV98F5KyMfYSaD0GrMB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZRZncTIM/bA2OrGvjcjSYd4dyKYyO3WhgWGt8uAm+mBQwl2AHPBa8 0A2D0eF1LPQGJvQBPBX20//6ZjwWRfNZzz2Q1mL/3KnjlgVqocOkXkcm1dvcBIHQ g5VMqv1VanC7x8sn+rz6/xBGxz0gJcuuOqJBC6TMzzQt1XoTWyC2m1j995ok6PfT NRVfJQX5TKghmz87p+Ebn1E6mRr4n9L5aCz2XVsns7i1HafYuaLNocQbrXGrGdz6 4A/r8AldWxE1sdMsyYgnQUNMfPMCT+eEfS62mDFOALl9+gyKV9aKkWiDVoZ5pwgD l/8o7pkrAnWvLMDDak1jvMvC9/xHhhSJ -----END CERTIFICATE-----Generated at Wed May 1 03:20:30 2024 by rpki-client on console-fra.rpki-client.org