$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft File: pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft (raw, json) Hash identifier: Ki7r0vjOUOSCvyrW2qxoJ7KKBFATlJF0nTWUiHjdCdc= Subject key identifier: A9:A1:1B:8F:DD:84:98:CB:54:4E:80:1A:D7:0E:4F:A3:93:30:3A:4B Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 05BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft Manifest number: 05B5 Signing time: Sun 19 May 2024 00:12:53 +0000 Manifest this update: Sun 19 May 2024 00:12:52 +0000 Manifest next update: Sun 26 May 2024 00:12:52 +0000 Files and hashes: 1: pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl (hash: NXj8A2xE81SGN2EjpdluIfD2Ym3MRW+2STo/HYJc9Jo=) 2: E84DCBC422D211EDAF1F924EC4F9AE02.roa (hash: DqKegEQq33FWYGcDqufZzlTnvwGNieGMgxqg05/Ivxg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1470 (0x5be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: May 19 00:12:52 2024 GMT Not After : May 26 00:12:52 2024 GMT Subject: CN=66494404-7351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:54:01:a7:fe:b3:20:ca:01:7e:dc:5d:36: 41:bd:c1:e9:fd:b1:fd:03:f0:41:64:ce:00:63:78: 46:20:3e:be:18:a0:14:b7:b3:e1:c6:99:70:08:c7: 5a:37:23:85:06:5e:c3:8e:f2:94:40:41:42:db:04: 6f:37:19:a5:2c:a0:c2:30:e9:8e:3c:c1:0c:50:23: ba:22:b5:76:9f:d3:e6:23:ea:e8:fc:99:e2:2e:98: 4e:d8:e1:ba:65:70:46:95:9d:00:2d:29:f5:19:c2: da:c6:b6:a2:b7:c4:5d:9d:e2:89:67:a2:93:ad:0d: a5:72:25:71:4d:0e:1a:04:07:ab:02:6e:96:eb:8a: 83:d3:f6:ee:c0:2f:e2:82:0f:3c:14:48:3f:0f:d3: b9:1c:bb:64:4d:30:cc:b8:1c:52:92:e3:3b:8f:fe: 81:7c:ce:d8:58:8b:a0:d5:8d:26:64:11:74:53:12: 45:ad:d7:ce:1d:f7:a0:0f:d7:3d:5a:ea:53:8a:81: 03:0f:a0:39:17:29:b6:b9:ee:a3:8f:6b:aa:b4:ec: 4d:c2:8c:00:91:dd:10:99:a3:f7:97:30:e5:d3:f8: 9b:3a:82:08:28:cf:ac:38:94:84:9f:ab:05:cf:a1: fe:36:15:40:ae:58:67:5f:e7:df:00:66:b3:ee:ce: dc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A1:1B:8F:DD:84:98:CB:54:4E:80:1A:D7:0E:4F:A3:93:30:3A:4B X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:0e:8d:94:26:2b:3a:26:63:3b:38:62:37:09:b8:42:72:ce: 28:a7:ef:94:af:55:78:c1:ca:08:e4:14:60:30:3f:ea:ad:39: b7:1b:d2:4c:d3:eb:0b:89:0f:ee:ab:2a:9a:6c:e2:60:7f:82: e7:e7:6d:65:e8:fc:ef:d1:6f:d0:11:94:b1:b9:c3:b1:a5:fa: 0a:dc:46:ee:dc:9a:7d:78:d2:d3:f7:1f:d3:30:bb:bd:2f:58: 87:83:31:18:12:de:ec:e1:57:1d:30:61:53:c9:8c:37:23:c1: fc:d3:af:9c:9d:70:60:b3:85:7b:fb:a6:72:80:00:56:ce:4e: 61:3a:d2:8b:15:2f:63:e4:b3:1a:2e:da:d1:e0:50:96:c0:d9: 8c:c0:33:58:3d:60:34:45:5c:b8:15:d7:e7:f0:14:6b:fe:29: e7:4d:f8:68:70:01:8f:80:98:0f:5a:04:aa:c8:87:32:6e:f0: 22:9d:13:27:52:27:aa:19:75:c7:7b:70:2a:3c:2b:3a:c2:f7: a9:15:d7:7d:9c:30:d6:23:12:08:7a:ee:b5:6f:03:0f:1e:00: dc:1e:61:74:56:d5:31:cc:d9:33:80:67:00:d1:90:97:6f:8c: 86:1b:ea:10:5f:b5:9b:09:df:73:29:21:eb:43:f4:77:0b:2a: 47:ef:d3:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjQwNTE5MDAxMjUyWhcNMjQwNTI2MDAxMjUyWjAYMRYwFAYD VQQDEw02NjQ5NDQwNC03MzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg5UAaf+syDKAX7cXTZBvcHp/bH9A/BBZM4AY3hGID6+GKAUt7PhxplwCMda NyOFBl7DjvKUQEFC2wRvNxmlLKDCMOmOPMEMUCO6IrV2n9PmI+ro/JniLphO2OG6 ZXBGlZ0ALSn1GcLaxrait8RdneKJZ6KTrQ2lciVxTQ4aBAerAm6W64qD0/buwC/i gg88FEg/D9O5HLtkTTDMuBxSkuM7j/6BfM7YWIug1Y0mZBF0UxJFrdfOHfegD9c9 WupTioEDD6A5Fym2ue6jj2uqtOxNwowAkd0QmaP3lzDl0/ibOoIIKM+sOJSEn6sF z6H+NhVArlhnX+ffAGaz7s7cbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmhG4/d hJjLVE6AGtcOT6OTMDpLMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUVERC8yMTBCNDMwNDdCQkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84 bElCZFNqWnFBSHhwQndVUzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcDo2UJis6JmM7OGI3CbhCcs4op++Ur1V4wcoI5BRgMD/qrTm3G9JM 0+sLiQ/uqyqabOJgf4Ln521l6Pzv0W/QEZSxucOxpfoK3Ebu3Jp9eNLT9x/TMLu9 L1iHgzEYEt7s4VcdMGFTyYw3I8H806+cnXBgs4V7+6ZygABWzk5hOtKLFS9j5LMa LtrR4FCWwNmMwDNYPWA0RVy4Fdfn8BRr/innTfhocAGPgJgPWgSqyIcybvAinRMn UieqGXXHe3AqPCs6wvepFdd9nDDWIxIIeu61bwMPHgDcHmF0VtUxzNkzgGcA0ZCX b4yGG+oQX7WbCd9zKSHrQ/R3CypH79Pz -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org