$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft File: PFRw6B-koZCHAh0K130zbOvipo0.mft (raw, json) Hash identifier: cv1F4o5O9lJ/H85bM5a49CTMkDYLyQ4EeCsZN3a5PkI= Subject key identifier: B1:82:96:F7:7E:33:4D:56:17:77:28:E2:C6:54:27:33:A0:FB:CF:95 Authority key identifier: 3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D Certificate issuer: /CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Certificate serial: 1A1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft Manifest number: 1A17 Signing time: Mon 06 May 2024 16:52:06 +0000 Manifest this update: Mon 06 May 2024 16:52:05 +0000 Manifest next update: Mon 13 May 2024 16:52:05 +0000 Files and hashes: 1: PFRw6B-koZCHAh0K130zbOvipo0.crl (hash: l3sOyp6qgqWj33Iz4OQ1wRL8+UBjxMb0AUoFNbOsj+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 15:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6682 (0x1a1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3/serialNumber=3C5470E81FA4A19087021D0AD77D336CEBE2A68D Validity Not Before: May 6 16:52:05 2024 GMT Not After : May 13 16:52:05 2024 GMT Subject: CN=66390ab5-195f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6f:b4:cb:30:52:30:eb:37:29:25:18:fc:9e: c3:48:04:1d:89:80:1d:bd:77:ed:ec:57:d2:fe:a8: 0f:49:21:4f:f4:5b:20:a7:e9:fd:42:8f:79:8d:22: a0:bc:b3:2c:bd:12:d2:3a:66:e6:e0:c4:e7:64:4b: e4:c0:9f:cd:6d:3a:11:53:78:d2:1f:6f:cc:8b:cb: f8:94:17:97:bb:9c:26:23:55:4a:2e:5b:9f:af:7e: 31:e6:bf:9d:7e:d9:63:68:05:de:03:42:f0:22:d8: b6:03:2f:c4:0f:fc:77:e6:c3:5b:82:ce:6c:1c:ae: 2d:5d:fa:f6:73:40:fc:e1:a7:c2:6b:fd:ac:99:cb: 3b:0e:ac:65:48:e0:44:9d:55:32:dd:ad:fd:82:ce: ac:20:f6:7a:f1:62:94:62:73:df:f3:8f:57:24:53: 7e:64:d1:3a:b4:fd:99:76:70:40:f6:6e:f2:cf:00: 7e:c0:61:d6:fe:31:60:3c:8f:5f:75:a7:07:42:d2: ff:0f:0f:91:e0:7f:9a:bd:13:15:e4:dc:62:67:70: 92:45:42:34:fd:69:dd:a2:95:60:60:ac:bc:64:bf: 26:e7:62:16:db:3d:a3:b5:8c:ad:fd:f6:55:0a:56: 12:86:91:a3:28:73:cf:2b:fc:f0:c1:e9:27:79:66: 5a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:82:96:F7:7E:33:4D:56:17:77:28:E2:C6:54:27:33:A0:FB:CF:95 X509v3 Authority Key Identifier: keyid:3C:54:70:E8:1F:A4:A1:90:87:02:1D:0A:D7:7D:33:6C:EB:E2:A6:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PFRw6B-koZCHAh0K130zbOvipo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1516679E259D11E785D3250AC4F9AE02/PFRw6B-koZCHAh0K130zbOvipo0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:af:25:65:b6:63:5b:db:5c:bc:a5:07:2c:43:03:8b:25:00: 1c:4d:9c:a5:30:bf:db:b5:83:b1:eb:c3:d8:72:23:3e:03:5f: 7f:11:1e:7b:7f:1c:21:1b:40:9f:fc:a4:e5:ec:dd:8c:12:33: d3:fb:2a:58:fa:ab:01:bb:d3:55:69:2c:bc:b6:ed:16:64:9a: a2:8d:47:b8:7d:21:6d:95:4f:85:63:6f:40:fe:26:c9:19:ba: f5:b6:d5:0c:a9:ed:1e:42:3c:58:43:e9:8c:30:a3:a3:9c:da: 76:d0:81:f6:4f:fd:6b:70:2e:27:cd:27:2e:2f:de:c3:7c:07: 87:31:29:49:10:c3:08:27:90:14:a6:4f:63:77:fe:24:63:6f: ca:83:c9:e3:63:14:30:48:1e:78:49:20:f1:10:10:7a:23:e2: 47:71:3f:62:1a:c9:8a:4a:df:1d:df:c9:51:31:60:ea:ab:3e: 05:ad:78:5a:d0:f5:dd:9e:44:1f:bf:2a:9d:7a:7a:d6:17:a5: 0a:84:c3:b4:38:75:1f:95:99:67:87:ad:6b:35:0a:d1:cd:52: ba:e4:3a:41:dc:71:59:b1:c4:31:95:e7:1b:d5:42:fc:47:6b: 6b:b3:04:20:19:75:fc:cc:64:6b:5b:c9:b9:a9:b0:b6:e8:53: d6:25:96:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKDNDNTQ3MEU4MUZBNEExOTA4NzAyMUQwQUQ3N0QzMzZD RUJFMkE2OEQwHhcNMjQwNTA2MTY1MjA1WhcNMjQwNTEzMTY1MjA1WjAYMRYwFAYD VQQDEw02NjM5MGFiNS0xOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzG+0yzBSMOs3KSUY/J7DSAQdiYAdvXft7FfS/qgPSSFP9Fsgp+n9Qo95jSKg vLMsvRLSOmbm4MTnZEvkwJ/NbToRU3jSH2/Mi8v4lBeXu5wmI1VKLlufr34x5r+d ftljaAXeA0LwIti2Ay/ED/x35sNbgs5sHK4tXfr2c0D84afCa/2smcs7DqxlSOBE nVUy3a39gs6sIPZ68WKUYnPf849XJFN+ZNE6tP2ZdnBA9m7yzwB+wGHW/jFgPI9f dacHQtL/Dw+R4H+avRMV5NxiZ3CSRUI0/WndopVgYKy8ZL8m52IW2z2jtYyt/fZV ClYShpGjKHPPK/zwwekneWZa1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGClvd+ M01WF3co4sZUJzOg+8+VMB8GA1UdIwQYMBaAFDxUcOgfpKGQhwIdCtd9M2zr4qaN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xNTE2Njc5RTI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29aQ0hBaDBLMTMwemJPdmlw bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BGUnc2Qi1rb1pDSEFoMEsxMzB6Yk92aXBvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xNTE2Njc5RTI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi9QRlJ3NkIta29a Q0hBaDBLMTMwemJPdmlwbzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXryVltmNb21y8pQcsQwOLJQAcTZylML/btYOx68PYciM+A19/ER57 fxwhG0Cf/KTl7N2MEjPT+ypY+qsBu9NVaSy8tu0WZJqijUe4fSFtlU+FY29A/ibJ Gbr1ttUMqe0eQjxYQ+mMMKOjnNp20IH2T/1rcC4nzScuL97DfAeHMSlJEMMIJ5AU pk9jd/4kY2/Kg8njYxQwSB54SSDxEBB6I+JHcT9iGsmKSt8d38lRMWDqqz4FrXha 0PXdnkQfvyqdenrWF6UKhMO0OHUflZlnh61rNQrRzVK65DpB3HFZscQxlecb1UL8 R2trswQgGXX8zGRrW8m5qbC26FPWJZbO -----END CERTIFICATE-----Generated at Mon May 6 17:42:39 2024 by rpki-client on console-ams.rpki-client.org