$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: oUQZx0lAvGfZUBYJmdDO3oKulXcvU5ArqRCTY5TMBu4= Subject key identifier: A7:CD:7E:57:BB:D5:41:74:74:C3:B9:2F:99:47:66:B3:1F:6F:05:07 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 33D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 33C5 Signing time: Thu 02 May 2024 14:27:45 +0000 Manifest this update: Thu 02 May 2024 14:27:45 +0000 Manifest next update: Thu 09 May 2024 14:27:45 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: 15j/Pf+oYBTUoBhOLoHsMY/meKG/MmoipHpTf0AMJ6w=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: hnSK7EnYl2dAShOri2I5pXVfZa/CnYFVcrAafQeQ3vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13267 (0x33d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: May 2 14:27:45 2024 GMT Not After : May 9 14:27:45 2024 GMT Subject: CN=6633a2e1-d3e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:74:7f:b0:c2:fd:dc:2a:f8:37:d9:39:52:ce: d7:40:ee:66:df:18:c0:7f:73:cf:03:41:ab:83:27: d4:35:e5:1e:53:62:9d:82:af:d2:27:eb:b9:92:90: ad:98:1a:2b:b3:2a:b9:b3:51:d6:1f:9f:79:f6:76: 07:1c:c5:8a:62:86:7f:c2:5b:c9:5c:49:5c:37:40: 5a:61:96:68:cb:ca:3e:c7:8b:dd:c9:95:be:ab:c5: 5a:3f:af:80:a0:54:e0:35:17:24:f3:f3:bb:d8:96: b4:86:4d:f1:59:c7:3f:33:52:f1:dc:da:61:b8:78: 17:79:60:38:3d:6d:6a:83:3c:c5:93:ce:03:d1:f0: b1:b6:9b:82:bb:2d:b8:b5:6e:8c:84:4b:e0:4d:90: 9b:38:a4:da:1f:48:82:af:87:99:c0:98:7d:fa:41: e8:d5:51:3a:7b:76:2a:7b:6b:a0:6b:bc:fb:8c:d7: e4:d1:df:37:9f:8a:b9:5b:92:6c:54:56:ce:01:d0: c8:38:c0:fb:ac:8c:ab:88:71:bf:83:0b:fc:82:ed: d6:67:d4:a9:91:81:51:2c:c4:f7:8d:3e:b3:7e:0d: e3:d1:b1:f6:db:90:b1:c6:e5:df:51:37:42:20:3a: 10:1c:33:8a:e6:2d:3a:72:51:f1:73:3e:8d:f4:65: 97:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CD:7E:57:BB:D5:41:74:74:C3:B9:2F:99:47:66:B3:1F:6F:05:07 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e2:f9:c0:a2:35:3f:ef:99:ed:d5:70:37:43:52:60:a0:0c: f9:60:86:33:08:c5:6c:9d:82:fd:4c:8d:01:07:ce:a1:a8:d2: dd:a2:04:de:8e:32:a6:26:8c:fd:85:e4:fa:53:a6:90:a8:99: f0:ab:de:2e:48:ba:76:a0:09:11:1c:2a:43:dd:f0:a3:20:e7: a7:86:09:62:29:f8:44:01:c9:71:1c:7b:f7:07:f2:03:f0:7f: 0b:af:63:89:56:05:df:19:c3:8a:88:c6:0b:fe:80:a8:af:4b: 70:69:91:be:b1:da:08:f5:f0:83:24:d5:59:8a:b9:88:3d:2f: f3:4e:a0:b4:66:a7:c1:31:b2:ab:2b:14:1f:37:47:cd:53:7d: ae:a6:95:35:dd:29:48:24:f0:21:7c:f6:ff:47:29:a5:7c:57: fa:8e:79:d7:9c:05:ef:ac:f8:ff:29:b5:27:f8:07:a6:fb:f0: a2:67:1d:2b:42:55:89:0f:11:ee:ae:76:7e:b2:44:02:06:32: 61:41:fb:b0:4f:09:9d:ea:69:78:42:e3:29:e5:47:61:93:17: 15:5a:82:9d:9f:e1:b3:69:84:91:46:91:62:df:9d:68:3c:fc: 24:44:ab:9e:77:20:e4:1a:de:03:43:18:e9:23:ab:b7:e2:48: 20:2c:54:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjQwNTAyMTQyNzQ1WhcNMjQwNTA5MTQyNzQ1WjAYMRYwFAYD VQQDEw02NjMzYTJlMS1kM2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7HR/sML93Cr4N9k5Us7XQO5m3xjAf3PPA0GrgyfUNeUeU2Kdgq/SJ+u5kpCt mBorsyq5s1HWH5959nYHHMWKYoZ/wlvJXElcN0BaYZZoy8o+x4vdyZW+q8VaP6+A oFTgNRck8/O72Ja0hk3xWcc/M1Lx3NphuHgXeWA4PW1qgzzFk84D0fCxtpuCuy24 tW6MhEvgTZCbOKTaH0iCr4eZwJh9+kHo1VE6e3Yqe2uga7z7jNfk0d83n4q5W5Js VFbOAdDIOMD7rIyriHG/gwv8gu3WZ9SpkYFRLMT3jT6zfg3j0bH225CxxuXfUTdC IDoQHDOK5i06clHxcz6N9GWXcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfNfle7 1UF0dMO5L5lHZrMfbwUHMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI4vnAojU/75nt1XA3Q1JgoAz5YIYzCMVsnYL9TI0BB86hqNLdogTe jjKmJoz9heT6U6aQqJnwq94uSLp2oAkRHCpD3fCjIOenhgliKfhEAclxHHv3B/ID 8H8Lr2OJVgXfGcOKiMYL/oCor0twaZG+sdoI9fCDJNVZirmIPS/zTqC0ZqfBMbKr KxQfN0fNU32uppU13SlIJPAhfPb/RymlfFf6jnnXnAXvrPj/KbUn+Aem+/CiZx0r QlWJDxHurnZ+skQCBjJhQfuwTwmd6ml4QuMp5UdhkxcVWoKdn+GzaYSRRpFi351o PPwkRKuedyDkGt4DQxjpI6u34kggLFTr -----END CERTIFICATE-----Generated at Thu May 2 17:18:30 2024 by rpki-client on console-ams.rpki-client.org