$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: QOAA/r9AY3zLb9FmsxdtU3jrgbpV9qiXgSCTIX6kvaE= Subject key identifier: E9:61:A6:5B:91:31:C2:E3:E6:C7:EE:4B:5D:DD:9C:AC:8B:F2:8A:3F Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 045B Signing time: Fri 03 May 2024 01:54:50 +0000 Manifest this update: Fri 03 May 2024 01:54:49 +0000 Manifest next update: Fri 10 May 2024 01:54:49 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: UHv/M21GbagwXwZCW0Lg31jhLp6Vk/ZtDx6421ZHv5A=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: LKaE5Y785UxVOloyK6YaYndhpDYFIUGPJ/ZUzeCp7AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: May 3 01:54:49 2024 GMT Not After : May 10 01:54:49 2024 GMT Subject: CN=663443ea-56eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bc:3b:0e:8a:3a:fd:0e:ce:b3:86:d6:b3:a3: df:22:95:00:14:46:c7:7e:90:43:75:9f:6d:d9:bc: f4:e4:50:3f:1c:e4:2d:1a:27:74:53:14:c4:fb:b8: ef:be:5d:63:ca:c3:b4:75:9c:06:01:47:b8:50:c4: 45:c2:3c:3d:fe:0c:4a:72:bc:49:2b:6c:73:50:aa: 2a:d4:bf:86:a0:d9:99:31:cb:f8:ed:6b:c9:ab:22: 71:03:ae:37:12:a2:43:7a:4d:f3:37:ea:8e:06:8d: 51:7b:c7:e5:fd:8c:2b:06:a9:b1:8c:36:09:52:28: 81:2d:f8:d8:2f:3c:f8:53:3d:fb:9a:25:65:d3:8c: 8f:6e:9d:45:09:d0:d3:5d:f2:ea:6f:f9:db:43:85: e8:ee:84:b5:29:6c:96:98:22:be:44:8d:04:be:5c: 87:95:57:17:d1:55:bb:a4:b1:a4:52:60:6a:98:d1: 43:5e:7d:4e:c5:73:e4:50:dd:da:88:53:86:0e:d8: 22:6b:65:68:48:86:09:b6:8b:10:a6:b8:f5:51:b8: 4b:b9:a7:27:b3:b6:5b:66:8e:5f:7c:27:6b:c7:8d: db:0e:74:a3:ba:94:56:69:46:b5:e4:76:f9:a4:7e: 72:2c:80:ac:4f:d9:3f:34:d6:4b:d6:d0:75:0c:98: 91:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:61:A6:5B:91:31:C2:E3:E6:C7:EE:4B:5D:DD:9C:AC:8B:F2:8A:3F X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:93:14:3e:ac:b8:db:47:49:4d:f3:be:52:4b:de:e6:0b:a4: 67:fb:41:58:86:cd:fe:f2:d8:a2:96:08:ec:81:de:82:1f:67: 48:36:42:37:4f:85:63:0f:29:fa:64:c7:a9:7f:63:b2:97:5c: 6e:16:33:6a:0d:1a:b1:a1:10:9d:8c:1c:cb:21:86:df:52:e1: 23:be:a8:8f:05:ff:5a:ec:c3:e7:93:fb:a7:83:8c:f5:d2:c8: ed:ab:7a:a7:7c:17:47:53:e5:6b:34:99:74:21:56:10:e1:f5: 03:8a:37:3e:6d:8d:64:30:aa:fe:04:31:4c:a7:e8:f3:1c:f5: b3:ca:34:85:e4:8f:7b:6e:89:92:c9:91:fd:dc:58:64:d4:c3: eb:b3:52:7c:38:d5:49:4d:42:a1:70:28:82:c6:13:bb:f3:c3: 39:38:b3:e8:87:1b:81:62:8d:24:28:82:b8:13:fe:bc:65:4c: c1:12:8b:fb:d9:5e:82:2b:08:0f:6f:76:80:3f:47:2f:be:7b: a3:56:b6:c8:33:2b:20:24:e7:8c:05:d2:df:10:48:1f:02:48: a7:63:6b:86:e6:ee:d8:34:a9:0f:4c:cd:33:b1:8e:bf:eb:05: 83:9c:28:6a:ae:b4:93:6d:ed:27:7d:47:33:60:96:37:fe:ef: b2:c4:e0:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjQwNTAzMDE1NDQ5WhcNMjQwNTEwMDE1NDQ5WjAYMRYwFAYD VQQDEw02NjM0NDNlYS01NmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbw7Doo6/Q7Os4bWs6PfIpUAFEbHfpBDdZ9t2bz05FA/HOQtGid0UxTE+7jv vl1jysO0dZwGAUe4UMRFwjw9/gxKcrxJK2xzUKoq1L+GoNmZMcv47WvJqyJxA643 EqJDek3zN+qOBo1Re8fl/YwrBqmxjDYJUiiBLfjYLzz4Uz37miVl04yPbp1FCdDT XfLqb/nbQ4Xo7oS1KWyWmCK+RI0EvlyHlVcX0VW7pLGkUmBqmNFDXn1OxXPkUN3a iFOGDtgia2VoSIYJtosQprj1UbhLuacns7ZbZo5ffCdrx43bDnSjupRWaUa15Hb5 pH5yLICsT9k/NNZL1tB1DJiRZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlhpluR McLj5sfuS13dnKyL8oo/MB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkkxQ+rLjbR0lN875SS97mC6Rn+0FYhs3+8tiilgjsgd6CH2dINkI3 T4VjDyn6ZMepf2Oyl1xuFjNqDRqxoRCdjBzLIYbfUuEjvqiPBf9a7MPnk/ung4z1 0sjtq3qnfBdHU+VrNJl0IVYQ4fUDijc+bY1kMKr+BDFMp+jzHPWzyjSF5I97bomS yZH93Fhk1MPrs1J8ONVJTUKhcCiCxhO788M5OLPohxuBYo0kKIK4E/68ZUzBEov7 2V6CKwgPb3aAP0cvvnujVrbIMysgJOeMBdLfEEgfAkinY2uG5u7YNKkPTM0zsY6/ 6wWDnChqrrSTbe0nfUczYJY3/u+yxOBL -----END CERTIFICATE-----Generated at Fri May 3 04:45:17 2024 by rpki-client on console-fra.rpki-client.org