$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: bmrffzLeWurNn58LxEh2lVt/1+kQQhQkokJIE0P2tDI= Subject key identifier: A5:83:34:B1:84:62:33:75:46:0F:D0:62:44:05:DE:41:15:24:43:A4 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 74 Signing time: Thu 16 May 2024 20:37:32 +0000 Manifest this update: Thu 16 May 2024 20:37:32 +0000 Manifest next update: Thu 23 May 2024 20:37:32 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: gvNdKzOkWUXeAgchXLQgCdsnGERFadAn71/P4hV8J2I=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: nCTIr/V5xZEh3ugXoBfi7Q8QPkS4NVpO4v5sjD/rMzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: May 16 20:37:32 2024 GMT Not After : May 23 20:37:32 2024 GMT Subject: CN=66466e8c-ac12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c7:0e:4b:dc:e6:39:fc:a9:e6:50:86:6d:7b: 83:24:0b:b3:98:11:04:3d:25:6d:87:a2:f1:9f:1a: fc:07:f2:e2:32:3a:45:02:5c:4c:8c:1e:d9:88:c4: 31:14:90:b2:58:d3:6f:6a:24:04:84:dd:c7:71:37: dc:1b:81:6f:36:70:aa:0c:0d:88:bf:6e:29:e3:51: ff:81:ca:40:19:a8:1d:5f:3c:bc:86:a5:34:da:78: eb:10:7b:e7:6a:6d:8d:64:b6:ca:a7:47:77:16:1e: 59:54:40:b4:ff:8d:52:9d:56:10:76:d8:8b:04:99: a8:ac:c3:f7:81:b8:37:3d:b5:ec:23:27:02:5f:e3: bc:2c:df:08:a9:f0:7d:c0:14:16:8c:ac:14:db:4f: 41:69:23:1a:db:f7:3b:8f:63:fc:1f:94:51:67:42: ce:c5:39:0c:51:70:40:cf:15:f1:68:ee:40:8d:43: ee:e5:a9:81:42:a0:c5:0b:3d:18:91:10:c8:8d:21: ef:fe:65:7f:98:a5:43:ab:75:1d:22:ec:b5:ad:bc: f5:5b:fb:11:42:85:06:4c:12:b2:3d:aa:a1:7f:f6: 62:ef:ae:d5:92:3c:c1:1d:f8:12:72:47:77:86:55: fe:d1:cb:84:ec:41:80:99:a8:24:0d:d4:32:04:db: 5b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:83:34:B1:84:62:33:75:46:0F:D0:62:44:05:DE:41:15:24:43:A4 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:dc:67:83:8d:ef:be:5f:77:42:3a:d6:4c:0f:e1:e2:d3:7b: 09:ba:aa:02:9e:6d:8e:41:52:da:d6:e8:89:c6:03:78:40:f6: 8e:36:82:b0:51:4d:3e:b7:9b:54:3a:78:a3:fe:ed:bb:bd:3f: 1b:9b:4b:a7:e4:de:1c:50:bf:be:fd:80:7e:06:d7:c6:78:a1: 52:f2:1f:b6:f0:de:74:2d:86:b5:2d:60:6e:76:66:f6:fe:e1: 29:58:98:77:bb:b1:1c:63:6c:d2:51:88:6d:63:03:50:98:b3: 5f:84:f1:ca:0b:5f:33:84:f6:ea:cc:1d:c1:dd:71:69:8d:ab: e3:3f:8a:d3:ad:f6:6b:13:c4:5b:d2:03:26:21:b1:6d:46:0a: 0e:e8:8d:49:2c:c6:47:49:dd:06:72:f0:25:a9:4a:fb:7b:21: 11:78:7c:e6:63:03:03:b1:bf:05:10:5b:fe:a2:8a:c7:53:62: b2:7f:de:32:7f:0c:36:43:62:7f:c4:88:a4:ae:7a:9f:7a:1f: 5b:39:36:b1:b8:f8:dc:28:1b:8f:8c:ab:f1:d4:01:7b:ef:63: 98:3f:de:85:e0:05:e7:b5:8d:4f:28:16:e6:88:c9:c3:7f:03: 02:e4:41:04:a0:d6:c5:f3:39:0e:d1:66:47:96:2f:27:73:51: af:10:37:ae -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Q0FCRjExMC8GA1UEBRMoQTRERUVEOTU5M0U1OTEzMDNBOUIwMzk4MDYxRkU4RUY1 MTg2NjVDQTAeFw0yNDA1MTYyMDM3MzJaFw0yNDA1MjMyMDM3MzJaMBgxFjAUBgNV BAMTDTY2NDY2ZThjLWFjMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjxw5L3OY5/KnmUIZte4MkC7OYEQQ9JW2HovGfGvwH8uIyOkUCXEyMHtmIxDEU kLJY029qJASE3cdxN9wbgW82cKoMDYi/binjUf+BykAZqB1fPLyGpTTaeOsQe+dq bY1ktsqnR3cWHllUQLT/jVKdVhB22IsEmaisw/eBuDc9tewjJwJf47ws3wip8H3A FBaMrBTbT0FpIxrb9zuPY/wflFFnQs7FOQxRcEDPFfFo7kCNQ+7lqYFCoMULPRiR EMiNIe/+ZX+YpUOrdR0i7LWtvPVb+xFChQZMErI9qqF/9mLvrtWSPMEd+BJyR3eG Vf7Ry4TsQYCZqCQN1DIE21shAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpYM0sYRi M3VGD9BiRAXeQRUkQ6QwHwYDVR0jBBgwFoAUpN7tlZPlkTA6mwOYBh/o71GGZcow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThDQUJGLzE4OTE5NUFDNjgy QTExRUU4QTlFQjgyRkM0RjlBRTAyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcE43dGxaUGxrVEE2bXdPWUJoX283MUdHWmNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThD QUJGLzE4OTE5NUFDNjgyQTExRUU4QTlFQjgyRkM0RjlBRTAyL3BON3RsWlBsa1RB Nm13T1lCaF9vNzFHR1pjby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABDcZ4ON775fd0I61kwP4eLTewm6qgKebY5BUtrW6InGA3hA9o42grBR TT63m1Q6eKP+7bu9PxubS6fk3hxQv779gH4G18Z4oVLyH7bw3nQthrUtYG52Zvb+ 4SlYmHe7sRxjbNJRiG1jA1CYs1+E8coLXzOE9urMHcHdcWmNq+M/itOt9msTxFvS AyYhsW1GCg7ojUksxkdJ3QZy8CWpSvt7IRF4fOZjAwOxvwUQW/6iisdTYrJ/3jJ/ DDZDYn/EiKSuep96H1s5NrG4+NwoG4+Mq/HUAXvvY5g/3oXgBee1jU8oFuaIycN/ AwLkQQSg1sXzOQ7RZkeWLydzUa8QN64= -----END CERTIFICATE-----Generated at Thu May 16 22:34:49 2024 by rpki-client on console-ams.rpki-client.org