$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft File: S_PofKK5q1lZdiDQT8BUEY1-09k.mft (raw, json) Hash identifier: HJhKfI4/iBgYkFxv7H375Lfid9o9goMplK6pRycnDac= Subject key identifier: BE:8F:43:98:F6:65:C5:66:8E:A0:ED:7C:6D:7B:81:E9:17:1D:44:1B Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 026C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft Manifest number: 0268 Signing time: Sun 05 May 2024 03:55:58 +0000 Manifest this update: Sun 05 May 2024 03:55:58 +0000 Manifest next update: Sun 12 May 2024 03:55:58 +0000 Files and hashes: 1: S_PofKK5q1lZdiDQT8BUEY1-09k.crl (hash: AdT0ROYopQftN7op4FmMPhkQd9UxKnh9PvBx8/9ax6g=) 2: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (hash: D4T8qq0efxv5z1lC+iJz+9+E3h2oYEBovn1LDhiYq1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: May 5 03:55:58 2024 GMT Not After : May 12 03:55:58 2024 GMT Subject: CN=6637034e-b1f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f0:c3:e6:3d:4d:23:a8:0f:0e:36:8f:28:dc: e8:23:f8:f3:3a:00:6e:73:21:4b:1f:14:83:fe:38: 45:18:21:04:79:09:94:c9:90:6e:2a:8d:49:3c:42: fc:5a:0a:43:73:ff:98:9a:5c:f3:61:c0:49:c9:8d: 35:ad:7f:bc:08:0e:fb:9c:42:81:c5:5c:d2:db:10: ac:02:cf:0f:30:90:64:67:64:29:7b:23:51:2d:1f: 75:2d:74:8a:c8:65:7c:d6:c0:7e:0b:fd:5d:b5:00: 9d:71:5c:49:db:5b:a5:7c:b9:6f:71:de:17:f9:60: a3:40:a5:05:a0:00:d3:0b:fc:49:d8:6a:9b:8d:f9: 3c:bb:d4:96:37:96:49:16:1c:06:47:11:52:5d:24: db:68:75:3a:f5:c1:3c:8f:44:82:ac:54:53:40:67: 4c:e7:59:e0:b5:f1:7b:a6:72:47:12:30:54:9b:76: 35:fa:ec:6d:59:6b:f9:12:66:3e:d9:5d:82:d2:0f: dc:00:e9:fc:13:80:a9:28:6e:6f:33:02:d6:2e:d2: ce:67:71:c7:90:52:93:54:e2:26:6e:d2:14:68:89: 51:d3:04:3d:23:82:c3:36:37:e4:0f:fe:62:16:31: 28:c1:5f:39:e4:eb:13:01:89:21:ab:34:6d:e9:c6: 4a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8F:43:98:F6:65:C5:66:8E:A0:ED:7C:6D:7B:81:E9:17:1D:44:1B X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:10:b7:6d:e2:6c:61:5b:fb:35:59:20:0f:cb:b8:ac:fa:21: a0:fb:2d:af:b9:63:12:52:3f:84:cf:f6:09:e1:ce:6c:dd:83: 41:9f:d0:d3:c6:89:17:f6:c6:09:2a:e0:04:96:42:67:bb:2d: b5:5f:58:c8:94:90:97:e2:38:cd:a9:d4:d3:1a:2a:8a:42:23: bc:5a:dc:9c:82:cc:42:1d:af:29:47:e0:bf:15:23:74:2b:9a: 3a:00:36:37:6f:38:50:d7:59:2f:bf:da:eb:58:c6:47:d8:69: 5f:ce:0a:8b:5a:0e:1b:81:8c:dd:65:63:2d:c3:de:c6:09:90: 99:a4:32:8e:07:02:a3:56:98:b7:34:91:c4:11:94:9a:9e:74: e7:28:0d:da:09:e8:02:6c:c9:4d:4b:3d:3c:64:5a:38:43:8a: 38:7d:b2:5c:dd:0b:30:fc:44:89:71:3c:a2:9d:26:da:00:51: 94:64:7e:dd:f1:f3:cb:6e:7b:36:58:fd:37:ac:4a:98:0a:67: a3:95:eb:90:5b:2e:5e:3c:8f:33:99:69:43:27:c3:58:4f:71: 8b:cd:75:c1:cb:34:0e:1b:64:66:d7:da:d2:95:e0:96:ae:59: 9c:4a:de:8f:6e:1e:33:c8:5c:6f:8a:d2:99:f9:12:2d:5a:75: eb:ed:91:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjQwNTA1MDM1NTU4WhcNMjQwNTEyMDM1NTU4WjAYMRYwFAYD VQQDEw02NjM3MDM0ZS1iMWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPDD5j1NI6gPDjaPKNzoI/jzOgBucyFLHxSD/jhFGCEEeQmUyZBuKo1JPEL8 WgpDc/+YmlzzYcBJyY01rX+8CA77nEKBxVzS2xCsAs8PMJBkZ2QpeyNRLR91LXSK yGV81sB+C/1dtQCdcVxJ21ulfLlvcd4X+WCjQKUFoADTC/xJ2Gqbjfk8u9SWN5ZJ FhwGRxFSXSTbaHU69cE8j0SCrFRTQGdM51ngtfF7pnJHEjBUm3Y1+uxtWWv5EmY+ 2V2C0g/cAOn8E4CpKG5vMwLWLtLOZ3HHkFKTVOImbtIUaIlR0wQ9I4LDNjfkD/5i FjEowV855OsTAYkhqzRt6cZKuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6PQ5j2 ZcVmjqDtfG17gekXHUQbMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUI3MS9CODQ5QkExMkM2MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXEx bFpkaURRVDhCVUVZMS0wOWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqELdt4mxhW/s1WSAPy7is+iGg+y2vuWMSUj+Ez/YJ4c5s3YNBn9DT xokX9sYJKuAElkJnuy21X1jIlJCX4jjNqdTTGiqKQiO8WtycgsxCHa8pR+C/FSN0 K5o6ADY3bzhQ11kvv9rrWMZH2GlfzgqLWg4bgYzdZWMtw97GCZCZpDKOBwKjVpi3 NJHEEZSannTnKA3aCegCbMlNSz08ZFo4Q4o4fbJc3Qsw/ESJcTyinSbaAFGUZH7d 8fPLbns2WP03rEqYCmejleuQWy5ePI8zmWlDJ8NYT3GLzXXByzQOG2Rm19rSleCW rlmcSt6Pbh4zyFxvitKZ+RItWnXr7ZEZ -----END CERTIFICATE-----Generated at Sun May 5 04:34:55 2024 by rpki-client on console-fra.rpki-client.org