$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: LBwC2UFKY8Mw9pa1SNIG6nN/xjcbOUKYFEdVkYI3iis= Subject key identifier: 13:BB:09:B5:F6:E0:52:17:A7:7F:4C:40:61:A6:9F:D5:C9:78:60:D0 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: 80 Signing time: Wed 15 May 2024 07:25:50 +0000 Manifest this update: Wed 15 May 2024 07:25:50 +0000 Manifest next update: Wed 22 May 2024 07:25:50 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: HE9V1f2VN0g5HWAqSJqhcXqdbvrRYhmHKi3thqLRmrY=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: gDmDD80pdAtxR7kWdrSorJjGFvcNrOczalrHzesai4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: May 15 07:25:50 2024 GMT Not After : May 22 07:25:50 2024 GMT Subject: CN=6644637e-0404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:66:1c:44:b3:7c:87:63:c2:01:30:5a:23:ca: 52:db:4e:f5:15:cf:3f:4b:0b:38:0f:ab:29:87:6c: 86:d3:a8:ed:b5:5d:29:51:94:28:68:0b:3b:9d:6a: 92:87:27:2d:2c:e9:4c:8b:7b:1f:d0:2c:9a:dd:1f: e4:de:5f:92:7e:da:44:85:82:9b:7b:5a:25:9a:3c: 35:be:40:d1:db:f7:ee:25:88:ac:39:33:9e:72:54: c1:f5:02:47:61:d9:8d:d2:70:71:ef:2d:32:64:17: 12:22:fd:cf:cd:55:ab:e7:ed:5f:69:1c:f2:3a:b1: 75:b3:0e:02:a4:43:93:5b:7c:2d:3b:cf:5d:f2:b4: ab:6c:fd:97:52:6c:62:98:e2:a6:b8:6b:60:94:1a: 7d:3f:d3:56:64:de:e0:4c:db:1b:3b:98:d5:93:41: 5d:43:92:cb:ae:c1:16:2c:ff:2b:27:16:a7:f0:66: 67:d6:29:45:87:c9:f2:b6:5d:9b:27:51:e0:df:c9: fa:f1:f5:31:c4:36:6b:fe:b9:f1:f8:36:35:1d:4a: 2c:c7:28:52:03:8d:80:24:26:07:50:bf:a5:de:53: 07:e9:87:78:1f:e2:6c:84:aa:42:44:30:f4:f2:3f: ad:c0:7c:e0:4d:bc:7b:5c:e0:79:00:9d:74:af:4a: 07:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:BB:09:B5:F6:E0:52:17:A7:7F:4C:40:61:A6:9F:D5:C9:78:60:D0 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:08:57:2b:dc:03:63:88:f9:04:4c:3b:cf:d9:29:82:3c:9e: 47:7d:61:57:43:b0:d6:39:8f:08:ca:64:de:5a:68:69:b4:2d: 0c:5b:1b:b6:52:b6:45:9b:5c:48:3b:e7:30:94:7d:bb:83:b7: 88:d2:7e:84:58:e9:31:a6:61:73:03:30:d1:78:4b:60:fe:61: dd:00:5f:67:40:0f:21:3e:71:46:90:f4:94:81:0f:b0:63:11: 10:e1:b9:89:e5:3e:fb:04:d3:95:96:05:72:1e:b5:f4:eb:9e: c6:68:61:19:18:f7:06:69:01:60:cd:df:12:d3:3a:2c:dc:49: 4e:93:78:9e:18:e3:b1:06:42:75:03:83:4b:21:3c:5c:18:1a: fb:30:6f:1e:79:d2:20:2c:ae:8a:40:d4:2c:f6:e7:38:39:11: 6a:59:db:a9:89:16:63:96:06:dc:c9:ae:85:0e:40:82:3f:8e: d6:3d:e3:2c:bf:2a:4d:f8:ea:c2:c3:73:b7:3b:9e:a7:a4:37: 42:b6:9a:4a:f7:54:b0:d3:fa:95:da:cd:af:e9:f9:27:7d:e0: 02:11:f1:38:a1:e5:1a:a7:35:d6:fb:dd:76:36:77:00:6f:8e: 35:e0:14:cc:5a:fe:87:14:ca:00:6d:28:05:cd:20:af:6a:69: e6:de:eb:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjQwNTE1MDcyNTUwWhcNMjQwNTIyMDcyNTUwWjAYMRYwFAYD VQQDEw02NjQ0NjM3ZS0wNDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWYcRLN8h2PCATBaI8pS2071Fc8/Sws4D6sph2yG06jttV0pUZQoaAs7nWqS hyctLOlMi3sf0Cya3R/k3l+SftpEhYKbe1olmjw1vkDR2/fuJYisOTOeclTB9QJH YdmN0nBx7y0yZBcSIv3PzVWr5+1faRzyOrF1sw4CpEOTW3wtO89d8rSrbP2XUmxi mOKmuGtglBp9P9NWZN7gTNsbO5jVk0FdQ5LLrsEWLP8rJxan8GZn1ilFh8nytl2b J1Hg38n68fUxxDZr/rnx+DY1HUosxyhSA42AJCYHUL+l3lMH6Yd4H+JshKpCRDD0 8j+twHzgTbx7XOB5AJ10r0oHXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBO7CbX2 4FIXp39MQGGmn9XJeGDQMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKCFcr3ANjiPkETDvP2SmCPJ5HfWFXQ7DWOY8IymTeWmhptC0MWxu2 UrZFm1xIO+cwlH27g7eI0n6EWOkxpmFzAzDReEtg/mHdAF9nQA8hPnFGkPSUgQ+w YxEQ4bmJ5T77BNOVlgVyHrX0657GaGEZGPcGaQFgzd8S0zos3ElOk3ieGOOxBkJ1 A4NLITxcGBr7MG8eedIgLK6KQNQs9uc4ORFqWdupiRZjlgbcya6FDkCCP47WPeMs vypN+OrCw3O3O56npDdCtppK91Sw0/qV2s2v6fknfeACEfE4oeUapzXW+912NncA b4414BTMWv6HFMoAbSgFzSCvamnm3ut0 -----END CERTIFICATE-----Generated at Wed May 15 09:04:41 2024 by rpki-client on console-ams.rpki-client.org