$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft File: pnlJEZesgi4NGBlxE3pGfSfCsCw.mft (raw, json) Hash identifier: vP1f30IV23qGaAGk8ql/18TMJYcWATmqOFJGRakVKOI= Subject key identifier: 10:A9:3F:DA:61:6E:13:4D:33:95:2E:71:9E:52:0D:BF:38:53:39:EA Authority key identifier: A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C Certificate issuer: /CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Certificate serial: 1087 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft Manifest number: 1075 Signing time: Tue 30 Apr 2024 18:10:58 +0000 Manifest this update: Tue 30 Apr 2024 18:10:58 +0000 Manifest next update: Tue 07 May 2024 18:10:58 +0000 Files and hashes: 1: pnlJEZesgi4NGBlxE3pGfSfCsCw.crl (hash: 4g2E7aJ79a6jNFpafky6XvW4UMr7km+ipncb6IrwZtk=) 2: DB4085480A3A11E999FA296FC4F9AE02.roa (hash: s6StiCR5DCzwNmNvLgsiRqyR3A6yRHiF6Y/AMGs7i1s=) 3: 041E1E420A3811E9BE336267C4F9AE02.roa (hash: 7/o8dLXtEHuwF70/iEtn6vcn0kuxe3RVG3Z0CClsXd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4231 (0x1087) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Validity Not Before: Apr 30 18:10:58 2024 GMT Not After : May 7 18:10:58 2024 GMT Subject: CN=66313432-802c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:4f:ea:41:87:2d:b5:73:07:43:3e:6b:c9: cf:fe:b2:39:d9:07:b8:51:ac:e7:48:cf:ef:ee:8e: 28:35:a3:ae:36:5b:81:1a:20:de:43:19:e6:69:8f: a8:94:bb:27:7f:d8:64:84:da:65:34:ea:da:d9:3b: 8d:5a:1e:0e:87:38:5f:66:20:6b:b6:fd:0e:cd:fc: 30:a3:19:3e:e4:ce:53:2a:c7:48:3e:44:6c:bc:db: c0:ac:56:9e:fb:d5:6b:13:6f:45:53:de:70:39:53: 2f:7f:ef:d9:60:fb:28:5a:5a:fc:a7:b5:2e:f2:8d: ed:57:e3:0f:02:e7:22:70:32:75:63:c9:67:2d:38: 9d:8f:b1:17:51:4c:ab:9d:68:6e:ef:cc:1e:79:56: 8a:c2:24:d1:37:2c:3f:6f:f3:8d:f4:d9:9f:10:a3: f4:96:63:1c:ed:2b:26:02:aa:41:0b:2d:b9:45:62: ce:81:03:e4:32:32:85:ae:9a:ae:c1:a9:f1:54:a6: 3c:8c:17:e7:25:fc:31:7e:4f:4c:6a:85:6e:76:21: bc:1c:71:dd:7a:ae:e8:11:6b:eb:9d:58:da:41:90: be:c7:20:a9:8b:33:a8:2e:c0:8b:23:3c:fb:5b:1d: 8a:d7:53:2a:ea:9a:0b:00:93:64:cf:6f:33:15:b3: 33:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A9:3F:DA:61:6E:13:4D:33:95:2E:71:9E:52:0D:BF:38:53:39:EA X509v3 Authority Key Identifier: keyid:A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9b:31:b1:eb:a2:ca:cd:dd:0a:bc:8e:d9:57:4e:c3:0f:ef: ac:9c:ca:f4:1f:5d:61:2c:be:31:cb:e4:b4:01:4e:bc:92:50: 59:72:fa:00:f2:86:17:34:d2:3b:e7:cf:00:c3:eb:89:08:a0: 04:02:f8:9d:85:58:58:b6:b9:7b:b4:d6:39:86:5d:b8:a5:14: 80:2c:72:e5:aa:ae:47:5a:43:b1:be:56:22:80:d5:4b:11:e3: 07:e2:93:41:59:02:85:23:78:f9:f0:ce:e4:1a:62:05:09:b2: 95:63:14:cc:55:09:68:1d:b7:d3:e2:7b:50:32:56:3b:9e:22: 68:90:b3:eb:df:a9:25:62:b7:20:39:2e:d6:77:24:7a:94:f0: 5e:5e:ef:fb:29:4a:11:05:5f:73:eb:3c:a6:90:45:af:01:3a: bb:e0:ff:a7:7d:b4:aa:79:ed:0a:23:db:61:f5:38:d0:df:a9: 05:a3:0c:19:f2:ea:79:04:d1:bf:f0:17:f5:67:c7:2c:bd:c0: 78:2e:68:e1:58:36:30:90:cc:83:8a:13:f7:1f:de:d0:03:16: 1b:96:46:ab:f7:55:08:cb:1f:04:25:fa:c8:de:7b:86:de:ee: a4:e3:43:ce:6d:fd:2a:76:71:64:d5:14:9d:97:37:53:a6:3f: b7:63:1c:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwRjExMTAvBgNVBAUTKEE2Nzk0OTExOTdBQzgyMkUwRDE4MTk3MTEzN0E0NjdE MjdDMkIwMkMwHhcNMjQwNDMwMTgxMDU4WhcNMjQwNTA3MTgxMDU4WjAYMRYwFAYD VQQDEw02NjMxMzQzMi04MDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmBP6kGHLbVzB0M+a8nP/rI52Qe4UaznSM/v7o4oNaOuNluBGiDeQxnmaY+o lLsnf9hkhNplNOra2TuNWh4OhzhfZiBrtv0Ozfwwoxk+5M5TKsdIPkRsvNvArFae +9VrE29FU95wOVMvf+/ZYPsoWlr8p7Uu8o3tV+MPAucicDJ1Y8lnLTidj7EXUUyr nWhu78weeVaKwiTRNyw/b/ON9NmfEKP0lmMc7SsmAqpBCy25RWLOgQPkMjKFrpqu wanxVKY8jBfnJfwxfk9MaoVudiG8HHHdeq7oEWvrnVjaQZC+xyCpizOoLsCLIzz7 Wx2K11Mq6poLAJNkz28zFbMz9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCpP9ph bhNNM5UucZ5SDb84UznqMB8GA1UdIwQYMBaAFKZ5SRGXrIIuDRgZcRN6Rn0nwrAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBGMS80MEIxM0JDMDBB MzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dpNE5HQmx4RTNwR2ZTZkNz Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BubEpFWmVzZ2k0TkdCbHhFM3BHZlNmQ3NDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBGMS80MEIxM0JDMDBBMzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dp NE5HQmx4RTNwR2ZTZkNzQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9mzGx66LKzd0KvI7ZV07DD++snMr0H11hLL4xy+S0AU68klBZcvoA 8oYXNNI7588Aw+uJCKAEAvidhVhYtrl7tNY5hl24pRSALHLlqq5HWkOxvlYigNVL EeMH4pNBWQKFI3j58M7kGmIFCbKVYxTMVQloHbfT4ntQMlY7niJokLPr36klYrcg OS7WdyR6lPBeXu/7KUoRBV9z6zymkEWvATq74P+nfbSqee0KI9th9TjQ36kFowwZ 8up5BNG/8Bf1Z8csvcB4LmjhWDYwkMyDihP3H97QAxYblkar91UIyx8EJfrI3nuG 3u6k40PObf0qdnFk1RSdlzdTpj+3YxwG -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:37 2024 by rpki-client on console-fra.rpki-client.org