$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft File: PB_di6MB3OPbPwvMJchpTOG83H0.mft (raw, json) Hash identifier: hTLmIqkIswEJHs7SF0WPeeAa2cRqkYHfvSI9IReBU9M= Subject key identifier: 05:2C:A3:64:1D:52:77:5D:55:FA:5A:50:76:63:44:C2:EB:EB:CC:6C Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0CC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft Manifest number: 0CBB Signing time: Sun 02 Jun 2024 19:02:38 +0000 Manifest this update: Sun 02 Jun 2024 19:02:37 +0000 Manifest next update: Sun 09 Jun 2024 19:02:37 +0000 Files and hashes: 1: PB_di6MB3OPbPwvMJchpTOG83H0.crl (hash: Obe8nkVwWxbXwFq3iU8HW+s5h/OK55p0R9CDmg8GXNI=) 2: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (hash: jEmOSnx0C7+ZNDNn2Ph7IaxYFIlJl2cis+I60FPMGYQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 19:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Jun 2 19:02:37 2024 GMT Not After : Jun 9 19:02:37 2024 GMT Subject: CN=665cc1cd-7af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:aa:24:a5:3f:3a:a8:07:91:f4:eb:be:10:ed: 30:04:85:21:2e:a0:9a:45:34:9a:1d:3b:b7:31:bb: 45:42:ba:2c:00:b2:54:4a:20:fb:20:76:c6:c5:45: 00:78:f5:48:d4:85:9f:c3:94:a7:2f:df:19:da:0d: 25:25:6b:2b:13:91:af:41:92:0f:47:39:7b:a2:1b: 7f:f7:20:aa:51:db:55:2c:c5:3e:67:ca:c7:2c:89: f4:25:73:7b:8b:7b:c1:20:ef:58:55:9a:fb:69:4d: d1:34:ce:85:e0:3f:cd:b4:2f:33:48:36:5c:5e:8e: 1f:60:ab:98:d1:9d:1c:07:a3:0f:bf:1b:66:30:0f: ad:54:4f:b9:3c:4c:e4:f7:61:17:09:8a:18:98:6e: fa:f9:ad:2e:f6:fb:de:72:45:46:0c:34:9b:25:91: 87:3c:f8:06:f3:30:21:4c:6e:12:45:14:6e:a7:80: e9:b7:b3:d2:54:e0:ed:98:9a:9d:99:8f:52:79:79: 6d:54:cd:8e:11:2f:11:69:cf:bd:b4:ac:61:26:a7: 77:79:fe:bd:d3:b8:4d:f4:33:d2:d7:64:e8:70:f1: 86:dc:65:23:8f:a1:96:00:2d:56:cb:8b:df:0b:0d: c1:87:13:b2:af:9d:27:63:99:7b:28:a0:90:46:a9: 21:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:2C:A3:64:1D:52:77:5D:55:FA:5A:50:76:63:44:C2:EB:EB:CC:6C X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:e0:fb:71:a6:94:d5:de:13:2a:0a:c8:0d:61:ae:aa:ee:cc: a2:8f:24:00:87:f1:fe:66:7d:03:4b:3a:94:bb:22:fe:11:82: 92:1e:90:ff:c5:c0:3a:68:6a:cd:ad:f5:0c:93:86:c1:0a:2c: d4:85:fa:64:b7:28:94:0f:a6:c6:b0:e9:ad:23:3f:5c:a5:3e: 22:78:1e:7c:e1:0f:d7:9c:e4:1e:7d:f5:d9:d5:5b:6f:35:d0: 77:45:44:6c:42:69:d7:f3:8b:33:7b:7d:83:f3:e0:3e:e3:41: c5:4f:71:a1:7e:e6:78:da:8d:a0:6f:67:74:6d:ca:5c:2f:0f: 3d:e0:ad:a0:91:11:31:37:b8:b9:a2:47:18:17:77:36:f0:3e: a1:c1:93:0b:16:03:c7:04:0e:bd:68:3f:6f:02:37:63:be:9d: bf:16:25:ab:3b:ea:6d:fc:8f:0e:13:84:23:c8:91:45:4a:6a: a5:50:36:47:27:6a:3f:77:af:ae:6e:1b:e9:bc:77:bd:56:91: ff:c2:7b:ff:f6:2e:1d:7f:4e:34:62:6b:52:b8:c8:b4:93:6d: 47:a5:c0:75:ac:17:01:c4:f7:d9:0a:e6:94:13:a6:f6:33:9f: b2:a7:c3:c4:f1:6e:d9:ae:67:2d:8d:d8:b0:db:06:0d:de:d3: 5b:00:96:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjQwNjAyMTkwMjM3WhcNMjQwNjA5MTkwMjM3WjAYMRYwFAYD VQQDEw02NjVjYzFjZC03YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKokpT86qAeR9Ou+EO0wBIUhLqCaRTSaHTu3MbtFQrosALJUSiD7IHbGxUUA ePVI1IWfw5SnL98Z2g0lJWsrE5GvQZIPRzl7oht/9yCqUdtVLMU+Z8rHLIn0JXN7 i3vBIO9YVZr7aU3RNM6F4D/NtC8zSDZcXo4fYKuY0Z0cB6MPvxtmMA+tVE+5PEzk 92EXCYoYmG76+a0u9vveckVGDDSbJZGHPPgG8zAhTG4SRRRup4Dpt7PSVODtmJqd mY9SeXltVM2OES8Rac+9tKxhJqd3ef6907hN9DPS12TocPGG3GUjj6GWAC1Wy4vf Cw3BhxOyr50nY5l7KKCQRqkh7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUso2Qd UnddVfpaUHZjRMLr68xsMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDhGRC85RjQyRUFEOEM4QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNP UGJQd3ZNSmNocFRPRzgzSDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa4PtxppTV3hMqCsgNYa6q7syijyQAh/H+Zn0DSzqUuyL+EYKSHpD/ xcA6aGrNrfUMk4bBCizUhfpktyiUD6bGsOmtIz9cpT4ieB584Q/XnOQeffXZ1Vtv NdB3RURsQmnX84sze32D8+A+40HFT3GhfuZ42o2gb2d0bcpcLw894K2gkRExN7i5 okcYF3c28D6hwZMLFgPHBA69aD9vAjdjvp2/FiWrO+pt/I8OE4QjyJFFSmqlUDZH J2o/d6+ubhvpvHe9VpH/wnv/9i4df040YmtSuMi0k21HpcB1rBcBxPfZCuaUE6b2 M5+yp8PE8W7Zrmctjdiw2wYN3tNbAJYS -----END CERTIFICATE-----Generated at Sun Jun 2 20:00:29 2024 by rpki-client on console-fra.rpki-client.org