$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: W1P26Sn7vHAUvGKmmhVMZGJ6Sb8REx/Bt6JJinAgXw4= Subject key identifier: 69:55:0F:CE:62:08:87:1F:E5:87:2E:2F:56:06:4B:94:47:4B:C4:0D Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: DF Signing time: Fri 03 May 2024 06:03:35 +0000 Manifest this update: Fri 03 May 2024 06:03:35 +0000 Manifest next update: Fri 10 May 2024 06:03:35 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: pVJG2QU7a0xGvj8DY7tWoCwKx3f4V27L45lC4dihJcY=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: xtZobSpVadX58ZzyO31O4JKq8FMyE70P6iRmsiuP7EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: May 3 06:03:35 2024 GMT Not After : May 10 06:03:35 2024 GMT Subject: CN=66347e37-274e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:55:8f:76:27:1a:a3:51:fd:8e:e1:6f:81:92: 05:ed:67:e9:92:8e:f5:f8:7e:53:6d:4d:05:ff:5e: 10:54:73:1f:68:46:0b:cc:47:10:64:3c:73:b6:bd: 8f:62:7b:b9:06:2e:07:e0:70:64:62:f5:18:ba:ec: 33:a5:fa:64:18:4e:4e:db:11:d8:08:e7:5b:3b:24: b5:0d:1e:15:2a:8a:9d:65:08:8a:49:d5:4f:18:a0: 22:00:40:ba:2c:9b:4b:30:af:2b:ac:df:17:eb:b7: ce:a7:b3:d4:66:32:9f:22:be:80:fb:7a:ed:dc:95: e5:5a:85:fb:b6:37:b9:f9:da:3f:f0:9d:ac:2c:bb: 72:eb:e6:f5:7b:b4:84:ed:fc:e2:3d:9e:5b:9d:48: a2:d3:77:04:9b:82:a3:54:56:e0:0d:49:4c:51:b3: 2f:d2:51:27:2f:96:bd:1e:f1:aa:0f:e9:fa:0e:13: 15:e1:a4:00:06:41:38:a3:94:49:46:86:65:db:0f: ee:46:66:9f:aa:47:a6:66:af:78:3f:f2:44:69:a5: 4c:eb:e0:ce:bf:61:b1:8a:46:5e:d0:62:e6:d6:8f: 65:98:72:ee:87:3d:a8:5b:2f:aa:8e:ef:4f:99:b6: 1d:73:c0:14:64:78:21:11:fb:3f:53:d2:1b:b1:da: f9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:55:0F:CE:62:08:87:1F:E5:87:2E:2F:56:06:4B:94:47:4B:C4:0D X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:84:a9:d0:30:98:28:d2:ed:7c:4e:96:83:3b:f2:b2:d0:a2: 75:7f:ea:dc:09:25:92:6d:7c:0b:9f:80:a8:0e:8e:1c:a6:2b: 23:2f:c4:34:10:67:76:a9:6a:25:e4:a3:7d:9f:23:0f:4a:01: 2a:6d:28:56:ab:0a:71:c2:bc:40:dc:de:fd:d1:e6:bf:b6:8c: 28:35:47:b0:2e:b4:07:df:8d:cc:00:cf:0b:b1:78:89:6b:44: c4:30:e2:30:e7:06:f6:fd:60:ae:3a:f9:8e:a1:bf:87:5a:7c: 1f:f3:2e:ad:16:9b:8f:a9:46:da:59:27:3a:e2:c9:c0:6c:aa: 05:46:18:16:2f:6e:a9:82:8d:83:5a:43:7f:d4:15:1d:9b:95: a0:94:f6:e3:c7:21:91:d2:42:03:d0:f4:48:94:a9:32:96:65: 52:6c:30:63:a2:d3:f5:b1:93:83:f9:da:d7:0a:21:a3:dd:d0: 78:dd:69:60:c1:22:2b:4d:67:9e:54:42:eb:0c:5c:2c:3a:e5: 6d:eb:7a:93:9a:bf:d3:dd:2b:8d:c6:00:fc:f7:43:0c:5c:e4: 9f:cc:e5:fe:41:67:bf:42:78:13:16:0a:c6:62:5a:83:95:88: c3:47:d8:15:a0:64:75:37:5b:94:ff:a4:df:c9:c8:cd:b1:02: fb:78:46:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjQwNTAzMDYwMzM1WhcNMjQwNTEwMDYwMzM1WjAYMRYwFAYD VQQDEw02NjM0N2UzNy0yNzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+VWPdicao1H9juFvgZIF7Wfpko71+H5TbU0F/14QVHMfaEYLzEcQZDxztr2P Ynu5Bi4H4HBkYvUYuuwzpfpkGE5O2xHYCOdbOyS1DR4VKoqdZQiKSdVPGKAiAEC6 LJtLMK8rrN8X67fOp7PUZjKfIr6A+3rt3JXlWoX7tje5+do/8J2sLLty6+b1e7SE 7fziPZ5bnUii03cEm4KjVFbgDUlMUbMv0lEnL5a9HvGqD+n6DhMV4aQABkE4o5RJ RoZl2w/uRmafqkemZq94P/JEaaVM6+DOv2GxikZe0GLm1o9lmHLuhz2oWy+qju9P mbYdc8AUZHghEfs/U9Ibsdr5JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlVD85i CIcf5YcuL1YGS5RHS8QNMB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4hKnQMJgo0u18TpaDO/Ky0KJ1f+rcCSWSbXwLn4CoDo4cpisjL8Q0 EGd2qWol5KN9nyMPSgEqbShWqwpxwrxA3N790ea/towoNUewLrQH343MAM8LsXiJ a0TEMOIw5wb2/WCuOvmOob+HWnwf8y6tFpuPqUbaWSc64snAbKoFRhgWL26pgo2D WkN/1BUdm5WglPbjxyGR0kID0PRIlKkylmVSbDBjotP1sZOD+drXCiGj3dB43Wlg wSIrTWeeVELrDFwsOuVt63qTmr/T3SuNxgD890MMXOSfzOX+QWe/QngTFgrGYlqD lYjDR9gVoGR1N1uU/6TfycjNsQL7eEbx -----END CERTIFICATE-----Generated at Fri May 3 09:09:31 2024 by rpki-client on console-fra.rpki-client.org