$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft File: PUfmaHu030DFGwOkVZwQyiL2dy8.mft (raw, json) Hash identifier: tUbD48Jh9XYQbMTSLdM3qOHCv5sPsKqYY9oYfm0lJis= Subject key identifier: 8E:37:9F:23:31:72:DF:30:53:ED:BF:98:6A:46:DE:B2:3F:5C:BD:01 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft Manifest number: 8A Signing time: Wed 15 May 2024 07:15:14 +0000 Manifest this update: Wed 15 May 2024 07:15:13 +0000 Manifest next update: Wed 22 May 2024 07:15:13 +0000 Files and hashes: 1: PUfmaHu030DFGwOkVZwQyiL2dy8.crl (hash: snlhD8dliEYkGCWyYdOpQSAAfWubwRLaG4R7TMiU8eQ=) 2: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (hash: Da/S1vhffx2bAniYArf13My2tD2OTRCkqaPJ4eK7KVQ=) 3: FAA2E3324C3811EEB7116433C4F9AE02.roa (hash: Ox5AwkvCEJ/TKKbHnF8ZLm6Kbk7Vf84i4Zu7/tK4dFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: May 15 07:15:13 2024 GMT Not After : May 22 07:15:13 2024 GMT Subject: CN=66446101-1e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0d:47:8f:57:15:e4:dc:d0:af:ad:ad:03:df: fc:cf:52:ea:21:6c:6c:c1:f6:6d:2f:eb:94:3f:75: 6f:1b:b5:89:7f:0d:a3:fc:9d:0e:c4:90:ad:9b:98: 18:a7:19:fd:13:17:d5:1c:2e:5e:08:34:23:ab:c1: 3d:f3:f9:5e:d2:b0:00:33:e3:f8:9e:fb:90:dc:6a: 5e:bc:cf:f7:89:39:4a:f6:e7:00:40:23:01:54:7d: 23:29:f0:9b:9b:7f:78:d8:48:3c:96:06:80:61:0d: 92:19:b4:a5:f0:c7:e3:95:2b:92:cd:ca:51:74:b6: 8f:ee:9c:cc:1a:83:79:b4:75:7b:8e:99:98:a5:01: 68:1f:27:28:bf:9b:ec:5a:85:c5:71:b6:ee:93:d9: 72:86:30:b0:21:87:e3:74:ac:68:b6:d8:30:cf:94: 07:25:e3:9c:b2:29:87:c3:08:c7:09:0b:8b:42:d3: e1:3f:8c:ee:b3:21:3a:c0:09:f0:a8:52:c2:e8:19: 8e:af:eb:a3:41:c9:5f:01:ce:38:91:7e:7f:c8:06: 33:8d:03:c7:fe:a2:89:fb:77:80:70:d0:c3:68:2a: 5d:c9:af:14:96:fb:4c:d7:42:91:f5:7f:28:6b:34: fd:c4:d3:5d:fd:4e:b7:8b:78:85:09:fe:00:67:83: 41:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:37:9F:23:31:72:DF:30:53:ED:BF:98:6A:46:DE:B2:3F:5C:BD:01 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:eb:97:a0:77:3b:fb:30:fc:e3:b8:5f:93:1f:8d:f9:29:35: 20:7d:c9:82:cb:f6:4a:76:75:c1:5d:06:25:91:8b:b0:17:08: 80:de:96:a8:49:0f:13:07:14:ed:68:19:5f:9c:17:53:65:cd: a5:c9:9f:c2:56:5b:0a:1b:80:05:e1:bf:4e:8f:51:6f:72:9d: 91:ae:ac:fa:7d:1c:25:4e:36:c8:a3:9d:ef:5b:bf:47:33:8f: ce:8f:ea:06:0a:48:e6:c1:2d:56:b5:04:05:16:62:0f:75:c1: 00:8d:93:b0:dd:9c:77:14:a6:f4:ce:ea:e7:86:ae:25:fa:ec: 9d:dd:90:6c:42:ce:4f:b9:e4:13:63:ac:61:12:2a:4d:dc:1b: c4:95:d1:84:b4:86:1b:b0:64:cb:d6:b0:36:9c:78:70:4f:a4: 40:68:53:c7:a8:4d:14:1b:ba:f8:f8:6e:5f:ba:e7:a3:6c:f5: b9:cb:ba:9a:ce:50:e4:6b:0a:ff:f2:dd:92:84:b3:b7:4a:a0: d6:58:af:e8:cd:1e:71:5f:1c:7d:49:38:26:44:78:eb:42:72: 7a:22:7d:84:ce:00:73:47:54:6e:15:4e:75:64:79:19:28:6a: 41:fd:f6:f6:73:20:f7:d7:82:2a:d0:e6:d9:f1:56:51:73:9e: a1:87:66:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjQwNTE1MDcxNTEzWhcNMjQwNTIyMDcxNTEzWjAYMRYwFAYD VQQDEw02NjQ0NjEwMS0xZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw1Hj1cV5NzQr62tA9/8z1LqIWxswfZtL+uUP3VvG7WJfw2j/J0OxJCtm5gY pxn9ExfVHC5eCDQjq8E98/le0rAAM+P4nvuQ3GpevM/3iTlK9ucAQCMBVH0jKfCb m3942Eg8lgaAYQ2SGbSl8MfjlSuSzcpRdLaP7pzMGoN5tHV7jpmYpQFoHycov5vs WoXFcbbuk9lyhjCwIYfjdKxottgwz5QHJeOcsimHwwjHCQuLQtPhP4zusyE6wAnw qFLC6BmOr+ujQclfAc44kX5/yAYzjQPH/qKJ+3eAcNDDaCpdya8UlvtM10KR9X8o azT9xNNd/U63i3iFCf4AZ4NBkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI43nyMx ct8wU+2/mGpG3rI/XL0BMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTVDNi9ENTU1MTlCNDRDMzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMw REZHd09rVlp3UXlpTDJkeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm65egdzv7MPzjuF+TH435KTUgfcmCy/ZKdnXBXQYlkYuwFwiA3pao SQ8TBxTtaBlfnBdTZc2lyZ/CVlsKG4AF4b9Oj1Fvcp2Rrqz6fRwlTjbIo53vW79H M4/Oj+oGCkjmwS1WtQQFFmIPdcEAjZOw3Zx3FKb0zurnhq4l+uyd3ZBsQs5PueQT Y6xhEipN3BvEldGEtIYbsGTL1rA2nHhwT6RAaFPHqE0UG7r4+G5fuuejbPW5y7qa zlDkawr/8t2ShLO3SqDWWK/ozR5xXxx9STgmRHjrQnJ6In2EzgBzR1RuFU51ZHkZ KGpB/fb2cyD314Iq0ObZ8VZRc56hh2a6 -----END CERTIFICATE-----Generated at Wed May 15 09:04:44 2024 by rpki-client on console-ams.rpki-client.org