$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft File: PTiRpGy8urR0eN6kDSkI9nzOOyo.mft (raw, json) Hash identifier: FpIxgCJyGsrf2OYzVrpTpK3plmZpiq585NW/SAiUC9w= Subject key identifier: 64:45:0E:EB:29:51:D1:68:D6:FE:FA:6E:01:D1:A4:16:CF:7D:93:DE Authority key identifier: 3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A Certificate issuer: /CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft Manifest number: 07B1 Signing time: Sat 04 May 2024 22:17:27 +0000 Manifest this update: Sat 04 May 2024 22:17:26 +0000 Manifest next update: Sat 11 May 2024 22:17:26 +0000 Files and hashes: 1: PTiRpGy8urR0eN6kDSkI9nzOOyo.crl (hash: syqgxm7MpvMealOWSYy+jqQaKixw6Os8bYoOVaMZBBY=) 2: DFEA30745C3011EEB250DE0EC4F9AE02.roa (hash: cTSrLheCGGRQ/E8bldowJz9Xd3wsB7QLr/NetAYA5V8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEC2/serialNumber=3D3891A46CBCBAB47478DEA40D2908F67CCE3B2A Validity Not Before: May 4 22:17:26 2024 GMT Not After : May 11 22:17:26 2024 GMT Subject: CN=6636b3f7-2077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:ff:6d:fe:cf:59:73:51:5a:1b:33:7a:23: 4b:c4:e2:d7:36:13:9d:83:36:d7:53:e1:18:b6:d8: db:49:ec:d6:6b:10:2e:15:f2:5b:e8:3c:5a:44:7a: 07:81:a8:9d:f3:6b:0d:99:37:bc:b0:bb:44:7d:01: 09:3c:c0:75:18:72:cc:c5:07:a2:ac:30:16:69:c7: 71:95:4c:b2:bb:b8:15:fb:85:8e:84:fd:41:2e:19: 30:73:ab:8a:a2:9e:be:c0:55:61:2a:07:e2:39:c1: fe:41:c5:a6:31:56:30:be:4f:ee:81:dc:ec:06:51: 03:f8:12:50:5a:ab:54:29:27:81:b6:e4:98:23:14: 18:f0:f2:e3:77:cf:85:95:79:66:82:b2:30:8f:68: 0a:c1:0d:ae:5f:a9:20:b6:2e:b5:24:67:5d:55:c7: 8d:c5:92:e7:dd:34:26:03:3d:2a:c2:84:9a:b4:85: 8b:b1:c3:1f:0a:ba:90:75:ea:56:13:bc:52:db:23: 19:20:79:46:c0:ce:d3:f9:04:24:a5:92:77:26:29: 94:4e:94:20:87:60:93:9b:e1:cf:ce:45:0b:c7:21: 1f:f3:9c:d3:83:99:29:0c:39:c3:f6:61:2e:08:89: 7d:6d:dd:30:cd:72:a1:2d:7d:6b:2b:e6:c7:1f:23: d3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:45:0E:EB:29:51:D1:68:D6:FE:FA:6E:01:D1:A4:16:CF:7D:93:DE X509v3 Authority Key Identifier: keyid:3D:38:91:A4:6C:BC:BA:B4:74:78:DE:A4:0D:29:08:F6:7C:CE:3B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PTiRpGy8urR0eN6kDSkI9nzOOyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEC2/2DDDD26CC2C011EA93D5857FC4F9AE02/PTiRpGy8urR0eN6kDSkI9nzOOyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:5b:5c:5a:a3:f0:8d:7c:a5:6f:b4:7a:4d:f9:82:34:72:f9: f3:7d:79:fa:99:ce:aa:b8:b5:95:0f:47:9f:f8:00:c5:06:77: 27:d6:e2:27:08:d9:cf:a7:d9:34:88:7e:c3:f0:8b:7a:c2:a1: 84:07:b9:45:21:d2:86:99:7c:eb:ad:ba:fd:24:8b:00:43:1a: cd:10:4f:63:3e:a3:11:30:6b:a8:af:14:65:e2:52:36:d0:69: 23:c2:9c:72:17:b9:63:85:13:b5:1f:9b:73:29:a5:a7:58:87: c1:1c:f2:02:e7:62:09:3b:96:e8:43:f0:96:a4:04:20:04:87: 47:ac:25:cb:bb:a0:ff:f7:25:1d:de:28:fa:37:3e:d5:3c:6c: 5c:a4:6a:d9:77:e3:9e:b8:b2:c2:6d:a2:07:a7:61:56:c2:79: 27:ab:3a:25:b3:70:fe:bd:a4:8a:f3:00:ac:c0:bb:d5:20:c8: 20:41:65:b5:3a:98:42:80:e8:bc:c8:6e:fb:0c:76:e2:c5:77: bd:f1:34:3d:72:3e:e6:e4:b6:5a:12:e6:45:65:31:f2:e6:d6: 02:45:62:7b:68:9b:2b:b4:eb:27:0b:c8:60:82:2c:78:23:42: 66:e6:19:0e:8a:2c:9c:28:b1:0a:66:63:1f:9f:c7:40:d2:d5: b2:5c:d9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQzIxMTAvBgNVBAUTKDNEMzg5MUE0NkNCQ0JBQjQ3NDc4REVBNDBEMjkwOEY2 N0NDRTNCMkEwHhcNMjQwNTA0MjIxNzI2WhcNMjQwNTExMjIxNzI2WjAYMRYwFAYD VQQDEw02NjM2YjNmNy0yMDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7v/bf7PWXNRWhszeiNLxOLXNhOdgzbXU+EYttjbSezWaxAuFfJb6DxaRHoH gaid82sNmTe8sLtEfQEJPMB1GHLMxQeirDAWacdxlUyyu7gV+4WOhP1BLhkwc6uK op6+wFVhKgfiOcH+QcWmMVYwvk/ugdzsBlED+BJQWqtUKSeBtuSYIxQY8PLjd8+F lXlmgrIwj2gKwQ2uX6kgti61JGddVceNxZLn3TQmAz0qwoSatIWLscMfCrqQdepW E7xS2yMZIHlGwM7T+QQkpZJ3JimUTpQgh2CTm+HPzkULxyEf85zTg5kpDDnD9mEu CIl9bd0wzXKhLX1rK+bHHyPTDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRFDusp UdFo1v76bgHRpBbPfZPeMB8GA1UdIwQYMBaAFD04kaRsvLq0dHjepA0pCPZ8zjsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVDMi8yRERERDI2Q0My QzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVyUjBlTjZrRFNrSTluek9P eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BUaVJwR3k4dXJSMGVONmtEU2tJOW56T095by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUVDMi8yRERERDI2Q0MyQzAxMUVBOTNENTg1N0ZDNEY5QUUwMi9QVGlScEd5OHVy UjBlTjZrRFNrSTluek9PeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvW1xao/CNfKVvtHpN+YI0cvnzfXn6mc6quLWVD0ef+ADFBncn1uIn CNnPp9k0iH7D8It6wqGEB7lFIdKGmXzrrbr9JIsAQxrNEE9jPqMRMGuorxRl4lI2 0GkjwpxyF7ljhRO1H5tzKaWnWIfBHPIC52IJO5boQ/CWpAQgBIdHrCXLu6D/9yUd 3ij6Nz7VPGxcpGrZd+OeuLLCbaIHp2FWwnknqzols3D+vaSK8wCswLvVIMggQWW1 OphCgOi8yG77DHbixXe98TQ9cj7m5LZaEuZFZTHy5tYCRWJ7aJsrtOsnC8hggix4 I0Jm5hkOiiycKLEKZmMfn8dA0tWyXNmy -----END CERTIFICATE-----Generated at Sun May 5 00:12:28 2024 by rpki-client on console-fra.rpki-client.org