$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft File: pGg4Xjj11YpziCOPLtMFVXig7V4.mft (raw, json) Hash identifier: zMVVNx9HAt2tpaFuSKuJu48dx3ANOo0hHyiV+i+l13g= Subject key identifier: B8:EE:5B:CC:53:0F:72:41:D1:46:28:71:05:A4:23:D3:77:87:96:28 Authority key identifier: A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E Certificate issuer: /CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Certificate serial: 0733 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft Manifest number: 2748 Signing time: Thu 02 May 2024 17:39:54 +0000 Manifest this update: Thu 02 May 2024 17:39:53 +0000 Manifest next update: Thu 09 May 2024 17:39:53 +0000 Files and hashes: 1: pGg4Xjj11YpziCOPLtMFVXig7V4.crl (hash: 7OVS9Cnge6KGLwnPd758C0ux2MCiyFTBg27sRkkoeRk=) 2: 54E2A752E17211ECA8128235C4F9AE02.roa (hash: nA3p97JqPBb+BqaL1yw+grLr7pHXwZnTY4W0OWmjO7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1843 (0x733) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0/serialNumber=A468385E38F5D58A7388238F2ED3055578A0ED5E Validity Not Before: May 2 17:39:53 2024 GMT Not After : May 9 17:39:53 2024 GMT Subject: CN=6633cfea-2e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:be:77:f1:e7:56:5d:9c:6a:79:e3:52:42: ca:36:f9:8e:fa:43:87:fe:fc:c0:f7:82:4e:60:30: f0:c2:22:a3:16:06:1f:60:92:55:93:2e:68:51:9b: cc:04:cf:1c:04:46:e8:1b:4a:2f:67:ba:a2:6b:3a: 85:99:10:9d:11:d7:8a:8a:0c:a5:cf:13:7d:f9:cf: 01:6f:fa:8f:f2:c1:4a:d1:0c:4f:f7:2a:5b:51:df: 01:95:89:fe:dd:44:e6:92:6d:98:88:ef:6b:d1:e8: cd:50:78:e9:83:b8:b5:51:7c:11:1c:b6:c0:96:c3: 12:f6:32:f2:9e:af:2c:8e:4b:31:7e:f2:7d:67:82: 74:70:15:51:eb:8f:bf:0b:e5:c8:e8:9a:cf:70:da: 15:02:37:19:e3:ff:6b:b8:98:e0:aa:8b:95:d1:ad: c5:68:db:c3:0d:ae:d5:fb:3e:53:e9:19:eb:1a:49: 57:96:a0:86:84:09:f0:62:7b:54:fc:04:80:e6:00: ea:b5:37:a7:6b:fc:15:43:23:72:83:d1:e0:ae:7f: 83:f5:00:bd:56:48:00:df:83:e0:9c:06:3d:d3:0e: 21:00:bd:ff:60:c5:2b:e6:e1:f5:b0:84:40:07:04: 8b:8e:58:9f:c5:51:a7:87:13:e0:fa:da:4a:a1:ce: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:EE:5B:CC:53:0F:72:41:D1:46:28:71:05:A4:23:D3:77:87:96:28 X509v3 Authority Key Identifier: keyid:A4:68:38:5E:38:F5:D5:8A:73:88:23:8F:2E:D3:05:55:78:A0:ED:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGg4Xjj11YpziCOPLtMFVXig7V4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/pGg4Xjj11YpziCOPLtMFVXig7V4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:60:20:04:4a:bb:fe:fd:c3:e1:9c:79:33:d0:a8:fe:98:4a: 00:01:fe:e8:16:07:0e:48:09:4a:a9:77:6e:1d:64:1d:c1:c8: 10:fb:37:0f:83:61:6e:2f:4d:a1:ca:4c:d4:99:2e:31:72:ff: a2:72:ec:69:f9:99:26:92:65:df:5b:ad:c3:7f:49:bc:62:49: 2a:43:d9:d0:4a:fb:24:41:48:18:c5:89:0d:f2:dc:a7:23:a9: 0c:b0:ad:e6:2a:b8:78:eb:84:ef:1b:4d:97:c3:0b:b5:e3:9a: a4:b7:eb:41:3b:a3:bb:e9:86:b4:b8:ff:6c:50:97:b0:7a:cf: 09:51:55:96:a8:b7:af:54:8a:28:4a:d2:d2:63:1a:15:ef:22: aa:30:34:e1:82:22:f4:0e:5f:44:45:4f:a1:28:d9:06:17:43: d4:a8:fb:98:7d:9e:89:dc:c9:fd:b8:86:4f:6c:16:cc:95:28: fc:2e:f8:7c:64:48:87:5e:62:2b:2d:7b:0f:60:3e:4d:9b:03: f5:47:b7:a6:2e:4d:e8:e1:45:46:98:6c:83:a3:52:b6:04:25: b2:1f:3b:19:d5:43:6b:94:1e:f9:d2:4d:ef:27:4a:43:90:73: 43:bc:37:5b:8e:39:09:83:86:55:f3:e9:94:f3:9f:8c:12:65: 1c:60:36:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE0NjgzODVFMzhGNUQ1OEE3Mzg4MjM4RjJFRDMwNTU1 NzhBMEVENUUwHhcNMjQwNTAyMTczOTUzWhcNMjQwNTA5MTczOTUzWjAYMRYwFAYD VQQDEw02NjMzY2ZlYS0yZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvW+d/HnVl2cannjUkLKNvmO+kOH/vzA94JOYDDwwiKjFgYfYJJVky5oUZvM BM8cBEboG0ovZ7qiazqFmRCdEdeKigylzxN9+c8Bb/qP8sFK0QxP9ypbUd8BlYn+ 3UTmkm2YiO9r0ejNUHjpg7i1UXwRHLbAlsMS9jLynq8sjksxfvJ9Z4J0cBVR64+/ C+XI6JrPcNoVAjcZ4/9ruJjgqouV0a3FaNvDDa7V+z5T6RnrGklXlqCGhAnwYntU /ASA5gDqtTena/wVQyNyg9Hgrn+D9QC9VkgA34PgnAY90w4hAL3/YMUr5uH1sIRA BwSLjlifxVGnhxPg+tpKoc4fDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjuW8xT D3JB0UYocQWkI9N3h5YoMB8GA1UdIwQYMBaAFKRoOF449dWKc4gjjy7TBVV4oO1e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZcHppQ09QTHRNRlZYaWc3 VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHZzRYamoxMVlwemlDT1BMdE1GVlhpZzdWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9wR2c0WGpqMTFZ cHppQ09QTHRNRlZYaWc3VjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAYCAESrv+/cPhnHkz0Kj+mEoAAf7oFgcOSAlKqXduHWQdwcgQ+zcP g2FuL02hykzUmS4xcv+icuxp+ZkmkmXfW63Df0m8YkkqQ9nQSvskQUgYxYkN8tyn I6kMsK3mKrh464TvG02Xwwu145qkt+tBO6O76Ya0uP9sUJewes8JUVWWqLevVIoo StLSYxoV7yKqMDThgiL0Dl9ERU+hKNkGF0PUqPuYfZ6J3Mn9uIZPbBbMlSj8Lvh8 ZEiHXmIrLXsPYD5NmwP1R7emLk3o4UVGmGyDo1K2BCWyHzsZ1UNrlB750k3vJ0pD kHNDvDdbjjkJg4ZV8+mU85+MEmUcYDZV -----END CERTIFICATE-----Generated at Thu May 2 20:50:35 2024 by rpki-client on console-fra.rpki-client.org