$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: rkwmCD+dD9QYVkAV207iYrrz3pXL3tjfmfkNcBD3Bs8= Subject key identifier: 39:92:29:DF:4C:CA:53:52:43:8F:01:98:54:23:BA:93:E9:DF:A9:64 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 01C4 Signing time: Fri 17 May 2024 04:35:30 +0000 Manifest this update: Fri 17 May 2024 04:35:29 +0000 Manifest next update: Fri 24 May 2024 04:35:29 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: 30k0VEhiPd1KssrpZgSu1pfomWFPf2MgRVzbsoL+uXk=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: 7nzz5YKwwXZf09jz37XzY7781RRAJLlb5nuGsk6+Jak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: May 17 04:35:29 2024 GMT Not After : May 24 04:35:29 2024 GMT Subject: CN=6646de92-24b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7f:14:f7:f4:5c:76:29:76:03:88:be:3c:24: 71:ac:e7:2a:5f:19:79:15:0a:f2:01:a3:c1:36:09: 8c:56:ae:31:bb:29:58:3a:10:01:f2:b8:e6:9d:81: 55:a9:41:39:81:83:3f:b8:ec:3f:de:e3:83:c9:36: 63:a7:11:94:02:03:74:3c:16:99:02:45:b9:62:ac: c0:67:3d:d1:eb:bd:cb:5c:b6:9e:6a:54:99:f2:41: d3:56:76:28:4c:73:7c:70:1c:ce:51:cc:56:54:19: 3e:6e:86:9c:a1:6a:7e:13:86:e0:80:df:51:00:7e: 5d:54:91:80:3a:7b:90:57:63:0f:90:d7:65:f8:5f: 9a:c7:be:ea:1a:21:cc:42:4e:ac:e9:13:e5:cb:b1: df:58:46:b2:90:7b:07:47:9c:b5:5b:19:16:33:c4: 00:b7:ad:70:a0:01:f8:34:ca:ee:de:25:1b:8b:04: d0:d0:f7:92:7f:dc:70:77:8b:bd:db:f3:27:ba:81: f4:d1:6d:58:1a:41:76:bb:b0:e5:88:cd:d6:a3:90: bc:e5:07:64:51:31:64:29:a9:79:77:23:71:3a:d8: 25:3a:bf:b7:77:01:85:30:72:b9:98:88:67:d6:d4: 7c:8e:05:42:86:1e:55:37:71:24:e1:d6:57:00:eb: 39:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:92:29:DF:4C:CA:53:52:43:8F:01:98:54:23:BA:93:E9:DF:A9:64 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:53:7b:20:ca:9a:cc:1d:70:6f:2c:b0:a9:04:5f:0f:ca:51: 45:89:04:78:2a:48:d7:6e:04:5b:19:d7:a8:92:30:73:64:61: 62:dc:b6:2e:a5:48:67:f7:42:d2:28:e1:a5:80:64:a0:3b:c9: 4a:c8:30:b4:1f:44:ce:a6:2d:61:b4:79:21:7e:54:1a:a5:ac: cd:b7:d0:1a:19:5c:6d:25:42:77:0a:96:20:c3:9e:45:f3:8e: 60:d7:6b:d1:94:2c:a7:83:79:ac:14:a7:b1:25:7c:24:c2:cb: 0b:ad:f6:04:fe:46:aa:1c:58:c8:a6:81:d1:8b:41:95:ed:3b: 40:56:ab:83:d4:aa:d4:80:67:43:76:1b:92:e5:d6:0d:8e:a6: 63:db:85:4c:c2:47:5b:9c:f3:3a:f7:a1:42:2c:ae:6d:a0:65: f4:c7:39:3b:df:09:53:64:8e:f2:b0:1e:74:6d:05:cc:cf:ed: 34:62:d4:f7:74:9c:d9:6f:76:5b:0d:cb:b6:0b:5d:48:c9:ee: 05:c7:d6:2f:cf:9f:9b:88:e4:11:d2:6a:78:68:28:be:3e:13: d6:83:1e:c3:37:34:2d:74:4e:61:6a:53:c6:3b:b7:92:df:8b: 78:c1:01:57:13:ed:65:6f:b5:89:c4:f1:58:20:8b:a4:85:30: 0a:d5:1b:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjQwNTE3MDQzNTI5WhcNMjQwNTI0MDQzNTI5WjAYMRYwFAYD VQQDEw02NjQ2ZGU5Mi0yNGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH8U9/Rcdil2A4i+PCRxrOcqXxl5FQryAaPBNgmMVq4xuylYOhAB8rjmnYFV qUE5gYM/uOw/3uODyTZjpxGUAgN0PBaZAkW5YqzAZz3R673LXLaealSZ8kHTVnYo THN8cBzOUcxWVBk+boacoWp+E4bggN9RAH5dVJGAOnuQV2MPkNdl+F+ax77qGiHM Qk6s6RPly7HfWEaykHsHR5y1WxkWM8QAt61woAH4NMru3iUbiwTQ0PeSf9xwd4u9 2/MnuoH00W1YGkF2u7DliM3Wo5C85QdkUTFkKal5dyNxOtglOr+3dwGFMHK5mIhn 1tR8jgVChh5VN3Ek4dZXAOs5TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDmSKd9M ylNSQ48BmFQjupPp36lkMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVU3sgyprMHXBvLLCpBF8PylFFiQR4KkjXbgRbGdeokjBzZGFi3LYu pUhn90LSKOGlgGSgO8lKyDC0H0TOpi1htHkhflQapazNt9AaGVxtJUJ3CpYgw55F 845g12vRlCyng3msFKexJXwkwssLrfYE/kaqHFjIpoHRi0GV7TtAVquD1KrUgGdD dhuS5dYNjqZj24VMwkdbnPM696FCLK5toGX0xzk73wlTZI7ysB50bQXMz+00YtT3 dJzZb3ZbDcu2C11Iye4Fx9Yvz5+biOQR0mp4aCi+PhPWgx7DNzQtdE5halPGO7eS 34t4wQFXE+1lb7WJxPFYIIukhTAK1Rs+ -----END CERTIFICATE-----Generated at Fri May 17 06:46:28 2024 by rpki-client on console-ams.rpki-client.org