$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft File: PinOb2p9uUttCRM7c_7VLd7hLas.mft (raw, json) Hash identifier: nZESuPGCZ+xpWM4h9XBH8kZIx+vAEEN9NAIt30gEk8U= Subject key identifier: D2:FC:85:BF:DB:4D:83:5B:26:DD:03:FE:96:F1:8E:4B:61:BA:DE:25 Authority key identifier: 3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB Certificate issuer: /CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Certificate serial: 0FB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft Manifest number: 0FA8 Signing time: Sat 04 May 2024 18:26:34 +0000 Manifest this update: Sat 04 May 2024 18:26:33 +0000 Manifest next update: Sat 11 May 2024 18:26:33 +0000 Files and hashes: 1: PinOb2p9uUttCRM7c_7VLd7hLas.crl (hash: jj875LrWyqYyqvICHnAkBYF5rXNgTcXWHcZuap/Kl9M=) 2: 073BC4F4ED3B11EDB5A01A46C4F9AE02.roa (hash: pBAdtg5q7fupj3C2NkgZi3lj80AO2X+XBbLJrZHCCV0=) 3: DC83478EEB0311ED875DD72EC4F9AE02.roa (hash: IlQNPufPp5lcw0/H+C9OvcpVkwFtNaLK902bIh+My2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4020 (0xfb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF285/serialNumber=3E29CE6F6A7DB94B6D09133B73FED52DDEE12DAB Validity Not Before: May 4 18:26:33 2024 GMT Not After : May 11 18:26:33 2024 GMT Subject: CN=66367dda-2c16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:37:50:05:40:d9:57:11:32:65:92:03:ae:38: 94:0d:db:14:aa:04:65:8e:23:2e:14:75:e7:c5:e8: 64:ad:76:8b:02:e3:3d:f8:8b:ea:85:f3:28:a2:6d: ef:78:c2:f1:19:10:9f:71:ba:89:cc:57:bc:70:94: 4a:0c:84:80:15:c2:7a:62:77:8a:1a:48:ed:bd:c1: 7e:8c:21:eb:27:66:27:cc:b4:0c:be:af:7c:18:0b: f5:fd:e7:1a:ca:1a:72:bf:fa:3f:70:ad:1b:91:1c: 39:21:ca:4a:e4:11:58:97:78:70:3c:8a:ee:82:24: 78:03:7f:45:e8:62:ec:c2:5e:75:d9:92:0e:c6:26: 04:7d:53:9f:96:d4:3e:ab:76:e6:8d:3e:e0:f8:ff: 31:13:6f:1d:3d:ad:77:a4:6a:cd:72:c5:e4:8f:05: 7e:de:86:fe:f1:77:3c:12:20:f1:30:a3:e6:1f:44: 5e:be:92:8a:23:ba:97:32:13:0d:b5:e7:aa:e6:65: b3:0e:0a:0e:45:b4:cd:74:ea:eb:3e:c5:51:9b:40: 40:99:ee:e9:d2:49:7d:5b:c2:f3:ca:15:aa:f0:d9: 59:cc:c1:12:11:09:b3:02:86:f9:07:3e:3b:72:23: 84:66:49:53:16:2f:10:ce:17:d7:21:75:8f:e2:a1: 5d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FC:85:BF:DB:4D:83:5B:26:DD:03:FE:96:F1:8E:4B:61:BA:DE:25 X509v3 Authority Key Identifier: keyid:3E:29:CE:6F:6A:7D:B9:4B:6D:09:13:3B:73:FE:D5:2D:DE:E1:2D:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PinOb2p9uUttCRM7c_7VLd7hLas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF285/FD64F0B8340C11E9966C5A76C4F9AE02/PinOb2p9uUttCRM7c_7VLd7hLas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:bc:f0:68:7e:90:4d:c0:1a:e7:a7:13:b2:94:e4:5a:01:bf: a5:a8:62:9f:db:d1:dd:aa:32:b1:81:79:0d:53:98:a7:b0:6f: 49:8a:c7:7c:a6:e5:7d:5d:fa:59:c7:cb:ce:78:71:74:c0:7b: 4a:2a:31:f4:a2:b9:4d:a4:62:a6:c0:43:14:41:92:71:d3:4b: 01:37:e2:63:9e:e2:e8:31:32:5c:32:0f:6e:ff:72:5a:8c:7b: bc:59:6f:48:02:dd:46:7f:05:75:75:fb:a1:25:0c:ee:b6:82: 5a:36:90:0a:87:c6:bd:1e:a4:7a:3b:61:86:87:f8:1d:e9:70: 9a:26:54:c1:6c:2f:79:87:b9:64:ee:fc:84:2c:71:d7:b4:56: ca:58:1a:66:bd:69:ae:02:6b:c0:5d:67:6c:7f:41:66:da:3b: 09:92:08:63:3d:5c:c4:0b:85:14:25:86:73:bf:36:11:0a:63: 3e:b4:aa:eb:13:c5:71:04:84:bb:9b:b6:99:c0:b8:a8:f4:b7: 7b:ad:de:65:e3:28:6d:03:fb:4f:6a:8b:a7:db:6f:71:72:6a: 8c:56:d3:ad:db:21:90:7c:c5:ab:28:b8:92:88:73:53:b5:33: 96:d0:48:77:b9:87:9a:bb:ed:28:1b:3d:89:86:d9:ee:d8:fe: f8:9d:93:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyODUxMTAvBgNVBAUTKDNFMjlDRTZGNkE3REI5NEI2RDA5MTMzQjczRkVENTJE REVFMTJEQUIwHhcNMjQwNTA0MTgyNjMzWhcNMjQwNTExMTgyNjMzWjAYMRYwFAYD VQQDEw02NjM2N2RkYS0yYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTdQBUDZVxEyZZIDrjiUDdsUqgRljiMuFHXnxehkrXaLAuM9+IvqhfMoom3v eMLxGRCfcbqJzFe8cJRKDISAFcJ6YneKGkjtvcF+jCHrJ2YnzLQMvq98GAv1/eca yhpyv/o/cK0bkRw5IcpK5BFYl3hwPIrugiR4A39F6GLswl512ZIOxiYEfVOfltQ+ q3bmjT7g+P8xE28dPa13pGrNcsXkjwV+3ob+8Xc8EiDxMKPmH0RevpKKI7qXMhMN teeq5mWzDgoORbTNdOrrPsVRm0BAme7p0kl9W8LzyhWq8NlZzMESEQmzAob5Bz47 ciOEZklTFi8QzhfXIXWP4qFdPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNL8hb/b TYNbJt0D/pbxjkthut4lMB8GA1UdIwQYMBaAFD4pzm9qfblLbQkTO3P+1S3e4S2r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI4NS9GRDY0RjBCODM0 MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVVdHRDUk03Y183VkxkN2hM YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Bpbk9iMnA5dVV0dENSTTdjXzdWTGQ3aExhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjI4NS9GRDY0RjBCODM0MEMxMUU5OTY2QzVBNzZDNEY5QUUwMi9QaW5PYjJwOXVV dHRDUk03Y183VkxkN2hMYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYvPBofpBNwBrnpxOylORaAb+lqGKf29HdqjKxgXkNU5insG9Jisd8 puV9XfpZx8vOeHF0wHtKKjH0orlNpGKmwEMUQZJx00sBN+JjnuLoMTJcMg9u/3Ja jHu8WW9IAt1GfwV1dfuhJQzutoJaNpAKh8a9HqR6O2GGh/gd6XCaJlTBbC95h7lk 7vyELHHXtFbKWBpmvWmuAmvAXWdsf0Fm2jsJkghjPVzEC4UUJYZzvzYRCmM+tKrr E8VxBIS7m7aZwLio9Ld7rd5l4yhtA/tPaoun229xcmqMVtOt2yGQfMWrKLiSiHNT tTOW0Eh3uYeau+0oGz2Jhtnu2P74nZMy -----END CERTIFICATE-----Generated at Sat May 4 20:37:18 2024 by rpki-client on console-fra.rpki-client.org