$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft File: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft (raw, json) Hash identifier: FOVeurb782igv9bs0Wj4sFSHf/1zo4su1/my0YvovJk= Subject key identifier: 93:39:B1:4F:DC:7B:4F:43:AA:74:C2:99:BA:2F:3A:B4:07:84:F2:05 Authority key identifier: 3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E Certificate issuer: /CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Certificate serial: 06E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft Manifest number: 06E0 Signing time: Sat 04 May 2024 22:59:33 +0000 Manifest this update: Sat 04 May 2024 22:59:33 +0000 Manifest next update: Sat 11 May 2024 22:59:33 +0000 Files and hashes: 1: PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl (hash: 77iPdDOngYtJ92yXxIQUouCcg/HMBQpE9zqFDYCe/t0=) 2: 2037569602BD11EBB333DA0FC4F9AE02.roa (hash: UJ0bU4f3uH4Z6a7SPUdvCu78gkyrlN+fVyocNr2pahc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD3FB/serialNumber=3D1F7FB146410A3C335B33C4982A73638BE5409E Validity Not Before: May 4 22:59:33 2024 GMT Not After : May 11 22:59:33 2024 GMT Subject: CN=6636bdd5-a7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:2a:14:db:8c:dd:1b:33:51:3b:70:e7:d6: d7:1a:02:f7:d3:bf:e2:04:3f:99:3e:36:3a:94:df: fa:2a:54:01:6e:4c:28:13:5d:8e:b9:d5:c3:a0:13: b4:49:87:db:f7:51:6c:4c:39:54:fc:ff:60:78:a0: 4f:58:60:86:d1:08:1d:76:e8:cc:7b:d3:36:df:1a: e9:be:43:c3:5e:c5:26:ba:a8:b2:cb:7a:0e:12:27: f0:85:a1:3b:7f:bb:c4:2a:9d:44:df:f3:d6:42:25: e2:a4:44:d5:94:e0:c8:6d:bc:f8:d7:e1:69:d1:28: f2:57:b5:7e:cc:11:aa:f2:4e:d1:1b:5b:3e:7f:d2: 18:15:35:ba:64:3c:61:96:6c:d2:50:d9:64:c7:d7: e4:a3:58:b3:84:47:98:6c:7a:ee:3a:3d:61:85:b6: bd:cc:a6:50:41:db:54:39:20:9d:f6:47:34:14:86: 0d:2a:39:97:18:ca:7e:9d:33:3c:e7:bb:03:90:6b: 14:e1:76:0f:5e:af:ff:43:67:8e:e5:91:47:0a:d2: 2e:c4:c4:b4:1e:8e:25:ed:ed:81:4d:76:1f:b9:5d: 6c:58:48:f9:cc:3e:96:59:87:3d:6c:64:00:6b:1a: b8:a2:56:00:a5:c3:e1:76:5c:91:ed:ac:42:5f:7e: b3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:39:B1:4F:DC:7B:4F:43:AA:74:C2:99:BA:2F:3A:B4:07:84:F2:05 X509v3 Authority Key Identifier: keyid:3D:1F:7F:B1:46:41:0A:3C:33:5B:33:C4:98:2A:73:63:8B:E5:40:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD3FB/4212BC9E02BB11EBB3D4040BC4F9AE02/PR9_sUZBCjwzWzPEmCpzY4vlQJ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:91:a1:26:fc:4d:ad:70:b8:e6:8a:6c:6d:2a:e1:5b:1e:43: 5d:79:09:d7:71:c0:c4:e9:ee:8d:f7:2a:ff:12:b9:25:e9:fd: b8:08:97:4b:39:4c:d1:f2:98:3d:1e:a8:40:e3:ec:b7:12:9f: 63:2c:07:8b:ac:38:3a:51:d1:69:8b:19:c9:08:04:33:02:0e: d0:35:04:f9:9d:3e:4b:ce:c2:ac:c3:a5:a1:c9:a7:38:a3:d0: 34:31:e6:a9:d4:ab:eb:9b:c1:4a:be:c7:cf:6d:49:06:5b:13: 8b:7f:ec:e6:a2:be:f2:ef:70:f9:59:b7:85:54:d9:5c:5e:42: db:cc:88:42:13:7d:53:e4:d4:15:e9:8f:98:fd:6e:35:97:cd: b6:df:9c:93:ab:32:01:39:13:d1:43:0c:21:5b:19:bf:16:a1: ec:9a:34:79:58:05:05:74:3c:6f:27:91:3a:d0:d4:1d:53:02: 0a:a0:9d:ec:cc:78:c6:e6:7c:a1:8a:94:9d:a9:03:2a:52:75: af:8e:7c:c2:b3:06:97:6c:f9:45:6d:7d:9a:6b:5e:73:5a:6d: f5:4a:dc:18:c5:fc:8e:77:de:2a:af:75:f3:2b:5e:09:05:7c: a1:95:14:c4:5f:ca:58:5b:ed:a3:2c:bb:bb:80:f7:be:01:ff: 78:93:76:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzRkIxMTAvBgNVBAUTKDNEMUY3RkIxNDY0MTBBM0MzMzVCMzNDNDk4MkE3MzYz OEJFNTQwOUUwHhcNMjQwNTA0MjI1OTMzWhcNMjQwNTExMjI1OTMzWjAYMRYwFAYD VQQDEw02NjM2YmRkNS1hN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpMqFNuM3RszUTtw59bXGgL307/iBD+ZPjY6lN/6KlQBbkwoE12OudXDoBO0 SYfb91FsTDlU/P9geKBPWGCG0QgddujMe9M23xrpvkPDXsUmuqiyy3oOEifwhaE7 f7vEKp1E3/PWQiXipETVlODIbbz41+Fp0SjyV7V+zBGq8k7RG1s+f9IYFTW6ZDxh lmzSUNlkx9fko1izhEeYbHruOj1hhba9zKZQQdtUOSCd9kc0FIYNKjmXGMp+nTM8 57sDkGsU4XYPXq//Q2eO5ZFHCtIuxMS0Ho4l7e2BTXYfuV1sWEj5zD6WWYc9bGQA axq4olYApcPhdlyR7axCX36znwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJM5sU/c e09DqnTCmbovOrQHhPIFMB8GA1UdIwQYMBaAFD0ff7FGQQo8M1szxJgqc2OL5UCe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDNGQi80MjEyQkM5RTAy QkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNqd3pXelBFbUNwelk0dmxR SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BSOV9zVVpCQ2p3eld6UEVtQ3B6WTR2bFFKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDNGQi80MjEyQkM5RTAyQkIxMUVCQjNENDA0MEJDNEY5QUUwMi9QUjlfc1VaQkNq d3pXelBFbUNwelk0dmxRSjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAekaEm/E2tcLjmimxtKuFbHkNdeQnXccDE6e6N9yr/Erkl6f24CJdL OUzR8pg9HqhA4+y3Ep9jLAeLrDg6UdFpixnJCAQzAg7QNQT5nT5LzsKsw6Whyac4 o9A0Meap1Kvrm8FKvsfPbUkGWxOLf+zmor7y73D5WbeFVNlcXkLbzIhCE31T5NQV 6Y+Y/W41l82235yTqzIBORPRQwwhWxm/FqHsmjR5WAUFdDxvJ5E60NQdUwIKoJ3s zHjG5nyhipSdqQMqUnWvjnzCswaXbPlFbX2aa15zWm31StwYxfyOd94qr3XzK14J BXyhlRTEX8pYW+2jLLu7gPe+Af94k3av -----END CERTIFICATE-----Generated at Sun May 5 00:14:46 2024 by rpki-client on console-ams.rpki-client.org