$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: rG1JZxkquZ1FD2zRgbMLWGAK3lhSYHs5MMAJbSO3QZ4= Subject key identifier: 4F:F3:0B:F8:9A:AD:BB:71:82:65:F1:6E:AE:0B:5B:A8:02:73:05:55 Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: D2 Signing time: Fri 03 May 2024 06:12:36 +0000 Manifest this update: Fri 03 May 2024 06:12:36 +0000 Manifest next update: Fri 10 May 2024 06:12:36 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: /bXiw8jcqpC4s6WbwyQezTP+StPZNUO1aLI5Qy9TDT0=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: eaj1x+LHWE1tayPFLAKmkFEzxsjJ2bVZZVDGPQjbtdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: May 3 06:12:36 2024 GMT Not After : May 10 06:12:36 2024 GMT Subject: CN=66348054-8499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f7:1e:c4:73:a0:64:e3:f2:4b:1a:c5:8b:ce: 44:85:01:47:3d:e0:c0:e4:af:d2:2a:af:3d:3e:dc: 81:81:26:ad:0b:19:c8:6e:0b:db:83:7b:16:2f:13: 4b:3c:15:22:e2:f2:1d:95:9a:b0:26:eb:93:b0:af: e8:d0:ea:95:6c:8e:37:0d:57:06:fb:34:49:28:aa: e0:be:fc:8c:10:75:57:a1:50:8a:3f:21:ee:14:aa: 03:8e:7f:e0:9a:7b:9f:d9:69:a1:3e:a2:b7:3e:62: 4a:87:bb:1d:2f:16:bf:0a:70:eb:e9:6c:1b:4b:95: b2:30:61:2a:f6:90:85:29:3f:54:e5:29:4c:41:06: 89:43:a1:de:ca:10:a5:e5:7f:30:09:0f:57:57:ae: b1:d8:83:2e:83:74:9c:64:11:36:16:0c:09:d3:be: 54:6e:33:57:84:e9:76:f3:c9:ad:12:1f:27:33:2b: f4:dc:fb:07:cf:d3:86:fd:e2:d1:20:b0:19:f9:c5: de:54:f2:1e:49:76:25:04:04:e0:0c:0e:be:a4:49: 31:8c:4b:ce:52:88:dc:56:d9:8a:e4:dd:98:04:54: db:d1:76:4d:6b:5f:46:b8:d9:d4:e7:b1:81:fa:75: 0d:4c:a5:1b:33:a3:b8:b2:5a:d8:64:ef:9c:c8:ea: 90:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:F3:0B:F8:9A:AD:BB:71:82:65:F1:6E:AE:0B:5B:A8:02:73:05:55 X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:3c:db:e4:b9:4f:5b:5c:7c:19:59:0c:68:25:d5:71:72:74: 28:54:33:d3:06:a9:66:f3:43:1a:75:25:8b:28:eb:40:5a:39: 78:63:29:28:57:32:6f:55:e1:80:fa:cb:d9:c9:16:6f:7b:e0: a8:3f:88:cd:28:56:8f:c0:12:be:f9:d4:b5:c7:64:34:60:a2: c2:9b:0b:b1:cc:b5:b8:83:7d:c4:f4:fd:f5:c4:76:0e:98:8a: 75:ec:79:3f:49:8a:bf:f3:bc:ee:e9:bd:e1:f2:fd:8a:c1:5f: 49:15:c6:7a:fe:77:f7:57:15:ae:b3:70:95:c6:a3:f5:a0:f7: d6:96:de:2a:bf:8b:0a:8e:c8:4c:9a:90:53:fa:bb:de:b4:8f: f4:45:21:e0:e4:de:31:9f:32:32:d5:72:35:48:d1:3c:20:10: 55:6c:06:c7:65:bb:d8:82:88:64:db:ed:2a:1f:79:37:f7:61: 3d:b4:71:0a:f7:47:f6:54:50:57:70:92:82:d1:f2:ab:d1:71: c0:61:75:5d:04:fb:b5:7d:1a:50:3f:bc:ef:a5:06:64:44:07: 56:ba:c1:67:c8:09:bc:ac:2f:a8:c3:70:43:4e:b7:eb:a8:0c: bb:0f:81:89:c1:a6:af:e0:24:6e:49:55:cd:05:84:b0:5a:06: 94:b0:eb:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjQwNTAzMDYxMjM2WhcNMjQwNTEwMDYxMjM2WjAYMRYwFAYD VQQDEw02NjM0ODA1NC04NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/cexHOgZOPySxrFi85EhQFHPeDA5K/SKq89PtyBgSatCxnIbgvbg3sWLxNL PBUi4vIdlZqwJuuTsK/o0OqVbI43DVcG+zRJKKrgvvyMEHVXoVCKPyHuFKoDjn/g mnuf2WmhPqK3PmJKh7sdLxa/CnDr6WwbS5WyMGEq9pCFKT9U5SlMQQaJQ6HeyhCl 5X8wCQ9XV66x2IMug3ScZBE2FgwJ075UbjNXhOl288mtEh8nMyv03PsHz9OG/eLR ILAZ+cXeVPIeSXYlBATgDA6+pEkxjEvOUojcVtmK5N2YBFTb0XZNa19GuNnU57GB +nUNTKUbM6O4slrYZO+cyOqQWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/zC/ia rbtxgmXxbq4LW6gCcwVVMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKPNvkuU9bXHwZWQxoJdVxcnQoVDPTBqlm80MadSWLKOtAWjl4Yyko VzJvVeGA+svZyRZve+CoP4jNKFaPwBK++dS1x2Q0YKLCmwuxzLW4g33E9P31xHYO mIp17Hk/SYq/87zu6b3h8v2KwV9JFcZ6/nf3VxWus3CVxqP1oPfWlt4qv4sKjshM mpBT+rvetI/0RSHg5N4xnzIy1XI1SNE8IBBVbAbHZbvYgohk2+0qH3k392E9tHEK 90f2VFBXcJKC0fKr0XHAYXVdBPu1fRpQP7zvpQZkRAdWusFnyAm8rC+ow3BDTrfr qAy7D4GJwaav4CRuSVXNBYSwWgaUsOsJ -----END CERTIFICATE-----Generated at Fri May 3 09:09:35 2024 by rpki-client on console-fra.rpki-client.org