$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft File: PV2GR6upu0BiXDxkPNg2fxUHgBo.mft (raw, json) Hash identifier: F4tcppINjuqpIeBT3gFdn6dy6hUgXByu2C7z0W+Mivw= Subject key identifier: BD:43:FE:FC:34:21:C8:0B:22:73:0D:01:2A:1A:F5:C0:50:28:97:94 Authority key identifier: 3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A Certificate issuer: /CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Certificate serial: 0377 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft Manifest number: 0372 Signing time: Fri 03 May 2024 02:54:39 +0000 Manifest this update: Fri 03 May 2024 02:54:38 +0000 Manifest next update: Fri 10 May 2024 02:54:38 +0000 Files and hashes: 1: PV2GR6upu0BiXDxkPNg2fxUHgBo.crl (hash: rTVyhylGXJO4ByA/zNaqHBQ5EA9lbrQxMMEDOwxLS04=) 2: CA7DCCFE5EE511ECA6B8CA48C4F9AE02.roa (hash: iehwdc5g9sl8RTSyVN8ksy1mA6Zv+UzQYUuHN7LzFHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2/serialNumber=3D5D8647ABA9BB40625C3C643CD8367F1507801A Validity Not Before: May 3 02:54:38 2024 GMT Not After : May 10 02:54:38 2024 GMT Subject: CN=663451ef-f287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:36:f9:08:8d:68:2b:b6:71:5f:2e:57:4d:ad: d7:5b:85:8f:d5:3c:f8:5f:86:b3:59:f7:54:ae:ef: 61:e8:31:92:24:5e:3a:1c:ae:f2:77:4e:57:ad:f0: e9:5f:55:8f:1e:21:9c:e8:38:1c:09:ef:6f:66:76: 54:bd:e6:4c:9d:d6:e5:10:91:d9:7b:5a:7f:b5:89: 48:34:39:1d:07:94:e5:e9:eb:1a:60:d1:73:4c:d3: 98:5e:fd:ba:6b:8f:86:4e:56:10:88:cc:1f:2b:0d: 5c:3d:fd:07:b0:f8:ed:b2:96:32:cf:8b:b6:20:a7: 49:0e:30:9a:80:c9:e3:d4:b4:4c:5e:8d:1d:16:34: 24:0b:1d:11:e3:66:76:3a:21:03:65:c9:ec:04:0d: 6e:20:64:6e:27:24:01:03:ef:9e:52:85:1e:20:84: c6:88:63:00:e8:bc:26:9c:06:3c:cf:bf:d4:8e:66: 0f:e0:8f:86:5b:a7:2b:4b:3d:33:0a:bb:54:aa:82: df:c4:4f:ce:a0:3e:45:66:77:b4:8e:de:75:55:dc: 64:a8:e2:6a:82:d2:67:0e:2c:5d:2e:b9:89:38:49: 9f:46:93:a1:3c:22:14:f3:1e:b6:08:90:f5:96:84: 5b:a4:ff:04:7d:50:ef:06:32:7b:63:96:7d:06:a0: 37:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:43:FE:FC:34:21:C8:0B:22:73:0D:01:2A:1A:F5:C0:50:28:97:94 X509v3 Authority Key Identifier: keyid:3D:5D:86:47:AB:A9:BB:40:62:5C:3C:64:3C:D8:36:7F:15:07:80:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PV2GR6upu0BiXDxkPNg2fxUHgBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/AB6B27F65EE211ECAFA64B44C4F9AE02/PV2GR6upu0BiXDxkPNg2fxUHgBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:a2:41:19:08:85:64:d6:73:4e:b2:75:7f:6d:86:e2:0a:04: d9:8a:d8:60:e4:ee:03:e1:dc:01:b4:aa:b2:75:30:56:5d:a7: 88:45:09:99:b9:03:f0:cf:24:2c:c9:1f:59:e9:54:cd:a3:3f: 29:16:6f:f3:49:8b:23:01:af:e9:92:50:22:a2:1d:21:50:17: f1:6c:dc:d8:05:1f:63:74:cb:04:9e:84:42:ce:3a:42:52:25: 82:5a:33:9e:ab:7a:a5:01:6c:14:cf:c6:43:29:5a:e2:bc:8d: 92:b6:4c:20:0e:25:a2:77:1d:d6:4d:5b:8d:8d:c0:ba:68:dc: 9b:df:d4:4a:80:a1:9b:36:bb:ea:2d:a7:7b:53:d4:1b:69:3d: 01:f1:f0:ce:73:aa:6a:ef:e4:88:da:45:6d:e1:d9:ba:24:1d: c2:f7:12:97:92:8c:be:1c:c0:70:7b:b2:04:a6:a4:e7:82:a3: c0:14:ff:2c:04:25:79:a6:33:56:6d:8a:97:97:67:b8:72:31: 80:13:8e:c8:75:b4:8b:3b:3e:53:41:5f:ee:99:b5:b5:bf:fa: e1:93:95:41:ef:b3:63:e3:4b:eb:4c:99:17:fb:a8:12:a3:86: 09:f7:b8:e5:e5:d0:3c:a8:e5:51:e0:e2:2a:4e:83:c4:b7:ff: cd:f0:15:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDNENUQ4NjQ3QUJBOUJCNDA2MjVDM0M2NDNDRDgzNjdG MTUwNzgwMUEwHhcNMjQwNTAzMDI1NDM4WhcNMjQwNTEwMDI1NDM4WjAYMRYwFAYD VQQDEw02NjM0NTFlZi1mMjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTb5CI1oK7ZxXy5XTa3XW4WP1Tz4X4azWfdUru9h6DGSJF46HK7yd05XrfDp X1WPHiGc6DgcCe9vZnZUveZMndblEJHZe1p/tYlINDkdB5Tl6esaYNFzTNOYXv26 a4+GTlYQiMwfKw1cPf0HsPjtspYyz4u2IKdJDjCagMnj1LRMXo0dFjQkCx0R42Z2 OiEDZcnsBA1uIGRuJyQBA++eUoUeIITGiGMA6LwmnAY8z7/UjmYP4I+GW6crSz0z CrtUqoLfxE/OoD5FZne0jt51VdxkqOJqgtJnDixdLrmJOEmfRpOhPCIU8x62CJD1 loRbpP8EfVDvBjJ7Y5Z9BqA3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1D/vw0 IcgLInMNASoa9cBQKJeUMB8GA1UdIwQYMBaAFD1dhkerqbtAYlw8ZDzYNn8VB4Aa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9BQjZCMjdGNjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUwQmlYRHhrUE5nMmZ4VUhn Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BWMkdSNnVwdTBCaVhEeGtQTmcyZnhVSGdCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9BQjZCMjdGNjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9QVjJHUjZ1cHUw QmlYRHhrUE5nMmZ4VUhnQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWokEZCIVk1nNOsnV/bYbiCgTZithg5O4D4dwBtKqydTBWXaeIRQmZ uQPwzyQsyR9Z6VTNoz8pFm/zSYsjAa/pklAioh0hUBfxbNzYBR9jdMsEnoRCzjpC UiWCWjOeq3qlAWwUz8ZDKVrivI2StkwgDiWidx3WTVuNjcC6aNyb39RKgKGbNrvq Lad7U9QbaT0B8fDOc6pq7+SI2kVt4dm6JB3C9xKXkoy+HMBwe7IEpqTngqPAFP8s BCV5pjNWbYqXl2e4cjGAE47IdbSLOz5TQV/umbW1v/rhk5VB77Nj40vrTJkX+6gS o4YJ97jl5dA8qOVR4OIqToPEt//N8BWE -----END CERTIFICATE-----Generated at Fri May 3 04:45:29 2024 by rpki-client on console-fra.rpki-client.org