$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft File: PDml0ZGM9lqyVjMi8PXxQwmme48.mft (raw, json) Hash identifier: u960cELLaNkJ3SQG9fjVAcenNhDNuzeRTBQAFUuQcCo= Subject key identifier: 67:30:AC:D8:D6:83:E3:81:21:B2:08:5E:00:07:61:E3:57:0D:4A:4A Authority key identifier: 3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F Certificate issuer: /CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Certificate serial: 08B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft Manifest number: 08A6 Signing time: Fri 26 Apr 2024 21:34:13 +0000 Manifest this update: Fri 26 Apr 2024 21:34:13 +0000 Manifest next update: Fri 03 May 2024 21:34:13 +0000 Files and hashes: 1: PDml0ZGM9lqyVjMi8PXxQwmme48.crl (hash: 1y+TumgOAbOwxmE5Y9Z5gxQOOwLeiYSX+9f+oWTs7fw=) 2: DE07328A778911ECBD9C7748C4F9AE02.roa (hash: mdoKa+ieW/3WtLg8rKPDysDH2Y4w89IP4YZyJeqI3ro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2230 (0x8b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F2C/serialNumber=3C39A5D1918CF65AB2563322F0F5F14309A67B8F Validity Not Before: Apr 26 21:34:13 2024 GMT Not After : May 3 21:34:13 2024 GMT Subject: CN=662c1dd5-55e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:81:d7:a9:6b:c4:ca:94:c7:bb:5a:bf:43:bb: 8a:1b:85:1e:d8:84:68:59:0a:9d:c9:95:0b:e0:d2: 3a:96:d5:fa:d0:27:68:35:22:3c:82:81:7e:bb:28: 14:19:6b:17:d6:f0:e4:45:86:9a:2f:7b:3f:c8:d0: f3:47:44:dd:f2:ca:ad:2f:58:32:2c:00:30:80:31: 21:06:d1:43:b3:0e:2a:31:70:e0:4f:84:66:a0:78: 74:90:f2:99:f5:87:ef:d2:67:0d:b1:77:bc:32:0a: 0e:80:67:83:69:28:fa:14:3c:59:40:69:85:d7:1b: 2c:f1:e5:58:12:5c:8b:2a:d9:19:6f:88:b4:46:3c: 21:8a:74:f9:46:05:02:dd:bd:9a:c7:13:43:e3:58: 94:4e:a9:d1:13:79:63:9a:bd:44:be:6b:0e:43:c3: 18:e1:fe:4b:f9:82:ac:d7:16:e1:df:da:11:6d:2f: c3:22:98:21:92:c8:b2:b9:4e:eb:b8:19:a4:41:06: 14:04:15:b7:98:a0:cf:32:1c:46:ac:3e:9f:13:45: a7:42:0f:4d:06:8f:ee:5b:60:dc:ac:86:5c:8c:04: 61:10:b5:34:3f:ca:db:26:50:a7:56:a9:8f:58:04: 0d:05:0b:c2:f8:52:8e:1e:bc:b2:ed:0e:6f:48:23: c9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:30:AC:D8:D6:83:E3:81:21:B2:08:5E:00:07:61:E3:57:0D:4A:4A X509v3 Authority Key Identifier: keyid:3C:39:A5:D1:91:8C:F6:5A:B2:56:33:22:F0:F5:F1:43:09:A6:7B:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDml0ZGM9lqyVjMi8PXxQwmme48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F2C/FFB761FA967811EA840F0029C4F9AE02/PDml0ZGM9lqyVjMi8PXxQwmme48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:14:b3:54:ad:0e:ad:c9:91:0a:6b:5a:1c:75:54:48:c0:e1: 97:d6:14:3d:bf:9d:e6:fa:38:61:8f:f9:50:d1:a8:50:72:54: d8:38:14:7d:ad:83:bd:b2:ba:33:a0:f2:fb:f6:a7:16:d8:39: ab:4f:80:7a:92:b5:52:fa:b3:a5:ae:f1:1b:a4:cf:87:32:3e: 00:97:2e:55:05:59:6c:76:1b:57:27:89:aa:32:f1:7a:ea:ad: 7e:75:7d:18:4e:f3:6e:65:79:b9:72:70:71:54:ac:30:26:40: 6b:7c:fc:83:d5:55:e5:bd:c7:89:e4:af:b8:2c:c5:8e:1b:95: b2:86:9c:a8:6d:ae:55:25:5e:ae:12:c0:07:a2:9a:5a:fa:f1: 3d:de:a4:4c:26:f8:e1:f4:f3:3b:29:67:d2:98:3d:a2:2d:ac: cc:e8:16:c6:a8:9c:b0:5c:bb:c0:04:2b:d2:ef:ad:b4:e5:53: fb:cf:d5:10:4a:8a:f5:08:9e:e9:30:1c:9a:dd:d7:63:10:b7: 3d:8a:3c:39:e0:9a:c2:a5:42:c5:bf:32:d5:f6:94:7b:9d:0c: 88:4c:c0:fb:c1:9c:9f:7d:11:5e:cd:f0:5a:dc:27:4c:93:14: 20:7b:2c:04:2e:44:e8:f5:55:26:73:dc:d6:dc:60:df:8b:e9: 16:2f:d0:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGMkMxMTAvBgNVBAUTKDNDMzlBNUQxOTE4Q0Y2NUFCMjU2MzMyMkYwRjVGMTQz MDlBNjdCOEYwHhcNMjQwNDI2MjEzNDEzWhcNMjQwNTAzMjEzNDEzWjAYMRYwFAYD VQQDEw02NjJjMWRkNS01NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IHXqWvEypTHu1q/Q7uKG4Ue2IRoWQqdyZUL4NI6ltX60CdoNSI8goF+uygU GWsX1vDkRYaaL3s/yNDzR0Td8sqtL1gyLAAwgDEhBtFDsw4qMXDgT4RmoHh0kPKZ 9Yfv0mcNsXe8MgoOgGeDaSj6FDxZQGmF1xss8eVYElyLKtkZb4i0RjwhinT5RgUC 3b2axxND41iUTqnRE3ljmr1EvmsOQ8MY4f5L+YKs1xbh39oRbS/DIpghksiyuU7r uBmkQQYUBBW3mKDPMhxGrD6fE0WnQg9NBo/uW2DcrIZcjARhELU0P8rbJlCnVqmP WAQNBQvC+FKOHryy7Q5vSCPJlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcwrNjW g+OBIbIIXgAHYeNXDUpKMB8GA1UdIwQYMBaAFDw5pdGRjPZaslYzIvD18UMJpnuP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkYyQy9GRkI3NjFGQTk2 NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTlscXlWak1pOFBYeFF3bW1l NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEbWwwWkdNOWxxeVZqTWk4UFh4UXdtbWU0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkYyQy9GRkI3NjFGQTk2NzgxMUVBODQwRjAwMjlDNEY5QUUwMi9QRG1sMFpHTTls cXlWak1pOFBYeFF3bW1lNDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8FLNUrQ6tyZEKa1ocdVRIwOGX1hQ9v53m+jhhj/lQ0ahQclTYOBR9 rYO9srozoPL79qcW2DmrT4B6krVS+rOlrvEbpM+HMj4Aly5VBVlsdhtXJ4mqMvF6 6q1+dX0YTvNuZXm5cnBxVKwwJkBrfPyD1VXlvceJ5K+4LMWOG5Wyhpyoba5VJV6u EsAHoppa+vE93qRMJvjh9PM7KWfSmD2iLazM6BbGqJywXLvABCvS76205VP7z9UQ Sor1CJ7pMBya3ddjELc9ijw54JrCpULFvzLV9pR7nQyITMD7wZyffRFezfBa3CdM kxQgeywELkTo9VUmc9zW3GDfi+kWL9Cx -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:47 2024 by rpki-client on console-ams.rpki-client.org