$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: VF4JKfOREC8LxWWZ9gTcltzUehm6u7xEl9XSLnZa7h4= Subject key identifier: 49:5F:02:15:A0:C0:73:AB:FD:1D:41:EB:65:FF:71:BC:39:25:C7:9A Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 0780 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 077B Signing time: Tue 30 Apr 2024 22:33:25 +0000 Manifest this update: Tue 30 Apr 2024 22:33:24 +0000 Manifest next update: Tue 07 May 2024 22:33:24 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: R5rXZ/fPWcY1/1Ta4ycxTdnO3FWvsiL1XF5KuPxr8nQ=) 2: 0BCF58E2015A11EC94EA2C43C4F9AE02.roa (hash: Ad2dkpVpWsGxqATbvl0xMJkc/zspOSMKAdkhD/aSZtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 22:17:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Apr 30 22:33:24 2024 GMT Not After : May 7 22:33:24 2024 GMT Subject: CN=663171b4-3ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:19:99:15:9b:cd:7d:cb:50:a9:fb:8b:73: 27:d8:56:b9:af:af:a0:75:66:cd:a8:c9:ad:99:54: bf:43:cb:59:22:7e:51:7a:b2:d1:cb:65:82:2f:51: 7c:36:9b:60:61:ee:b9:49:a3:93:70:cf:c1:1f:0a: bb:ea:89:04:4a:02:d5:69:8d:c1:9c:3c:1c:41:8a: 65:11:8a:19:c7:47:b8:2e:75:49:c3:35:b1:94:83: 7a:18:0f:97:58:2f:4a:51:7e:f3:c3:76:28:13:c0: 42:ff:d6:89:40:10:bf:54:e8:c2:4e:36:51:22:96: c9:76:73:34:db:fb:08:0c:66:7e:13:32:a2:14:92: 6c:86:17:ce:da:c3:ce:92:9c:2f:d4:91:7b:ad:a5: 1a:05:e2:e0:d8:ab:af:65:45:df:d5:6b:e4:e7:af: 3e:b0:57:94:23:0b:a7:5b:02:04:ff:5f:c3:0c:82: f5:55:a9:36:3a:54:c8:50:09:73:e9:6e:01:16:88: 29:0b:83:04:36:91:ce:9a:3b:42:00:4d:df:1e:0f: 2a:6d:87:de:93:40:89:a5:a4:66:b1:9c:e9:85:8c: ed:32:99:a3:25:44:81:ad:8e:ad:0f:cc:e5:3b:f1: 6c:cc:13:14:1a:c1:2d:89:52:75:31:89:24:f7:31: 90:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:5F:02:15:A0:C0:73:AB:FD:1D:41:EB:65:FF:71:BC:39:25:C7:9A X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ea:6f:4f:f8:6e:9d:71:24:05:b3:76:c2:dd:c7:6f:d3:f0: 96:05:47:9f:7b:78:bd:7d:31:9e:1c:73:b3:f5:a2:ab:3f:20: 18:d3:08:2c:b6:4b:81:c1:d6:2e:f9:0c:2a:df:b7:56:7a:c3: 54:4b:ea:fb:f1:2f:89:15:12:9d:fd:b0:7e:41:5f:8a:63:b9: 1f:3b:29:0a:c3:6e:3d:85:9f:3c:bc:ca:8f:ba:df:01:a1:df: c8:1a:08:89:04:8d:e2:a3:09:72:57:a0:7a:db:41:5f:c6:22: 13:ad:57:22:df:80:95:cd:08:31:6e:75:0c:6e:14:3d:48:63: f6:bc:2f:a4:ed:02:0d:34:c9:21:21:85:82:f5:18:8f:58:5c: d7:91:13:06:1d:8c:d5:57:3e:9f:24:90:33:03:e3:53:ae:4e: d2:a6:02:d7:21:36:00:5c:56:69:a9:f5:df:85:7b:ef:25:06: ff:e9:1d:c2:87:bc:56:1f:e9:25:80:ef:63:5d:9f:61:74:19: c3:a5:18:f5:d2:19:b7:7e:69:f4:99:85:d8:d1:4f:70:4b:2c: 02:50:27:24:9b:52:4e:12:16:eb:f3:97:87:96:5c:68:51:ec: 1b:eb:b2:16:61:92:76:1d:77:dc:96:88:97:ad:8d:0c:c1:81: 9d:e3:e6:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjQwNDMwMjIzMzI0WhcNMjQwNTA3MjIzMzI0WjAYMRYwFAYD VQQDEw02NjMxNzFiNC0zZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1l4ZmRWbzX3LUKn7i3Mn2Fa5r6+gdWbNqMmtmVS/Q8tZIn5RerLRy2WCL1F8 NptgYe65SaOTcM/BHwq76okESgLVaY3BnDwcQYplEYoZx0e4LnVJwzWxlIN6GA+X WC9KUX7zw3YoE8BC/9aJQBC/VOjCTjZRIpbJdnM02/sIDGZ+EzKiFJJshhfO2sPO kpwv1JF7raUaBeLg2KuvZUXf1Wvk568+sFeUIwunWwIE/1/DDIL1Vak2OlTIUAlz 6W4BFogpC4MENpHOmjtCAE3fHg8qbYfek0CJpaRmsZzphYztMpmjJUSBrY6tD8zl O/FszBMUGsEtiVJ1MYkk9zGQIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElfAhWg wHOr/R1B62X/cbw5JceaMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG6m9P+G6dcSQFs3bC3cdv0/CWBUefe3i9fTGeHHOz9aKrPyAY0wgs tkuBwdYu+Qwq37dWesNUS+r78S+JFRKd/bB+QV+KY7kfOykKw249hZ88vMqPut8B od/IGgiJBI3iowlyV6B620FfxiITrVci34CVzQgxbnUMbhQ9SGP2vC+k7QINNMkh IYWC9RiPWFzXkRMGHYzVVz6fJJAzA+NTrk7SpgLXITYAXFZpqfXfhXvvJQb/6R3C h7xWH+klgO9jXZ9hdBnDpRj10hm3fmn0mYXY0U9wSywCUCckm1JOEhbr85eHllxo Uewb67IWYZJ2HXfcloiXrY0MwYGd4+ZD -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:10 2024 by rpki-client on console-ams.rpki-client.org