$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft File: PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft (raw, json) Hash identifier: 1ZykzkCpRf5lbr69XRGRZ20YlUfZpPjbNQjDswwHAO4= Subject key identifier: EB:F0:72:0C:1A:11:C9:67:A9:6D:40:FF:1C:E4:9A:C6:8B:9D:03:BB Authority key identifier: 3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 Certificate issuer: /CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Certificate serial: 0DC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft Manifest number: 0DBC Signing time: Sun 02 Jun 2024 18:44:45 +0000 Manifest this update: Sun 02 Jun 2024 18:44:44 +0000 Manifest next update: Sun 09 Jun 2024 18:44:44 +0000 Files and hashes: 1: PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl (hash: 5iewtEKBTsBuUzAZCSEb/F3Jd+t3ZWOfHDLhoWf3fVY=) 2: A5B7D874091F11EFA6EDE141C4F9AE02.roa (hash: 2rvUxpqj7Y+E1RimjzmymQTO9YIeEHWwe9dn2EcRiJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 18:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3527 (0xdc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4668/serialNumber=3D0556D193BC92A21EA747F958C697A97EC5D5D6 Validity Not Before: Jun 2 18:44:44 2024 GMT Not After : Jun 9 18:44:44 2024 GMT Subject: CN=665cbd9d-1189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a0:c4:e1:d3:6d:bf:15:30:f3:1f:94:66:45: 5e:97:41:be:4e:7f:d0:7c:d7:ea:42:4c:7b:99:4e: 59:a0:8a:7a:2b:b4:56:5c:08:85:ad:12:54:0b:e4: a3:f5:79:8e:b0:eb:79:c1:72:84:76:ed:2f:53:ca: f5:6b:f6:72:ac:ed:3c:47:c4:3f:6a:0b:1f:95:26: 38:4f:11:52:78:26:9b:5f:26:58:1e:9f:79:88:34: 3d:15:19:0e:52:99:d8:37:c2:44:d9:42:05:49:36: b8:46:86:73:9b:8e:ec:8b:2e:3b:2d:f8:d6:6c:0d: 36:fb:d6:67:76:32:92:90:ab:84:bb:bc:dc:e1:6e: ed:53:8e:f4:07:57:f5:80:8e:9d:eb:bf:51:15:f1: fd:52:79:0f:e4:a9:7b:e2:54:c1:a9:5f:81:49:a9: 5d:88:e5:23:28:9e:56:ce:ee:e9:fb:7d:b4:b2:09: 58:e1:a0:88:b7:ce:1f:67:93:75:eb:db:b6:a8:16: b7:84:f9:7d:fd:33:8b:16:6b:01:d6:30:0a:7f:9a: f9:c2:ce:ef:e7:70:d7:2a:93:1f:58:78:18:d4:be: 73:b1:5f:55:1a:bf:64:cd:d4:8c:5f:fc:9e:ea:ab: 3c:45:69:50:bb:b5:5a:b9:50:8d:46:2a:c2:5f:e4: 5d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F0:72:0C:1A:11:C9:67:A9:6D:40:FF:1C:E4:9A:C6:8B:9D:03:BB X509v3 Authority Key Identifier: keyid:3D:05:56:D1:93:BC:92:A2:1E:A7:47:F9:58:C6:97:A9:7E:C5:D5:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PQVW0ZO8kqIep0f5WMaXqX7F1dY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4668/7C9009AC97F111E9A2E51981C4F9AE02/PQVW0ZO8kqIep0f5WMaXqX7F1dY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:9e:96:cc:ac:83:46:45:d5:42:37:c6:f1:97:f7:1b:70:76: 88:b4:5d:cb:5e:07:a6:e4:db:a7:6f:b1:3f:09:2e:18:27:6d: 00:09:78:5c:6a:4f:69:11:3c:df:50:07:92:50:93:03:9b:ad: 09:44:ea:ea:08:d2:f6:5d:8b:09:3c:bd:c8:ab:d9:b0:eb:ab: b3:02:f4:8c:dd:1d:90:68:aa:c8:c7:98:0d:b5:fb:b5:ab:db: be:27:be:45:96:1f:b9:10:46:eb:59:70:81:12:dc:18:9e:5f: 39:28:53:c0:7e:9d:cf:77:1a:fa:4d:6c:36:1c:d4:28:61:a8: 53:8c:88:ce:86:74:15:12:23:58:a2:d2:11:88:76:01:6a:e8: be:2f:6b:94:a6:f9:1e:b3:29:f6:8a:9d:3c:c1:e2:97:cc:d6: 79:8f:53:82:98:4c:14:63:f0:0c:14:44:91:62:5d:e7:88:31: e7:58:c3:ad:01:fd:43:4f:25:f1:0f:c5:cd:9f:0a:0d:27:df: 9f:b1:7d:35:ae:23:ae:ca:1b:57:8e:30:66:a6:ff:e6:5c:d9: a3:56:84:d0:13:a5:a9:f0:5e:b3:00:c5:ee:28:e7:be:65:58: ef:3a:ee:93:2b:85:de:f0:6e:2d:59:54:fd:cc:4a:f5:a5:f2: 75:a0:21:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2NjgxMTAvBgNVBAUTKDNEMDU1NkQxOTNCQzkyQTIxRUE3NDdGOTU4QzY5N0E5 N0VDNUQ1RDYwHhcNMjQwNjAyMTg0NDQ0WhcNMjQwNjA5MTg0NDQ0WjAYMRYwFAYD VQQDEw02NjVjYmQ5ZC0xMTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aDE4dNtvxUw8x+UZkVel0G+Tn/QfNfqQkx7mU5ZoIp6K7RWXAiFrRJUC+Sj 9XmOsOt5wXKEdu0vU8r1a/ZyrO08R8Q/agsflSY4TxFSeCabXyZYHp95iDQ9FRkO UpnYN8JE2UIFSTa4RoZzm47siy47LfjWbA02+9ZndjKSkKuEu7zc4W7tU470B1f1 gI6d679RFfH9UnkP5Kl74lTBqV+BSaldiOUjKJ5Wzu7p+320sglY4aCIt84fZ5N1 69u2qBa3hPl9/TOLFmsB1jAKf5r5ws7v53DXKpMfWHgY1L5zsV9VGr9kzdSMX/ye 6qs8RWlQu7VauVCNRirCX+Rd/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvwcgwa EclnqW1A/xzkmsaLnQO7MB8GA1UdIwQYMBaAFD0FVtGTvJKiHqdH+VjGl6l+xdXW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDY2OC83QzkwMDlBQzk3 RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtxSWVwMGY1V01hWHFYN0Yx ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BRVlcwWk84a3FJZXAwZjVXTWFYcVg3RjFkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDY2OC83QzkwMDlBQzk3RjExMUU5QTJFNTE5ODFDNEY5QUUwMi9QUVZXMFpPOGtx SWVwMGY1V01hWHFYN0YxZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/npbMrINGRdVCN8bxl/cbcHaItF3LXgem5Nunb7E/CS4YJ20ACXhc ak9pETzfUAeSUJMDm60JROrqCNL2XYsJPL3Iq9mw66uzAvSM3R2QaKrIx5gNtfu1 q9u+J75Flh+5EEbrWXCBEtwYnl85KFPAfp3Pdxr6TWw2HNQoYahTjIjOhnQVEiNY otIRiHYBaui+L2uUpvkesyn2ip08weKXzNZ5j1OCmEwUY/AMFESRYl3niDHnWMOt Af1DTyXxD8XNnwoNJ9+fsX01riOuyhtXjjBmpv/mXNmjVoTQE6Wp8F6zAMXuKOe+ ZVjvOu6TK4Xe8G4tWVT9zEr1pfJ1oCFo -----END CERTIFICATE-----Generated at Sun Jun 2 21:14:33 2024 by rpki-client on console-ams.rpki-client.org