$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: ABul7hR1nc/pR+QUw8hShEGCYzCqwWVi7c9aqWYaKas= Subject key identifier: 11:79:65:D8:65:5C:AD:C3:2B:9B:AE:D4:E5:1C:E0:31:70:C3:FA:F2 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 0975 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 096C Signing time: Sat 18 May 2024 21:00:59 +0000 Manifest this update: Sat 18 May 2024 21:00:59 +0000 Manifest next update: Sat 25 May 2024 21:00:59 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: vQYcuQHhf2QGnOkIUGqW5RbbPgmjd1am2u/gcy+GcFw=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: 4pMLQrsvo0eE1V4mwyRrVEl4/gwvFne0nTtSMdkpPeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2421 (0x975) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: May 18 21:00:59 2024 GMT Not After : May 25 21:00:59 2024 GMT Subject: CN=6649170b-3599 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:89:d6:56:93:1a:c0:a1:e9:5b:9d:30:23: 29:66:6a:06:ac:42:7e:c3:5b:52:4b:2f:31:62:04: b9:04:f9:eb:1b:3a:81:9d:05:01:85:00:91:7c:48: b6:1b:f1:63:f4:ef:0e:5d:90:a7:da:4a:5d:bf:16: 4b:12:41:dc:0f:e7:5d:54:f7:74:73:4a:ba:c9:84: 83:28:82:9c:ed:f5:33:dc:6d:6e:b9:ca:8d:e7:63: ea:9e:6b:cd:67:4c:47:23:a0:37:d0:68:ce:47:cd: 3c:0d:62:0d:fb:fd:56:52:63:a5:0b:80:5c:8a:10: e6:15:14:63:b5:8a:26:c6:a9:c9:cc:34:4c:39:98: f2:73:4e:93:fb:59:06:f1:21:e4:1c:ec:53:f2:9c: 28:a9:04:9b:8c:fb:e9:68:3a:37:87:66:71:99:4c: 39:68:09:37:57:1c:ea:99:c6:d6:9d:d7:fe:1b:1a: 10:12:30:c9:cb:4d:aa:31:f2:ea:44:8a:c8:3a:13: 73:71:32:0f:67:1a:5c:95:59:b5:2b:8e:24:cd:30: 5f:a4:24:37:f4:fa:4a:4a:54:ee:be:08:45:2d:f3: ae:f2:d4:7d:fb:6f:4e:c8:59:22:fb:04:88:4d:50: 69:2f:39:cf:eb:f6:80:9b:93:8d:6a:4f:fe:c2:8c: f7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:79:65:D8:65:5C:AD:C3:2B:9B:AE:D4:E5:1C:E0:31:70:C3:FA:F2 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:85:9f:a9:2f:6a:31:e1:97:6f:32:f1:d2:dd:0a:c4:6d:35: f0:cb:20:47:db:2f:01:2e:ee:f8:2c:0e:64:95:84:7d:57:d5: 23:a6:ac:8d:ba:09:44:f6:bf:8a:b9:48:f8:24:10:0e:af:f2: be:72:45:57:44:7b:e9:cf:f8:a4:54:ad:fe:37:93:f4:53:6e: eb:b8:ce:a1:5c:c6:b0:ff:ac:ce:a6:fc:90:05:44:ac:d1:77: 26:a2:e9:10:fe:18:55:38:7d:55:9e:81:c4:31:13:ff:67:b8: 1f:f3:cf:ca:bf:53:5b:f8:f5:1d:b8:f2:79:06:6e:b0:91:ea: 75:aa:62:2d:bf:92:30:5a:54:6b:7c:76:4f:71:49:8e:89:9d: 9d:34:85:4f:c6:16:71:82:6f:b1:25:24:88:eb:fb:e3:9c:99: c2:59:8e:f5:fb:4a:13:cb:9f:35:c1:e3:66:5b:66:5d:8b:07: 74:e3:4e:b5:bd:3a:2e:b3:08:88:7e:13:da:a4:d4:1b:ca:8d: a9:0d:2a:e8:6a:5f:65:73:35:f0:f2:9c:43:5f:88:80:4f:4a: 18:e6:97:70:47:51:67:8f:50:47:74:86:65:cf:fa:40:52:98: 77:3d:e4:f3:0e:3d:14:bb:40:11:67:48:1c:08:9d:4e:8a:e4: 63:30:01:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjQwNTE4MjEwMDU5WhcNMjQwNTI1MjEwMDU5WjAYMRYwFAYD VQQDEw02NjQ5MTcwYi0zNTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3mJ1laTGsCh6VudMCMpZmoGrEJ+w1tSSy8xYgS5BPnrGzqBnQUBhQCRfEi2 G/Fj9O8OXZCn2kpdvxZLEkHcD+ddVPd0c0q6yYSDKIKc7fUz3G1uucqN52PqnmvN Z0xHI6A30GjOR808DWIN+/1WUmOlC4BcihDmFRRjtYomxqnJzDRMOZjyc06T+1kG 8SHkHOxT8pwoqQSbjPvpaDo3h2ZxmUw5aAk3VxzqmcbWndf+GxoQEjDJy02qMfLq RIrIOhNzcTIPZxpclVm1K44kzTBfpCQ39PpKSlTuvghFLfOu8tR9+29OyFki+wSI TVBpLznP6/aAm5ONak/+woz3MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBF5Zdhl XK3DK5uu1OUc4DFww/ryMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJhZ+pL2ox4ZdvMvHS3QrEbTXwyyBH2y8BLu74LA5klYR9V9UjpqyN uglE9r+KuUj4JBAOr/K+ckVXRHvpz/ikVK3+N5P0U27ruM6hXMaw/6zOpvyQBUSs 0XcmoukQ/hhVOH1VnoHEMRP/Z7gf88/Kv1Nb+PUduPJ5Bm6wkep1qmItv5IwWlRr fHZPcUmOiZ2dNIVPxhZxgm+xJSSI6/vjnJnCWY71+0oTy581weNmW2Zdiwd04061 vTouswiIfhPapNQbyo2pDSroal9lczXw8pxDX4iAT0oY5pdwR1Fnj1BHdIZlz/pA Uph3PeTzDj0Uu0ARZ0gcCJ1OiuRjMAHj -----END CERTIFICATE-----Generated at Sat May 18 21:24:20 2024 by rpki-client on console-fra.rpki-client.org