$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: GeZIvakJxp9sigdB8/nnl4gBaVPWRWlqy+sJraQCD+I= Subject key identifier: BF:2D:38:71:00:60:5C:18:BA:18:86:FA:12:F1:B3:C5:47:BD:6A:2B Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 06C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 1282 Signing time: Sat 18 May 2024 19:06:41 +0000 Manifest this update: Sat 18 May 2024 19:06:41 +0000 Manifest next update: Sat 25 May 2024 19:06:41 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: tn2XfjP+bsnKrmuLRv6vMahzjV5vpn9oIWE7TyV7bec=) 2: 1D88932A452911EB9118413EC4F9AE02.roa (hash: SCl5aD29N8FQzsS4y+Nxw7MEzPWUyh/cTZ5qei2/m40=) 3: 4022ED5A1E0E11EB8169D187C4F9AE02.roa (hash: j2zHgmp8Nt5vKv0t1qg4uegQ3l4vSDeq4GLVEWp1JqE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: May 18 19:06:41 2024 GMT Not After : May 25 19:06:41 2024 GMT Subject: CN=6648fc41-5b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b1:63:8e:f3:4f:dd:e8:c5:05:37:b4:fb:63: ae:dd:51:a6:31:94:cb:25:2b:db:b9:a1:57:ad:b7: f9:61:11:e2:82:04:90:ac:0d:21:9c:3f:9d:f6:42: d3:30:ef:12:d3:9b:7c:81:b8:52:ac:73:3a:9f:02: 3b:5c:1c:69:fa:8d:c0:5e:35:7e:88:60:3b:c9:18: f9:c1:c5:42:c1:71:bb:c8:a6:e2:33:93:57:69:bd: fb:d4:89:3e:fc:f9:1a:d9:24:4f:8c:bd:0d:a6:55: ff:15:3b:20:0f:29:48:04:e3:4a:a1:12:c4:25:11: eb:1b:2e:0c:63:9f:27:98:e7:fc:56:ef:35:39:20: 27:f1:2e:73:c4:b9:7e:8f:2f:ab:3d:a6:97:bc:59: 16:a4:88:56:2e:19:e8:a3:ad:93:8b:2d:ec:f2:66: 15:e3:20:ac:ec:06:45:37:29:69:67:3d:de:8d:f8: 89:ed:d5:f3:43:48:29:8a:61:43:cd:08:45:1e:92: 42:4f:82:99:16:63:45:06:4d:20:a6:c4:d9:df:19: 2c:4e:43:32:4c:2d:b3:35:7f:55:8d:c0:ea:72:e5: e0:36:d3:9a:fa:32:2c:f2:40:81:f1:4b:48:f5:c1: b0:60:68:b9:ac:1f:e9:5e:24:8b:2c:46:94:42:6a: fa:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2D:38:71:00:60:5C:18:BA:18:86:FA:12:F1:B3:C5:47:BD:6A:2B X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:5e:11:1a:b0:fa:fb:cc:8a:94:16:e6:aa:45:e7:98:49:29: 0b:ab:98:bd:ec:d6:43:c5:a5:de:e5:46:0d:f1:fe:fe:eb:d0: c3:c1:cb:b2:2f:5f:34:db:1b:0e:8a:9e:97:41:f0:bb:ea:9d: 73:89:91:7b:67:90:97:cc:a7:0c:15:bf:f7:9e:aa:b2:a4:08: 6c:9c:66:68:49:58:58:f5:8a:8c:ce:1c:67:2f:48:42:f4:2c: 74:4e:81:9e:b8:27:19:43:c1:1d:d3:c0:d4:25:aa:89:92:07: 87:67:26:00:17:1a:18:21:ff:bb:7c:c8:b3:96:37:89:8a:c0: a1:a3:b4:d9:65:56:89:cc:9a:52:65:bb:45:49:8b:ab:f4:4d: ca:c5:ad:0c:8e:6d:15:99:da:65:ab:78:dc:a0:a4:84:76:84: b7:30:5b:f8:a1:74:0a:27:3d:5e:e2:13:c9:a1:b5:19:50:b5: f9:1d:0b:47:12:54:fe:bd:a2:37:92:ee:6f:49:02:92:f6:78: 0e:cc:8c:89:6c:49:cc:ed:bd:8b:64:9d:fe:1d:14:15:b4:51: d6:25:4b:ea:76:7e:f9:8c:d3:a9:68:f0:64:ff:16:4a:f0:82: c7:43:a9:a1:2f:d8:48:df:fb:fe:60:1a:97:c8:4b:70:13:4b: b2:07:be:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjQwNTE4MTkwNjQxWhcNMjQwNTI1MTkwNjQxWjAYMRYwFAYD VQQDEw02NjQ4ZmM0MS01YjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07FjjvNP3ejFBTe0+2Ou3VGmMZTLJSvbuaFXrbf5YRHiggSQrA0hnD+d9kLT MO8S05t8gbhSrHM6nwI7XBxp+o3AXjV+iGA7yRj5wcVCwXG7yKbiM5NXab371Ik+ /Pka2SRPjL0NplX/FTsgDylIBONKoRLEJRHrGy4MY58nmOf8Vu81OSAn8S5zxLl+ jy+rPaaXvFkWpIhWLhnoo62Tiy3s8mYV4yCs7AZFNylpZz3ejfiJ7dXzQ0gpimFD zQhFHpJCT4KZFmNFBk0gpsTZ3xksTkMyTC2zNX9VjcDqcuXgNtOa+jIs8kCB8UtI 9cGwYGi5rB/pXiSLLEaUQmr6QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8tOHEA YFwYuhiG+hLxs8VHvWorMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdXhEasPr7zIqUFuaqReeYSSkLq5i97NZDxaXe5UYN8f7+69DDwcuy L1802xsOip6XQfC76p1ziZF7Z5CXzKcMFb/3nqqypAhsnGZoSVhY9YqMzhxnL0hC 9Cx0ToGeuCcZQ8Ed08DUJaqJkgeHZyYAFxoYIf+7fMizljeJisCho7TZZVaJzJpS ZbtFSYur9E3Kxa0Mjm0Vmdplq3jcoKSEdoS3MFv4oXQKJz1e4hPJobUZULX5HQtH ElT+vaI3ku5vSQKS9ngOzIyJbEnM7b2LZJ3+HRQVtFHWJUvqdn75jNOpaPBk/xZK 8ILHQ6mhL9hI3/v+YBqXyEtwE0uyB77r -----END CERTIFICATE-----Generated at Sat May 18 19:56:04 2024 by rpki-client on console-fra.rpki-client.org