$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: bFKF1e5eqdFAJdbYQIym7CU5EkHgAZl/GOktN1MLGL4= Subject key identifier: DD:F7:97:B3:6C:6C:56:96:4A:11:CC:55:1D:C2:6E:F8:7E:7E:74:1B Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 166F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1656 Signing time: Sat 18 May 2024 17:10:46 +0000 Manifest this update: Sat 18 May 2024 17:10:46 +0000 Manifest next update: Sat 25 May 2024 17:10:46 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: dZO3T3znKfgGYiKu+Ps+H1iuw+z90cQuAAzu1OLuyRs=) 2: 9AE12F1CB74111EDB0C38030C4F9AE02.roa (hash: 8RSjYugc2F9VWw0Ud3ECEZ6Drs3HKkHChTyELE7deCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5743 (0x166f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: May 18 17:10:46 2024 GMT Not After : May 25 17:10:46 2024 GMT Subject: CN=6648e116-08e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d8:65:08:ec:7a:15:a7:cf:9e:a6:f1:13:35: 7d:5c:2c:57:ac:e9:71:a6:e2:e5:65:8f:96:d9:5e: 7e:ca:99:af:30:3e:7f:fe:5f:f5:cd:ed:9e:f1:61: 88:8c:76:9e:9c:e2:8d:66:f4:2b:c3:b6:0c:c3:79: 35:9e:0b:fd:4c:f7:4c:0d:39:87:c4:5e:03:4c:72: 9d:c7:89:68:fe:01:54:a4:f6:62:85:02:32:7d:b3: 0a:f9:86:af:ff:bd:4f:01:ec:44:55:f0:ec:3c:90: 1f:ba:22:47:28:cd:36:11:21:5b:d0:2a:dd:cc:aa: b9:9e:69:b2:da:5e:6c:69:6e:51:ef:8c:77:6c:cd: 7a:d6:d8:fc:c8:6f:51:b1:a9:2a:32:99:71:3e:31: 00:ed:27:7c:48:82:f3:6f:d2:aa:41:87:9a:1b:8a: e0:9a:be:3d:f8:b8:ab:97:f8:bf:59:00:c5:ce:38: 8b:97:69:68:c3:75:7e:36:9e:37:40:bb:29:9a:24: 04:d5:36:5c:f1:85:ae:74:73:a7:79:c0:7b:05:cc: 8a:16:18:dc:20:04:29:86:43:05:a1:73:f6:b4:34: b8:cf:e9:71:b2:3f:81:c3:5f:d3:26:d2:c2:fa:f5: be:a9:0e:e4:e8:aa:60:22:47:2a:f3:b4:23:24:44: df:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F7:97:B3:6C:6C:56:96:4A:11:CC:55:1D:C2:6E:F8:7E:7E:74:1B X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:db:fa:f8:09:72:eb:ef:16:72:4d:2f:91:e8:e7:65:7f:e9: 7c:41:b0:4e:6e:bb:70:16:28:0c:99:fa:42:74:a1:d0:a7:e3: df:bf:73:4f:36:05:10:b1:b3:a3:fb:5f:5e:9d:1c:3a:13:ad: 38:b1:ba:3a:28:b6:d4:5f:b6:f7:e9:5b:30:69:93:21:b1:ce: 0b:b4:6f:0b:a3:e9:bf:59:27:f0:85:6d:bd:0a:98:83:f2:fc: 9f:ab:5a:5c:9a:50:7d:b7:43:5c:e8:c5:e4:c1:e5:36:20:cc: fb:92:8c:e7:2d:85:15:f4:f4:b8:03:e5:36:72:66:9e:c8:bc: 10:b0:0d:7a:82:ff:7e:89:e8:a9:57:e5:e4:ea:76:54:00:c9: ab:bd:ac:cb:44:32:8a:58:51:e4:53:6c:9e:f9:a9:f0:17:dd: a5:ad:ed:dd:f6:c0:dd:fc:15:78:a5:64:3c:ad:a5:83:f5:ba: 10:fa:09:83:1c:9e:8e:bd:6f:98:01:83:ee:bc:b8:3b:90:94: 50:a5:d7:85:1f:19:f1:1a:aa:22:cd:fa:cf:4d:71:8b:b4:1b: ff:a9:2a:31:99:2f:9a:0f:df:d5:f5:90:f9:31:43:4d:d3:3f: 2e:d9:1e:a3:5f:48:74:20:3f:52:70:5c:0b:a8:17:5e:d2:6a: 71:95:6a:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjQwNTE4MTcxMDQ2WhcNMjQwNTI1MTcxMDQ2WjAYMRYwFAYD VQQDEw02NjQ4ZTExNi0wOGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNhlCOx6FafPnqbxEzV9XCxXrOlxpuLlZY+W2V5+ypmvMD5//l/1ze2e8WGI jHaenOKNZvQrw7YMw3k1ngv9TPdMDTmHxF4DTHKdx4lo/gFUpPZihQIyfbMK+Yav /71PAexEVfDsPJAfuiJHKM02ESFb0CrdzKq5nmmy2l5saW5R74x3bM161tj8yG9R sakqMplxPjEA7Sd8SILzb9KqQYeaG4rgmr49+Lirl/i/WQDFzjiLl2low3V+Np43 QLspmiQE1TZc8YWudHOnecB7BcyKFhjcIAQphkMFoXP2tDS4z+lxsj+Bw1/TJtLC +vW+qQ7k6KpgIkcq87QjJETfzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN33l7Ns bFaWShHMVR3Cbvh+fnQbMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh2/r4CXLr7xZyTS+R6Odlf+l8QbBObrtwFigMmfpCdKHQp+Pfv3NP NgUQsbOj+19enRw6E604sbo6KLbUX7b36VswaZMhsc4LtG8Lo+m/WSfwhW29CpiD 8vyfq1pcmlB9t0Nc6MXkweU2IMz7koznLYUV9PS4A+U2cmaeyLwQsA16gv9+ieip V+Xk6nZUAMmrvazLRDKKWFHkU2ye+anwF92lre3d9sDd/BV4pWQ8raWD9boQ+gmD HJ6OvW+YAYPuvLg7kJRQpdeFHxnxGqoizfrPTXGLtBv/qSoxmS+aD9/V9ZD5MUNN 0z8u2R6jX0h0ID9ScFwLqBde0mpxlWpK -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org