$ rpki-client -vvf rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft File: zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft (raw, json) Hash identifier: k8wBL202SXxQkIlJz5RCB5A7e8NNWFrBGBuz5yIi6w8= Subject key identifier: 83:B6:FA:9D:6D:10:8E:0B:F1:92:67:86:61:E9:B9:E5:0B:49:D4:B1 Authority key identifier: CD:4F:B9:10:F3:E6:F5:9C:59:CE:5A:CC:94:38:ED:D0:8D:56:FC:88 Certificate issuer: /CN=A911E24A/serialNumber=CD4FB910F3E6F59C59CE5ACC9438EDD08D56FC88 Certificate serial: 0856 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft Manifest number: 0851 Signing time: Sat 18 May 2024 21:39:49 +0000 Manifest this update: Sat 18 May 2024 21:39:48 +0000 Manifest next update: Sat 25 May 2024 21:39:48 +0000 Files and hashes: 1: zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl (hash: im+Qhf0JlxC0wILeaMUdLsKF3TWYlF9LpxCW6U9ZGSI=) 2: 7B68D8F2A3E811EAB397F675C4F9AE02.roa (hash: Nx148Hia3mtZBzFRIhXoxgU+sJRRy0O36TW1Esz7mxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2134 (0x856) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E24A/serialNumber=CD4FB910F3E6F59C59CE5ACC9438EDD08D56FC88 Validity Not Before: May 18 21:39:48 2024 GMT Not After : May 25 21:39:48 2024 GMT Subject: CN=66492024-79d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:aa:a7:fe:f4:55:2e:b9:45:8d:c7:82:7d: 58:ab:59:2b:8f:77:1a:33:b1:01:5f:bc:d1:a4:d1: 78:19:7d:00:f0:82:e2:12:b2:14:84:94:ee:ac:03: 95:98:e3:0a:4a:eb:23:71:cd:42:33:c1:f3:29:5b: 3c:48:95:48:0b:02:43:53:46:62:52:7e:02:aa:0c: 27:f0:a6:66:5f:76:90:9f:a9:80:67:8e:eb:23:8d: 3b:a0:da:23:49:24:73:1b:df:b7:55:f8:8a:88:a6: ad:05:e7:51:2d:ff:a2:51:97:62:01:0d:48:b2:a3: 53:c2:29:8a:ab:07:b8:01:0c:ea:dc:db:3a:2d:cb: d5:ee:a0:8b:34:fa:b8:6e:a6:c9:4a:fd:30:d8:2b: 56:3d:9e:19:4c:03:7d:6c:fe:bd:cd:37:ba:3c:f5: e9:a8:86:40:9a:85:8f:a0:37:25:d0:5c:19:fa:39: 0f:dd:ae:64:1f:5f:6a:a3:ee:3d:3b:3c:ad:ee:2b: 89:6a:14:0d:79:3e:18:e1:05:4b:ec:4b:5b:d2:83: f1:4c:2d:05:b8:a5:e6:94:81:cd:88:c2:eb:54:81: ce:54:c4:0b:7b:ff:07:a6:65:13:3c:5c:a7:3c:39: 02:ac:12:59:6a:c9:69:c8:4c:79:92:30:b0:82:13: 48:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B6:FA:9D:6D:10:8E:0B:F1:92:67:86:61:E9:B9:E5:0B:49:D4:B1 X509v3 Authority Key Identifier: keyid:CD:4F:B9:10:F3:E6:F5:9C:59:CE:5A:CC:94:38:ED:D0:8D:56:FC:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E24A/635C0118A3E711EAA6A9D974C4F9AE02/zU-5EPPm9ZxZzlrMlDjt0I1W_Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:eb:4b:f7:07:25:4a:42:c4:ef:79:0f:c5:53:bb:1e:fb:3b: d2:62:34:eb:86:a0:b7:c3:7e:9f:7b:ac:a3:3b:81:12:50:7b: 0c:3f:c8:92:af:2d:6d:30:0f:96:12:85:19:bf:38:4c:11:0e: 07:67:01:05:06:29:ce:d3:7a:16:d9:de:04:9d:ea:a0:35:49: 1e:8a:bb:48:4b:7b:cf:79:f0:af:d0:f6:58:24:2b:93:9c:c9: cc:d6:0f:80:a1:60:db:ab:1f:1d:0e:d6:07:ea:e2:59:08:ae: f4:ff:2e:71:f8:84:1f:6b:69:b5:1c:9b:0f:fc:26:45:f3:4c: 5d:0a:42:96:18:19:c7:17:cb:02:7f:2a:75:c6:a6:8a:e9:7b: 0c:b5:26:3e:0c:30:cf:48:b6:28:c4:24:02:9a:77:ae:32:2a: 36:a7:6b:52:ea:8a:6f:6f:36:62:2c:77:0c:e6:e1:95:a8:09: 5b:d1:77:99:09:90:77:d5:b1:88:f8:29:89:b0:b2:40:df:28: c5:7c:87:fb:eb:70:c3:30:3b:44:37:93:02:e5:10:f3:6c:86: 6b:d3:b6:bd:5f:1f:c5:f4:1c:7e:21:8f:8c:a3:98:4d:bc:3d: eb:8f:c9:8c:61:f3:df:b5:d0:6e:ab:b1:59:9f:8d:9f:2f:70: e3:56:66:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUyNEExMTAvBgNVBAUTKENENEZCOTEwRjNFNkY1OUM1OUNFNUFDQzk0MzhFREQw OEQ1NkZDODgwHhcNMjQwNTE4MjEzOTQ4WhcNMjQwNTI1MjEzOTQ4WjAYMRYwFAYD VQQDEw02NjQ5MjAyNC03OWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeCqp/70VS65RY3Hgn1Yq1krj3caM7EBX7zRpNF4GX0A8ILiErIUhJTurAOV mOMKSusjcc1CM8HzKVs8SJVICwJDU0ZiUn4Cqgwn8KZmX3aQn6mAZ47rI407oNoj SSRzG9+3VfiKiKatBedRLf+iUZdiAQ1IsqNTwimKqwe4AQzq3Ns6LcvV7qCLNPq4 bqbJSv0w2CtWPZ4ZTAN9bP69zTe6PPXpqIZAmoWPoDcl0FwZ+jkP3a5kH19qo+49 Ozyt7iuJahQNeT4Y4QVL7Etb0oPxTC0FuKXmlIHNiMLrVIHOVMQLe/8HpmUTPFyn PDkCrBJZaslpyEx5kjCwghNICwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIO2+p1t EI4L8ZJnhmHpueULSdSxMB8GA1UdIwQYMBaAFM1PuRDz5vWcWc5azJQ47dCNVvyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTI0QS82MzVDMDExOEEz RTcxMUVBQTZBOUQ5NzRDNEY5QUUwMi96VS01RVBQbTlaeFp6bHJNbERqdDBJMVdf SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pVLTVFUFBtOVp4Wnpsck1sRGp0MEkxV19JZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTI0QS82MzVDMDExOEEzRTcxMUVBQTZBOUQ5NzRDNEY5QUUwMi96VS01RVBQbTla eFp6bHJNbERqdDBJMVdfSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt60v3ByVKQsTveQ/FU7se+zvSYjTrhqC3w36fe6yjO4ESUHsMP8iS ry1tMA+WEoUZvzhMEQ4HZwEFBinO03oW2d4EneqgNUkeirtIS3vPefCv0PZYJCuT nMnM1g+AoWDbqx8dDtYH6uJZCK70/y5x+IQfa2m1HJsP/CZF80xdCkKWGBnHF8sC fyp1xqaK6XsMtSY+DDDPSLYoxCQCmneuMio2p2tS6opvbzZiLHcM5uGVqAlb0XeZ CZB31bGI+CmJsLJA3yjFfIf763DDMDtEN5MC5RDzbIZr07a9Xx/F9Bx+IY+Mo5hN vD3rj8mMYfPftdBuq7FZn42fL3DjVmb8 -----END CERTIFICATE-----Generated at Sun May 19 00:16:11 2024 by rpki-client on console-fra.rpki-client.org