$ rpki-client -vvf rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft File: ZGscQagf9-WCtezcHO9UzmEVJWM.mft (raw, json) Hash identifier: LBFPOAxPtPUr/5ZNDI2sosIXmY9Vm1b7rXCax92NJa8= Subject key identifier: EF:22:1A:9F:69:70:44:70:94:D7:C5:67:65:66:3E:58:10:CE:2D:6B Authority key identifier: 64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 Certificate issuer: /CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Certificate serial: 1C97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft Manifest number: 1C8E Signing time: Sat 18 May 2024 16:33:28 +0000 Manifest this update: Sat 18 May 2024 16:33:27 +0000 Manifest next update: Sat 25 May 2024 16:33:27 +0000 Files and hashes: 1: ZGscQagf9-WCtezcHO9UzmEVJWM.crl (hash: SSKRa755C+3sPjhHsZ+lWYvMV5kmKeMYN9NqvxgGZ9c=) 2: 810AF2B0AC9611E6A37EC415C4F9AE02.roa (hash: EMRtPDIPmvcHDystOkxHvkGOqeIprACWnSxHtorfoCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7319 (0x1c97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129D4A/serialNumber=646B1C41A81FF7E582B5ECDC1CEF54CE61152563 Validity Not Before: May 18 16:33:27 2024 GMT Not After : May 25 16:33:27 2024 GMT Subject: CN=6648d858-2448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cf:b5:0a:65:ef:bd:a6:bd:29:83:ba:4c:86: 14:85:db:b8:95:74:38:a7:fb:bb:70:82:b6:49:5e: 3d:8b:d6:d7:64:2c:b7:ab:31:f0:b6:5f:15:7d:27: 05:fb:da:56:f0:91:46:5b:7e:2e:1d:c4:cc:b8:c1: 04:b1:38:27:e3:6f:9d:6d:07:49:03:92:e7:85:4b: 12:3b:e0:f6:d9:9a:49:b1:91:23:9d:f8:d9:bb:8c: bc:2f:2f:ea:2f:4c:0a:aa:b2:78:11:09:61:77:84: b1:3e:e2:e2:04:c3:52:d8:9a:8c:c9:13:36:e3:fb: e5:dd:63:fd:f5:a8:e8:92:a1:85:0f:7b:71:c4:72: a8:cf:4f:84:e0:50:1a:9a:1f:7e:98:5c:db:58:3b: f1:4c:36:2c:ba:0e:c4:2e:bf:7d:18:6f:a4:c3:c7: f8:dc:3c:b2:44:57:d0:3b:d4:58:58:a5:02:bb:17: a9:4f:fb:35:51:a6:7b:8f:ce:54:41:d6:26:3d:ec: 8a:ba:4c:97:06:6d:e7:df:89:a9:23:f5:fa:aa:f2: 64:ca:b4:eb:64:37:fb:ec:de:a8:41:0a:7c:5f:b1: e3:81:9b:97:db:6e:47:ef:66:88:4d:f3:4b:6e:05: 5d:01:82:81:ae:46:72:1e:14:c8:0d:71:2f:97:57: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:22:1A:9F:69:70:44:70:94:D7:C5:67:65:66:3E:58:10:CE:2D:6B X509v3 Authority Key Identifier: keyid:64:6B:1C:41:A8:1F:F7:E5:82:B5:EC:DC:1C:EF:54:CE:61:15:25:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZGscQagf9-WCtezcHO9UzmEVJWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129D4A/248103A4AC9611E6A561A315C4F9AE02/ZGscQagf9-WCtezcHO9UzmEVJWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:c0:1f:e2:00:09:15:cc:d7:07:c0:29:fd:c1:6a:f0:f8:49: 06:6e:47:29:03:fb:08:e3:43:6c:61:19:cb:ba:d2:e3:2f:a6: 77:a2:6b:98:20:73:63:d9:94:37:b0:4e:da:81:54:ef:f7:d5: 15:c8:ba:99:6e:5a:b9:a0:fa:f8:6c:f7:21:e9:62:e0:39:dc: 63:21:09:ee:0b:53:b3:bd:90:50:bb:bd:9b:dc:b2:ae:c2:ea: 08:a3:22:25:f0:6f:58:15:f2:4d:ec:9a:65:64:0b:38:69:e9: db:0f:0e:74:bc:9b:3f:84:bb:37:83:58:07:ae:c6:83:87:81: 99:af:29:40:bd:0a:7e:d8:75:35:92:45:4b:7f:49:4d:84:ef: 59:24:ee:ff:38:83:40:9f:14:19:50:d0:f7:f7:20:85:8a:78: ae:15:48:78:35:15:5f:2b:10:05:01:89:1c:c8:7d:80:96:74: 88:d2:78:df:a0:2a:1b:bf:de:a1:13:bb:40:67:e8:09:7c:f2: d4:0f:ef:17:36:ba:38:28:7f:f0:7b:d5:b1:9b:25:6e:ff:f2: d9:d5:4f:c9:3f:dc:8c:4f:08:25:77:43:85:5f:d6:14:92:fb: 6c:bd:b0:28:0c:e3:17:8b:2e:87:e5:b4:24:f8:59:cf:e1:10: 7e:78:c6:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlENEExMTAvBgNVBAUTKDY0NkIxQzQxQTgxRkY3RTU4MkI1RUNEQzFDRUY1NENF NjExNTI1NjMwHhcNMjQwNTE4MTYzMzI3WhcNMjQwNTI1MTYzMzI3WjAYMRYwFAYD VQQDEw02NjQ4ZDg1OC0yNDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7c+1CmXvvaa9KYO6TIYUhdu4lXQ4p/u7cIK2SV49i9bXZCy3qzHwtl8VfScF +9pW8JFGW34uHcTMuMEEsTgn42+dbQdJA5LnhUsSO+D22ZpJsZEjnfjZu4y8Ly/q L0wKqrJ4EQlhd4SxPuLiBMNS2JqMyRM24/vl3WP99ajokqGFD3txxHKoz0+E4FAa mh9+mFzbWDvxTDYsug7ELr99GG+kw8f43DyyRFfQO9RYWKUCuxepT/s1UaZ7j85U QdYmPeyKukyXBm3n34mpI/X6qvJkyrTrZDf77N6oQQp8X7HjgZuX225H72aITfNL bgVdAYKBrkZyHhTIDXEvl1czBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8iGp9p cERwlNfFZ2VmPlgQzi1rMB8GA1UdIwQYMBaAFGRrHEGoH/flgrXs3BzvVM5hFSVj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUQ0QS8yNDgxMDNBNEFD OTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjktV0N0ZXpjSE85VXptRVZK V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pHc2NRYWdmOS1XQ3RlemNITzlVem1FVkpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OUQ0QS8yNDgxMDNBNEFDOTYxMUU2QTU2MUEzMTVDNEY5QUUwMi9aR3NjUWFnZjkt V0N0ZXpjSE85VXptRVZKV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAywB/iAAkVzNcHwCn9wWrw+EkGbkcpA/sI40NsYRnLutLjL6Z3omuY IHNj2ZQ3sE7agVTv99UVyLqZblq5oPr4bPch6WLgOdxjIQnuC1OzvZBQu72b3LKu wuoIoyIl8G9YFfJN7JplZAs4aenbDw50vJs/hLs3g1gHrsaDh4GZrylAvQp+2HU1 kkVLf0lNhO9ZJO7/OINAnxQZUND39yCFiniuFUh4NRVfKxAFAYkcyH2AlnSI0njf oCobv96hE7tAZ+gJfPLUD+8XNro4KH/we9WxmyVu//LZ1U/JP9yMTwgld0OFX9YU kvtsvbAoDOMXiy6H5bQk+FnP4RB+eMZR -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org