$ rpki-client -vvf rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft File: zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft (raw, json) Hash identifier: QNA1478O5AHaUS36vAy1CEgJeTphHgqY3kw39KFgqI0= Subject key identifier: C8:56:20:A5:9C:FE:47:95:A2:5C:0B:3B:F5:43:08:4E:20:01:54:55 Authority key identifier: CE:52:D8:77:70:A3:25:2B:D1:F4:C9:12:6C:B5:D5:D1:B7:D9:FB:F4 Certificate issuer: /CN=A912BE4E/serialNumber=CE52D87770A3252BD1F4C9126CB5D5D1B7D9FBF4 Certificate serial: 04DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft Manifest number: 04DE Signing time: Sun 19 May 2024 01:19:07 +0000 Manifest this update: Sun 19 May 2024 01:19:07 +0000 Manifest next update: Sun 26 May 2024 01:19:06 +0000 Files and hashes: 1: zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.crl (hash: QSsDz/QRKwucm7Lyjis+PsjxktIMbCyj2wCORidppX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.crl rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BE4E/serialNumber=CE52D87770A3252BD1F4C9126CB5D5D1B7D9FBF4 Validity Not Before: May 19 01:19:07 2024 GMT Not After : May 26 01:19:06 2024 GMT Subject: CN=6649538b-7bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:89:f3:b7:d4:b1:93:82:5a:e3:ac:98:dd:ae: 4b:5b:34:65:94:d7:cf:a4:3d:fa:60:37:a4:79:b3: 52:ff:74:bf:a3:0a:40:9b:95:8f:25:a3:34:15:95: 53:d8:68:d6:b4:71:fa:13:42:35:e9:4d:54:da:ad: ac:de:d1:cb:1a:e2:d6:7c:30:ed:4d:7f:90:f1:79: 79:0a:de:fa:53:c4:98:a4:06:c9:ff:b2:3c:6d:7e: d1:f6:d8:f6:29:6f:4e:48:b6:de:fb:41:93:c9:ba: 12:60:c6:f6:2b:e6:82:e2:2e:ae:fa:c4:da:47:87: 0f:6a:46:cc:7b:49:59:10:82:5d:3c:63:9b:bf:ad: 86:f1:db:d1:a6:0b:d8:f2:7d:19:4a:56:44:e0:73: b1:82:dc:96:46:c4:1e:af:fa:8f:a7:34:f8:e0:bf: fb:44:76:df:04:64:c1:f5:0d:ae:73:1a:41:26:aa: f9:ab:be:b8:1b:b5:00:c1:b3:cd:1b:0f:25:53:c9: 81:81:fd:26:56:b2:ce:70:99:e4:0c:87:ff:e3:a7: 5c:5c:81:db:6a:63:0f:20:39:b8:4f:51:d6:80:51: 0d:0f:06:d1:a8:e0:7a:c3:af:ed:ea:25:9e:6c:b6: e3:cf:9d:1e:fe:94:2a:17:68:64:14:35:66:bb:91: bf:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:56:20:A5:9C:FE:47:95:A2:5C:0B:3B:F5:43:08:4E:20:01:54:55 X509v3 Authority Key Identifier: keyid:CE:52:D8:77:70:A3:25:2B:D1:F4:C9:12:6C:B5:D5:D1:B7:D9:FB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BE4E/482DDD64CEAA11EBBA379A14C4F9AE02/zlLYd3CjJSvR9MkSbLXV0bfZ-_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:5c:fd:3f:ad:fe:0a:41:aa:3a:bb:ae:97:b3:fb:f3:a7:94: 88:2e:40:db:6b:31:23:7d:3a:9f:c2:20:d5:7b:48:c6:3a:f7: 76:c8:b0:8b:ac:2c:13:03:94:f7:34:43:34:40:84:32:51:e1: 04:a1:71:e8:2a:ba:23:b6:18:78:e3:c5:e5:1d:37:58:8c:be: c3:b9:40:99:a8:b5:df:e0:22:76:bf:88:cc:cd:5e:93:d8:37: a8:f0:21:f1:c7:0b:61:c9:2f:a7:a4:3a:e0:55:5c:4b:f1:49: 21:a8:a6:5a:81:71:f8:28:f7:32:11:9a:27:03:91:2a:40:ad: 89:a6:ef:17:e7:fd:99:45:28:db:e4:00:57:23:99:6d:45:67: 03:d9:76:43:74:57:4e:50:35:e7:07:67:b5:b9:c3:57:49:76: 22:d7:ee:38:57:5e:60:42:48:92:56:49:e2:23:9f:ab:4b:fa: 49:62:fb:82:a5:72:31:cf:ee:76:c0:e9:41:57:06:d2:00:65: b1:2f:f2:44:0e:aa:4e:89:f8:ae:13:41:e8:7a:5d:fa:88:1f: 22:01:cb:63:d9:a6:bf:17:d2:3c:20:25:bd:f2:82:19:a8:ce: 0f:fe:48:dc:19:59:8d:ef:8e:96:07:1a:e5:44:5a:ac:4f:4b: 4e:ab:f2:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJFNEUxMTAvBgNVBAUTKENFNTJEODc3NzBBMzI1MkJEMUY0QzkxMjZDQjVENUQx QjdEOUZCRjQwHhcNMjQwNTE5MDExOTA3WhcNMjQwNTI2MDExOTA2WjAYMRYwFAYD VQQDEw02NjQ5NTM4Yi03YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtonzt9Sxk4Ja46yY3a5LWzRllNfPpD36YDekebNS/3S/owpAm5WPJaM0FZVT 2GjWtHH6E0I16U1U2q2s3tHLGuLWfDDtTX+Q8Xl5Ct76U8SYpAbJ/7I8bX7R9tj2 KW9OSLbe+0GTyboSYMb2K+aC4i6u+sTaR4cPakbMe0lZEIJdPGObv62G8dvRpgvY 8n0ZSlZE4HOxgtyWRsQer/qPpzT44L/7RHbfBGTB9Q2ucxpBJqr5q764G7UAwbPN Gw8lU8mBgf0mVrLOcJnkDIf/46dcXIHbamMPIDm4T1HWgFENDwbRqOB6w6/t6iWe bLbjz50e/pQqF2hkFDVmu5G/9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhWIKWc /keVolwLO/VDCE4gAVRVMB8GA1UdIwQYMBaAFM5S2HdwoyUr0fTJEmy11dG32fv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkU0RS80ODJEREQ2NENF QUExMUVCQkEzNzlBMTRDNEY5QUUwMi96bExZZDNDakpTdlI5TWtTYkxYVjBiZlot X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psTFlkM0NqSlN2UjlNa1NiTFhWMGJmWi1fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkU0RS80ODJEREQ2NENFQUExMUVCQkEzNzlBMTRDNEY5QUUwMi96bExZZDNDakpT dlI5TWtTYkxYVjBiZlotX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTXP0/rf4KQao6u66Xs/vzp5SILkDbazEjfTqfwiDVe0jGOvd2yLCL rCwTA5T3NEM0QIQyUeEEoXHoKrojthh448XlHTdYjL7DuUCZqLXf4CJ2v4jMzV6T 2Deo8CHxxwthyS+npDrgVVxL8UkhqKZagXH4KPcyEZonA5EqQK2Jpu8X5/2ZRSjb 5ABXI5ltRWcD2XZDdFdOUDXnB2e1ucNXSXYi1+44V15gQkiSVkniI5+rS/pJYvuC pXIxz+52wOlBVwbSAGWxL/JEDqpOifiuE0Hoel36iB8iActj2aa/F9I8ICW98oIZ qM4P/kjcGVmN746WBxrlRFqsT0tOq/KM -----END CERTIFICATE-----Generated at Sun May 19 01:47:12 2024 by rpki-client on console-fra.rpki-client.org