$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: no/5ljCic00llcAgTDsowtF8WlN/lJ4g/fJhoP4Vg54= Subject key identifier: 85:39:7C:47:7E:77:52:8B:6F:8A:77:A3:A6:47:6E:D4:06:6D:98:15 Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: A8 Signing time: Sun 19 May 2024 06:42:37 +0000 Manifest this update: Sun 19 May 2024 06:42:37 +0000 Manifest next update: Sun 26 May 2024 06:42:37 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: mLpmaZt42LdSdGovAWIFq8SwJYZC3uXuhsqq6UFAkf0=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: F4cU+r0RsJavKuaSoPZVVD+mCZCLwysM3Ho83jeaeN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: May 19 06:42:37 2024 GMT Not After : May 26 06:42:37 2024 GMT Subject: CN=66499f5d-a07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ba:a4:f3:81:e4:1d:b0:57:8a:53:51:d0:a7: 5a:78:2c:2f:57:55:ae:2d:79:89:13:42:55:d9:dd: 22:ce:d8:89:9c:fb:40:cf:42:4e:c3:02:34:84:5f: 4a:33:6b:65:52:76:35:d2:5b:a2:9f:b6:68:cf:b6: 42:ed:6d:71:fe:2a:75:70:66:a5:5f:48:b0:02:ba: 1f:63:c1:f8:de:13:6c:d1:b7:16:3f:4d:ee:41:87: 1f:37:cc:50:ff:37:ee:3a:71:f0:5f:85:7a:74:60: 1e:11:d1:02:83:ad:42:fa:dc:32:ec:d0:bd:fd:78: 82:71:3c:22:35:09:79:22:ec:3c:06:2c:c9:e4:94: f0:b0:6e:ff:6a:1d:a6:23:2f:45:08:d2:67:4d:79: 00:a9:ed:a3:0b:3a:13:4f:25:34:7a:80:0d:11:56: c6:72:d9:b7:d0:c3:57:29:ae:e1:3b:5a:f9:9a:f5: 9f:e3:26:e5:ba:6c:e2:34:e8:30:ce:ad:28:1a:66: 2e:46:37:70:3f:ba:17:4c:6e:62:20:4d:4d:ff:be: 57:a4:8a:f2:c0:47:0e:2a:5c:00:0f:48:14:81:48: ae:6f:9e:f4:41:b1:ad:e3:c0:d1:ac:bc:d3:1b:04: 62:b2:65:12:8f:75:e7:89:1c:06:5f:d8:71:8f:eb: c2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:39:7C:47:7E:77:52:8B:6F:8A:77:A3:A6:47:6E:D4:06:6D:98:15 X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:23:76:06:05:57:e6:b3:2d:24:8d:16:1e:43:6f:9b:89:0f: 1a:d0:58:38:e6:30:26:7b:36:97:36:55:08:70:91:92:49:d7: 53:3d:3a:ff:f9:45:b6:44:17:5f:a0:ad:12:98:ad:0c:f6:1e: 44:60:70:13:40:ae:05:7f:db:a7:2a:dc:00:5c:17:8c:a9:5f: 5a:7f:6b:5f:aa:2f:39:64:9c:e0:12:f2:f9:d8:3d:85:39:07: 49:0e:fe:19:2a:f8:fd:5b:cc:12:4e:da:81:21:78:d4:40:04: 1e:38:b0:1d:b2:3d:35:f6:be:9c:17:60:7e:eb:cf:52:5d:ed: 42:4a:fa:3d:be:66:59:c7:78:42:32:5b:e1:1d:7c:be:b3:63: 4c:f2:7c:c2:e1:c1:5f:1a:08:33:e6:90:18:20:14:cd:3e:5f: b7:8f:56:cf:b9:6e:1e:b2:e3:73:f6:0c:30:49:91:d0:37:ba: 7c:bc:a7:9d:de:bf:74:3f:f2:96:6e:75:92:3f:0f:45:c4:c8: 40:73:7f:63:3e:8b:45:c9:f3:68:e3:ef:1c:5e:cd:36:cd:f9: 83:ef:c1:5b:65:34:a7:a5:3c:49:31:5f:9f:af:41:7b:1b:10: 3e:d6:2a:79:4d:2c:87:3a:91:84:ee:57:90:81:3f:29:cb:5b: 1a:dd:b8:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjQwNTE5MDY0MjM3WhcNMjQwNTI2MDY0MjM3WjAYMRYwFAYD VQQDEw02NjQ5OWY1ZC1hMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77qk84HkHbBXilNR0KdaeCwvV1WuLXmJE0JV2d0iztiJnPtAz0JOwwI0hF9K M2tlUnY10luin7Zoz7ZC7W1x/ip1cGalX0iwArofY8H43hNs0bcWP03uQYcfN8xQ /zfuOnHwX4V6dGAeEdECg61C+twy7NC9/XiCcTwiNQl5Iuw8BizJ5JTwsG7/ah2m Iy9FCNJnTXkAqe2jCzoTTyU0eoANEVbGctm30MNXKa7hO1r5mvWf4yblumziNOgw zq0oGmYuRjdwP7oXTG5iIE1N/75XpIrywEcOKlwAD0gUgUiub570QbGt48DRrLzT GwRismUSj3XniRwGX9hxj+vC4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIU5fEd+ d1KLb4p3o6ZHbtQGbZgVMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfI3YGBVfmsy0kjRYeQ2+biQ8a0Fg45jAmezaXNlUIcJGSSddTPTr/ +UW2RBdfoK0SmK0M9h5EYHATQK4Ff9unKtwAXBeMqV9af2tfqi85ZJzgEvL52D2F OQdJDv4ZKvj9W8wSTtqBIXjUQAQeOLAdsj019r6cF2B+689SXe1CSvo9vmZZx3hC MlvhHXy+s2NM8nzC4cFfGggz5pAYIBTNPl+3j1bPuW4esuNz9gwwSZHQN7p8vKed 3r90P/KWbnWSPw9FxMhAc39jPotFyfNo4+8cXs02zfmD78FbZTSnpTxJMV+fr0F7 GxA+1ip5TSyHOpGE7leQgT8py1sa3bhe -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org