$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: Lz8f2aqqOQAAvUDiSp8SlxmnGSCB+Vev/3gvYHiv8Nc= Subject key identifier: 0B:EE:45:6B:BD:5B:19:C7:34:E7:CB:9A:F4:E2:66:42:4C:DA:36:D4 Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 0244 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 023A Signing time: Sun 19 May 2024 04:02:09 +0000 Manifest this update: Sun 19 May 2024 04:02:08 +0000 Manifest next update: Sun 26 May 2024 04:02:08 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: YoXPAd9VyqUSsCoix+08Wd+RiBkRA/E4K/2/LLxfg2g=) 2: A77AF65E806811EEBC08242BC4F9AE02.roa (hash: DCqEbPQXS1PCcGfN1Dew3lBGegqFMuMpjFuWnBw+Ido=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: May 19 04:02:08 2024 GMT Not After : May 26 04:02:08 2024 GMT Subject: CN=664979c0-a6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d4:9b:cf:b4:2f:d4:d3:b7:5f:d7:0e:69:ac: 52:5f:3a:52:74:8f:1c:0a:ce:09:71:6e:c1:6b:89: b2:be:91:ff:b5:05:ed:11:c0:ff:78:17:a3:66:7d: 38:5d:10:1b:ec:e2:78:86:1e:86:e3:fe:2e:21:eb: 79:82:9a:de:dc:00:aa:53:57:6a:7d:bb:78:cc:ae: e5:74:db:5c:6d:f8:c7:71:1a:95:51:b9:65:c5:04: d1:1d:6d:a0:c7:c8:a9:4d:33:61:b8:41:bc:e4:b1: 59:e7:63:6f:a4:50:cd:6e:62:fb:53:5f:2a:1f:bc: 55:d6:eb:1b:f9:71:69:69:4b:23:0f:6d:d6:82:d3: 74:17:69:58:a8:75:40:47:93:12:b5:0f:21:9e:2a: 5c:2b:67:2e:e0:4f:0d:af:3a:d1:4c:a9:6e:7a:b2: 61:fa:1b:01:e9:ee:cf:d9:91:9c:01:e5:7e:d7:16: c9:01:cf:29:81:02:b1:4f:2e:56:f1:e4:9b:02:15: c7:0a:9d:7d:27:78:88:1d:6a:11:01:6e:f0:7d:fe: df:4a:c6:1d:41:ea:a0:dd:77:66:f6:80:e7:76:ec: af:62:9e:d0:41:a3:73:88:8f:c2:e2:2a:75:4a:a9: a9:e0:0d:bb:f8:bc:7a:ec:f3:13:99:fb:e5:e0:ab: dc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EE:45:6B:BD:5B:19:C7:34:E7:CB:9A:F4:E2:66:42:4C:DA:36:D4 X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:33:22:84:f5:ff:d2:2d:74:0d:b8:de:6c:09:0c:e5:88:81: a5:ca:25:38:83:9b:dd:5e:26:b6:0c:95:01:80:13:48:80:0e: fa:aa:43:f2:62:4a:5e:a1:35:f5:71:3f:f9:f8:d4:93:4e:ff: ac:a8:2b:fd:d4:97:04:6b:c1:76:1f:15:bf:b3:ce:cd:00:60: 68:90:39:5d:60:88:90:37:9b:fb:d5:1c:a8:56:78:f4:19:43: e1:96:43:37:c1:6b:94:8c:3a:94:07:9d:7f:f8:8c:9b:da:6d: 43:25:20:21:b1:9e:88:ca:76:08:44:1c:fa:48:e9:3f:86:9d: 19:dd:4c:61:f2:2b:b6:1d:06:e8:92:2e:d0:a1:e8:0c:b4:36: 2e:d2:b9:f3:e5:b0:25:6b:eb:fb:bc:dd:47:70:34:b2:92:0d: 73:7e:c9:0e:14:ad:ec:31:f6:ea:fb:9e:d6:07:ab:03:70:37: d0:0a:54:44:b6:3e:bb:d7:a7:68:d0:65:a1:fe:47:06:0e:92: 16:14:02:fb:07:d5:3a:1b:a8:25:5f:00:5c:f6:e0:68:3e:42: 12:8e:8c:ed:9a:d5:36:6a:da:14:06:28:c3:09:5c:9e:cb:3a: e6:35:74:c2:68:58:4a:b5:00:10:8c:28:1d:85:be:10:db:2f: 11:69:d3:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjQwNTE5MDQwMjA4WhcNMjQwNTI2MDQwMjA4WjAYMRYwFAYD VQQDEw02NjQ5NzljMC1hNmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNSbz7Qv1NO3X9cOaaxSXzpSdI8cCs4JcW7Ba4myvpH/tQXtEcD/eBejZn04 XRAb7OJ4hh6G4/4uIet5gpre3ACqU1dqfbt4zK7ldNtcbfjHcRqVUbllxQTRHW2g x8ipTTNhuEG85LFZ52NvpFDNbmL7U18qH7xV1usb+XFpaUsjD23WgtN0F2lYqHVA R5MStQ8hnipcK2cu4E8NrzrRTKluerJh+hsB6e7P2ZGcAeV+1xbJAc8pgQKxTy5W 8eSbAhXHCp19J3iIHWoRAW7wff7fSsYdQeqg3Xdm9oDnduyvYp7QQaNziI/C4ip1 Sqmp4A27+Lx67PMTmfvl4Kvc4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvuRWu9 WxnHNOfLmvTiZkJM2jbUMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYMyKE9f/SLXQNuN5sCQzliIGlyiU4g5vdXia2DJUBgBNIgA76qkPy YkpeoTX1cT/5+NSTTv+sqCv91JcEa8F2HxW/s87NAGBokDldYIiQN5v71RyoVnj0 GUPhlkM3wWuUjDqUB51/+Iyb2m1DJSAhsZ6IynYIRBz6SOk/hp0Z3Uxh8iu2HQbo ki7QoegMtDYu0rnz5bAla+v7vN1HcDSykg1zfskOFK3sMfbq+57WB6sDcDfQClRE tj6716do0GWh/kcGDpIWFAL7B9U6G6glXwBc9uBoPkISjoztmtU2atoUBijDCVye yzrmNXTCaFhKtQAQjCgdhb4Q2y8RadNT -----END CERTIFICATE-----Generated at Sun May 19 05:08:04 2024 by rpki-client on console-ams.rpki-client.org