$ rpki-client -vvf rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft File: Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft (raw, json) Hash identifier: U4GYrDZsZ/QmVBSEL5QO8y9vJHT4Bl3eqpddEPX1IY8= Subject key identifier: 9E:2A:A3:9C:4F:54:8C:D2:E8:7A:95:AF:88:74:C6:E9:CC:71:11:F2 Authority key identifier: 67:44:74:8D:61:C4:C6:C7:76:40:EF:58:47:14:E9:78:43:D1:EA:02 Certificate issuer: /CN=A9152EF3/serialNumber=6744748D61C4C6C77640EF584714E97843D1EA02 Certificate serial: 0D14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft Manifest number: 0D0F Signing time: Sat 18 May 2024 18:44:02 +0000 Manifest this update: Sat 18 May 2024 18:44:02 +0000 Manifest next update: Sat 25 May 2024 18:44:02 +0000 Files and hashes: 1: Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl (hash: VHRFla6s7N/lkreFUqqfw91LGPg8YjMzWjsqfzYRCYg=) 2: E4AAD78CEFFE11E991390613C4F9AE02.roa (hash: xnN0CT8s/dW/Qwxi/mFt4AV3bS33AK/f1C8b6IGc9s0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3348 (0xd14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152EF3/serialNumber=6744748D61C4C6C77640EF584714E97843D1EA02 Validity Not Before: May 18 18:44:02 2024 GMT Not After : May 25 18:44:02 2024 GMT Subject: CN=6648f6f2-3583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b0:78:7c:dd:cb:92:fc:84:d4:64:48:2d:18: e6:09:11:83:e6:12:66:64:6e:f6:dd:d1:85:d8:46: 7f:3b:2a:ac:ed:01:b2:91:01:34:36:c4:38:5e:cf: 8e:52:5b:04:5a:40:50:e5:e9:75:3a:6b:84:6c:82: 76:94:b2:c8:53:a7:b9:6c:68:05:f6:f6:f3:79:e7: c7:8e:08:da:cd:57:5d:e6:ca:d9:60:dd:40:72:ca: 54:9c:a6:f8:4a:df:ea:9e:c3:64:42:95:0f:d3:8a: f5:78:03:d8:4a:d2:ce:e3:79:e7:b7:59:38:d9:4b: b1:2d:f0:2f:50:97:72:a3:8f:99:00:7a:19:f9:64: bd:13:ba:b9:57:b9:e2:85:16:76:36:cf:aa:04:2a: ee:89:21:a0:71:53:cf:1a:53:19:61:5f:fe:e9:a7: 4f:d3:7f:ab:29:b7:35:38:2c:94:c3:70:55:26:8b: 01:ce:1c:90:b8:e6:64:e6:54:78:30:33:f2:55:70: 9a:03:4e:08:d7:d5:5b:aa:18:66:d0:d5:c4:16:69: 37:51:b5:81:fd:59:fc:4d:02:ca:df:f1:93:4e:93: 32:2b:0e:20:a2:7c:30:42:b7:f5:71:ea:33:6b:2c: 2c:35:36:79:ee:c7:56:58:5d:9e:f8:fa:67:bc:27: 19:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2A:A3:9C:4F:54:8C:D2:E8:7A:95:AF:88:74:C6:E9:CC:71:11:F2 X509v3 Authority Key Identifier: keyid:67:44:74:8D:61:C4:C6:C7:76:40:EF:58:47:14:E9:78:43:D1:EA:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:53:01:ff:bd:ec:9e:32:26:80:24:a9:d2:52:73:70:4e:ab: 04:aa:86:6e:c1:82:fe:4a:c1:83:c3:ce:bb:6a:ac:50:61:ba: a2:86:ab:d4:59:49:9a:e5:f9:d9:9a:e5:79:3f:9d:65:86:17: b7:b9:96:59:24:f4:5d:75:ed:92:f5:ed:ba:7e:21:26:f8:40: 0d:94:5a:ac:5c:0d:79:da:6f:a6:93:83:50:2b:bc:a0:b6:46: 02:6f:2d:73:dc:2a:6a:29:64:d7:d0:de:32:c3:c0:ac:b1:32: df:1c:d4:47:71:49:02:d5:09:b7:06:87:77:8f:4e:7e:e3:27: 9a:c4:32:f4:48:48:c5:ba:dd:08:2b:82:ad:a7:e8:fc:40:3b: b7:f9:1d:23:be:cc:1a:38:cc:f9:1b:8e:87:e1:e6:e9:3a:d2: cd:bb:7d:97:eb:fe:b6:d2:b3:76:e1:6d:8e:a7:2c:91:5b:a7: 00:a8:5f:a9:0a:7c:8c:17:ba:8f:98:e4:f4:26:44:e3:72:ec: 5e:62:c8:cf:b3:bf:2b:13:cf:a6:9d:ce:1f:de:84:0a:9f:d9: b9:b3:86:67:35:b8:02:c0:81:ab:9b:46:ad:b0:18:05:80:31: b1:5c:e5:e6:30:7e:73:99:b8:c8:07:a3:5c:23:c6:9e:d7:2e: 19:a6:43:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFRjMxMTAvBgNVBAUTKDY3NDQ3NDhENjFDNEM2Qzc3NjQwRUY1ODQ3MTRFOTc4 NDNEMUVBMDIwHhcNMjQwNTE4MTg0NDAyWhcNMjQwNTI1MTg0NDAyWjAYMRYwFAYD VQQDEw02NjQ4ZjZmMi0zNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7B4fN3LkvyE1GRILRjmCRGD5hJmZG723dGF2EZ/Oyqs7QGykQE0NsQ4Xs+O UlsEWkBQ5el1OmuEbIJ2lLLIU6e5bGgF9vbzeefHjgjazVdd5srZYN1AcspUnKb4 St/qnsNkQpUP04r1eAPYStLO43nnt1k42UuxLfAvUJdyo4+ZAHoZ+WS9E7q5V7ni hRZ2Ns+qBCruiSGgcVPPGlMZYV/+6adP03+rKbc1OCyUw3BVJosBzhyQuOZk5lR4 MDPyVXCaA04I19Vbqhhm0NXEFmk3UbWB/Vn8TQLK3/GTTpMyKw4gonwwQrf1ceoz aywsNTZ57sdWWF2e+PpnvCcZHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4qo5xP VIzS6HqVr4h0xunMcRHyMB8GA1UdIwQYMBaAFGdEdI1hxMbHdkDvWEcU6XhD0eoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkVGMy83NkE3RDYyOEI2 N0QxMUU5OEUxM0M0ODZDNEY5QUUwMi9aMFIwaldIRXhzZDJRTzlZUnhUcGVFUFI2 Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1owUjBqV0hFeHNkMlFPOVlSeFRwZUVQUjZnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkVGMy83NkE3RDYyOEI2N0QxMUU5OEUxM0M0ODZDNEY5QUUwMi9aMFIwaldIRXhz ZDJRTzlZUnhUcGVFUFI2Z0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTUwH/veyeMiaAJKnSUnNwTqsEqoZuwYL+SsGDw867aqxQYbqihqvU WUma5fnZmuV5P51lhhe3uZZZJPRdde2S9e26fiEm+EANlFqsXA152m+mk4NQK7yg tkYCby1z3CpqKWTX0N4yw8CssTLfHNRHcUkC1Qm3Bod3j05+4yeaxDL0SEjFut0I K4Ktp+j8QDu3+R0jvswaOMz5G46H4ebpOtLNu32X6/620rN24W2OpyyRW6cAqF+p CnyMF7qPmOT0JkTjcuxeYsjPs78rE8+mnc4f3oQKn9m5s4ZnNbgCwIGrm0atsBgF gDGxXOXmMH5zmbjIB6NcI8ae1y4ZpkMp -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org