$ rpki-client -vvf rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft File: zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft (raw, json) Hash identifier: uoWeqHILVwcxECEhYr0wgj9If0rA/HFdu42OY1wSFWk= Subject key identifier: 06:E2:AE:D3:08:1F:51:EA:53:92:E0:39:63:3B:B9:DC:45:DB:6F:A1 Authority key identifier: CC:E0:83:47:9C:46:72:DF:99:28:BA:A8:38:F2:AB:28:02:6D:EF:F7 Certificate issuer: /CN=A91540B9/serialNumber=CCE083479C4672DF9928BAA838F2AB28026DEFF7 Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOCDR5xGct-ZKLqoOPKrKAJt7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft Manifest number: 0123 Signing time: Sun 19 May 2024 05:09:54 +0000 Manifest this update: Sun 19 May 2024 05:09:53 +0000 Manifest next update: Sun 26 May 2024 05:09:53 +0000 Files and hashes: 1: zOCDR5xGct-ZKLqoOPKrKAJt7_c.crl (hash: Wl3pW21bEeI5+NR3i5cMj0R5iajQfzN/F0hx/rJVix8=) 2: 0E4247485B5811ED91760C7DC4F9AE02.roa (hash: WBorSPXVDYDVTx8kORLKsbS0gCiSKpWXfDku2GOVqe8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.crl rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOCDR5xGct-ZKLqoOPKrKAJt7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91540B9/serialNumber=CCE083479C4672DF9928BAA838F2AB28026DEFF7 Validity Not Before: May 19 05:09:53 2024 GMT Not After : May 26 05:09:53 2024 GMT Subject: CN=664989a1-90be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4e:78:e4:2d:a2:60:83:97:06:d3:09:f1:d8: 65:b0:4d:21:b5:c8:0b:b0:dc:ba:a3:4c:fd:55:17: 94:15:d8:81:bd:ac:21:e8:47:fb:93:c3:63:55:f9: 13:b7:13:09:98:46:93:94:d8:9b:5c:0c:a5:21:ed: 9e:16:28:3d:9a:91:e4:d4:ac:2e:84:b2:7a:48:cd: b1:84:e4:4f:74:2d:ad:47:4a:8a:43:b1:94:00:0e: da:f8:04:fe:e0:1d:9c:08:bd:73:cd:f4:65:65:9d: 88:e7:ff:0c:79:15:6d:c9:8e:27:33:c4:b5:63:2c: 6e:b7:c1:66:64:01:14:83:1f:a0:86:b7:e1:af:7f: 23:11:6f:da:a9:83:7f:f3:3f:29:f5:4c:b8:80:c6: 7e:2d:e3:e4:a3:60:2a:2b:25:75:56:0f:8d:3b:c7: f7:63:2c:3b:6b:d4:be:0c:e7:49:1e:95:b1:dc:af: 77:7a:cf:1f:2b:e0:c5:42:c9:6a:90:0d:1b:fd:3f: 0c:e0:95:45:73:a5:13:ee:2f:14:f9:02:f9:09:8c: 1c:59:e0:4f:b0:77:f7:4e:5b:a7:33:91:0f:b6:55: 5c:a3:29:8b:a9:7a:cf:b0:80:12:8f:2c:78:ed:22: 4b:87:2c:d3:95:b9:67:67:e8:ea:df:84:c5:83:c7: 33:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E2:AE:D3:08:1F:51:EA:53:92:E0:39:63:3B:B9:DC:45:DB:6F:A1 X509v3 Authority Key Identifier: keyid:CC:E0:83:47:9C:46:72:DF:99:28:BA:A8:38:F2:AB:28:02:6D:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zOCDR5xGct-ZKLqoOPKrKAJt7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91540B9/D5C251C85B5311ED978E0577C4F9AE02/zOCDR5xGct-ZKLqoOPKrKAJt7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:d5:cc:a4:ae:6a:b2:fa:db:e6:de:c9:d5:eb:d5:ac:9e:fa: c0:8e:c9:ef:0e:04:53:ed:87:c2:26:7b:8a:36:de:73:03:cd: a8:1e:5f:bc:5a:8f:13:82:c5:28:01:51:d1:d5:d9:e8:97:95: 13:58:19:dc:ed:db:66:ce:7b:ce:d9:99:8e:50:6b:b4:79:4c: c4:b2:30:12:ee:12:a1:52:db:46:22:3d:6d:65:e8:e6:1d:6c: 93:05:ad:40:f7:c9:80:0b:a4:6d:c1:8c:f0:a5:b1:a2:b2:3a: 1e:a6:fb:7f:e4:be:ad:86:9c:77:bd:70:ce:73:d7:06:09:fe: 05:e2:26:7b:79:5f:ed:03:af:b7:d7:72:ac:d0:48:8b:06:ff: 6b:00:04:12:5c:ef:99:44:ed:4a:fa:7c:03:d8:a5:dd:b4:22: b2:1c:ad:31:a4:b3:e7:8b:b2:42:b3:5b:d6:86:75:21:92:d7: ef:85:13:96:47:a9:d5:86:64:9a:b8:19:26:c6:db:44:19:ec: 71:88:82:ec:14:96:cd:b1:f0:ef:2d:59:b0:44:67:cd:0e:63: a9:ad:57:35:e7:ca:77:76:a9:db:2e:ef:2e:2b:55:fe:a0:74: ee:53:c9:71:7e:7c:c7:01:62:11:9b:ec:eb:75:a0:f6:70:fc: 39:29:d1:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQwQjkxMTAvBgNVBAUTKENDRTA4MzQ3OUM0NjcyREY5OTI4QkFBODM4RjJBQjI4 MDI2REVGRjcwHhcNMjQwNTE5MDUwOTUzWhcNMjQwNTI2MDUwOTUzWjAYMRYwFAYD VQQDEw02NjQ5ODlhMS05MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArE545C2iYIOXBtMJ8dhlsE0htcgLsNy6o0z9VReUFdiBvawh6Ef7k8NjVfkT txMJmEaTlNibXAylIe2eFig9mpHk1KwuhLJ6SM2xhORPdC2tR0qKQ7GUAA7a+AT+ 4B2cCL1zzfRlZZ2I5/8MeRVtyY4nM8S1Yyxut8FmZAEUgx+ghrfhr38jEW/aqYN/ 8z8p9Uy4gMZ+LePko2AqKyV1Vg+NO8f3Yyw7a9S+DOdJHpWx3K93es8fK+DFQslq kA0b/T8M4JVFc6UT7i8U+QL5CYwcWeBPsHf3TlunM5EPtlVcoymLqXrPsIASjyx4 7SJLhyzTlblnZ+jq34TFg8czjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbirtMI H1HqU5LgOWM7udxF22+hMB8GA1UdIwQYMBaAFMzgg0ecRnLfmSi6qDjyqygCbe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDBCOS9ENUMyNTFDODVC NTMxMUVEOTc4RTA1NzdDNEY5QUUwMi96T0NEUjV4R2N0LVpLTHFvT1BLcktBSnQ3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pPQ0RSNXhHY3QtWktMcW9PUEtyS0FKdDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDBCOS9ENUMyNTFDODVCNTMxMUVEOTc4RTA1NzdDNEY5QUUwMi96T0NEUjV4R2N0 LVpLTHFvT1BLcktBSnQ3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE1cykrmqy+tvm3snV69WsnvrAjsnvDgRT7YfCJnuKNt5zA82oHl+8 Wo8TgsUoAVHR1dnol5UTWBnc7dtmznvO2ZmOUGu0eUzEsjAS7hKhUttGIj1tZejm HWyTBa1A98mAC6RtwYzwpbGisjoepvt/5L6thpx3vXDOc9cGCf4F4iZ7eV/tA6+3 13Ks0EiLBv9rAAQSXO+ZRO1K+nwD2KXdtCKyHK0xpLPni7JCs1vWhnUhktfvhROW R6nVhmSauBkmxttEGexxiILsFJbNsfDvLVmwRGfNDmOprVc158p3dqnbLu8uK1X+ oHTuU8lxfnzHAWIRm+zrdaD2cPw5KdH6 -----END CERTIFICATE-----Generated at Sun May 19 06:14:33 2024 by rpki-client on console-ams.rpki-client.org