$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: 6zzBulv/F5zL7GuGrhEhNFDU7l9/7qdk3Ecjmc9LemY= Subject key identifier: 8D:33:72:2B:90:60:DE:3C:43:DE:36:82:A2:F7:A0:D2:AE:93:91:C7 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 09FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 09F3 Signing time: Sat 18 May 2024 20:40:59 +0000 Manifest this update: Sat 18 May 2024 20:40:58 +0000 Manifest next update: Sat 25 May 2024 20:40:58 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: O+0iy7ldyt9TVNTfUHGacIOUkOTvCS43qDqx/0Jx8bY=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: melr0OdWnM49IUzlU41JvKNY+g7F2hByLSoyY38bhQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2554 (0x9fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: May 18 20:40:58 2024 GMT Not After : May 25 20:40:58 2024 GMT Subject: CN=6649125a-a109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d5:8b:7e:4c:5d:07:ce:bc:95:da:01:c5:b8: 39:78:68:48:d2:d6:f3:6d:8f:28:89:56:2d:09:6c: 38:4f:11:37:81:ac:8c:54:bd:a2:91:1d:a3:5a:33: e8:ce:cb:1c:51:60:1b:ec:87:77:6d:1b:06:d6:fd: 96:d0:c8:b8:0c:dc:e0:30:c9:0d:6b:70:5e:7c:de: c5:ac:05:cf:11:a5:7f:a4:d0:03:53:80:68:b4:f4: ec:93:fa:61:11:c9:20:3a:3f:5e:11:8f:34:8c:69: a6:3d:a2:83:f9:64:a9:eb:47:2a:f4:39:37:de:f5: db:e9:d6:75:de:7c:62:0f:11:52:e5:e7:86:df:15: 02:46:bb:ac:b0:e2:12:f0:93:67:a5:48:80:8b:54: 7d:e4:33:b0:31:90:54:36:ab:1d:f6:0d:ea:0f:38: 9c:85:7e:93:54:af:8e:a3:cd:38:d2:2b:b4:6d:c8: c8:65:60:c0:99:27:fa:5d:78:2e:23:64:81:d8:15: 51:e7:a8:45:40:81:0e:61:84:2c:80:6a:14:f0:91: 92:5f:ab:2d:5d:78:b7:21:e4:e6:6d:95:26:b4:83: 0c:ff:e9:e6:5d:b7:81:d9:8e:0c:da:24:ec:7a:e9: 4a:c6:76:f1:0f:68:e4:aa:97:09:ef:29:ea:bc:60: 16:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:33:72:2B:90:60:DE:3C:43:DE:36:82:A2:F7:A0:D2:AE:93:91:C7 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:59:85:26:25:9e:73:0e:1e:f1:20:ce:08:ab:52:31:82:f2: 23:00:5d:9f:b7:60:4f:9f:66:84:3f:01:c9:2b:08:1c:02:56: 05:7b:f6:32:54:5e:20:b9:f1:b8:6a:6e:18:1f:ae:eb:60:4a: 10:20:50:d2:c3:70:b6:92:ab:8f:ab:d4:42:73:a7:2f:ef:1c: ff:d3:31:e1:b4:75:83:33:57:67:e0:22:9d:90:b4:26:2d:5b: b6:09:54:16:13:1d:01:92:0a:37:93:11:74:dd:c8:50:85:c9: 8f:37:8f:e3:d2:36:2f:13:28:80:f9:6c:90:0e:26:ea:50:9f: dc:af:4a:88:cd:04:40:d3:66:1d:77:26:d7:e1:e4:bb:ac:fc: 17:3c:98:76:a4:d4:65:41:6c:a6:d5:0c:46:8b:bc:47:3a:9e: c4:2d:f2:1d:bf:42:fb:eb:c2:d0:6c:37:66:47:29:25:2b:ab: 7c:f2:3c:fe:52:82:00:15:75:91:55:e1:cc:ef:88:b9:0a:e2: da:52:ab:9a:33:4a:1f:fd:57:2a:25:13:3d:04:9e:46:c8:60: 6a:5e:1c:4d:bf:4b:00:e9:9c:ef:e4:b8:64:bb:ba:e0:9a:c4: b5:67:3b:29:d8:b4:3b:29:c1:cb:12:3c:ec:5b:a1:f0:f8:02: a1:d2:cf:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjQwNTE4MjA0MDU4WhcNMjQwNTI1MjA0MDU4WjAYMRYwFAYD VQQDEw02NjQ5MTI1YS1hMTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9WLfkxdB868ldoBxbg5eGhI0tbzbY8oiVYtCWw4TxE3gayMVL2ikR2jWjPo zsscUWAb7Id3bRsG1v2W0Mi4DNzgMMkNa3BefN7FrAXPEaV/pNADU4BotPTsk/ph EckgOj9eEY80jGmmPaKD+WSp60cq9Dk33vXb6dZ13nxiDxFS5eeG3xUCRrussOIS 8JNnpUiAi1R95DOwMZBUNqsd9g3qDzichX6TVK+Oo8040iu0bcjIZWDAmSf6XXgu I2SB2BVR56hFQIEOYYQsgGoU8JGSX6stXXi3IeTmbZUmtIMM/+nmXbeB2Y4M2iTs eulKxnbxD2jkqpcJ7ynqvGAWYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0zciuQ YN48Q942gqL3oNKuk5HHMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLWYUmJZ5zDh7xIM4Iq1IxgvIjAF2ft2BPn2aEPwHJKwgcAlYFe/Yy VF4gufG4am4YH67rYEoQIFDSw3C2kquPq9RCc6cv7xz/0zHhtHWDM1dn4CKdkLQm LVu2CVQWEx0Bkgo3kxF03chQhcmPN4/j0jYvEyiA+WyQDibqUJ/cr0qIzQRA02Yd dybX4eS7rPwXPJh2pNRlQWym1QxGi7xHOp7ELfIdv0L768LQbDdmRyklK6t88jz+ UoIAFXWRVeHM74i5CuLaUquaM0of/VcqJRM9BJ5GyGBqXhxNv0sA6Zzv5Lhku7rg msS1Zzsp2LQ7KcHLEjzsW6Hw+AKh0s8W -----END CERTIFICATE-----Generated at Sat May 18 21:31:28 2024 by rpki-client on console-ams.rpki-client.org