$ rpki-client -vvf rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft File: ZrIR6cz336FdfNNyNqX1gvGUUwo.mft (raw, json) Hash identifier: yQtQMhW2tP6N9s65kl7Rf1sZ7YIHFOMm4GHrL/T3kbE= Subject key identifier: F5:D3:ED:0B:7E:7E:A2:AE:DB:49:71:3F:FC:2E:83:52:B1:7A:EC:7A Authority key identifier: 66:B2:11:E9:CC:F7:DF:A1:5D:7C:D3:72:36:A5:F5:82:F1:94:53:0A Certificate issuer: /CN=A9162C2C/serialNumber=66B211E9CCF7DFA15D7CD37236A5F582F194530A Certificate serial: 0492 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft Manifest number: 0492 Signing time: Sun 19 May 2024 01:34:58 +0000 Manifest this update: Sun 19 May 2024 01:34:57 +0000 Manifest next update: Sun 26 May 2024 01:34:57 +0000 Files and hashes: 1: ZrIR6cz336FdfNNyNqX1gvGUUwo.crl (hash: Qp7us5k7FdxLD7ypvEgmEqTnPbC8gjyrPT+tGS6zSiI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.crl rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1170 (0x492) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162C2C/serialNumber=66B211E9CCF7DFA15D7CD37236A5F582F194530A Validity Not Before: May 19 01:34:57 2024 GMT Not After : May 26 01:34:57 2024 GMT Subject: CN=66495741-369f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e4:50:99:c0:68:0e:60:80:01:14:de:1f:fe: 3c:40:a9:f8:6f:d6:0f:9e:ea:19:78:d9:aa:cd:e6: b2:1f:a8:4f:68:da:94:e6:94:5a:6a:ae:50:71:2f: 97:db:24:a3:f4:9e:75:6c:90:73:d3:41:18:ce:ef: 1b:82:3d:85:b7:ba:2c:27:9a:e4:77:3b:c7:02:1c: 6f:6e:58:40:c3:cd:d7:4d:cc:06:db:cb:eb:30:28: 61:0d:64:76:3d:20:92:ba:e5:cb:f4:92:15:c4:b5: be:79:74:4c:16:23:a7:df:62:61:12:a3:80:50:12: 59:21:31:c0:73:81:8c:15:0e:34:61:e0:1c:a6:b8: 99:b7:27:68:b1:62:e3:ea:d1:6d:25:28:64:e5:71: 9f:ac:c9:7d:35:28:4a:ff:e2:ed:fc:7c:ef:de:86: a1:60:b4:f1:d4:a5:14:bc:86:82:20:11:ce:2f:a1: ff:9b:34:e3:cc:38:51:0d:d6:e2:03:dd:2b:6d:b5: 54:5a:6b:8e:a0:a2:d0:31:23:62:29:ad:b8:cd:c0: 32:85:53:94:96:11:be:9f:4d:5f:65:0c:92:a3:08: 74:4d:73:bb:f0:7d:8d:0e:be:ca:47:2c:6b:6f:1a: 10:a9:ad:d2:8d:5a:86:7c:ad:0f:f0:9b:be:c6:95: dc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D3:ED:0B:7E:7E:A2:AE:DB:49:71:3F:FC:2E:83:52:B1:7A:EC:7A X509v3 Authority Key Identifier: keyid:66:B2:11:E9:CC:F7:DF:A1:5D:7C:D3:72:36:A5:F5:82:F1:94:53:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e6:22:d7:64:f2:6c:30:1c:88:38:fd:48:fc:79:25:b0:1b:99: 2e:7c:1a:2e:58:e4:dd:5c:d5:97:5b:11:1b:5a:47:2e:94:38: 56:53:77:90:ea:87:48:19:97:3e:a5:80:01:e1:1f:c1:29:6b: 2d:62:4a:0b:3e:c7:95:e4:e4:75:bf:2d:60:c7:eb:43:5b:df: ff:67:6d:f1:4f:7b:4a:cf:ec:f7:fc:65:05:5d:d6:2d:aa:5c: 77:7a:d5:e5:2d:11:d0:79:2d:17:0e:10:e1:40:b9:00:89:a2: 3d:f2:cd:f6:37:26:99:61:1e:1c:0f:88:86:b6:6d:88:a0:7b: 4e:a5:ca:d3:6c:9d:f9:75:9a:00:9b:69:f2:b5:2f:38:89:80: e9:dd:df:11:f1:ec:97:1f:b8:1d:27:08:e6:20:7d:bf:86:29: 0c:63:f1:fb:09:60:a3:b5:e3:56:d0:aa:83:38:ec:45:23:70: a9:46:d0:e6:a5:e6:8d:58:46:56:0d:9d:9a:06:03:1c:73:31: a8:cb:73:ae:f0:a3:03:00:9e:4e:5a:1c:d3:bc:9a:5a:95:0d: a8:c0:39:4b:13:47:11:e2:8b:42:df:cf:b7:b4:07:2c:f5:bf: 13:4e:f7:7e:7e:a4:05:83:77:f1:a4:68:e9:c3:c6:b1:4c:71: 5f:19:24:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJDMkMxMTAvBgNVBAUTKDY2QjIxMUU5Q0NGN0RGQTE1RDdDRDM3MjM2QTVGNTgy RjE5NDUzMEEwHhcNMjQwNTE5MDEzNDU3WhcNMjQwNTI2MDEzNDU3WjAYMRYwFAYD VQQDEw02NjQ5NTc0MS0zNjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveRQmcBoDmCAARTeH/48QKn4b9YPnuoZeNmqzeayH6hPaNqU5pRaaq5QcS+X 2ySj9J51bJBz00EYzu8bgj2Ft7osJ5rkdzvHAhxvblhAw83XTcwG28vrMChhDWR2 PSCSuuXL9JIVxLW+eXRMFiOn32JhEqOAUBJZITHAc4GMFQ40YeAcpriZtydosWLj 6tFtJShk5XGfrMl9NShK/+Lt/Hzv3oahYLTx1KUUvIaCIBHOL6H/mzTjzDhRDdbi A90rbbVUWmuOoKLQMSNiKa24zcAyhVOUlhG+n01fZQySowh0TXO78H2NDr7KRyxr bxoQqa3SjVqGfK0P8Ju+xpXc4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXT7Qt+ fqKu20lxP/wug1Kxeux6MB8GA1UdIwQYMBaAFGayEenM99+hXXzTcjal9YLxlFMK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkMyQy8wQTExREIxNkVB ODkxMUVCODBCMUM4M0JDNEY5QUUwMi9acklSNmN6MzM2RmRmTk55TnFYMWd2R1VV d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVI2Y3ozMzZGZGZOTnlOcVgxZ3ZHVVV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkMyQy8wQTExREIxNkVBODkxMUVCODBCMUM4M0JDNEY5QUUwMi9acklSNmN6MzM2 RmRmTk55TnFYMWd2R1VVd28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDmItdk8mwwHIg4/Uj8eSWwG5kufBouWOTdXNWXWxEbWkculDhWU3eQ 6odIGZc+pYAB4R/BKWstYkoLPseV5OR1vy1gx+tDW9//Z23xT3tKz+z3/GUFXdYt qlx3etXlLRHQeS0XDhDhQLkAiaI98s32NyaZYR4cD4iGtm2IoHtOpcrTbJ35dZoA m2nytS84iYDp3d8R8eyXH7gdJwjmIH2/hikMY/H7CWCjteNW0KqDOOxFI3CpRtDm peaNWEZWDZ2aBgMcczGoy3Ou8KMDAJ5OWhzTvJpalQ2owDlLE0cR4otC38+3tAcs 9b8TTvd+fqQFg3fxpGjpw8axTHFfGSS/ -----END CERTIFICATE-----Generated at Sun May 19 02:59:07 2024 by rpki-client on console-ams.rpki-client.org