$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: wsHFzn7FnsP0sWDdBZAU8P9/Ha+HUkdWTDXIm5Hxm1w= Subject key identifier: 35:50:3B:8D:44:58:74:83:BA:1E:00:6E:2A:01:32:B8:B2:64:96:AA Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1BFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3E13 Signing time: Sat 18 May 2024 14:31:47 +0000 Manifest this update: Sat 18 May 2024 14:31:47 +0000 Manifest next update: Sat 25 May 2024 14:31:47 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: nfI5oEQ4Kcg9D0tQQLPErwAlA4bUknR65GkmmAYFPrg=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: BRuFC7zf6VXlceKjS5xzZ4XHUrmuAxFBfkUSNuAiOAc=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: a0NWrHL2A8WL4AhnawSmIL3+zqHhuwWv/RsJAGp7bW0=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: Roh1KCgx2d7yViTiJmXnrmApOZZvqG65uAQZz4WGMkU=) 5: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: KyoKzrfAU3BX3yBXxWgeIjgt0hT8g5IZj1NXfChymq4=) 6: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: Spe+ZLCWYOdA8CBDsQkTSRMy9zIya/08gNcBNSJsUdc=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: 3STasabjcRMl5sCRIraeb7Jdqbu/6EJSWvLncXV//AY=) 8: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: SAA6G9YqOhy0hnk+8K9zJxRbTp07Kne93pAeDS5gSfg=) 9: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: peQlUcQf5eEnUli6/CyN1hvF+tSSh4tIO3YSa+ZPFdI=) 10: 66891B80943011EA8988B883C4F9AE02.roa (hash: YvWxPWOnvydLYC2ddZYUXs8VWWsust2lfoevpAIOxpI=) 11: 727C68508AB411EA89D83541C4F9AE02.roa (hash: bNLbopYTIZnkRHkV3iJSMmgEj50I2SsjijBIBUsXZ/o=) 12: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: 6KmMNzHs39Hbebeh/wdix0UtI7gBt79tuL29k7NloPA=) 13: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: mAa852TCkZhviddLBCirFVWcnGiv3BjKk50mxM6ts2w=) 14: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: s3Af68TNCkvJmIaaAZIqx3F3CV/1jXfTLZY7Q/GCjCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:31:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7167 (0x1bff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: May 18 14:31:47 2024 GMT Not After : May 25 14:31:47 2024 GMT Subject: CN=6648bbd3-c2c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:39:9c:a7:96:f9:a6:d5:4f:99:a1:fd:b3:31: f1:e4:5d:5f:1b:97:eb:93:52:00:81:67:a8:27:66: ef:42:60:c8:fa:36:78:f2:ac:e0:bd:79:10:f4:4b: 81:c2:ca:7a:b6:c5:44:b3:84:66:e6:68:f5:57:99: ff:eb:e3:80:72:7d:b9:8c:f0:e3:3f:e1:d5:1f:76: d4:98:cf:8d:3e:08:8e:c4:fa:94:63:de:b3:38:01: 69:4e:2c:6e:37:db:80:0d:20:1a:84:1c:f9:ef:b0: d9:06:bd:f4:01:88:29:2e:d3:5b:ac:b8:08:6f:2d: a8:6e:22:ae:6c:be:0f:b3:1f:0e:10:66:1f:65:f9: 20:db:55:19:c7:cc:07:78:5f:53:be:d1:44:c9:26: 46:fb:c9:69:c4:89:c3:7c:de:6b:90:71:f5:08:95: b7:50:84:e3:0e:94:64:29:0d:34:66:81:5c:05:e1: 91:cf:ca:5d:38:86:e5:51:d9:92:f9:32:4b:9f:33: 0e:82:b0:4a:aa:ac:3c:75:f1:60:0c:97:e4:56:92: f3:3d:58:be:95:d5:e1:9f:16:0a:27:ac:e3:ec:41: f6:6a:00:dc:77:00:c1:9d:46:f2:71:c1:3f:6c:8a: 76:60:99:96:db:3f:00:cd:0c:0d:6e:23:5c:9f:b0: 94:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:50:3B:8D:44:58:74:83:BA:1E:00:6E:2A:01:32:B8:B2:64:96:AA X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:c3:b0:58:44:b7:d2:17:6e:c1:36:e9:05:39:f1:98:0a:80: d1:fd:93:53:b1:b8:29:96:b7:c9:a0:a7:cf:9a:09:f5:3b:1e: d4:af:2f:51:10:50:5b:e4:1b:08:65:9a:af:b0:26:45:11:15: 68:aa:d9:41:f3:4c:bc:36:19:03:d4:2e:f9:de:99:2f:f3:23: c0:bd:a6:a5:b3:b7:13:65:5c:c1:c0:e8:49:3c:79:7a:f9:41: 45:97:ff:13:33:05:8a:37:36:bb:6d:84:c1:1f:85:09:74:52: a1:2a:52:47:cc:9c:a8:9d:16:dd:74:82:e4:79:af:62:ff:a7: fd:fd:db:71:b6:49:06:7c:f2:e2:ed:ba:74:d5:e2:a7:b4:4c: a1:8c:3a:ef:02:94:15:e6:54:a4:25:4f:ca:2a:d3:61:df:96: 63:d0:06:43:62:3e:08:c7:ec:1b:3a:c5:78:1e:11:36:e5:be: d8:4c:b7:79:98:ef:3b:a9:b2:9e:57:94:3b:fc:1b:57:ec:78: 11:ad:73:da:5b:82:3e:68:51:04:35:f6:49:b2:ce:a4:3c:51: e2:e6:a1:92:51:44:9b:63:ec:34:37:63:89:22:17:e1:f2:a2: 47:52:ec:df:9d:4d:f4:80:47:5e:23:be:94:47:61:6d:cc:57: ba:0b:50:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjQwNTE4MTQzMTQ3WhcNMjQwNTI1MTQzMTQ3WjAYMRYwFAYD VQQDEw02NjQ4YmJkMy1jMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzmcp5b5ptVPmaH9szHx5F1fG5frk1IAgWeoJ2bvQmDI+jZ48qzgvXkQ9EuB wsp6tsVEs4Rm5mj1V5n/6+OAcn25jPDjP+HVH3bUmM+NPgiOxPqUY96zOAFpTixu N9uADSAahBz577DZBr30AYgpLtNbrLgIby2obiKubL4Psx8OEGYfZfkg21UZx8wH eF9TvtFEySZG+8lpxInDfN5rkHH1CJW3UITjDpRkKQ00ZoFcBeGRz8pdOIblUdmS +TJLnzMOgrBKqqw8dfFgDJfkVpLzPVi+ldXhnxYKJ6zj7EH2agDcdwDBnUbyccE/ bIp2YJmW2z8AzQwNbiNcn7CUJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVQO41E WHSDuh4AbioBMriyZJaqMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1w7BYRLfSF27BNukFOfGYCoDR/ZNTsbgplrfJoKfPmgn1Ox7Ury9R EFBb5BsIZZqvsCZFERVoqtlB80y8NhkD1C753pkv8yPAvaals7cTZVzBwOhJPHl6 +UFFl/8TMwWKNza7bYTBH4UJdFKhKlJHzJyonRbddILkea9i/6f9/dtxtkkGfPLi 7bp01eKntEyhjDrvApQV5lSkJU/KKtNh35Zj0AZDYj4Ix+wbOsV4HhE25b7YTLd5 mO87qbKeV5Q7/BtX7HgRrXPaW4I+aFEENfZJss6kPFHi5qGSUUSbY+w0N2OJIhfh 8qJHUuzfnU30gEdeI76UR2FtzFe6C1DS -----END CERTIFICATE-----Generated at Sat May 18 15:26:04 2024 by rpki-client on console-fra.rpki-client.org