$ rpki-client -vvf rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft File: zPKlJcCQFETKePBbk5LABFeVZ2E.mft (raw, json) Hash identifier: vGIzsIbHIU2RMIOSKqOafm2UBtktZXgYaaJFF8HTs7w= Subject key identifier: 0E:FB:D3:20:38:C2:04:8D:EF:FB:5D:B2:F9:A3:86:26:05:62:C9:42 Authority key identifier: CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 Certificate issuer: /CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Certificate serial: 08FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft Manifest number: 08F7 Signing time: Sat 18 May 2024 21:18:20 +0000 Manifest this update: Sat 18 May 2024 21:18:19 +0000 Manifest next update: Sat 25 May 2024 21:18:19 +0000 Files and hashes: 1: zPKlJcCQFETKePBbk5LABFeVZ2E.crl (hash: iKJgKt3lg6CmEeA6fbXWbtXsHrkJavkJspmdZOV1HCU=) 2: 9BAC68CC83C211EABCB66612C4F9AE02.roa (hash: wkGEAHzXvcSBB9vjvx4GS7uWmUUOnwXejpT3X/pRHM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Validity Not Before: May 18 21:18:19 2024 GMT Not After : May 25 21:18:19 2024 GMT Subject: CN=66491b1b-b6ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:91:9b:fc:67:18:97:66:a2:70:3c:66:e6: ca:73:45:21:af:99:5d:ce:19:f6:31:a0:d4:94:42: 17:a7:46:dd:28:08:2f:81:d5:5a:27:db:e4:fc:3b: 06:f1:ff:dc:2f:48:a7:c8:3f:14:ae:36:d8:2d:46: 7f:11:e6:65:a6:1a:31:9e:4a:bd:c5:71:20:15:50: a1:29:1c:08:8d:80:35:3d:ac:8a:17:ea:71:1c:cf: 3e:8a:b6:08:45:4c:af:51:6e:91:15:1d:45:67:b5: 42:ec:74:11:aa:66:b5:7f:7d:ce:bf:92:08:12:54: ce:eb:6f:40:1b:a7:59:ad:8e:34:74:a0:60:54:71: 79:bd:15:be:9d:d3:90:bb:a5:89:2d:77:d0:ca:2d: 51:b2:81:21:9e:e8:e2:d2:64:14:a4:3e:cc:3e:1d: 1e:bd:e8:a8:86:b8:18:f9:b5:da:2f:84:5f:0e:92: ed:d6:a4:fd:aa:60:9a:2a:f5:89:45:ba:06:d6:47: 55:94:56:8e:5d:f9:cb:bb:3e:d1:18:bd:6d:76:f5: 44:fc:4d:e4:2f:46:7e:ab:d2:6d:cc:05:3c:f3:e5: e3:54:50:9b:3d:79:d8:4d:41:72:75:55:63:96:ad: 1a:15:20:38:40:2e:9e:27:bd:63:e7:91:b0:96:76: 57:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FB:D3:20:38:C2:04:8D:EF:FB:5D:B2:F9:A3:86:26:05:62:C9:42 X509v3 Authority Key Identifier: keyid:CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:57:0f:d1:8d:d7:a5:d2:ae:84:09:ce:cd:35:63:3b:14:33: 82:e1:ba:fb:0a:57:62:f7:63:89:f2:46:d6:71:da:4b:aa:04: b0:7d:49:f6:fa:16:1a:ea:73:a5:0c:7c:83:b6:cb:d7:87:4b: 12:09:36:de:84:6d:89:03:e1:5d:2e:b1:4a:52:92:04:36:0d: f2:86:b6:ff:fa:24:f3:d6:05:23:fe:08:a3:87:df:a6:ec:76: 4b:f0:72:60:5a:20:8b:00:81:2f:02:dc:9e:30:6f:31:1d:31: d4:d3:7b:b1:ff:ff:0f:1a:b6:68:ef:8d:90:91:bd:0d:ba:fd: 5c:96:11:1b:7c:9c:f5:3b:d5:ed:28:28:a0:91:af:98:28:63: 12:f4:5c:7c:a1:5a:d7:6e:c7:2b:9d:25:5f:07:a7:19:15:3c: 7e:da:10:53:a9:af:bf:c8:58:21:96:59:1d:97:7b:2a:ee:9b: 5a:78:1f:b2:5f:20:38:60:08:a8:8c:ed:3a:43:09:a7:75:67: 63:78:21:d4:01:da:5c:2e:13:a1:6a:d7:1c:18:de:0d:1b:35: 1e:83:7e:9d:72:1a:df:ed:9f:a0:16:1b:82:36:f0:74:f9:75: ff:d4:a1:75:96:75:63:3c:85:0e:aa:7a:5c:47:02:86:b9:81: 97:3a:6f:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwNzExMTAvBgNVBAUTKENDRjJBNTI1QzA5MDE0NDRDQTc4RjA1QjkzOTJDMDA0 NTc5NTY3NjEwHhcNMjQwNTE4MjExODE5WhcNMjQwNTI1MjExODE5WjAYMRYwFAYD VQQDEw02NjQ5MWIxYi1iNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEuRm/xnGJdmonA8ZubKc0Uhr5ldzhn2MaDUlEIXp0bdKAgvgdVaJ9vk/DsG 8f/cL0inyD8UrjbYLUZ/EeZlphoxnkq9xXEgFVChKRwIjYA1PayKF+pxHM8+irYI RUyvUW6RFR1FZ7VC7HQRqma1f33Ov5IIElTO629AG6dZrY40dKBgVHF5vRW+ndOQ u6WJLXfQyi1RsoEhnuji0mQUpD7MPh0eveiohrgY+bXaL4RfDpLt1qT9qmCaKvWJ RboG1kdVlFaOXfnLuz7RGL1tdvVE/E3kL0Z+q9JtzAU88+XjVFCbPXnYTUFydVVj lq0aFSA4QC6eJ71j55GwlnZXhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA770yA4 wgSN7/tdsvmjhiYFYslCMB8GA1UdIwQYMBaAFMzypSXAkBREynjwW5OSwARXlWdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTA3MS8yODBCMDlBNDgz QkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZFVEtlUEJiazVMQUJGZVZa MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQS2xKY0NRRkVUS2VQQmJrNUxBQkZlVloyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTA3MS8yODBCMDlBNDgzQkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZF VEtlUEJiazVMQUJGZVZaMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Vw/Rjdel0q6ECc7NNWM7FDOC4br7Cldi92OJ8kbWcdpLqgSwfUn2 +hYa6nOlDHyDtsvXh0sSCTbehG2JA+FdLrFKUpIENg3yhrb/+iTz1gUj/gijh9+m 7HZL8HJgWiCLAIEvAtyeMG8xHTHU03ux//8PGrZo742Qkb0Nuv1clhEbfJz1O9Xt KCigka+YKGMS9Fx8oVrXbscrnSVfB6cZFTx+2hBTqa+/yFghllkdl3sq7ptaeB+y XyA4YAiojO06QwmndWdjeCHUAdpcLhOhatccGN4NGzUeg36dchrf7Z+gFhuCNvB0 +XX/1KF1lnVjPIUOqnpcRwKGuYGXOm84 -----END CERTIFICATE-----Generated at Sat May 18 22:14:03 2024 by rpki-client on console-fra.rpki-client.org