$ rpki-client -vvf rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft File: zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft (raw, json) Hash identifier: fkv637A43jg/+bUUFHTyMEVfDUZCRHp7zCUOxyuHtVk= Subject key identifier: 6F:9E:48:98:E9:EF:57:2A:F5:94:F6:E0:A0:9D:33:E1:28:FF:70:26 Authority key identifier: CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 Certificate issuer: /CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Certificate serial: 270B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft Manifest number: 26FE Signing time: Sat 18 May 2024 15:55:07 +0000 Manifest this update: Sat 18 May 2024 15:55:06 +0000 Manifest next update: Sat 25 May 2024 15:55:06 +0000 Files and hashes: 1: zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl (hash: tIUNF4WlMsUwMBTb7Ygv+LncCjDD8yiV3Ap339NWhv4=) 2: 14EC8116B10B11E58EB48F13C4F9AE02.roa (hash: 5qHL59lcbLYTAOl+0OwQssvldpkSxAn75zMYI2/TSOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9995 (0x270b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Validity Not Before: May 18 15:55:06 2024 GMT Not After : May 25 15:55:06 2024 GMT Subject: CN=6648cf5a-f158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:5e:90:db:5d:0e:3b:98:ae:d5:8b:49:6f: 72:2f:02:2a:be:09:6f:8c:1a:d5:ff:82:a3:af:e5: 70:fc:11:38:ad:b3:89:a9:19:fc:98:d2:8c:ba:24: 35:db:74:13:4a:cf:e2:f3:18:4d:df:79:b0:f4:ac: a6:bd:ce:df:0f:51:1f:40:2d:95:32:14:69:97:76: 8a:4b:7e:93:7d:0c:42:42:e6:88:9b:a1:72:1b:56: b1:dc:df:5e:88:5e:67:0c:da:6b:22:35:59:e9:96: 93:f9:46:44:f6:a9:5b:8d:a0:f3:d2:24:be:76:4b: 38:53:1e:8d:17:da:15:6b:bb:35:45:44:c6:35:04: 4a:a6:bf:72:1b:a4:f9:0a:55:9e:4a:fc:57:16:10: 66:7d:77:ee:ab:b0:8a:e9:01:34:cb:fc:62:0a:7f: 05:1b:b1:c0:54:d1:d2:c0:bc:0a:8e:ff:7b:20:41: c2:5c:38:6e:16:49:74:f9:1d:41:8a:4c:f7:d7:15: 4f:2f:0d:f1:66:26:ee:8e:07:e6:6e:31:66:7d:93: a1:a9:b2:14:a1:d5:0f:a9:c1:d5:e4:ee:88:5e:ff: b1:cd:95:cd:a5:5e:71:48:95:24:7b:f9:f5:61:33: cc:e9:dc:69:25:40:ff:5e:03:01:41:d7:01:3b:1a: 2c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9E:48:98:E9:EF:57:2A:F5:94:F6:E0:A0:9D:33:E1:28:FF:70:26 X509v3 Authority Key Identifier: keyid:CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:b4:ff:c6:c1:72:de:71:ce:84:bf:2c:3a:96:47:7c:c8:ba: a7:d6:9a:19:b2:5b:66:ba:67:c1:c5:89:89:e2:13:22:af:b7: a8:76:f2:ac:82:e1:4d:d5:6f:f5:ed:7e:cd:f5:ff:04:c0:a4: 1c:7f:87:d2:74:3f:af:cd:5c:75:0f:db:46:29:a4:f4:a0:0a: e4:74:43:60:c3:98:19:55:15:55:c9:60:aa:04:ed:6b:9b:53: 82:90:e6:6c:c9:ba:a2:5e:58:bb:e1:1a:c6:4b:23:aa:ed:62: 3f:d2:1b:44:e9:ca:96:bc:fb:8c:40:7a:81:1a:73:52:00:61: 63:46:85:3f:4a:e0:0b:f7:56:e4:8c:c8:0b:b9:d6:4f:46:a7: d0:07:bc:68:f7:73:bd:67:02:4a:59:f6:e7:b6:ee:9f:e1:03: 41:8a:47:63:0b:a4:83:61:76:61:53:7e:b6:08:47:58:8e:5e: e5:69:40:64:ca:f3:2a:79:b9:c5:e5:d4:88:56:23:37:44:bc: db:17:5d:15:af:b2:e4:14:ab:e3:5a:51:3a:3c:ad:ed:26:a9: c5:17:5f:50:24:d5:ff:04:e3:21:e5:8d:b1:4a:fd:78:64:9a: 81:11:02:1e:5e:4f:51:a9:ed:df:11:b7:5f:a9:8a:27:c0:2d: c6:11:1a:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1MjkxMTAvBgNVBAUTKENFRTY5MzBGNDhENzc0RDY0M0Q1NUNGRkU5OEIxRTYz QTRENjM1MzQwHhcNMjQwNTE4MTU1NTA2WhcNMjQwNTI1MTU1NTA2WjAYMRYwFAYD VQQDEw02NjQ4Y2Y1YS1mMTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzElekNtdDjuYrtWLSW9yLwIqvglvjBrV/4Kjr+Vw/BE4rbOJqRn8mNKMuiQ1 23QTSs/i8xhN33mw9Kymvc7fD1EfQC2VMhRpl3aKS36TfQxCQuaIm6FyG1ax3N9e iF5nDNprIjVZ6ZaT+UZE9qlbjaDz0iS+dks4Ux6NF9oVa7s1RUTGNQRKpr9yG6T5 ClWeSvxXFhBmfXfuq7CK6QE0y/xiCn8FG7HAVNHSwLwKjv97IEHCXDhuFkl0+R1B ikz31xVPLw3xZibujgfmbjFmfZOhqbIUodUPqcHV5O6IXv+xzZXNpV5xSJUke/n1 YTPM6dxpJUD/XgMBQdcBOxospwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+eSJjp 71cq9ZT24KCdM+Eo/3AmMB8GA1UdIwQYMBaAFM7mkw9I13TWQ9Vc/+mLHmOk1jU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTUyOS8wQjY2MDA0MEEy MDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGROWkQxVnpfNllzZVk2VFdO VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1YVREMGpYZE5aRDFWel82WXNlWTZUV05UUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTUyOS8wQjY2MDA0MEEyMDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGRO WkQxVnpfNllzZVk2VFdOVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXtP/GwXLecc6Evyw6lkd8yLqn1poZsltmumfBxYmJ4hMir7eodvKs guFN1W/17X7N9f8EwKQcf4fSdD+vzVx1D9tGKaT0oArkdENgw5gZVRVVyWCqBO1r m1OCkOZsybqiXli74RrGSyOq7WI/0htE6cqWvPuMQHqBGnNSAGFjRoU/SuAL91bk jMgLudZPRqfQB7xo93O9ZwJKWfbntu6f4QNBikdjC6SDYXZhU362CEdYjl7laUBk yvMqebnF5dSIViM3RLzbF10Vr7LkFKvjWlE6PK3tJqnFF19QJNX/BOMh5Y2xSv14 ZJqBEQIeXk9Rqe3fEbdfqYonwC3GERpu -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org