$ rpki-client -vvf rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.mft File: 1ZVULlIPSK9153kD6majnGTB0KM.mft (raw, json) Hash identifier: 64RrUoB2edhkgwbaat/gxm0oPtLe1ZXxN/oqZpoRMJQ= Subject key identifier: 50:08:81:EB:0A:CA:8C:70:43:F9:B0:4F:FC:57:7B:46:21:D6:95:CE Authority key identifier: D5:95:54:2E:52:0F:48:AF:75:E7:79:03:EA:66:A3:9C:64:C1:D0:A3 Certificate issuer: /CN=A9175866/serialNumber=D595542E520F48AF75E77903EA66A39C64C1D0A3 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ZVULlIPSK9153kD6majnGTB0KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.mft Manifest number: 4C Signing time: Fri 31 May 2024 08:56:16 +0000 Manifest this update: Fri 31 May 2024 08:56:15 +0000 Manifest next update: Fri 07 Jun 2024 08:56:15 +0000 Files and hashes: 1: 1ZVULlIPSK9153kD6majnGTB0KM.crl (hash: S1uuMO5Wiz2+lMDxULKl1nzj9D+1Sjqub/tH3dhItXU=) 2: A4F5FB1ED0BC11EE8238E71AC4F9AE02.roa (hash: bQkUW47Omh2zud2h3jRyO8DuSrBukJKJFd0HuML8p2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.crl rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ZVULlIPSK9153kD6majnGTB0KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175866/serialNumber=D595542E520F48AF75E77903EA66A39C64C1D0A3 Validity Not Before: May 31 08:56:15 2024 GMT Not After : Jun 7 08:56:15 2024 GMT Subject: CN=665990af-a5b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b8:a8:12:dd:85:20:f0:1c:c6:43:cc:11:69: 5b:b8:dd:c1:77:90:05:79:30:52:c5:c0:a3:78:45: 03:20:a7:38:25:05:ee:d5:a1:be:5a:93:40:8c:a7: 90:da:69:f3:27:9e:55:c8:c2:3d:c3:86:e0:ff:bb: ef:dc:48:71:b2:2d:c0:69:b2:54:28:27:9d:5e:57: 73:86:6c:65:0d:de:0b:c1:85:87:0a:9d:04:ae:de: 50:6f:46:ef:b8:5f:4e:76:3f:25:4c:82:63:93:65: a0:4e:45:f0:ad:9a:2c:c3:9b:e8:9f:bc:7f:f1:88: 62:c9:40:8c:ee:76:e1:c6:63:67:f3:00:06:9a:22: 4e:dd:67:db:26:50:fd:7e:3f:cf:26:d3:e4:06:6d: bf:f1:51:51:9b:9e:c5:27:7f:95:c8:e1:de:07:3f: 23:81:dd:28:b3:09:32:53:27:96:3d:5c:c7:b7:28: 40:fb:bc:13:79:c3:76:bd:41:aa:9a:4b:46:ba:b3: 6e:8a:e3:10:0b:81:c6:0d:55:6f:d9:b8:db:41:64: 94:2a:57:fb:20:f9:65:09:75:4b:0d:9b:be:12:39: b3:e6:b7:5b:7c:af:2f:ef:e6:df:04:9f:f7:33:a7: 9d:d9:ac:9a:52:f9:11:e5:8f:e7:52:80:2f:19:53: 38:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:08:81:EB:0A:CA:8C:70:43:F9:B0:4F:FC:57:7B:46:21:D6:95:CE X509v3 Authority Key Identifier: keyid:D5:95:54:2E:52:0F:48:AF:75:E7:79:03:EA:66:A3:9C:64:C1:D0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ZVULlIPSK9153kD6majnGTB0KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175866/F19D2202AFD911EE84C6F27BC4F9AE02/1ZVULlIPSK9153kD6majnGTB0KM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:fe:90:f1:75:a6:ca:61:c7:13:de:e2:25:a5:fb:5c:37:2b: 98:ee:e1:c3:8e:d1:f0:1b:ff:fe:36:a1:8c:af:8f:11:5f:9b: e5:27:64:f9:33:1e:08:0e:cb:cc:26:d0:a6:2b:79:f7:75:70: 56:75:e8:67:2d:43:1b:fb:ef:3a:bb:2a:aa:2f:d2:dd:21:ac: 0f:7f:2d:04:68:74:d4:55:9f:ce:34:c1:e3:db:d3:99:4d:c7: a4:8c:c0:aa:89:33:ca:ac:16:b6:45:63:f6:1a:ba:da:d6:ed: 82:f0:9d:b7:be:ad:e3:83:09:76:1d:21:59:89:44:17:ca:29: 9a:b1:45:77:bc:33:7e:d6:47:2d:6c:8f:e9:dc:c4:47:49:2e: 11:db:29:20:ef:a2:55:e2:84:8b:7a:a3:f6:2a:4e:20:da:9b: 30:3e:5a:33:25:53:b9:80:1e:c2:a8:15:71:93:90:01:92:cc: 18:88:92:8a:db:e4:2e:21:04:27:73:07:cc:06:43:9e:52:74: dd:31:5a:61:92:27:08:e8:f1:df:dd:89:d7:f7:5f:8a:4f:3b: 99:d7:ff:1a:e7:64:b8:b6:82:9f:45:39:79:ce:99:39:6f:69: 25:30:df:48:40:73:10:4d:8d:07:35:2e:dc:b4:15:95:29:bb: 1d:f8:fb:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTg2NjExMC8GA1UEBRMoRDU5NTU0MkU1MjBGNDhBRjc1RTc3OTAzRUE2NkEzOUM2 NEMxRDBBMzAeFw0yNDA1MzEwODU2MTVaFw0yNDA2MDcwODU2MTVaMBgxFjAUBgNV BAMTDTY2NTk5MGFmLWE1YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCquKgS3YUg8BzGQ8wRaVu43cF3kAV5MFLFwKN4RQMgpzglBe7Vob5ak0CMp5Da afMnnlXIwj3DhuD/u+/cSHGyLcBpslQoJ51eV3OGbGUN3gvBhYcKnQSu3lBvRu+4 X052PyVMgmOTZaBORfCtmizDm+ifvH/xiGLJQIzuduHGY2fzAAaaIk7dZ9smUP1+ P88m0+QGbb/xUVGbnsUnf5XI4d4HPyOB3SizCTJTJ5Y9XMe3KED7vBN5w3a9Qaqa S0a6s26K4xALgcYNVW/ZuNtBZJQqV/sg+WUJdUsNm74SObPmt1t8ry/v5t8En/cz p53ZrJpS+RHlj+dSgC8ZUzhrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUAiB6wrK jHBD+bBP/Fd7RiHWlc4wHwYDVR0jBBgwFoAU1ZVULlIPSK9153kD6majnGTB0KMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1ODY2L0YxOUQyMjAyQUZE OTExRUU4NEM2RjI3QkM0RjlBRTAyLzFaVlVMbElQU0s5MTUza0Q2bWFqbkdUQjBL TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVpWVUxsSVBTSzkxNTNrRDZtYWpuR1RCMEtNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 ODY2L0YxOUQyMjAyQUZEOTExRUU4NEM2RjI3QkM0RjlBRTAyLzFaVlVMbElQU0s5 MTUza0Q2bWFqbkdUQjBLTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAz+kPF1psphxxPe4iWl+1w3K5ju4cOO0fAb//42oYyvjxFfm+UnZPkz HggOy8wm0KYrefd1cFZ16GctQxv77zq7Kqov0t0hrA9/LQRodNRVn840wePb05lN x6SMwKqJM8qsFrZFY/YautrW7YLwnbe+reODCXYdIVmJRBfKKZqxRXe8M37WRy1s j+ncxEdJLhHbKSDvolXihIt6o/YqTiDamzA+WjMlU7mAHsKoFXGTkAGSzBiIkorb 5C4hBCdzB8wGQ55SdN0xWmGSJwjo8d/didf3X4pPO5nX/xrnZLi2gp9FOXnOmTlv aSUw30hAcxBNjQc1Lty0FZUpux34+5o= -----END CERTIFICATE-----Generated at Fri May 31 10:01:47 2024 by rpki-client on console-ams.rpki-client.org