$ rpki-client -vvf rpki.apnic.net/member_repository/A917AAD4/0DD8F79E51BA11EE84EF9C5FC4F9AE02/z0dmQoBPz_nXCSiWNYNV1awA6nM.mft File: z0dmQoBPz_nXCSiWNYNV1awA6nM.mft (raw, json) Hash identifier: HzaNMuHv/ZiRm6jTxkReFmgG7wehU8wls8aeHldX1Cc= Subject key identifier: 96:F5:FB:F8:14:E6:BE:A8:38:6E:C4:34:32:E8:97:C7:3E:34:5D:56 Authority key identifier: CF:47:66:42:80:4F:CF:F9:D7:09:28:96:35:83:55:D5:AC:00:EA:73 Certificate issuer: /CN=A917AAD4/serialNumber=CF476642804FCFF9D7092896358355D5AC00EA73 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0dmQoBPz_nXCSiWNYNV1awA6nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AAD4/0DD8F79E51BA11EE84EF9C5FC4F9AE02/z0dmQoBPz_nXCSiWNYNV1awA6nM.mft Manifest number: 7F Signing time: Sun 19 May 2024 07:11:31 +0000 Manifest this update: Sun 19 May 2024 07:11:31 +0000 Manifest next update: Sun 26 May 2024 07:11:31 +0000 Files and hashes: 1: z0dmQoBPz_nXCSiWNYNV1awA6nM.crl (hash: Jo20sn2d5oVV2eIATCjr/hHeXTG6GpmRSQVBHGny2cw=) 2: 49467E2251BB11EEA3C7487DC4F9AE02.roa (hash: I/KgRawnSXsUvfybGQFY+fhUgBwia8VB/+hkrVX07Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AAD4/0DD8F79E51BA11EE84EF9C5FC4F9AE02/z0dmQoBPz_nXCSiWNYNV1awA6nM.crl rsync://rpki.apnic.net/member_repository/A917AAD4/0DD8F79E51BA11EE84EF9C5FC4F9AE02/z0dmQoBPz_nXCSiWNYNV1awA6nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0dmQoBPz_nXCSiWNYNV1awA6nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AAD4/serialNumber=CF476642804FCFF9D7092896358355D5AC00EA73 Validity Not Before: May 19 07:11:31 2024 GMT Not After : May 26 07:11:31 2024 GMT Subject: CN=6649a623-33bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1d:ef:55:30:ef:85:b6:aa:7d:25:6c:b3:cf: f5:b8:2b:c7:d6:3c:8b:e9:84:1c:68:82:89:81:25: f4:a1:62:7f:10:bc:8c:7c:5c:62:10:8a:e7:3c:bd: 4c:97:8d:0f:89:6e:66:9e:e7:f0:53:b8:39:69:f5: d7:21:5e:ac:a5:03:34:c2:fe:c7:98:bf:59:fe:19: d3:48:1a:ee:99:91:01:11:08:27:d0:d4:43:d0:23: e1:5f:04:c7:f1:2f:39:b3:91:96:27:a8:ce:ba:84: fc:6e:a3:d3:ee:2c:f7:59:6b:9b:da:3e:41:bb:89: f4:d2:8a:ad:93:48:7d:32:63:a1:38:be:00:4c:1e: d4:81:81:bc:dd:a9:15:7e:65:79:cc:9e:b1:ab:63: 9a:0d:59:ad:09:b2:b3:b9:0a:3d:f5:53:7a:db:c8: 83:9a:7b:1f:5b:16:7e:17:a5:56:e8:80:01:fa:00: e6:83:75:00:e4:f1:0d:d7:91:1a:4d:6f:32:71:6b: 62:bf:5f:6b:b3:90:9b:4c:bb:ab:8b:f0:11:fc:83: 88:b8:8f:7f:6c:de:65:01:44:a2:ea:b8:31:58:f1: 14:67:ae:96:a2:b2:e8:fd:f1:34:65:70:96:3d:4d: 7a:ca:02:3f:21:09:1a:fa:87:c1:c5:78:1a:32:9c: f9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F5:FB:F8:14:E6:BE:A8:38:6E:C4:34:32:E8:97:C7:3E:34:5D:56 X509v3 Authority Key Identifier: keyid:CF:47:66:42:80:4F:CF:F9:D7:09:28:96:35:83:55:D5:AC:00:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AAD4/0DD8F79E51BA11EE84EF9C5FC4F9AE02/z0dmQoBPz_nXCSiWNYNV1awA6nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z0dmQoBPz_nXCSiWNYNV1awA6nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AAD4/0DD8F79E51BA11EE84EF9C5FC4F9AE02/z0dmQoBPz_nXCSiWNYNV1awA6nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:19:14:1b:8e:6b:29:65:44:24:75:b5:8e:a5:2c:a8:10:74: 01:29:3a:c0:1b:e5:bc:74:d9:50:a3:b4:bb:3e:2c:d8:c6:12: 8c:b7:20:b5:47:b7:89:72:78:12:d0:aa:8a:d0:21:fe:f3:22: 0b:a7:45:92:83:2f:3f:6e:89:0a:b7:c2:8c:50:9a:2b:62:0b: 95:ce:c3:62:08:9c:59:ba:de:08:65:cc:7b:d5:b2:20:d6:75: 50:15:c4:7f:c7:94:12:e1:48:15:c4:ce:0d:ca:cb:3e:eb:fd: 59:f7:f7:e7:46:0a:07:84:bc:75:b8:f9:ce:d4:c5:24:42:40: c1:0e:06:ba:15:69:8e:cc:60:d7:21:3e:f5:ea:d8:0f:e3:98: 19:e4:d3:64:8c:6f:8c:c8:b7:8f:7b:46:f1:28:c0:4d:cc:5e: 95:91:cb:b8:94:51:5b:25:2c:61:65:3a:a7:20:85:91:62:af: 00:94:60:21:d8:9a:9c:fe:82:5d:fb:58:95:e6:99:60:54:14: a7:a6:b6:c1:ec:40:28:cc:39:5e:5c:8a:dd:dc:ae:b1:51:4c: 17:14:3f:65:68:57:26:70:da:4f:f8:0b:47:3d:29:3c:94:65: 5b:54:af:c0:5a:e2:78:22:94:f3:fb:15:42:ea:31:65:93:b2: 61:ae:9c:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FBRDQxMTAvBgNVBAUTKENGNDc2NjQyODA0RkNGRjlENzA5Mjg5NjM1ODM1NUQ1 QUMwMEVBNzMwHhcNMjQwNTE5MDcxMTMxWhcNMjQwNTI2MDcxMTMxWjAYMRYwFAYD VQQDEw02NjQ5YTYyMy0zM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtR3vVTDvhbaqfSVss8/1uCvH1jyL6YQcaIKJgSX0oWJ/ELyMfFxiEIrnPL1M l40PiW5mnufwU7g5afXXIV6spQM0wv7HmL9Z/hnTSBrumZEBEQgn0NRD0CPhXwTH 8S85s5GWJ6jOuoT8bqPT7iz3WWub2j5Bu4n00oqtk0h9MmOhOL4ATB7UgYG83akV fmV5zJ6xq2OaDVmtCbKzuQo99VN628iDmnsfWxZ+F6VW6IAB+gDmg3UA5PEN15Ea TW8ycWtiv19rs5CbTLuri/AR/IOIuI9/bN5lAUSi6rgxWPEUZ66WorLo/fE0ZXCW PU16ygI/IQka+ofBxXgaMpz5VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJb1+/gU 5r6oOG7ENDLol8c+NF1WMB8GA1UdIwQYMBaAFM9HZkKAT8/51wkoljWDVdWsAOpz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUFENC8wREQ4Rjc5RTUx QkExMUVFODRFRjlDNUZDNEY5QUUwMi96MGRtUW9CUHpfblhDU2lXTllOVjFhd0E2 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3owZG1Rb0JQel9uWENTaVdOWU5WMWF3QTZuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUFENC8wREQ4Rjc5RTUxQkExMUVFODRFRjlDNUZDNEY5QUUwMi96MGRtUW9CUHpf blhDU2lXTllOVjFhd0E2bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByGRQbjmspZUQkdbWOpSyoEHQBKTrAG+W8dNlQo7S7PizYxhKMtyC1 R7eJcngS0KqK0CH+8yILp0WSgy8/bokKt8KMUJorYguVzsNiCJxZut4IZcx71bIg 1nVQFcR/x5QS4UgVxM4Nyss+6/1Z9/fnRgoHhLx1uPnO1MUkQkDBDga6FWmOzGDX IT716tgP45gZ5NNkjG+MyLePe0bxKMBNzF6Vkcu4lFFbJSxhZTqnIIWRYq8AlGAh 2Jqc/oJd+1iV5plgVBSnprbB7EAozDleXIrd3K6xUUwXFD9laFcmcNpP+AtHPSk8 lGVbVK/AWuJ4IpTz+xVC6jFlk7Jhrpxx -----END CERTIFICATE-----Generated at Sun May 19 07:40:40 2024 by rpki-client on console-fra.rpki-client.org