$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: 8t+WpMayFK4ZssF5qr2C7YLbHLYDbQ2ujyNp/0AfoTM= Subject key identifier: 4D:55:0A:73:1B:8A:44:DE:11:8D:B8:22:13:8A:A7:67:A4:24:43:56 Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: 48 Signing time: Sun 19 May 2024 08:01:29 +0000 Manifest this update: Sun 19 May 2024 08:01:29 +0000 Manifest next update: Sun 26 May 2024 08:01:29 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: TdPEaf4gq2DC7vJE+B8N3IXfVBmRb9iakKGShLvcUag=) 2: 82DEEC82AB9D11EEA419807BC4F9AE02.roa (hash: +WjoE8JHyUth/K1Fl5SeIByn5vFCyNQXhlWhVEjv1I0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: May 19 08:01:29 2024 GMT Not After : May 26 08:01:29 2024 GMT Subject: CN=6649b1d9-da82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:24:4e:05:23:22:22:b2:cb:10:02:b3:0c:a2: 9d:23:7f:40:0f:4d:9c:f3:90:e0:0b:70:68:6c:ea: 11:c1:18:a0:1a:b7:e6:31:42:0a:74:32:69:63:79: f2:34:03:90:25:84:fb:bd:af:09:a1:02:4c:ef:83: 72:51:f7:82:c4:d0:43:45:c1:fd:d3:b4:c8:81:b3: 41:4d:f8:6a:39:ff:bc:35:8f:e5:3e:8c:fc:8e:20: 6b:f0:2e:97:99:8a:a6:52:fc:a6:36:db:01:12:7d: 5b:d9:e6:cb:d6:3f:5b:2e:de:76:98:b0:fd:2a:f6: 1c:aa:39:e9:e3:95:79:aa:a6:46:dd:bd:33:d7:c7: 39:cc:16:82:8a:01:7c:6f:fa:89:58:e8:d0:43:7f: e2:a8:4f:89:bd:0f:0a:d4:73:44:c0:e3:ab:54:b0: f6:eb:28:5d:81:01:bf:73:c9:13:e4:a0:6c:30:d0: 42:4e:0b:ac:dc:df:41:7e:b0:80:ed:41:1a:14:c6: 1b:51:62:14:4e:dc:50:f7:62:07:8d:dd:de:8f:63: f7:40:0f:81:84:00:e1:c0:e5:d6:f6:08:2b:ec:38: 91:89:b6:99:3d:48:97:73:0b:f8:ca:8f:59:dc:a4: a3:1c:fa:20:10:d4:73:25:e6:3b:a8:08:08:60:96: a6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:55:0A:73:1B:8A:44:DE:11:8D:B8:22:13:8A:A7:67:A4:24:43:56 X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:15:f1:c8:71:e8:83:9f:7d:0d:b4:86:89:1e:df:c3:8d:bc: 5e:86:96:06:84:4c:48:99:06:7b:9d:ba:02:6e:de:63:c6:50: b5:73:6d:8d:83:78:8c:fd:d1:4e:80:93:dd:26:46:12:c9:75: ee:95:0a:f4:44:20:67:69:d2:41:a4:b9:17:25:f3:c2:eb:c0: ff:a4:3d:e5:bf:8b:64:21:4f:d0:cf:6f:65:48:9e:d4:35:ca: 13:e4:a0:4c:6d:ca:80:8c:53:28:c6:3f:d6:30:e9:bd:30:98: e0:4b:c7:79:36:10:0b:4f:c1:08:3f:22:55:64:81:ac:ec:d8: a6:5d:06:23:a2:a4:45:58:57:a6:98:d5:bc:3a:75:c1:ad:50: d6:f1:4e:cb:b0:be:84:34:d4:72:b9:9a:67:ca:f6:7f:4c:16: 25:3e:5b:38:37:7e:97:74:66:8f:f3:29:4f:eb:dc:3e:1f:82: 9e:4e:d2:08:83:e5:b9:60:b8:c7:10:54:06:b1:a7:52:8a:23: d4:70:82:be:59:47:fd:8f:e5:17:84:7d:f8:7e:fb:91:eb:eb: 08:45:a3:44:12:28:ff:90:d9:29:40:27:60:fc:e8:69:ae:a4: ce:6c:a5:9a:fa:4c:71:4d:04:d9:33:2a:1b:01:60:3e:72:e3: ff:03:e3:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QUNBODExMC8GA1UEBRMoQ0U2MzcwOTk3REJEMTNEMjBFNUVDNjE2NUI1QTlFRTNB MjgyQTZCMDAeFw0yNDA1MTkwODAxMjlaFw0yNDA1MjYwODAxMjlaMBgxFjAUBgNV BAMTDTY2NDliMWQ5LWRhODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUJE4FIyIisssQArMMop0jf0APTZzzkOALcGhs6hHBGKAat+YxQgp0MmljefI0 A5AlhPu9rwmhAkzvg3JR94LE0ENFwf3TtMiBs0FN+Go5/7w1j+U+jPyOIGvwLpeZ iqZS/KY22wESfVvZ5svWP1su3naYsP0q9hyqOenjlXmqpkbdvTPXxznMFoKKAXxv +olY6NBDf+KoT4m9DwrUc0TA46tUsPbrKF2BAb9zyRPkoGww0EJOC6zc30F+sIDt QRoUxhtRYhRO3FD3YgeN3d6PY/dAD4GEAOHA5db2CCvsOJGJtpk9SJdzC/jKj1nc pKMc+iAQ1HMl5juoCAhglqY9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTVUKcxuK RN4RjbgiE4qnZ6QkQ1YwHwYDVR0jBBgwFoAUzmNwmX29E9IOXsYWW1qe46KCprAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBQ0E4L0Y5NzE0QUU2QUFG QTExRUVBMjIxRTcyRUM0RjlBRTAyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3By QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvem1Od21YMjlFOUlPWHNZV1cxcWU0NktDcHJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdB Q0E4L0Y5NzE0QUU2QUFGQTExRUVBMjIxRTcyRUM0RjlBRTAyL3ptTndtWDI5RTlJ T1hzWVdXMXFlNDZLQ3ByQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIMV8chx6IOffQ20hoke38ONvF6GlgaETEiZBnudugJu3mPGULVzbY2D eIz90U6Ak90mRhLJde6VCvREIGdp0kGkuRcl88LrwP+kPeW/i2QhT9DPb2VIntQ1 yhPkoExtyoCMUyjGP9Yw6b0wmOBLx3k2EAtPwQg/IlVkgazs2KZdBiOipEVYV6aY 1bw6dcGtUNbxTsuwvoQ01HK5mmfK9n9MFiU+Wzg3fpd0Zo/zKU/r3D4fgp5O0giD 5blguMcQVAaxp1KKI9Rwgr5ZR/2P5ReEffh++5Hr6whFo0QSKP+Q2SlAJ2D86Gmu pM5spZr6THFNBNkzKhsBYD5y4/8D468= -----END CERTIFICATE-----Generated at Sun May 19 08:26:43 2024 by rpki-client on console-fra.rpki-client.org