$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft File: ZuoPg73TYyv_GUALOhum_t_8VYc.mft (raw, json) Hash identifier: rM8i8SXGh6jijaXWmSVzNiEg9SJDYHUB5glLmm0zISM= Subject key identifier: 66:51:F8:88:56:D8:A5:5F:C4:1D:72:25:31:62:5C:7E:AE:F8:06:98 Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 33E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft Manifest number: 33D8 Signing time: Fri 31 May 2024 15:32:16 +0000 Manifest this update: Fri 31 May 2024 15:32:15 +0000 Manifest next update: Fri 07 Jun 2024 15:32:15 +0000 Files and hashes: 1: ZuoPg73TYyv_GUALOhum_t_8VYc.crl (hash: adzoN/bx+19Dpg73hJClzWfRnuemNJ6vY8P64b/OpsA=) 2: 1190361AAF1B11E7B89F3883C4F9AE02.roa (hash: 2r/WkcrEUZXWVN/lqD4AS0KrozHazrd6MKeH3nsay0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13283 (0x33e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Validity Not Before: May 31 15:32:15 2024 GMT Not After : Jun 7 15:32:15 2024 GMT Subject: CN=6659ed7f-005e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0e:82:ea:cf:ed:37:8d:93:fd:4c:2d:03:d4: 58:e2:e4:a9:72:90:a4:71:e2:b1:8b:79:80:cb:e9: 74:70:b7:5a:51:66:b8:14:89:5e:5c:42:40:e9:cd: f3:78:95:8b:32:30:75:38:9d:e0:03:ed:ed:d5:6b: 88:59:ad:63:87:a4:ad:79:1c:e5:3f:5d:ba:1c:4e: 30:44:f9:69:a2:e8:3e:41:15:29:e7:65:21:fa:19: af:6b:98:29:e1:e2:db:cb:0c:25:60:34:6f:0e:52: 2e:ce:92:99:0f:12:28:0a:22:a7:d5:ab:59:9c:e6: 4b:5c:c2:c6:5b:83:88:fb:fa:ce:5f:07:bd:eb:13: 5e:e3:6e:09:55:30:f6:7e:77:d2:46:b4:12:ba:ee: 1e:7f:bd:f8:9e:6a:0b:7b:6c:a1:46:57:d7:7c:7a: 9f:c5:22:77:e5:b1:ed:cf:38:07:a1:34:1d:ee:55: 68:49:1f:18:68:46:ca:dd:9f:a4:64:9b:00:9a:c0: 7c:9d:68:81:73:b4:35:0c:cc:44:50:dc:2b:88:6d: 88:45:8b:bd:51:67:33:8a:00:e3:c0:58:a9:db:02: 05:54:76:1f:1f:9a:3b:cc:d5:a9:1d:90:88:6e:99: a9:30:16:b9:77:88:1b:75:e9:c1:47:df:89:7a:39: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:51:F8:88:56:D8:A5:5F:C4:1D:72:25:31:62:5C:7E:AE:F8:06:98 X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:0f:95:0e:19:6c:e0:41:1a:73:4d:15:08:76:d4:7b:11:1f: af:7e:b1:df:31:51:b6:1b:ff:25:25:a3:1e:6a:c4:1e:1f:e5: 8d:4b:ed:9b:90:9e:ab:32:84:3a:82:3e:51:46:2e:b3:6c:fe: 11:de:7f:b0:f6:58:48:02:2a:15:9c:27:ce:6c:17:c4:9b:d3: e5:32:6e:b3:53:fa:58:09:e3:51:08:fc:dc:f3:0b:55:9e:38: 13:bb:24:f7:e2:b6:05:4d:e7:4b:e2:2d:f8:a0:9d:8e:77:bb: 1a:9b:24:66:5d:6d:79:82:f9:92:b2:d6:80:d4:ae:23:f1:eb: 89:89:11:70:04:71:06:9d:dd:08:43:16:52:9d:1d:0e:3e:d1: be:27:6a:a4:c9:39:3a:54:27:bb:0d:20:5b:c6:5b:97:73:17: 1c:7b:5a:22:8b:a7:1c:8b:f8:99:78:68:ec:f0:2d:3f:44:f8: 27:d6:2f:5a:64:b2:be:27:54:4b:06:1f:7c:d5:5c:e0:a4:7e: 43:bb:9e:d5:b9:18:80:3a:ec:30:cf:c7:7f:89:31:d7:12:2d: 1e:23:e2:7e:fa:30:e1:75:98:78:e4:f5:18:1b:f6:d6:6f:34: a4:9e:a8:59:3e:4a:c2:6a:d9:3d:28:1c:14:80:45:a3:7b:f4: b8:68:14:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjQwNTMxMTUzMjE1WhcNMjQwNjA3MTUzMjE1WjAYMRYwFAYD VQQDEw02NjU5ZWQ3Zi0wMDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyA6C6s/tN42T/UwtA9RY4uSpcpCkceKxi3mAy+l0cLdaUWa4FIleXEJA6c3z eJWLMjB1OJ3gA+3t1WuIWa1jh6SteRzlP126HE4wRPlpoug+QRUp52Uh+hmva5gp 4eLbywwlYDRvDlIuzpKZDxIoCiKn1atZnOZLXMLGW4OI+/rOXwe96xNe424JVTD2 fnfSRrQSuu4ef734nmoLe2yhRlfXfHqfxSJ35bHtzzgHoTQd7lVoSR8YaEbK3Z+k ZJsAmsB8nWiBc7Q1DMxEUNwriG2IRYu9UWczigDjwFip2wIFVHYfH5o7zNWpHZCI bpmpMBa5d4gbdenBR9+JejnpSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZR+IhW 2KVfxB1yJTFiXH6u+AaYMB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0I2My9FMUIwNTRGQzFEQTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5 dl9HVUFMT2h1bV90XzhWWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9D5UOGWzgQRpzTRUIdtR7ER+vfrHfMVG2G/8lJaMeasQeH+WNS+2b kJ6rMoQ6gj5RRi6zbP4R3n+w9lhIAioVnCfObBfEm9PlMm6zU/pYCeNRCPzc8wtV njgTuyT34rYFTedL4i34oJ2Od7samyRmXW15gvmSstaA1K4j8euJiRFwBHEGnd0I QxZSnR0OPtG+J2qkyTk6VCe7DSBbxluXcxcce1oii6cci/iZeGjs8C0/RPgn1i9a ZLK+J1RLBh981VzgpH5Du57VuRiAOuwwz8d/iTHXEi0eI+J++jDhdZh45PUYG/bW bzSknqhZPkrCatk9KBwUgEWje/S4aBSe -----END CERTIFICATE-----Generated at Fri May 31 17:44:25 2024 by rpki-client on console-fra.rpki-client.org