$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: oKdUmII54+zqqPGqTrcL6JAUvXt4hT/0TEIGUY4RCGE= Subject key identifier: 3C:CB:9B:33:C8:1C:A2:7A:65:BC:B8:53:A4:B6:39:B9:C8:EF:C8:96 Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 33C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 33C3 Signing time: Sat 18 May 2024 14:46:33 +0000 Manifest this update: Sat 18 May 2024 14:46:32 +0000 Manifest next update: Sat 25 May 2024 14:46:32 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: VQZEOOPDI/1y6J6hhPmpWMzUOibr7eS7PWYFjyJ/iRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13251 (0x33c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: May 18 14:46:32 2024 GMT Not After : May 25 14:46:32 2024 GMT Subject: CN=6648bf49-75c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3e:2e:e4:6c:d6:1c:c9:cb:e7:7e:e7:70:17: b3:70:1c:ef:bb:bd:43:a4:4d:14:01:96:0a:ad:c6: 9b:9f:93:c1:b3:52:9b:4b:0a:69:b7:94:33:98:05: ba:88:06:fa:99:52:af:c7:ac:16:e6:d3:dc:40:29: d5:9d:e0:c6:e2:8d:5b:f3:82:e0:96:f7:5c:82:78: 4b:f5:f2:24:4d:94:1e:01:f2:ad:90:cd:20:63:8e: b2:d1:0d:bc:70:94:62:f0:e9:fe:c5:0a:d0:37:1a: 77:0a:35:04:fe:2b:7f:f3:73:ba:bb:93:84:e4:77: 60:53:61:c6:98:ee:15:af:46:e8:86:60:2f:fd:96: ec:0d:8d:4b:7f:78:8f:bd:d2:30:1e:c5:90:7c:31: c4:e3:b3:f0:9e:9f:70:34:ee:39:65:9f:5f:26:cb: 93:09:91:1e:4f:99:ed:16:ca:1b:b1:6e:f6:ab:d2: 3d:0a:50:76:50:8a:5c:94:75:dd:55:80:58:42:99: 1c:39:20:cb:a9:a6:f4:7e:54:2c:b8:81:86:0a:20: cd:57:48:af:2a:d2:c0:fb:57:75:0b:82:1f:0b:a3: f6:3f:88:95:49:4c:b0:fe:5b:1a:70:6e:9b:7d:b5: 53:14:bb:b1:04:56:cf:97:5b:b5:20:21:8a:0f:14: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CB:9B:33:C8:1C:A2:7A:65:BC:B8:53:A4:B6:39:B9:C8:EF:C8:96 X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:80:0e:ce:5d:35:f2:88:e2:ca:8e:9e:6d:05:a2:1b:a5:8c: 2d:ab:a5:90:06:b0:c5:d9:93:80:1d:e6:f1:46:f2:74:f0:bc: db:5d:de:ec:ed:d8:2f:e5:28:79:a0:e8:04:88:ce:80:ad:7e: 26:29:fd:03:cc:ce:2e:0f:eb:f0:42:b3:22:65:ae:64:26:33: 76:69:ad:9e:0f:08:ec:4c:94:cb:3f:68:9e:9d:b6:ae:6f:73: f9:7b:a4:20:1d:88:e2:54:20:66:05:31:5e:62:44:e4:c1:18: 89:e3:33:d1:0c:ef:66:b8:1a:fd:7a:80:74:f0:a2:14:15:97: 1b:06:c8:c8:7a:be:ad:40:d3:c6:e9:79:ba:88:63:ee:5c:3b: 90:2d:cc:7b:07:dd:2c:3f:70:72:c3:06:ff:d8:06:68:d1:93: ef:d5:20:b9:2e:9c:c0:e8:01:d2:42:ea:44:ad:43:e0:2b:27: bc:8b:b1:dc:76:14:07:78:a6:b5:a4:94:e1:34:ae:9f:e5:83: 6c:6e:b7:7c:b1:14:b6:85:1b:0b:f1:b9:61:93:e2:19:df:34: 50:eb:33:c0:45:ad:4b:68:aa:32:47:a6:b7:55:0c:87:49:3f: e6:5d:2c:67:51:27:90:f3:69:c4:1d:81:f7:bc:6b:aa:c3:ee: 48:a0:36:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjQwNTE4MTQ0NjMyWhcNMjQwNTI1MTQ0NjMyWjAYMRYwFAYD VQQDEw02NjQ4YmY0OS03NWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j4u5GzWHMnL537ncBezcBzvu71DpE0UAZYKrcabn5PBs1KbSwppt5QzmAW6 iAb6mVKvx6wW5tPcQCnVneDG4o1b84LglvdcgnhL9fIkTZQeAfKtkM0gY46y0Q28 cJRi8On+xQrQNxp3CjUE/it/83O6u5OE5HdgU2HGmO4Vr0bohmAv/ZbsDY1Lf3iP vdIwHsWQfDHE47Pwnp9wNO45ZZ9fJsuTCZEeT5ntFsobsW72q9I9ClB2UIpclHXd VYBYQpkcOSDLqab0flQsuIGGCiDNV0ivKtLA+1d1C4IfC6P2P4iVSUyw/lsacG6b fbVTFLuxBFbPl1u1ICGKDxSCQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDzLmzPI HKJ6Zby4U6S2ObnI78iWMB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHgA7OXTXyiOLKjp5tBaIbpYwtq6WQBrDF2ZOAHebxRvJ08LzbXd7s 7dgv5Sh5oOgEiM6ArX4mKf0DzM4uD+vwQrMiZa5kJjN2aa2eDwjsTJTLP2ienbau b3P5e6QgHYjiVCBmBTFeYkTkwRiJ4zPRDO9muBr9eoB08KIUFZcbBsjIer6tQNPG 6Xm6iGPuXDuQLcx7B90sP3Bywwb/2AZo0ZPv1SC5LpzA6AHSQupErUPgKye8i7Hc dhQHeKa1pJThNK6f5YNsbrd8sRS2hRsL8blhk+IZ3zRQ6zPARa1LaKoyR6a3VQyH ST/mXSxnUSeQ82nEHYH3vGuqw+5IoDZf -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org