$ rpki-client -vvf rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft File: zXuGlWvtndYhW-SF8McVuSDJp3A.mft (raw, json) Hash identifier: iAtCILZnOmkqi0SQevILiuFY9pVZY8SNnFrifogMqtM= Subject key identifier: 02:4E:C4:C2:DA:BF:D3:B4:0E:B0:33:32:F1:48:D3:6F:AD:3C:BD:16 Authority key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 Certificate issuer: /CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft Manifest number: 2A Signing time: Sun 19 May 2024 08:28:16 +0000 Manifest this update: Sun 19 May 2024 08:28:15 +0000 Manifest next update: Sun 26 May 2024 08:28:15 +0000 Files and hashes: 1: zXuGlWvtndYhW-SF8McVuSDJp3A.crl (hash: EzN+L/MShiKQTlE6aob/xqkwkLWCGN5qnSqZpmk/Q+k=) 2: 60DF983AD54F11EE93ED1E3BC4F9AE02.roa (hash: qer/jvQLuDWQeiqhtv22JqWSNVi6TRuPW71Y4gEp5sM=) 3: 601B8CF6D54F11EE93ED1E3BC4F9AE02.roa (hash: KWFbStFkFf6GQmPcZe90F6cDYULKqJF0gEQglndvgSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Validity Not Before: May 19 08:28:15 2024 GMT Not After : May 26 08:28:15 2024 GMT Subject: CN=6649b81f-187b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:81:c6:bc:05:82:b6:3a:9b:51:d4:00:3f: 12:9a:c9:da:bf:97:8c:87:03:3b:96:92:5e:07:0a: c8:65:80:20:aa:bf:f4:a7:68:31:53:31:5d:f3:34: b2:65:98:2f:44:54:21:cf:7f:2a:1f:74:e0:73:4d: 13:88:d0:61:90:f7:31:10:62:dd:bd:70:af:de:ae: 97:21:84:9b:f5:16:5d:0e:c5:63:d5:af:26:6b:c9: 04:de:45:07:3b:41:62:72:8a:ec:25:3c:ef:77:41: 52:ff:53:ce:29:55:df:eb:b2:ab:96:35:f2:bc:f8: 3f:d7:b7:8b:9f:77:4b:5e:2b:73:c0:df:77:bd:f9: 8e:ef:c6:bf:46:43:e7:e6:27:6a:f6:6b:39:7b:10: df:40:4d:ec:50:04:9c:05:f9:7e:c8:1f:0c:04:0e: 53:b4:33:74:49:52:51:23:21:3c:4f:f1:7b:52:3f: 0e:33:a8:cf:5b:dc:ac:4d:9d:1d:5f:df:47:ef:ce: 67:e5:9c:cf:f2:f0:49:d1:d5:ec:a3:d5:1d:a0:e2: 2e:fd:af:c8:85:d5:b3:cd:93:5e:7f:70:c4:78:67: ba:54:bc:62:d8:57:6f:89:38:4c:0f:bc:3d:6d:a6: 74:4e:9e:17:ac:d4:72:d5:cf:4d:27:df:4a:b4:44: 28:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4E:C4:C2:DA:BF:D3:B4:0E:B0:33:32:F1:48:D3:6F:AD:3C:BD:16 X509v3 Authority Key Identifier: keyid:CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:14:5a:de:86:23:1f:39:c1:dd:3c:13:5c:d7:b7:68:bf:bc: 88:5c:8c:d8:db:fc:5a:1d:5e:d9:1a:b9:03:41:4e:fc:c1:76: ba:49:40:36:cd:56:d1:e8:08:f3:e0:5c:ce:38:1f:99:dd:17: b5:97:40:62:93:aa:dc:c9:3c:2f:56:bd:cc:11:f2:76:52:f0: c7:ef:c8:98:33:f9:1b:a6:1d:1d:bd:96:05:da:bf:7f:ef:f4: 23:ff:32:f5:04:90:28:9d:a9:c1:cf:26:87:61:80:68:fa:93: 31:a7:cb:56:cf:ad:0d:4b:24:64:44:77:c9:84:18:83:4d:58: c5:1b:b0:55:22:a7:46:ba:ab:13:12:4c:a0:9b:28:e3:0c:ac: 66:e2:8c:7f:79:ef:6a:6f:6a:4d:59:2a:03:67:9a:91:67:85: 5d:4b:13:55:e9:61:52:e7:11:00:47:ac:01:3f:98:ff:86:04: 8a:b6:c3:9e:9d:1a:88:b0:70:66:fe:69:76:7b:c9:b2:82:08: b3:d7:d4:12:53:23:84:00:ce:9d:4b:1c:f5:55:df:a9:03:55: cd:72:39:c4:56:ce:cb:b4:8e:85:14:13:38:2e:50:71:56:6d: f0:1f:6e:98:84:64:0d:1d:96:13:4f:62:37:73:68:2f:29:21: 4b:5b:3f:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QjYxRTExMC8GA1UEBRMoQ0Q3Qjg2OTU2QkVEOURENjIxNUJFNDg1RjBDNzE1Qjky MEM5QTc3MDAeFw0yNDA1MTkwODI4MTVaFw0yNDA1MjYwODI4MTVaMBgxFjAUBgNV BAMTDTY2NDliODFmLTE4N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKT4HGvAWCtjqbUdQAPxKaydq/l4yHAzuWkl4HCshlgCCqv/SnaDFTMV3zNLJl mC9EVCHPfyofdOBzTROI0GGQ9zEQYt29cK/erpchhJv1Fl0OxWPVryZryQTeRQc7 QWJyiuwlPO93QVL/U84pVd/rsquWNfK8+D/Xt4ufd0teK3PA33e9+Y7vxr9GQ+fm J2r2azl7EN9ATexQBJwF+X7IHwwEDlO0M3RJUlEjITxP8XtSPw4zqM9b3KxNnR1f 30fvzmflnM/y8EnR1eyj1R2g4i79r8iF1bPNk15/cMR4Z7pUvGLYV2+JOEwPvD1t pnROnhes1HLVz00n30q0RChfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAk7Ewtq/ 07QOsDMy8UjTb608vRYwHwYDVR0jBBgwFoAUzXuGlWvtndYhW+SF8McVuSDJp3Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCNjFFLzgwN0Y5MjU0RDU0 RTExRUU4Q0M5NjUzMEM0RjlBRTAyL3pYdUdsV3Z0bmRZaFctU0Y4TWNWdVNESnAz QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelh1R2xXdnRuZFloVy1TRjhNY1Z1U0RKcDNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThC NjFFLzgwN0Y5MjU0RDU0RTExRUU4Q0M5NjUzMEM0RjlBRTAyL3pYdUdsV3Z0bmRZ aFctU0Y4TWNWdVNESnAzQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEsUWt6GIx85wd08E1zXt2i/vIhcjNjb/FodXtkauQNBTvzBdrpJQDbN VtHoCPPgXM44H5ndF7WXQGKTqtzJPC9WvcwR8nZS8MfvyJgz+RumHR29lgXav3/v 9CP/MvUEkCidqcHPJodhgGj6kzGny1bPrQ1LJGREd8mEGINNWMUbsFUip0a6qxMS TKCbKOMMrGbijH9572pvak1ZKgNnmpFnhV1LE1XpYVLnEQBHrAE/mP+GBIq2w56d GoiwcGb+aXZ7ybKCCLPX1BJTI4QAzp1LHPVV36kDVc1yOcRWzsu0joUUEzguUHFW bfAfbpiEZA0dlhNPYjdzaC8pIUtbP+8= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org