$ rpki-client -vvf rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft File: zPugs5k5MOsTt6JZJyqoEfh0SyM.mft (raw, json) Hash identifier: OoMNf5lhB6ddvAjJfNxxTctwMiLWBYAl6bO9OHSg420= Subject key identifier: 41:C2:43:03:66:28:6E:2E:4C:76:76:86:9B:4B:BC:B7:D5:B6:F5:5A Authority key identifier: CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 Certificate issuer: /CN=A9191D22/serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Certificate serial: 092F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft Manifest number: 0928 Signing time: Sat 18 May 2024 21:10:53 +0000 Manifest this update: Sat 18 May 2024 21:10:53 +0000 Manifest next update: Sat 25 May 2024 21:10:53 +0000 Files and hashes: 1: zPugs5k5MOsTt6JZJyqoEfh0SyM.crl (hash: o2RLYNJZRPtJSGbtHoqKslYP1KXl3LeEufCO1BDuG9Y=) 2: 047A427C7E2B11EAB1B5B00DC4F9AE02.roa (hash: naQ0f1fMl+5YOqPXWqkAJem3Mp8Csnn5VZpRI+ERtew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2351 (0x92f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191D22/serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Validity Not Before: May 18 21:10:53 2024 GMT Not After : May 25 21:10:53 2024 GMT Subject: CN=6649195d-ad3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:69:b8:c5:55:53:24:69:4d:07:5f:55:32:f0: 4f:c0:e7:b9:37:e8:70:d3:e1:71:ed:96:bf:65:2b: c8:1c:9d:f2:b6:0d:97:4f:64:2d:cc:ce:f3:3c:dd: 81:32:f8:72:23:41:23:6d:d9:3a:63:fc:c6:3d:6a: ac:41:36:74:ec:2c:0c:b3:8b:bd:b1:0a:d2:01:1b: 23:05:84:87:f3:49:31:fc:cf:c6:94:1c:25:c6:dd: 4f:85:ed:cf:5f:d5:64:c9:ee:9d:9f:b2:7a:ab:53: 57:c0:29:c0:55:40:27:d6:95:b4:72:c5:c5:e5:5a: 3a:f7:43:01:45:ee:1a:4d:8a:91:ed:fd:e8:51:86: 1d:dd:7a:7e:bc:2e:ee:36:ed:15:b4:64:79:c8:16: 34:01:4e:f1:7a:26:af:f7:a1:6b:4f:86:70:9c:31: 41:64:20:91:75:34:ce:ce:39:ca:05:98:5e:67:b6: 5b:32:be:c2:d4:be:3d:05:ec:2b:a1:63:5a:c5:44: ee:51:df:bf:e1:d2:aa:05:e8:90:dd:72:2a:83:b2: 18:b5:6f:49:56:bd:fc:f2:75:fd:14:84:ef:9b:dd: 2e:9f:c6:ba:c5:b7:46:26:92:d9:d2:b8:19:91:fe: 9f:b1:f6:01:88:1c:6d:82:d0:3d:e8:03:61:56:10: 0e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C2:43:03:66:28:6E:2E:4C:76:76:86:9B:4B:BC:B7:D5:B6:F5:5A X509v3 Authority Key Identifier: keyid:CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:e6:dd:2a:2b:dd:ad:af:c1:c8:16:9f:65:89:db:b8:82:1d: b6:62:1c:a5:45:6d:dd:62:39:14:48:58:59:50:e1:c5:53:02: 62:92:2f:fa:73:5f:bb:2c:dd:3b:9b:e3:b4:54:ab:b6:fc:2a: 15:25:d9:8a:46:3b:68:b7:a3:a5:f2:06:69:66:21:92:75:b6: be:04:52:30:52:46:d0:69:66:4e:bb:76:fc:d2:2d:81:64:20: aa:ee:a9:cc:23:b4:eb:85:63:63:3a:58:64:1f:4e:73:9a:57: 57:8a:c3:de:0d:ad:f3:e0:1f:46:bb:07:da:00:07:aa:b6:40: 49:b7:75:a6:22:98:17:7b:ec:b9:5f:0a:25:cf:c3:e2:ca:0e: 91:a8:76:17:dd:73:a8:86:6d:c8:83:99:7c:42:4f:a2:df:d7: 20:23:73:85:2f:95:2f:09:bd:c7:e3:7c:0e:53:1e:63:cb:02: a8:b1:b7:a0:a7:24:53:c1:7b:a6:26:3e:23:56:81:07:e3:5d: 29:ba:5f:d9:91:11:36:e4:e5:bf:93:ec:8c:c1:7d:8a:0d:0e: 1d:c6:3c:1f:78:11:79:6b:46:6a:9a:bf:21:ad:6d:9e:a5:df: 15:b8:a7:14:74:24:71:60:75:fa:80:8d:4c:d6:d9:88:31:5f: de:55:35:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFEMjIxMTAvBgNVBAUTKENDRkJBMEIzOTkzOTMwRUIxM0I3QTI1OTI3MkFBODEx Rjg3NDRCMjMwHhcNMjQwNTE4MjExMDUzWhcNMjQwNTI1MjExMDUzWjAYMRYwFAYD VQQDEw02NjQ5MTk1ZC1hZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWm4xVVTJGlNB19VMvBPwOe5N+hw0+Fx7Za/ZSvIHJ3ytg2XT2QtzM7zPN2B MvhyI0Ejbdk6Y/zGPWqsQTZ07CwMs4u9sQrSARsjBYSH80kx/M/GlBwlxt1Phe3P X9Vkye6dn7J6q1NXwCnAVUAn1pW0csXF5Vo690MBRe4aTYqR7f3oUYYd3Xp+vC7u Nu0VtGR5yBY0AU7xeiav96FrT4ZwnDFBZCCRdTTOzjnKBZheZ7ZbMr7C1L49Bewr oWNaxUTuUd+/4dKqBeiQ3XIqg7IYtW9JVr388nX9FITvm90un8a6xbdGJpLZ0rgZ kf6fsfYBiBxtgtA96ANhVhAOOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHCQwNm KG4uTHZ2hptLvLfVtvVaMB8GA1UdIwQYMBaAFMz7oLOZOTDrE7eiWScqqBH4dEsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUQyMi8yODQwMDFFQzdC MUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1Pc1R0NkpaSnlxb0VmaDBT eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQdWdzNWs1TU9zVHQ2SlpKeXFvRWZoMFN5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUQyMi8yODQwMDFFQzdCMUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1P c1R0NkpaSnlxb0VmaDBTeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC25t0qK92tr8HIFp9lidu4gh22YhylRW3dYjkUSFhZUOHFUwJiki/6 c1+7LN07m+O0VKu2/CoVJdmKRjtot6Ol8gZpZiGSdba+BFIwUkbQaWZOu3b80i2B ZCCq7qnMI7TrhWNjOlhkH05zmldXisPeDa3z4B9GuwfaAAeqtkBJt3WmIpgXe+y5 Xwolz8Piyg6RqHYX3XOohm3Ig5l8Qk+i39cgI3OFL5UvCb3H43wOUx5jywKosbeg pyRTwXumJj4jVoEH410pul/ZkRE25OW/k+yMwX2KDQ4dxjwfeBF5a0Zqmr8hrW2e pd8VuKcUdCRxYHX6gI1M1tmIMV/eVTWA -----END CERTIFICATE-----Generated at Sat May 18 22:27:56 2024 by rpki-client on console-ams.rpki-client.org