$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft File: zfT3_b4nSk88Ji92EXceUi2uRfI.mft (raw, json) Hash identifier: dSaBjG+syCP0UOQ8fhWtuoYLgum6Su9Fl5bbc1MKHcE= Subject key identifier: 45:9C:6F:64:04:E6:C5:CA:47:3B:FE:8A:6E:1E:31:0F:7C:2F:A5:CC Authority key identifier: CD:F4:F7:FD:BE:27:4A:4F:3C:26:2F:76:11:77:1E:52:2D:AE:45:F2 Certificate issuer: /CN=A91A4026/serialNumber=CDF4F7FDBE274A4F3C262F7611771E522DAE45F2 Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft Manifest number: 0B71 Signing time: Sat 18 May 2024 19:31:08 +0000 Manifest this update: Sat 18 May 2024 19:31:07 +0000 Manifest next update: Sat 25 May 2024 19:31:07 +0000 Files and hashes: 1: zfT3_b4nSk88Ji92EXceUi2uRfI.crl (hash: UTZOAmQ+iE2nzrNTH2HAMvspNgxt+bmisO2px40KiQQ=) 2: 76DB2480090511EA8FFC6812C4F9AE02.roa (hash: 3WaMXjV5r4nSW1yYwxDFwZ3faXnEdVurZ589z5o1ing=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.crl rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4026/serialNumber=CDF4F7FDBE274A4F3C262F7611771E522DAE45F2 Validity Not Before: May 18 19:31:07 2024 GMT Not After : May 25 19:31:07 2024 GMT Subject: CN=664901fc-2a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:cf:90:66:c9:22:21:50:45:d3:dd:be:f6:6f: f2:6c:2a:32:3a:00:ec:a7:66:1e:d5:20:a9:d1:10: da:3a:29:0f:5a:2f:5f:53:37:14:54:98:17:df:0b: 98:31:76:5c:8e:5d:8d:08:d9:f3:36:e9:d6:4a:98: 79:17:d6:4b:8a:91:45:30:9d:d1:20:66:46:1a:50: 77:da:dd:8e:7b:11:17:ac:4e:df:d5:09:f7:8f:4f: c5:5c:da:04:c5:f6:21:c3:81:dd:cc:7d:f5:0f:63: c9:d5:bc:08:ce:b1:5d:13:7b:9e:e2:8d:6e:3c:b4: 70:a0:b8:68:c2:e3:f9:cb:b6:f6:fd:1a:1f:f0:29: cf:1a:62:7c:d6:51:b3:7f:71:aa:bb:c1:59:51:28: 4b:87:fc:08:45:c3:ce:af:fe:02:22:d7:b4:db:ba: b2:cb:6c:10:f5:bd:f1:81:ed:75:1a:42:9e:a2:42: d9:9c:93:ac:e7:ab:65:ec:cc:32:45:53:b8:61:8b: 7d:3d:68:d7:69:0b:b7:b8:f2:2c:df:1e:96:ab:48: 01:21:36:ce:52:f9:b7:56:46:5b:0d:69:c3:fa:c6: 5a:14:d2:1b:52:ad:85:38:b1:94:0b:51:71:88:10: 3b:12:e8:bc:81:42:a6:58:56:f1:2e:e2:59:cb:9f: a9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9C:6F:64:04:E6:C5:CA:47:3B:FE:8A:6E:1E:31:0F:7C:2F:A5:CC X509v3 Authority Key Identifier: keyid:CD:F4:F7:FD:BE:27:4A:4F:3C:26:2F:76:11:77:1E:52:2D:AE:45:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f7:9f:1b:2c:a0:9c:f4:a8:f8:d7:d5:f7:01:7f:25:90:57: 4b:8e:31:0b:e2:a8:59:52:6e:b2:60:26:af:0c:b7:3d:12:36: 71:b6:4f:cb:71:66:e0:2d:e4:36:bc:fd:a5:38:f7:0d:63:55: bf:2f:e1:49:2d:a8:18:37:d0:7a:02:b5:af:78:0e:c6:b6:13: 14:f4:68:d5:35:0f:11:33:91:3e:ee:12:79:5b:13:27:f2:9d: 41:7d:aa:55:86:c0:88:6a:79:0b:2c:cf:c4:d7:4a:0f:f9:94: 7a:83:e6:ff:d1:89:0d:17:dd:31:7d:54:00:64:bc:96:48:9a: 3f:04:8b:5a:0d:1b:4c:28:73:dd:a6:b0:d0:6c:59:34:f1:88: 4a:5d:99:c8:b4:c9:7b:f7:78:96:52:8e:ce:a1:61:14:75:d2: 35:a5:a5:eb:d0:f2:f8:85:56:48:07:29:17:de:c4:08:fb:f3: 58:a1:52:37:f8:a4:4c:53:61:e4:6e:27:6f:2f:a5:ee:16:1e: 2f:b3:02:19:cd:73:10:1e:94:04:44:45:97:ea:08:7a:40:f4: e5:fa:de:46:72:59:da:a2:73:79:3d:9e:12:a0:aa:34:31:1f: fc:37:98:57:93:b7:04:1c:32:0f:f8:6f:4d:43:a3:fe:0a:49: ee:f3:a3:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQwMjYxMTAvBgNVBAUTKENERjRGN0ZEQkUyNzRBNEYzQzI2MkY3NjExNzcxRTUy MkRBRTQ1RjIwHhcNMjQwNTE4MTkzMTA3WhcNMjQwNTI1MTkzMTA3WjAYMRYwFAYD VQQDEw02NjQ5MDFmYy0yYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8+QZskiIVBF092+9m/ybCoyOgDsp2Ye1SCp0RDaOikPWi9fUzcUVJgX3wuY MXZcjl2NCNnzNunWSph5F9ZLipFFMJ3RIGZGGlB32t2OexEXrE7f1Qn3j0/FXNoE xfYhw4HdzH31D2PJ1bwIzrFdE3ue4o1uPLRwoLhowuP5y7b2/Rof8CnPGmJ81lGz f3Gqu8FZUShLh/wIRcPOr/4CIte027qyy2wQ9b3xge11GkKeokLZnJOs56tl7Mwy RVO4YYt9PWjXaQu3uPIs3x6Wq0gBITbOUvm3VkZbDWnD+sZaFNIbUq2FOLGUC1Fx iBA7Eui8gUKmWFbxLuJZy5+pWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWcb2QE 5sXKRzv+im4eMQ98L6XMMB8GA1UdIwQYMBaAFM309/2+J0pPPCYvdhF3HlItrkXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDAyNi9CQzc0QzEwQTA5 MDQxMUVBQjIwRDU5MTFDNEY5QUUwMi96ZlQzX2I0blNrODhKaTkyRVhjZVVpMnVS ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmVDNfYjRuU2s4OEppOTJFWGNlVWkydVJmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDAyNi9CQzc0QzEwQTA5MDQxMUVBQjIwRDU5MTFDNEY5QUUwMi96ZlQzX2I0blNr ODhKaTkyRVhjZVVpMnVSZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8958bLKCc9Kj419X3AX8lkFdLjjEL4qhZUm6yYCavDLc9EjZxtk/L cWbgLeQ2vP2lOPcNY1W/L+FJLagYN9B6ArWveA7GthMU9GjVNQ8RM5E+7hJ5WxMn 8p1BfapVhsCIankLLM/E10oP+ZR6g+b/0YkNF90xfVQAZLyWSJo/BItaDRtMKHPd prDQbFk08YhKXZnItMl793iWUo7OoWEUddI1paXr0PL4hVZIBykX3sQI+/NYoVI3 +KRMU2HkbidvL6XuFh4vswIZzXMQHpQEREWX6gh6QPTl+t5GclnaonN5PZ4SoKo0 MR/8N5hXk7cEHDIP+G9NQ6P+Cknu86Oa -----END CERTIFICATE-----Generated at Sat May 18 19:56:06 2024 by rpki-client on console-fra.rpki-client.org