$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft File: cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft (raw, json) Hash identifier: bmn0E1NUoGtSQUvfc7LzP5hoe2yeEcjyQujoHv0lVNA= Subject key identifier: AE:84:04:CD:64:08:7B:84:27:34:AA:9B:1C:AD:B2:38:54:71:26:F6 Authority key identifier: 71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 Certificate issuer: /CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Certificate serial: 0844 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft Manifest number: 3A8D Signing time: Fri 31 May 2024 15:41:54 +0000 Manifest this update: Fri 31 May 2024 15:41:53 +0000 Manifest next update: Fri 07 Jun 2024 15:41:53 +0000 Files and hashes: 1: cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl (hash: IqucbNbSIcl1I5PEBDELdz8/oQ9MVrtIhGiafcEi4OM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:41:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2116 (0x844) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Validity Not Before: May 31 15:41:53 2024 GMT Not After : Jun 7 15:41:53 2024 GMT Subject: CN=6659efc1-e385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:74:de:1f:af:38:b3:e8:94:d8:a9:5d:d6: 94:3c:e5:6e:74:76:c3:e1:0b:f8:f3:db:4b:ef:0b: 0f:28:d4:02:76:c0:c2:46:96:2a:be:78:af:d0:fc: 90:7b:df:8c:83:aa:fd:01:35:d1:45:1c:c8:e3:f2: 3d:70:dc:eb:f5:a1:b8:51:36:5c:52:3d:64:84:76: 53:3e:fc:55:0d:5e:7e:21:c0:99:ed:14:20:c0:df: 6f:60:eb:27:9b:29:4d:fa:7e:b2:43:3f:e8:79:5f: 00:51:9d:f0:96:05:96:63:7e:fb:49:9d:aa:0e:0c: 51:75:e4:a6:db:55:89:b7:a2:e7:9b:ef:ca:05:71: 87:2b:cf:6d:22:c3:66:c3:41:00:40:ed:de:64:6d: 52:99:1b:4d:d1:43:11:57:03:18:47:3a:2c:40:f8: 84:6b:ed:23:91:4a:57:b0:56:4e:83:31:12:d8:76: 0b:2c:e7:2e:84:a7:04:bc:a1:6c:af:5d:b6:26:3d: fa:d0:4b:00:78:8a:b5:8b:dd:16:3f:f7:c5:02:c8: f2:77:11:d1:b4:36:48:be:a5:f6:ab:ca:1c:81:0a: ac:0b:ab:1d:9c:62:bf:1e:61:ca:66:a7:8f:5b:bf: 35:79:c7:5e:26:e8:a0:b7:03:9a:56:ed:ab:a2:75: f0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:84:04:CD:64:08:7B:84:27:34:AA:9B:1C:AD:B2:38:54:71:26:F6 X509v3 Authority Key Identifier: keyid:71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e6:a1:27:55:1c:cc:61:2c:c0:db:51:9c:ff:0d:9f:3a:29: 67:6d:c5:77:fc:ea:e7:9d:e1:81:1b:e6:21:7d:12:47:c5:6f: e2:ce:22:55:70:9d:c9:9b:fe:0f:bf:dc:84:19:41:d0:43:91: 96:a1:12:a9:38:b3:90:26:d7:9d:68:31:ed:20:41:b9:af:68: 88:b3:f4:57:4f:64:59:41:f2:d2:4b:e1:80:d0:fb:d8:d4:4d: 99:21:d4:04:5e:be:67:e0:da:bd:51:78:ea:83:a8:23:2c:1a: ee:fb:4e:a3:5b:1a:50:50:1c:cc:30:5d:5e:a9:46:71:7d:64: 4f:67:b3:64:e7:a2:31:cb:cf:c9:55:a3:04:16:17:fe:ac:4e: ba:56:bd:a0:e4:6a:84:1f:49:8a:db:f2:d7:32:62:5d:cb:d3: 5f:4a:bb:09:2a:bb:ab:f7:71:e9:75:fa:c2:72:d1:37:15:46: 5c:bb:cc:30:ca:a0:50:9a:21:22:16:44:14:56:dd:e6:f1:45: 5d:37:b9:4c:6d:8e:c8:0d:67:48:ad:e7:ec:cf:2a:06:62:00: ec:68:d7:85:b2:a5:fb:b6:14:bc:8f:65:93:b8:af:54:b3:46: 43:95:2b:c9:6c:ce:32:13:bf:96:f8:74:10:f2:5c:a3:de:c8: bc:2d:d4:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKDcxQUNFQ0YxQTFBRDk3MDg1NjU1REJEMzQ0QzNFQkJC RDU2RkU0NzQwHhcNMjQwNTMxMTU0MTUzWhcNMjQwNjA3MTU0MTUzWjAYMRYwFAYD VQQDEw02NjU5ZWZjMS1lMzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKd03h+vOLPolNipXdaUPOVudHbD4Qv489tL7wsPKNQCdsDCRpYqvniv0PyQ e9+Mg6r9ATXRRRzI4/I9cNzr9aG4UTZcUj1khHZTPvxVDV5+IcCZ7RQgwN9vYOsn mylN+n6yQz/oeV8AUZ3wlgWWY377SZ2qDgxRdeSm21WJt6Lnm+/KBXGHK89tIsNm w0EAQO3eZG1SmRtN0UMRVwMYRzosQPiEa+0jkUpXsFZOgzES2HYLLOcuhKcEvKFs r122Jj360EsAeIq1i90WP/fFAsjydxHRtDZIvqX2q8ocgQqsC6sdnGK/HmHKZqeP W781ecdeJuigtwOaVu2ronXw1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK6EBM1k CHuEJzSqmxytsjhUcSb2MB8GA1UdIwQYMBaAFHGs7PGhrZcIVlXb00TD67vVb+R0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3aFdWZHZUUk1QcnU5VnY1 SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhenM4YUd0bHdoV1ZkdlRSTVBydTlWdjVIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3 aFdWZHZUUk1QcnU5VnY1SFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf5qEnVRzMYSzA21Gc/w2fOilnbcV3/OrnneGBG+YhfRJHxW/iziJV cJ3Jm/4Pv9yEGUHQQ5GWoRKpOLOQJtedaDHtIEG5r2iIs/RXT2RZQfLSS+GA0PvY 1E2ZIdQEXr5n4Nq9UXjqg6gjLBru+06jWxpQUBzMMF1eqUZxfWRPZ7Nk56Ixy8/J VaMEFhf+rE66Vr2g5GqEH0mK2/LXMmJdy9NfSrsJKrur93HpdfrCctE3FUZcu8ww yqBQmiEiFkQUVt3m8UVdN7lMbY7IDWdIrefszyoGYgDsaNeFsqX7thS8j2WTuK9U s0ZDlSvJbM4yE7+W+HQQ8lyj3si8LdQK -----END CERTIFICATE-----Generated at Fri May 31 17:44:51 2024 by rpki-client on console-fra.rpki-client.org