$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: 8bex6mw8Y6nJldIousn33B6/BeTwKFh9zNEou/OXh5k= Subject key identifier: BF:9E:A3:60:F2:99:56:17:B1:99:8E:B1:81:4E:95:17:54:CB:58:0F Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 1648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 163D Signing time: Sat 18 May 2024 17:11:06 +0000 Manifest this update: Sat 18 May 2024 17:11:06 +0000 Manifest next update: Sat 25 May 2024 17:11:06 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: 2V62tIgYt4mFnf78ZEtXCFPAK9yEQwc+DUuWojJq8l4=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: RnPGEfV6shc3FzcBRmER7fg9U9kjWKrlb9yCQ0fI2KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5704 (0x1648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: May 18 17:11:06 2024 GMT Not After : May 25 17:11:06 2024 GMT Subject: CN=6648e12a-db4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8d:96:c6:12:e2:30:42:7e:55:1c:fb:ea:06: b7:ae:54:9e:9e:bc:78:66:e2:bd:86:c3:63:bb:ba: 7b:ec:5d:b5:98:c7:db:cd:02:48:55:45:be:9f:c9: 82:69:e7:ef:69:cf:04:ec:72:e6:07:fb:a5:fc:11: 1c:a8:f5:11:1a:59:54:c8:c6:39:ff:45:e9:e0:53: ce:17:09:08:eb:c6:dc:fc:c8:ec:1c:bf:ad:74:f5: c6:6f:15:31:3a:c8:5b:d6:0a:ae:e3:57:ed:cb:b7: 4c:9f:c7:e1:00:2b:5d:65:7a:a4:d9:35:c7:de:76: 59:0f:bc:59:ae:95:df:5a:59:84:3b:3a:c5:0e:78: f8:f8:ca:0b:7f:bc:b3:84:d7:b2:9d:cc:e7:0c:e5: 75:16:a9:2b:74:18:43:e4:d0:94:b3:2e:ec:68:c2: 99:92:65:e3:b8:59:2f:f7:6f:eb:a9:80:00:18:8c: aa:75:d9:d3:0c:b1:93:af:11:6b:1b:86:ef:5a:e1: 1c:6f:ca:a9:42:51:f4:5d:b0:8a:b6:f4:5b:63:a0: 14:7a:f4:b3:df:9c:9f:98:81:5a:96:b2:3f:8a:eb: f8:d0:1f:09:a8:98:5f:23:45:f2:38:95:ca:5a:8f: 8d:40:c0:c5:b1:10:56:86:43:2c:03:c9:e4:20:df: 15:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9E:A3:60:F2:99:56:17:B1:99:8E:B1:81:4E:95:17:54:CB:58:0F X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:08:5e:70:c5:c7:1c:6c:c7:3f:1c:b9:97:e3:59:b1:c2:b1: db:62:6d:5e:ba:15:94:a9:6d:1a:1a:ba:50:1e:6f:a5:f0:13: 7a:af:be:18:75:d1:23:95:0f:c7:55:a4:8f:d9:85:8e:8f:0d: 17:ea:2a:e7:e9:39:95:b6:b2:79:00:8e:b6:f5:20:12:9e:ba: 08:7b:c4:7e:af:ac:5a:63:8c:ee:7f:0f:aa:19:09:68:48:13: ed:f8:46:6e:39:c4:94:3d:4b:4c:e9:85:ba:f6:53:eb:69:0c: 25:01:1e:ea:fa:9f:b4:89:db:fa:98:3e:f0:08:1a:d9:03:6c: d9:17:45:4d:72:b7:a5:d9:39:b3:7b:17:81:aa:2f:8e:2b:8d: 6c:8a:c0:c8:39:37:6c:54:f2:0f:2d:08:0c:7d:9f:f1:86:43: c7:70:42:a4:0d:23:db:a5:a0:0b:31:19:c7:4f:99:da:81:a2: a5:a3:b9:63:66:ec:9b:cb:f3:35:3c:55:a6:4c:e1:33:ee:7c: ee:2c:e8:16:22:92:93:d7:22:ca:8c:e1:16:47:2c:3c:5b:31: 82:67:99:9a:6d:c5:c1:92:34:02:7c:d3:3e:97:57:0b:83:4f: 7c:f3:a4:4a:32:d9:05:da:9a:1a:e1:c1:a5:46:22:54:a4:ec: e9:33:6b:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjQwNTE4MTcxMTA2WhcNMjQwNTI1MTcxMTA2WjAYMRYwFAYD VQQDEw02NjQ4ZTEyYS1kYjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI2WxhLiMEJ+VRz76ga3rlSenrx4ZuK9hsNju7p77F21mMfbzQJIVUW+n8mC aefvac8E7HLmB/ul/BEcqPURGllUyMY5/0Xp4FPOFwkI68bc/MjsHL+tdPXGbxUx Oshb1gqu41fty7dMn8fhACtdZXqk2TXH3nZZD7xZrpXfWlmEOzrFDnj4+MoLf7yz hNeyncznDOV1FqkrdBhD5NCUsy7saMKZkmXjuFkv92/rqYAAGIyqddnTDLGTrxFr G4bvWuEcb8qpQlH0XbCKtvRbY6AUevSz35yfmIFalrI/iuv40B8JqJhfI0XyOJXK Wo+NQMDFsRBWhkMsA8nkIN8VVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+eo2Dy mVYXsZmOsYFOlRdUy1gPMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzCF5wxcccbMc/HLmX41mxwrHbYm1euhWUqW0aGrpQHm+l8BN6r74Y ddEjlQ/HVaSP2YWOjw0X6irn6TmVtrJ5AI629SASnroIe8R+r6xaY4zufw+qGQlo SBPt+EZuOcSUPUtM6YW69lPraQwlAR7q+p+0idv6mD7wCBrZA2zZF0VNcrel2Tmz exeBqi+OK41sisDIOTdsVPIPLQgMfZ/xhkPHcEKkDSPbpaALMRnHT5nagaKlo7lj Zuyby/M1PFWmTOEz7nzuLOgWIpKT1yLKjOEWRyw8WzGCZ5mabcXBkjQCfNM+l1cL g09886RKMtkF2poa4cGlRiJUpOzpM2tg -----END CERTIFICATE-----Generated at Sat May 18 17:37:33 2024 by rpki-client on console-fra.rpki-client.org