$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft File: Zhxk4pO4f0c69h2J3kj8RThXAVc.mft (raw, json) Hash identifier: 278A07aO2y/45BbeiTMhjVR+CgL8zOc1LnXvAjG+kpY= Subject key identifier: F0:52:40:A8:BA:3C:8A:2D:F8:B6:CB:01:B3:34:E3:8C:A5:20:6D:C8 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft Manifest number: 0143 Signing time: Sun 19 May 2024 05:01:27 +0000 Manifest this update: Sun 19 May 2024 05:01:26 +0000 Manifest next update: Sun 26 May 2024 05:01:26 +0000 Files and hashes: 1: Zhxk4pO4f0c69h2J3kj8RThXAVc.crl (hash: Hine4/zYMH6xMsX5RNCkdPpzdf2CJ6aeGEVBhb7chos=) 2: 2DDA16845B7C11EDAAFAB831C4F9AE02.roa (hash: loYpUv1Um4itP1DhkO9J2kLAAlsHj9PiATnSulDl9Us=) 3: 2E926DC45B7C11EDAAFAB831C4F9AE02.roa (hash: Gx2no7tYjnOwupsDXgy6eKtX0sG90oOvxxXo880RUN8=) 4: 77E7AC0E492611EDAF439D83C4F9AE02.roa (hash: Ei7JK1G2btZaclG35iojfaPh22FI762oYRqOBDOZ+mE=) 5: 2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa (hash: 1ErsPRPbDwReOL5aIDAE645DztuNVhT3y8EHu4V5i/c=) 6: 2F4FE7325B7C11EDAAFAB831C4F9AE02.roa (hash: ncpnbLP+LILiD6GDslAAq4gIKkrTnIuJ0xtgZy6S3Eo=) 7: 3066E80A5B7C11EDAAFAB831C4F9AE02.roa (hash: /rCzeylko5qSEJgLMqdkZC3i79GCItafvP/Gi3KWm0s=) 8: F84FF96A493911ED805EB686C4F9AE02.roa (hash: WeZeQts/vnY7bXzVpCkx8KZldrK7REUFFOnGW9ZB9eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: May 19 05:01:26 2024 GMT Not After : May 26 05:01:26 2024 GMT Subject: CN=664987a6-7374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c6:b9:1a:d4:f2:60:74:ba:bc:d8:dd:6a:2d: d2:e4:c1:48:52:23:ad:87:a9:d1:6e:7a:53:8e:c7: 05:cd:7a:96:e0:53:1b:f5:bb:41:cb:3e:4d:fd:de: df:2b:d4:62:a2:3f:16:65:06:f6:73:d6:a0:a8:72: ca:84:d8:a2:37:a3:63:86:ec:3b:ae:a4:ca:8b:5f: cf:ac:c1:6c:9a:9d:a8:78:d6:fe:bb:42:d7:4e:62: 9f:2d:0d:44:16:f2:4c:00:48:25:f9:14:f6:52:5a: 60:fa:91:5b:b6:27:d0:f6:7d:e5:43:3c:5f:48:88: 02:df:e9:dd:1b:6f:19:cd:cc:5f:0c:cf:7b:bb:47: e8:19:7e:97:a3:8d:1d:fa:24:ec:dd:c0:51:c6:e2: 25:1a:af:c9:cc:29:9c:fb:fc:d8:7a:75:69:95:c9: 2a:43:c5:32:66:db:8d:4d:42:ff:f6:de:98:46:0f: 6c:39:62:fe:b4:91:56:be:d4:e2:88:b3:84:64:39: c7:cf:2d:be:7d:af:5a:a1:a8:38:21:40:69:3e:4c: 62:68:d2:b9:b6:dc:49:09:26:32:0f:30:29:29:1f: 1d:3f:52:07:65:00:59:d1:33:f7:54:62:85:5b:dd: ae:26:69:27:02:f6:94:c7:78:8a:83:19:2a:e4:f4: 34:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:52:40:A8:BA:3C:8A:2D:F8:B6:CB:01:B3:34:E3:8C:A5:20:6D:C8 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:d4:df:06:33:59:d0:37:3e:34:91:c6:49:6f:28:ca:d1:6f: 8a:80:ff:4f:b6:7c:9e:99:05:de:0c:26:5b:6e:70:ee:73:1e: 58:55:90:ab:d5:2a:29:68:76:7b:09:3c:03:bc:b8:51:c3:84: 06:e2:2b:4e:0f:e6:ef:dc:d4:e9:1f:9c:0a:95:16:c5:52:27: 47:30:cc:6b:4f:aa:dc:df:84:dd:0e:01:ff:b7:5d:ec:d9:95: 2d:8e:e8:b7:08:36:c7:2b:91:91:1c:d6:55:9b:db:7a:6a:1a: 49:31:6c:b8:5b:71:d9:40:8d:d3:27:38:78:76:75:6d:2d:27: 74:d6:f0:01:5f:7d:b6:ad:25:db:42:dc:45:28:30:0e:0c:2f: f9:17:5e:3d:85:e9:23:99:ff:36:e0:3e:c9:3a:3b:ee:21:ab: 66:b2:82:0b:68:bb:86:f1:80:1c:cc:59:1f:0d:5e:38:c7:90: 4e:c9:83:a6:fa:51:cc:b1:95:81:ab:7d:6c:9e:49:eb:e4:6f: 39:0e:40:c3:28:1f:07:45:e0:ad:cb:1d:75:75:f2:0e:c6:99: 6b:24:74:0e:dd:4b:79:3b:61:ce:64:cb:eb:7f:71:c9:2e:f2: 09:3c:d3:d4:22:c5:43:cb:86:5a:6f:9e:38:81:0c:c9:31:2e: 3a:9b:f8:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjQwNTE5MDUwMTI2WhcNMjQwNTI2MDUwMTI2WjAYMRYwFAYD VQQDEw02NjQ5ODdhNi03Mzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48a5GtTyYHS6vNjdai3S5MFIUiOth6nRbnpTjscFzXqW4FMb9btByz5N/d7f K9Rioj8WZQb2c9agqHLKhNiiN6Njhuw7rqTKi1/PrMFsmp2oeNb+u0LXTmKfLQ1E FvJMAEgl+RT2Ulpg+pFbtifQ9n3lQzxfSIgC3+ndG28ZzcxfDM97u0foGX6Xo40d +iTs3cBRxuIlGq/JzCmc+/zYenVplckqQ8UyZtuNTUL/9t6YRg9sOWL+tJFWvtTi iLOEZDnHzy2+fa9aoag4IUBpPkxiaNK5ttxJCSYyDzApKR8dP1IHZQBZ0TP3VGKF W92uJmknAvaUx3iKgxkq5PQ0pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBSQKi6 PIot+LbLAbM044ylIG3IMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REI5OC9EOTNFOTNEQzQ5MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYw YzY5aDJKM2tqOFJUaFhBVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/1N8GM1nQNz40kcZJbyjK0W+KgP9PtnyemQXeDCZbbnDucx5YVZCr 1SopaHZ7CTwDvLhRw4QG4itOD+bv3NTpH5wKlRbFUidHMMxrT6rc34TdDgH/t13s 2ZUtjui3CDbHK5GRHNZVm9t6ahpJMWy4W3HZQI3TJzh4dnVtLSd01vABX322rSXb QtxFKDAODC/5F149hekjmf824D7JOjvuIatmsoILaLuG8YAczFkfDV44x5BOyYOm +lHMsZWBq31snknr5G85DkDDKB8HReCtyx11dfIOxplrJHQO3Ut5O2HOZMvrf3HJ LvIJPNPUIsVDy4Zab544gQzJMS46m/gV -----END CERTIFICATE-----Generated at Sun May 19 06:14:36 2024 by rpki-client on console-ams.rpki-client.org