$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft File: WZp41LvOE9TYE975FnzTV0fqAmA.mft (raw, json) Hash identifier: oLH2I6ck4u2T6OTGd8SV70Exh9ZYXFJ9gwvyLbYjaX8= Subject key identifier: 82:11:10:A6:B9:BE:B3:45:A3:6A:37:55:7F:80:00:E3:75:D8:60:B1 Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 08EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft Manifest number: 08D7 Signing time: Sat 18 May 2024 21:25:11 +0000 Manifest this update: Sat 18 May 2024 21:25:10 +0000 Manifest next update: Sat 25 May 2024 21:25:10 +0000 Files and hashes: 1: WZp41LvOE9TYE975FnzTV0fqAmA.crl (hash: 0xTzdgy+7mIV2BMzMvz+sdR5FyDvj4B1b2Jmh4Z3SVE=) 2: B67BE8ECC13C11EE80101E73C4F9AE02.roa (hash: YC6lkhP1a4Efa36JyDIdl/C4I5FegljvoSzCWSqobWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: May 18 21:25:10 2024 GMT Not After : May 25 21:25:10 2024 GMT Subject: CN=66491cb6-6d12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:62:e7:77:30:5a:e4:2b:28:71:2d:b2:d6:4b: 43:a6:08:9a:69:89:22:df:61:34:2a:72:3b:a3:0c: 8e:24:89:7c:aa:ac:25:31:7e:32:78:b6:a9:56:df: a2:51:d1:f2:c6:9d:ce:3c:a1:23:71:bd:00:33:a1: 6a:a1:cc:6c:95:a1:fd:f5:f5:7b:6c:e3:7d:7d:83: de:5a:c7:70:e5:0a:50:5c:fd:cf:af:b9:13:b9:f9: 76:b5:23:2d:cb:7a:dd:29:b2:2b:1f:fb:c0:92:b6: ea:70:5d:2d:33:d4:78:1b:aa:81:b0:dc:79:4d:26: de:8c:50:ae:f8:a8:a7:4e:22:9d:27:b4:76:b9:df: 6e:50:8e:cd:82:c8:23:c0:fd:4a:75:53:d3:42:b0: 72:df:82:5f:38:01:2a:ff:ee:73:39:11:01:20:aa: 57:96:e2:a0:ca:84:4c:81:6e:24:b2:3f:17:c7:c6: 92:b7:c4:8a:d2:8a:2f:06:2d:98:ba:de:89:f7:e7: b4:f1:d5:2c:db:53:6e:dc:45:e7:d8:b7:f1:c8:a4: 87:c5:e3:35:de:84:72:15:1d:66:a4:c0:5f:1d:0f: f0:9e:31:12:ea:fd:53:2b:e1:72:2e:04:bc:d4:08: c9:93:ab:8c:26:4b:3a:2f:cf:9f:36:0c:10:8d:4c: 9e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:11:10:A6:B9:BE:B3:45:A3:6A:37:55:7F:80:00:E3:75:D8:60:B1 X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:f5:df:4d:45:ba:45:7c:c5:39:7b:16:3d:12:54:d3:f5:82: 18:ab:a2:41:3e:99:5e:b3:7e:2e:fd:9c:3c:2a:93:06:54:7b: ea:cb:54:d7:ba:61:2d:52:bf:73:59:bc:75:c6:bc:1d:1f:82: 39:8a:9f:83:74:2d:98:27:37:04:ba:6a:5d:c5:97:54:27:7e: 1c:52:8a:5a:2c:db:e3:b3:5c:b5:b9:e5:33:0e:b2:97:bf:8e: 4f:70:0c:c6:c5:04:7e:37:42:4f:d2:36:80:a4:c2:b9:88:e0: 50:63:57:53:76:3b:d2:e3:6e:a0:76:dd:56:d0:31:09:69:2f: 47:88:98:c1:11:47:9c:f8:67:53:54:2c:5d:7f:6d:5a:ab:a2: d9:27:29:f5:90:31:5e:4a:3f:93:c5:3a:52:17:b6:88:83:0d: fb:9d:31:a0:57:b0:db:1f:cb:74:b1:e3:a7:f7:13:1e:b5:19: cb:f8:69:c9:7b:81:14:8d:ab:86:b9:28:d1:4b:18:e8:45:90: 8e:1c:c1:9c:7a:7b:d6:80:60:ce:14:a9:b8:01:1c:49:2f:85: 1e:d0:9b:e9:34:ff:74:b2:37:a2:99:9a:99:1c:a7:08:71:b9: 0a:b4:1d:64:44:a2:11:4e:4b:3f:16:e5:b8:5a:4f:ec:8c:33: bd:53:4a:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjQwNTE4MjEyNTEwWhcNMjQwNTI1MjEyNTEwWjAYMRYwFAYD VQQDEw02NjQ5MWNiNi02ZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmLndzBa5CsocS2y1ktDpgiaaYki32E0KnI7owyOJIl8qqwlMX4yeLapVt+i UdHyxp3OPKEjcb0AM6FqocxslaH99fV7bON9fYPeWsdw5QpQXP3Pr7kTufl2tSMt y3rdKbIrH/vAkrbqcF0tM9R4G6qBsNx5TSbejFCu+KinTiKdJ7R2ud9uUI7Ngsgj wP1KdVPTQrBy34JfOAEq/+5zOREBIKpXluKgyoRMgW4ksj8Xx8aSt8SK0oovBi2Y ut6J9+e08dUs21Nu3EXn2LfxyKSHxeM13oRyFR1mpMBfHQ/wnjES6v1TK+FyLgS8 1AjJk6uMJks6L8+fNgwQjUye5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIIREKa5 vrNFo2o3VX+AAON12GCxMB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkYxNS9CNDc4NUJFODhENEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5 VFlFOTc1Rm56VFYwZnFBbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP9d9NRbpFfMU5exY9ElTT9YIYq6JBPples34u/Zw8KpMGVHvqy1TX umEtUr9zWbx1xrwdH4I5ip+DdC2YJzcEumpdxZdUJ34cUopaLNvjs1y1ueUzDrKX v45PcAzGxQR+N0JP0jaApMK5iOBQY1dTdjvS426gdt1W0DEJaS9HiJjBEUec+GdT VCxdf21aq6LZJyn1kDFeSj+TxTpSF7aIgw37nTGgV7DbH8t0seOn9xMetRnL+GnJ e4EUjauGuSjRSxjoRZCOHMGcenvWgGDOFKm4ARxJL4Ue0JvpNP90sjeimZqZHKcI cbkKtB1kRKIRTks/FuW4Wk/sjDO9U0pc -----END CERTIFICATE-----Generated at Sat May 18 22:14:04 2024 by rpki-client on console-fra.rpki-client.org