$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft File: zxWtEC7t37zKaFhab1w4F_6KGNU.mft (raw, json) Hash identifier: xJ4SNnvZM2ykDT7gT2nWfdsZOBbmHJ7YuUTYqBAaSLI= Subject key identifier: A4:3F:15:E9:F0:64:E4:B8:9F:F3:51:40:85:9D:BE:55:83:C8:A3:B2 Authority key identifier: CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 Certificate issuer: /CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Certificate serial: 0374 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft Manifest number: 036E Signing time: Sun 19 May 2024 02:50:38 +0000 Manifest this update: Sun 19 May 2024 02:50:37 +0000 Manifest next update: Sun 26 May 2024 02:50:37 +0000 Files and hashes: 1: zxWtEC7t37zKaFhab1w4F_6KGNU.crl (hash: mdXfRaxN8rJxbblFWE2sA2YbuZen3fm2stlpuqqoLSY=) 2: 70638510630E11ECB30DB557C4F9AE02.roa (hash: mPZNuKlmoik6ecfgLSUJSnNAwqX7KJZV7MydUnK5gbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D56/serialNumber=CF15AD102EEDDFBCCA68585A6F5C3817FE8A18D5 Validity Not Before: May 19 02:50:37 2024 GMT Not After : May 26 02:50:37 2024 GMT Subject: CN=664968fd-e2e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8f:16:97:78:3c:b9:43:64:ee:db:75:df:e1: 19:94:11:e4:30:51:98:10:d1:f1:07:a9:b6:a2:79: 35:b1:fc:13:87:22:7f:40:b7:98:8e:eb:13:db:7b: ef:97:b2:17:2b:a0:d7:04:8f:25:4d:3d:bc:45:16: a9:93:0f:01:e1:0d:a6:28:9c:30:a3:9d:08:ad:9e: 69:16:f4:11:d3:16:59:9e:e5:77:3b:35:82:24:1c: 0c:3e:4a:af:eb:25:1f:31:79:58:e5:65:30:ee:56: ae:08:e7:23:6a:79:95:e8:e1:a9:78:1e:a5:62:a5: fd:24:e3:62:f8:02:23:0a:42:b5:3f:01:76:47:b4: 01:db:94:8b:69:28:97:7d:62:12:76:f7:cd:e6:c3: ad:f1:9b:b3:36:eb:1b:4b:96:2e:4f:7c:25:5b:51: 7c:eb:4c:80:38:b1:b2:70:6c:08:cd:fc:74:7b:96: cd:66:3e:cc:b5:22:90:79:15:b4:83:0a:5a:ef:b4: 7f:3c:f3:04:3e:bc:b6:9c:ae:b3:d6:5c:04:0d:8b: 6b:da:7b:f2:fe:7b:41:57:7a:ba:7c:b4:02:e6:b7: f7:69:dd:62:ee:a9:03:54:e3:30:58:2e:77:8c:f9: 95:59:69:ce:f3:fd:fe:87:9f:4b:c7:8d:a6:95:ff: fa:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3F:15:E9:F0:64:E4:B8:9F:F3:51:40:85:9D:BE:55:83:C8:A3:B2 X509v3 Authority Key Identifier: keyid:CF:15:AD:10:2E:ED:DF:BC:CA:68:58:5A:6F:5C:38:17:FE:8A:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zxWtEC7t37zKaFhab1w4F_6KGNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D56/1BC8E1B6630A11ECAAA1414EC4F9AE02/zxWtEC7t37zKaFhab1w4F_6KGNU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:b8:8e:0b:97:79:0d:63:5f:c9:d6:c2:99:ac:d1:84:3d:f8: 7f:58:8e:70:0d:76:e2:7f:db:24:f1:94:98:97:76:f0:8b:bc: 8a:29:3b:26:6c:8c:67:0b:07:3a:a7:9f:e9:03:df:68:f5:c4: af:62:30:d1:6f:be:4a:1f:b5:9c:64:53:05:48:c3:e2:52:1b: fd:c1:f3:cb:24:8e:4a:7f:8d:47:96:aa:b4:9f:58:1f:cc:b5: dd:11:58:44:a2:8d:26:8c:43:d1:96:da:57:9f:18:44:9f:c9: 1a:a7:e5:90:98:7a:20:af:43:2b:7c:b3:c5:64:57:42:92:67: e8:0f:77:a1:e9:b6:bb:83:ee:0a:89:81:eb:ce:03:a5:24:f9: b6:72:b2:0d:10:37:fa:4f:f5:dc:bf:99:31:77:10:4f:a9:ac: a1:b9:42:d7:d4:25:b1:18:13:4f:48:9c:14:00:ca:c0:2f:d1: 38:c3:6b:02:26:b9:a5:a6:38:14:c7:1c:54:c1:a7:09:73:5d: 15:a3:6c:04:ee:eb:dd:74:37:bc:1b:90:e8:a7:0e:2a:b0:f0: 2b:e8:a9:74:76:b4:ac:97:c6:7b:bb:25:c9:5c:72:2b:14:b0: 58:31:9e:31:3e:eb:f5:32:78:59:0f:16:4c:c5:cd:bd:e2:47: 72:45:a4:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhENTYxMTAvBgNVBAUTKENGMTVBRDEwMkVFRERGQkNDQTY4NTg1QTZGNUMzODE3 RkU4QTE4RDUwHhcNMjQwNTE5MDI1MDM3WhcNMjQwNTI2MDI1MDM3WjAYMRYwFAYD VQQDEw02NjQ5NjhmZC1lMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo8Wl3g8uUNk7tt13+EZlBHkMFGYENHxB6m2onk1sfwThyJ/QLeYjusT23vv l7IXK6DXBI8lTT28RRapkw8B4Q2mKJwwo50IrZ5pFvQR0xZZnuV3OzWCJBwMPkqv 6yUfMXlY5WUw7lauCOcjanmV6OGpeB6lYqX9JONi+AIjCkK1PwF2R7QB25SLaSiX fWISdvfN5sOt8ZuzNusbS5YuT3wlW1F860yAOLGycGwIzfx0e5bNZj7MtSKQeRW0 gwpa77R/PPMEPry2nK6z1lwEDYtr2nvy/ntBV3q6fLQC5rf3ad1i7qkDVOMwWC53 jPmVWWnO8/3+h59Lx42mlf/6fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQ/Fenw ZOS4n/NRQIWdvlWDyKOyMB8GA1UdIwQYMBaAFM8VrRAu7d+8ymhYWm9cOBf+ihjV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQ1Ni8xQkM4RTFCNjYz MEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3ekthRmhhYjF3NEZfNktH TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p4V3RFQzd0Mzd6S2FGaGFiMXc0Rl82S0dOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEQ1Ni8xQkM4RTFCNjYzMEExMUVDQUFBMTQxNEVDNEY5QUUwMi96eFd0RUM3dDM3 ekthRmhhYjF3NEZfNktHTlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtuI4Ll3kNY1/J1sKZrNGEPfh/WI5wDXbif9sk8ZSYl3bwi7yKKTsm bIxnCwc6p5/pA99o9cSvYjDRb75KH7WcZFMFSMPiUhv9wfPLJI5Kf41Hlqq0n1gf zLXdEVhEoo0mjEPRltpXnxhEn8kap+WQmHogr0MrfLPFZFdCkmfoD3eh6ba7g+4K iYHrzgOlJPm2crINEDf6T/Xcv5kxdxBPqayhuULX1CWxGBNPSJwUAMrAL9E4w2sC JrmlpjgUxxxUwacJc10Vo2wE7uvddDe8G5Dopw4qsPAr6Kl0drSsl8Z7uyXJXHIr FLBYMZ4xPuv1MnhZDxZMxc294kdyRaT4 -----END CERTIFICATE-----Generated at Sun May 19 03:38:15 2024 by rpki-client on console-ams.rpki-client.org