$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.mft File: ZT8sa3lWu2FFCbjxXB8dwzmCGL0.mft (raw, json) Hash identifier: c+PKBpzd+8knhLv4r+dA3uAM0A8m+adbKPgOL3o5p1I= Subject key identifier: 6F:9C:51:10:85:CB:88:4A:EA:FC:DD:B0:6B:BD:57:30:37:22:EC:E5 Authority key identifier: 65:3F:2C:6B:79:56:BB:61:45:09:B8:F1:5C:1F:1D:C3:39:82:18:BD Certificate issuer: /CN=A91BBD7E/serialNumber=653F2C6B7956BB614509B8F15C1F1DC3398218BD Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.mft Manifest number: B7 Signing time: Fri 31 May 2024 07:20:19 +0000 Manifest this update: Fri 31 May 2024 07:20:19 +0000 Manifest next update: Fri 07 Jun 2024 07:20:18 +0000 Files and hashes: 1: ZT8sa3lWu2FFCbjxXB8dwzmCGL0.crl (hash: NrbiHbwnEQqRULzIQQ4D/MegV8k1XSPKqWBxk1X3Zuw=) 2: B356B436102911EE834FA76EC4F9AE02.roa (hash: jXocr6dknpIt7+UAWYaXZ5PIXEsUlaTBPLc+ZcPV93A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.crl rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBD7E/serialNumber=653F2C6B7956BB614509B8F15C1F1DC3398218BD Validity Not Before: May 31 07:20:19 2024 GMT Not After : Jun 7 07:20:18 2024 GMT Subject: CN=66597a33-b7bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b1:5e:64:97:e8:4b:6a:67:14:c1:30:40:84: 83:49:79:1f:44:99:28:d0:f6:e7:58:77:99:5a:67: 19:f2:25:1f:c8:75:bc:46:a9:b1:e6:05:69:51:fe: 9d:ba:79:2a:bc:1a:a9:ad:43:34:02:e4:b0:89:d6: 88:b3:58:bc:bd:6f:f2:62:06:7f:57:f0:46:26:ea: 86:d8:a7:96:e3:8c:0b:2a:73:37:a8:6f:5a:28:66: 30:30:72:c2:3b:e9:64:a3:ee:1c:58:33:a0:e0:a2: a6:ed:7a:0d:07:5f:7b:90:88:ee:06:e2:79:78:70: 43:13:5a:9b:8c:b8:0c:b1:8d:b9:77:34:5e:5f:e5: 32:0b:7e:53:3a:5e:20:5a:2f:09:29:76:ee:e0:8e: e4:6f:fd:50:ef:89:60:d5:c2:04:b1:93:3b:76:3a: 42:68:ec:cb:4d:cf:3d:62:74:b1:6d:99:d2:f4:77: ec:f8:19:74:06:fe:9e:7e:b7:95:fa:0a:db:aa:e3: e3:24:6b:ee:25:cb:34:2a:53:69:8f:03:8b:6d:f5: be:92:d7:63:3d:13:e1:0c:53:c6:f3:c0:e6:df:7d: 36:cc:54:9c:db:2a:f2:0c:94:00:eb:83:16:96:b0: 33:30:78:43:4a:94:0e:e8:ef:de:84:b1:9a:18:1b: 10:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:9C:51:10:85:CB:88:4A:EA:FC:DD:B0:6B:BD:57:30:37:22:EC:E5 X509v3 Authority Key Identifier: keyid:65:3F:2C:6B:79:56:BB:61:45:09:B8:F1:5C:1F:1D:C3:39:82:18:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBD7E/1AED09C40A8A11EE93E1A770C4F9AE02/ZT8sa3lWu2FFCbjxXB8dwzmCGL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:53:41:9e:9a:4d:73:5a:27:42:10:65:c6:ff:3c:cb:a5:d3: 4e:04:1e:36:8f:57:d1:4a:1c:11:89:1f:8e:81:d4:4f:25:35: 6f:ab:f0:39:71:8d:6a:36:3e:eb:5b:bd:83:e5:9c:9a:90:aa: 8d:74:fe:fb:4a:fe:b4:be:ee:33:8a:fd:28:a3:c8:f4:cf:8b: 88:2d:c6:89:d4:af:2e:20:f8:d3:b3:1a:de:a5:44:07:11:ce: 41:60:1f:bb:53:c5:e9:d9:ff:8b:7a:62:45:bd:fb:ee:30:8a: 10:3b:65:70:da:8e:ca:b0:34:a6:50:fe:34:24:3b:d8:52:3f: a8:2e:f7:da:06:45:e4:ea:f8:2c:59:e1:27:74:37:81:66:3e: a9:91:f9:7c:21:a3:30:c0:38:86:2f:62:a6:6a:70:66:87:80: b6:4c:a3:04:49:ec:fa:fb:2a:f8:e4:c4:d0:42:c8:c7:e1:0c: 35:e6:60:ed:47:43:7c:93:8f:05:ad:e5:c3:e4:cc:31:b5:1a: 37:89:09:6b:c2:c8:6b:a5:d2:38:65:f6:64:43:e3:21:14:46: bd:61:bf:65:c4:a6:6e:0c:90:27:c8:b1:0c:e3:bf:0b:24:95: ad:4a:e9:51:ed:99:d9:cd:eb:96:5b:24:a0:fb:b6:d7:30:48: aa:52:43:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJEN0UxMTAvBgNVBAUTKDY1M0YyQzZCNzk1NkJCNjE0NTA5QjhGMTVDMUYxREMz Mzk4MjE4QkQwHhcNMjQwNTMxMDcyMDE5WhcNMjQwNjA3MDcyMDE4WjAYMRYwFAYD VQQDEw02NjU5N2EzMy1iN2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7FeZJfoS2pnFMEwQISDSXkfRJko0PbnWHeZWmcZ8iUfyHW8Rqmx5gVpUf6d unkqvBqprUM0AuSwidaIs1i8vW/yYgZ/V/BGJuqG2KeW44wLKnM3qG9aKGYwMHLC O+lko+4cWDOg4KKm7XoNB197kIjuBuJ5eHBDE1qbjLgMsY25dzReX+UyC35TOl4g Wi8JKXbu4I7kb/1Q74lg1cIEsZM7djpCaOzLTc89YnSxbZnS9Hfs+Bl0Bv6efreV +grbquPjJGvuJcs0KlNpjwOLbfW+ktdjPRPhDFPG88Dm3302zFSc2yryDJQA64MW lrAzMHhDSpQO6O/ehLGaGBsQMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+cURCF y4hK6vzdsGu9VzA3IuzlMB8GA1UdIwQYMBaAFGU/LGt5VrthRQm48VwfHcM5ghi9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkQ3RS8xQUVEMDlDNDBB OEExMUVFOTNFMUE3NzBDNEY5QUUwMi9aVDhzYTNsV3UyRkZDYmp4WEI4ZHd6bUNH TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pUOHNhM2xXdTJGRkNianhYQjhkd3ptQ0dMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkQ3RS8xQUVEMDlDNDBBOEExMUVFOTNFMUE3NzBDNEY5QUUwMi9aVDhzYTNsV3Uy RkZDYmp4WEI4ZHd6bUNHTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3U0Gemk1zWidCEGXG/zzLpdNOBB42j1fRShwRiR+OgdRPJTVvq/A5 cY1qNj7rW72D5ZyakKqNdP77Sv60vu4ziv0oo8j0z4uILcaJ1K8uIPjTsxrepUQH Ec5BYB+7U8Xp2f+LemJFvfvuMIoQO2Vw2o7KsDSmUP40JDvYUj+oLvfaBkXk6vgs WeEndDeBZj6pkfl8IaMwwDiGL2KmanBmh4C2TKMESez6+yr45MTQQsjH4Qw15mDt R0N8k48FreXD5MwxtRo3iQlrwshrpdI4ZfZkQ+MhFEa9Yb9lxKZuDJAnyLEM478L JJWtSulR7ZnZzeuWWySg+7bXMEiqUkNg -----END CERTIFICATE-----Generated at Fri May 31 08:39:00 2024 by rpki-client on console-fra.rpki-client.org