$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft File: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft (raw, json) Hash identifier: q2tq036/r8YydWGUwzHVC7Kfv4WOyX2Gp/We8k7N8RY= Subject key identifier: F0:1F:9B:C4:83:86:78:11:9D:F9:6D:A7:69:15:9B:EA:8F:6A:D2:1A Authority key identifier: 64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 Certificate issuer: /CN=A91CE0FB/serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft Manifest number: 0405 Signing time: Sun 19 May 2024 02:07:53 +0000 Manifest this update: Sun 19 May 2024 02:07:52 +0000 Manifest next update: Sun 26 May 2024 02:07:52 +0000 Files and hashes: 1: ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl (hash: /ZjYnXCbl1vLUq9ivlsdyPXqT1qm7zhkTm31tNYwCrM=) 2: 47170244259D11ECA74AC10AC4F9AE02.roa (hash: CZ46RN0qhlqGiCB8Mc/S6vZ6t4hpKflhxlWhuSZIiRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE0FB/serialNumber=64B1BB87024DDFBDB4415A901D807E3DDD8A7361 Validity Not Before: May 19 02:07:52 2024 GMT Not After : May 26 02:07:52 2024 GMT Subject: CN=66495ef9-67d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:d7:5b:e1:2e:97:e6:63:1f:01:da:c2:ad: 74:a2:16:42:5c:80:34:33:9e:0f:da:06:1e:61:7c: 20:3d:aa:ce:1f:31:1f:fd:9e:25:64:96:ce:55:cf: 76:74:01:e6:51:da:e3:be:d1:6b:e4:0d:f9:27:c4: 3a:ef:23:24:7e:87:fb:30:b5:29:b8:bf:39:ad:26: db:81:ff:11:a4:b0:4e:cb:e6:e3:5c:c5:bf:0a:75: a6:67:9b:d1:a3:47:91:d9:5a:4d:24:95:41:a6:c6: 30:7f:5b:31:d9:bb:7e:52:3a:eb:af:53:af:12:43: a3:da:fd:1f:ef:96:1a:a5:cc:eb:69:28:f6:67:7f: 06:93:0e:f7:92:4b:13:69:cc:5f:b1:e2:35:72:2c: 71:ef:0b:fb:e9:79:e9:66:75:f1:6e:e4:85:cc:51: e2:60:5f:66:97:8d:50:8d:9c:53:c3:4d:81:f9:63: 1a:44:00:15:21:13:21:50:ca:7f:47:f3:61:0f:da: 37:83:60:3a:cc:b4:db:82:af:b8:ca:2d:f1:c4:44: 6c:eb:3a:f7:9b:65:77:b1:b3:14:fb:27:e8:df:f3: 16:12:c3:f2:a9:eb:c2:ef:54:88:66:f5:ca:72:10: 1a:8d:c3:de:0a:c9:68:82:30:99:4c:6e:67:b1:71: cc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1F:9B:C4:83:86:78:11:9D:F9:6D:A7:69:15:9B:EA:8F:6A:D2:1A X509v3 Authority Key Identifier: keyid:64:B1:BB:87:02:4D:DF:BD:B4:41:5A:90:1D:80:7E:3D:DD:8A:73:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE0FB/86F689BA259911EC92031A79C4F9AE02/ZLG7hwJN3720QVqQHYB-Pd2Kc2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:83:87:14:5c:18:83:e5:d8:1f:77:64:26:ab:e4:db:e2:86: 2c:13:2e:29:1e:b3:26:a7:6f:2a:28:37:e0:d6:c0:4c:4e:46: 5a:72:33:7c:79:a9:90:b0:53:0e:ed:03:95:f4:01:70:46:de: 04:3d:12:ec:8d:af:f6:18:70:64:c8:9a:f3:b6:d8:9c:80:87: 68:a5:d4:b0:bc:38:9b:93:48:81:5d:06:b4:84:6e:03:13:20: 76:a8:3e:8a:43:a9:a1:66:21:93:f1:44:16:28:3d:4e:88:4b: 57:b8:73:fc:a4:eb:88:08:db:02:8c:c2:ed:03:31:b2:ac:61: ad:22:3b:d4:eb:9e:42:f9:7d:b9:9d:58:2b:38:cb:93:39:f4: b0:11:98:8a:80:9c:43:9c:bc:d2:ec:f4:d9:3c:04:8a:79:4f: 7b:26:cb:b7:05:0c:9b:e9:cd:37:90:90:ce:e0:af:10:79:a1: 93:b3:89:52:08:cc:a5:15:b9:c9:e5:8a:bb:c1:2f:d9:c7:ad: cd:70:68:c0:9f:df:a2:9e:4e:64:3f:6b:1c:90:c4:df:c0:b6: 1b:ba:48:9f:2b:31:c3:b6:8e:32:dc:b4:ca:d0:aa:7a:f5:a9: b6:a8:b4:c2:92:e3:7e:b3:77:a3:04:77:18:c6:f9:84:67:d5: 82:8c:7b:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UwRkIxMTAvBgNVBAUTKDY0QjFCQjg3MDI0RERGQkRCNDQxNUE5MDFEODA3RTNE REQ4QTczNjEwHhcNMjQwNTE5MDIwNzUyWhcNMjQwNTI2MDIwNzUyWjAYMRYwFAYD VQQDEw02NjQ5NWVmOS02N2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVvXW+Eul+ZjHwHawq10ohZCXIA0M54P2gYeYXwgParOHzEf/Z4lZJbOVc92 dAHmUdrjvtFr5A35J8Q67yMkfof7MLUpuL85rSbbgf8RpLBOy+bjXMW/CnWmZ5vR o0eR2VpNJJVBpsYwf1sx2bt+Ujrrr1OvEkOj2v0f75YapczraSj2Z38Gkw73kksT acxfseI1cixx7wv76XnpZnXxbuSFzFHiYF9ml41QjZxTw02B+WMaRAAVIRMhUMp/ R/NhD9o3g2A6zLTbgq+4yi3xxERs6zr3m2V3sbMU+yfo3/MWEsPyqevC71SIZvXK chAajcPeCslogjCZTG5nsXHMIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAfm8SD hngRnfltp2kVm+qPatIaMB8GA1UdIwQYMBaAFGSxu4cCTd+9tEFakB2Afj3dinNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTBGQi84NkY2ODlCQTI1 OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3MjBRVnFRSFlCLVBkMktj MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pMRzdod0pOMzcyMFFWcVFIWUItUGQyS2MyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTBGQi84NkY2ODlCQTI1OTkxMUVDOTIwMzFBNzlDNEY5QUUwMi9aTEc3aHdKTjM3 MjBRVnFRSFlCLVBkMktjMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwg4cUXBiD5dgfd2Qmq+Tb4oYsEy4pHrMmp28qKDfg1sBMTkZacjN8 eamQsFMO7QOV9AFwRt4EPRLsja/2GHBkyJrztticgIdopdSwvDibk0iBXQa0hG4D EyB2qD6KQ6mhZiGT8UQWKD1OiEtXuHP8pOuICNsCjMLtAzGyrGGtIjvU655C+X25 nVgrOMuTOfSwEZiKgJxDnLzS7PTZPASKeU97Jsu3BQyb6c03kJDO4K8QeaGTs4lS CMylFbnJ5Yq7wS/Zx63NcGjAn9+ink5kP2sckMTfwLYbukifKzHDto4y3LTK0Kp6 9am2qLTCkuN+s3ejBHcYxvmEZ9WCjHvd -----END CERTIFICATE-----Generated at Sun May 19 02:59:14 2024 by rpki-client on console-ams.rpki-client.org