$ rpki-client -vvf rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft File: zlgHMAQJCIdOtirydgUp51w9XGg.mft (raw, json) Hash identifier: uEma/wLomMpIDwCGkNWl4WS0TG+khQUMTUHeyUNy/a4= Subject key identifier: D0:3D:30:13:1F:11:E1:AA:3A:07:5B:BB:3E:46:71:81:C8:2C:2A:C8 Authority key identifier: CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 Certificate issuer: /CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft Manifest number: 081F Signing time: Fri 31 May 2024 22:35:34 +0000 Manifest this update: Fri 31 May 2024 22:35:34 +0000 Manifest next update: Fri 07 Jun 2024 22:35:34 +0000 Files and hashes: 1: zlgHMAQJCIdOtirydgUp51w9XGg.crl (hash: 0Gm0B2dbgj0yrQE1zrsMXB3Ye3zJLoT0td+wW7i2w8c=) 2: 8698CD28A42211EB91621734C4F9AE02.roa (hash: JASfvNQGueVGvvI4vyDMOa1HuqKYc3UAFhDDUGxJcdo=) 3: D3ECF4B8E61D11EBB92C167BC4F9AE02.roa (hash: Qq9CVIwOQl8iOT2IAZyZUQMWOjo9Ahg0VBSPTd2tmZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E89CD/serialNumber=CE580730040908874EB62AF2760529E75C3D5C68 Validity Not Before: May 31 22:35:34 2024 GMT Not After : Jun 7 22:35:34 2024 GMT Subject: CN=665a50b6-76b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:65:a7:96:b8:fa:92:e3:d6:d8:04:e8:16:8f: d1:00:79:5a:60:34:40:0e:90:1b:4f:8f:0b:20:83: d3:df:d9:95:85:f6:f5:0f:38:3c:05:3a:c0:a1:d2: 07:db:ef:0a:db:eb:51:6d:5d:86:95:41:9c:b0:f6: 5e:fa:e9:53:82:56:6e:29:3b:0e:86:38:e7:c1:8b: 8d:91:3c:62:6f:94:c0:b7:9f:ae:a8:92:e8:01:64: 7d:94:ce:d7:cd:7e:2a:0f:d3:6b:98:8e:0b:8b:dc: 91:8e:f1:81:35:f8:36:08:8b:62:d1:e4:ff:f8:6c: 7a:fe:09:6d:28:c9:a0:69:cd:31:13:b1:a8:cf:90: 0c:13:a6:07:de:fd:1e:e9:63:d2:4a:d6:ed:f7:ca: 7c:ff:68:3c:c2:5e:c8:bb:60:63:89:c6:a0:83:ae: d3:87:21:ff:4b:d8:f0:bb:27:e8:4e:07:d8:70:dd: f8:05:fd:4b:5a:57:1e:a2:ef:69:81:06:98:b2:98: 25:2f:a9:84:36:70:4a:8d:3f:fb:b6:f7:79:0e:b6: c7:2a:e3:07:ef:fd:4f:8e:d5:0f:05:05:9e:22:f0: c6:86:3e:4d:6a:3f:1e:92:18:7e:2f:ef:db:fa:a4: 66:be:9c:24:ee:13:5c:2c:0b:44:c4:1a:60:12:d3: 73:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3D:30:13:1F:11:E1:AA:3A:07:5B:BB:3E:46:71:81:C8:2C:2A:C8 X509v3 Authority Key Identifier: keyid:CE:58:07:30:04:09:08:87:4E:B6:2A:F2:76:05:29:E7:5C:3D:5C:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zlgHMAQJCIdOtirydgUp51w9XGg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E89CD/3C0D4A16B05511EAA045B80EC4F9AE02/zlgHMAQJCIdOtirydgUp51w9XGg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f7:80:b7:ed:0a:00:c1:49:4a:5e:58:33:6f:f9:28:52:03: 36:0a:b9:52:c8:b0:6c:b1:5e:61:cf:3c:ea:76:13:f4:62:ef: 1a:dc:4b:51:3d:88:5d:66:23:1c:36:5c:42:88:35:18:0c:eb: 4b:f4:a7:17:3b:9f:1e:3d:a9:5f:d7:35:b0:dd:f6:d9:6b:32: f8:4f:86:87:b7:fc:22:23:a3:79:a8:35:4a:e6:c9:a1:0e:4c: 17:d6:43:19:0a:3d:fb:32:c5:ce:49:d4:d9:64:c5:58:27:b3: 8e:94:da:f2:de:32:a0:a0:10:5d:cf:1f:5d:34:33:b1:1b:0f: 5f:a1:c5:f2:6d:21:dc:87:08:78:d0:57:e4:f4:d7:d7:e1:b9: 00:ed:07:d3:1b:cf:7b:19:ea:0c:10:75:c6:73:eb:a1:d9:29: cb:48:9f:03:b9:76:27:e2:76:51:be:9d:f4:2b:03:d8:6b:bd: cf:a8:ca:ef:69:15:9e:27:25:d2:82:3d:df:72:57:6e:67:5c: 82:fd:57:a6:8e:33:fb:cb:fd:52:f7:d9:6e:56:1a:78:48:d9: 3b:d6:94:d1:b2:53:50:14:14:f9:5a:c1:01:50:13:20:7a:cb: 88:4b:c1:9d:1d:64:0b:ab:c2:35:2f:2f:74:0e:f2:d7:a5:94: ff:71:52:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5Q0QxMTAvBgNVBAUTKENFNTgwNzMwMDQwOTA4ODc0RUI2MkFGMjc2MDUyOUU3 NUMzRDVDNjgwHhcNMjQwNTMxMjIzNTM0WhcNMjQwNjA3MjIzNTM0WjAYMRYwFAYD VQQDEw02NjVhNTBiNi03NmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mWnlrj6kuPW2AToFo/RAHlaYDRADpAbT48LIIPT39mVhfb1Dzg8BTrAodIH 2+8K2+tRbV2GlUGcsPZe+ulTglZuKTsOhjjnwYuNkTxib5TAt5+uqJLoAWR9lM7X zX4qD9NrmI4Li9yRjvGBNfg2CIti0eT/+Gx6/gltKMmgac0xE7Goz5AME6YH3v0e 6WPSStbt98p8/2g8wl7Iu2Bjicagg67ThyH/S9jwuyfoTgfYcN34Bf1LWlceou9p gQaYspglL6mENnBKjT/7tvd5DrbHKuMH7/1PjtUPBQWeIvDGhj5Naj8ekhh+L+/b +qRmvpwk7hNcLAtExBpgEtNz9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNA9MBMf EeGqOgdbuz5GcYHILCrIMB8GA1UdIwQYMBaAFM5YBzAECQiHTrYq8nYFKedcPVxo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODlDRC8zQzBENEExNkIw NTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJZE90aXJ5ZGdVcDUxdzlY R2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3psZ0hNQVFKQ0lkT3RpcnlkZ1VwNTF3OVhHZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODlDRC8zQzBENEExNkIwNTUxMUVBQTA0NUI4MEVDNEY5QUUwMi96bGdITUFRSkNJ ZE90aXJ5ZGdVcDUxdzlYR2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT94C37QoAwUlKXlgzb/koUgM2CrlSyLBssV5hzzzqdhP0Yu8a3EtR PYhdZiMcNlxCiDUYDOtL9KcXO58ePalf1zWw3fbZazL4T4aHt/wiI6N5qDVK5smh DkwX1kMZCj37MsXOSdTZZMVYJ7OOlNry3jKgoBBdzx9dNDOxGw9focXybSHchwh4 0Ffk9NfX4bkA7QfTG897GeoMEHXGc+uh2SnLSJ8DuXYn4nZRvp30KwPYa73PqMrv aRWeJyXSgj3fclduZ1yC/VemjjP7y/1S99luVhp4SNk71pTRslNQFBT5WsEBUBMg esuIS8GdHWQLq8I1Ly90DvLXpZT/cVL8 -----END CERTIFICATE-----Generated at Fri May 31 23:53:09 2024 by rpki-client on console-fra.rpki-client.org