$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft File: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft (raw, json) Hash identifier: wWplhMznshdwvvwkhEbxWzJ3mHXHZvEfGTK50x9AjEQ= Subject key identifier: D0:B1:4F:45:71:37:5C:DA:1C:39:9F:1E:DA:F2:75:7D:BE:2A:88:E1 Authority key identifier: 09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF Certificate issuer: /CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft Manifest number: 0424 Signing time: Sun 19 May 2024 02:02:20 +0000 Manifest this update: Sun 19 May 2024 02:02:20 +0000 Manifest next update: Sun 26 May 2024 02:02:20 +0000 Files and hashes: 1: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl (hash: 2VBGh/ULCQ3hbO1pCmNsTF3/6hIVxiLmMRil8PBAuOA=) 2: 630BCB6E1A1D11EC99B84C20C4F9AE02.roa (hash: kfY0JAwuTRNFSlPvxmqEBI35AE1wBacqlitKBNxR2Q0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Validity Not Before: May 19 02:02:20 2024 GMT Not After : May 26 02:02:20 2024 GMT Subject: CN=66495dac-af6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:87:e2:ef:1f:30:e2:85:65:73:b9:96:9e:43: 8a:93:d0:38:33:98:aa:0f:6c:f3:57:00:e4:b4:90: 5c:c2:02:45:2b:89:65:1d:51:54:0a:df:39:10:03: c6:99:c4:d1:3c:21:4a:85:f5:b3:44:8c:90:0d:da: 4a:4f:ba:f5:d2:b8:1d:23:8c:0a:d4:c6:98:73:2d: 8e:9d:53:59:41:e6:3d:ca:cd:d5:fc:44:66:e9:bf: 7f:5d:f1:28:3d:4d:34:58:74:15:bd:5e:11:c5:98: 42:1e:f1:bc:bc:52:c0:a6:e9:3c:5e:fe:ab:ff:71: 02:2f:9c:45:3d:bc:36:72:ff:27:51:5d:ad:04:b1: 35:35:9b:32:6a:66:fb:39:31:40:36:58:48:cf:4f: 84:9b:63:cc:83:94:6a:28:c6:c3:05:cc:51:eb:72: cd:01:90:65:71:59:9a:0d:1e:c9:1b:da:7e:f2:9a: 68:3e:6b:8c:60:f1:73:9a:30:15:fd:04:9e:b0:46: f8:aa:9d:ae:5a:51:2c:44:45:65:8a:16:09:5a:dd: c8:05:06:56:9c:1e:fc:fb:73:70:88:06:52:15:b6: de:8d:a1:a2:38:a8:3d:15:f7:be:37:b3:95:18:4a: 10:1a:57:27:f4:6d:69:3f:b1:1e:49:9b:0c:a5:e8: 00:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B1:4F:45:71:37:5C:DA:1C:39:9F:1E:DA:F2:75:7D:BE:2A:88:E1 X509v3 Authority Key Identifier: keyid:09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:d4:6b:d2:83:d8:b9:fc:98:bf:f1:c0:ad:32:a5:96:c9:01: 82:b8:2f:ee:df:e8:b2:3e:60:96:a0:8a:0c:97:a0:1a:14:5f: e3:e8:91:a2:aa:56:a0:4c:7f:84:fe:0d:3e:65:07:52:09:d9: 98:10:fa:76:88:33:b5:3d:f4:16:26:49:2e:6b:f2:ea:71:b8: d3:d7:69:41:f6:ba:ed:fb:98:e9:56:1c:b3:95:7c:26:97:89: bc:bc:ff:cc:f8:be:b4:53:80:e9:4a:d7:1d:27:5e:ed:3c:80: 66:01:c5:c4:2e:9f:a9:89:8b:1d:56:37:42:97:8b:07:8e:53: b0:23:84:78:cf:75:fe:00:c3:1c:e1:f8:a9:ac:1e:bc:be:b3: d9:81:7d:d7:aa:0d:2b:19:24:bf:f3:c6:4c:fd:ea:aa:d9:82: ff:99:ff:c5:09:20:c9:3c:95:c1:f1:28:c9:fe:a9:db:0a:3b: ef:ec:f8:35:99:2c:49:e9:6f:00:28:1f:69:87:57:3a:aa:e5: 33:e4:86:3d:7f:f6:02:42:00:b0:82:04:65:23:5a:ab:3d:66: 37:37:2a:92:c5:79:7a:ff:08:fe:44:83:33:30:5f:86:0f:d3: 77:81:58:80:48:3f:c0:e5:b2:66:ea:0d:03:48:f5:f7:f1:5d: 11:3b:5b:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMEMxMTAvBgNVBAUTKDA5REUxOTY3RTk1MkVFOEUxQjJERDYwRjg4RjYzQkEy NjA1NzUzRUYwHhcNMjQwNTE5MDIwMjIwWhcNMjQwNTI2MDIwMjIwWjAYMRYwFAYD VQQDEw02NjQ5NWRhYy1hZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlYfi7x8w4oVlc7mWnkOKk9A4M5iqD2zzVwDktJBcwgJFK4llHVFUCt85EAPG mcTRPCFKhfWzRIyQDdpKT7r10rgdI4wK1MaYcy2OnVNZQeY9ys3V/ERm6b9/XfEo PU00WHQVvV4RxZhCHvG8vFLApuk8Xv6r/3ECL5xFPbw2cv8nUV2tBLE1NZsyamb7 OTFANlhIz0+Em2PMg5RqKMbDBcxR63LNAZBlcVmaDR7JG9p+8ppoPmuMYPFzmjAV /QSesEb4qp2uWlEsREVlihYJWt3IBQZWnB78+3NwiAZSFbbejaGiOKg9Ffe+N7OV GEoQGlcn9G1pP7EeSZsMpegAPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNCxT0Vx N1zaHDmfHtrydX2+KojhMB8GA1UdIwQYMBaAFAneGWfpUu6OGy3WD4j2O6JgV1Pv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQwQy84MTRGNkQwNDFB MUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdvNGJMZFlQaVBZN29tQlhV LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NkNFpaLWxTN280YkxkWVBpUFk3b21CWFUtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQwQy84MTRGNkQwNDFBMUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdv NGJMZFlQaVBZN29tQlhVLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ1GvSg9i5/Ji/8cCtMqWWyQGCuC/u3+iyPmCWoIoMl6AaFF/j6JGi qlagTH+E/g0+ZQdSCdmYEPp2iDO1PfQWJkkua/LqcbjT12lB9rrt+5jpVhyzlXwm l4m8vP/M+L60U4DpStcdJ17tPIBmAcXELp+piYsdVjdCl4sHjlOwI4R4z3X+AMMc 4fiprB68vrPZgX3Xqg0rGSS/88ZM/eqq2YL/mf/FCSDJPJXB8SjJ/qnbCjvv7Pg1 mSxJ6W8AKB9ph1c6quUz5IY9f/YCQgCwggRlI1qrPWY3NyqSxXl6/wj+RIMzMF+G D9N3gViASD/A5bJm6g0DSPX38V0RO1tu -----END CERTIFICATE-----Generated at Sun May 19 02:59:16 2024 by rpki-client on console-ams.rpki-client.org