$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: O5aRHrC0Q2Ft+6tyIhTWIx+vNJWk6yi+S0JCa7wQlGw= Subject key identifier: E3:01:78:C7:58:AE:1C:22:87:7D:59:7D:37:7D:53:52:95:6B:FC:4C Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0BBF Signing time: Sat 18 May 2024 19:09:14 +0000 Manifest this update: Sat 18 May 2024 19:09:14 +0000 Manifest next update: Sat 25 May 2024 19:09:14 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: /qh2F3YwOAdpshSA1u2YNGdogL9i3EXBjAIWck4sWcc=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tRW1SHxCN8QAU/mz80KqvbDC65dMejXwVIGduSjQTvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: May 18 19:09:14 2024 GMT Not After : May 25 19:09:14 2024 GMT Subject: CN=6648fcda-21fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:de:24:e1:f3:f0:ab:73:cb:34:e7:14:54:43: 42:7c:e4:e7:22:79:0b:64:78:23:35:56:34:95:8f: 61:89:b9:cd:3e:90:5e:ef:52:c3:4e:3c:9f:84:69: b8:d6:cf:d8:d6:e4:0d:49:a1:7e:2f:16:8d:3b:60: d2:ae:54:60:6d:54:fe:ba:f9:44:31:1b:a9:ee:b9: 66:f4:e3:2d:bb:12:d2:98:79:66:73:de:9b:5b:11: 13:3a:0a:b4:c0:0b:93:8c:21:ca:ed:95:0e:bd:a5: 00:01:86:06:80:a1:3f:f0:4f:4c:07:a6:e4:c6:a7: 5a:cd:ba:2a:c2:b2:d8:20:45:27:b4:59:f9:dd:22: c0:c8:84:fb:c1:7e:89:34:0c:0e:fa:3b:44:93:36: 55:49:83:18:d0:e0:0d:f8:5b:cc:b8:01:09:d2:6b: 8e:6a:ea:05:e6:0c:78:ff:ba:1f:80:d1:5d:42:59: 3d:11:60:73:18:85:54:09:f5:ba:cf:70:1e:75:e7: d5:eb:ea:5f:55:bf:8a:6c:b7:2c:7e:b3:ee:13:86: 1d:0a:9b:df:02:a1:92:bc:45:3a:47:d2:4a:e7:10: d5:70:0b:ee:35:75:c4:b0:31:39:b2:b7:6a:62:32: 1e:b6:82:41:f8:2d:ff:07:ff:49:bd:d1:a9:4c:de: c1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:01:78:C7:58:AE:1C:22:87:7D:59:7D:37:7D:53:52:95:6B:FC:4C X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b7:28:9c:46:7e:d0:d9:ea:07:71:c7:10:2f:17:69:4a:4a: 6d:e7:1b:ae:94:3c:87:5b:af:6d:84:65:8e:1d:b0:e4:c1:ad: c1:fa:7f:fe:eb:8c:9f:33:d9:0c:85:5f:56:45:c1:58:7c:b7: c6:19:23:90:a1:e4:06:e2:d7:3d:3c:e6:1e:c6:4e:3d:f0:de: ed:62:d8:b6:4a:9a:86:88:11:da:6f:d2:b0:e5:87:63:e0:8d: 9d:16:28:5e:91:6e:50:8c:bb:2f:c2:eb:f7:be:ee:41:c2:e3: 6b:d3:c0:4a:ba:93:3c:74:6e:5f:d9:96:70:90:00:6b:19:37: 81:c9:2a:41:1d:29:3f:e1:3b:3e:d9:7f:60:b7:79:00:b0:d3: fc:b7:cc:59:6f:70:59:a6:4d:94:d0:71:8f:16:78:1b:95:2f: f7:fa:fc:47:82:e3:8f:59:71:fd:b6:b7:0d:9c:b7:76:73:d3: bf:20:8f:30:d6:0c:27:47:59:77:16:bc:de:de:4b:14:3c:fc: 13:7d:45:06:f6:6c:b6:60:92:cd:dd:8a:9c:0f:01:04:93:36: 8e:29:ed:f1:5b:85:f0:fe:ac:10:2b:65:f9:7f:8b:3e:3d:8f: c9:52:52:18:4d:ed:aa:ab:61:83:b5:ea:3b:de:43:8e:ee:e2: 1a:24:98:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjQwNTE4MTkwOTE0WhcNMjQwNTI1MTkwOTE0WjAYMRYwFAYD VQQDEw02NjQ4ZmNkYS0yMWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtt4k4fPwq3PLNOcUVENCfOTnInkLZHgjNVY0lY9hibnNPpBe71LDTjyfhGm4 1s/Y1uQNSaF+LxaNO2DSrlRgbVT+uvlEMRup7rlm9OMtuxLSmHlmc96bWxETOgq0 wAuTjCHK7ZUOvaUAAYYGgKE/8E9MB6bkxqdazboqwrLYIEUntFn53SLAyIT7wX6J NAwO+jtEkzZVSYMY0OAN+FvMuAEJ0muOauoF5gx4/7ofgNFdQlk9EWBzGIVUCfW6 z3AedefV6+pfVb+KbLcsfrPuE4YdCpvfAqGSvEU6R9JK5xDVcAvuNXXEsDE5srdq YjIetoJB+C3/B/9JvdGpTN7B0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMBeMdY rhwih31ZfTd9U1KVa/xMMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+tyicRn7Q2eoHcccQLxdpSkpt5xuulDyHW69thGWOHbDkwa3B+n/+ 64yfM9kMhV9WRcFYfLfGGSOQoeQG4tc9POYexk498N7tYti2SpqGiBHab9Kw5Ydj 4I2dFihekW5QjLsvwuv3vu5BwuNr08BKupM8dG5f2ZZwkABrGTeBySpBHSk/4Ts+ 2X9gt3kAsNP8t8xZb3BZpk2U0HGPFngblS/3+vxHguOPWXH9trcNnLd2c9O/II8w 1gwnR1l3Frze3ksUPPwTfUUG9my2YJLN3YqcDwEEkzaOKe3xW4Xw/qwQK2X5f4s+ PY/JUlIYTe2qq2GDteo73kOO7uIaJJgE -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org