$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft File: zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft (raw, json) Hash identifier: IBNHm+K+BQxjO2erJvN9DDbkB4xGJs7vqj10A5YDzQ0= Subject key identifier: 52:38:27:8A:F1:B9:ED:5A:3A:C4:C6:9F:DE:E6:9B:28:6E:0C:1D:E7 Authority key identifier: CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 Certificate issuer: /CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft Manifest number: 07EA Signing time: Sat 18 May 2024 21:56:22 +0000 Manifest this update: Sat 18 May 2024 21:56:21 +0000 Manifest next update: Sat 25 May 2024 21:56:21 +0000 Files and hashes: 1: zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl (hash: 7T/lH6CKnJ8IjarQI9ZFqLkZwnsj9ObmbJ4vXdbY1PM=) 2: B3900AB8D6E611EEAD5FBD64C4F9AE02.roa (hash: DYns0ivgrckF3unWHyEGrijl6WFHyyfy4r6hMwFGNGc=) 3: 9E43A19CD6E611EEAE5D8F64C4F9AE02.roa (hash: ShLJrtzXni57aVHcps3NYL30Ym5SX2SH0OFQXLrKWh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED8E0/serialNumber=CC5419C8A78BCD53AD171C5B74A4071D95395049 Validity Not Before: May 18 21:56:21 2024 GMT Not After : May 25 21:56:21 2024 GMT Subject: CN=66492406-217b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:58:51:00:12:3e:e4:d1:3f:ec:86:08:b7:3d: fd:fd:ee:cf:90:2d:08:78:f4:4f:3c:c1:a5:2d:cc: bd:e5:7f:ca:78:6b:95:01:f5:12:f9:c9:a4:27:2c: 92:ed:91:9f:45:17:66:61:10:6b:8e:2d:db:11:3d: a7:ec:0f:4c:0d:5c:a1:99:6f:8e:62:1a:b4:c0:d5: 80:b9:20:77:22:6c:3b:d0:77:34:4c:57:e5:6c:e4: 5a:57:1a:45:1b:57:a8:50:2b:5c:c0:55:19:f7:f5: 0e:9d:78:97:da:6d:2c:9b:03:0a:11:b1:b4:d5:1d: 34:9c:12:ba:b8:4c:3e:82:4a:38:3f:2d:c2:07:6b: c1:fe:b0:88:ce:9e:05:9c:d6:28:0a:52:78:14:1a: 76:3c:da:c2:77:79:4c:56:69:45:b6:36:d2:50:66: 38:7a:de:42:00:b4:4f:2f:c8:e5:65:e7:9f:da:fb: 1a:2f:e7:01:3e:9c:1d:84:77:48:8e:86:60:60:11: 12:1a:36:47:9c:af:9c:bd:1d:ee:d4:1c:48:ca:d7: 0b:9b:55:4d:b2:0e:3a:25:95:cb:21:53:b8:35:e7: 1a:27:f5:22:bd:3a:b1:21:b3:26:88:e7:30:0a:03: e2:9f:10:fd:ae:28:09:f8:ed:a0:50:eb:a6:79:ea: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:38:27:8A:F1:B9:ED:5A:3A:C4:C6:9F:DE:E6:9B:28:6E:0C:1D:E7 X509v3 Authority Key Identifier: keyid:CC:54:19:C8:A7:8B:CD:53:AD:17:1C:5B:74:A4:07:1D:95:39:50:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFQZyKeLzVOtFxxbdKQHHZU5UEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED8E0/EE2D5326B94711EA8A649E76C4F9AE02/zFQZyKeLzVOtFxxbdKQHHZU5UEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:16:32:f7:b8:a7:32:85:9e:01:c5:d4:b1:c0:64:77:aa:ff: c5:56:8c:b3:7e:8a:24:ac:13:ee:81:39:8b:8f:a4:b0:92:8c: 4a:af:f4:ed:50:26:15:2e:05:29:b1:11:3b:a5:0d:25:72:ee: ad:59:28:25:e5:ae:8d:31:6d:5d:3d:c6:79:f2:1f:03:84:85: 8d:a7:c0:ff:61:e5:16:16:ad:ab:a0:3d:f5:78:75:20:38:14: 25:b4:dd:33:70:2c:d2:91:67:bb:87:2a:45:0f:ce:cb:49:19: 78:2b:e7:2a:a6:85:cc:dc:34:dc:18:c3:57:89:9e:d9:b8:47: 53:d1:5f:d7:c5:b4:51:05:cc:24:72:9d:a9:02:21:36:42:03: 9d:aa:87:33:15:a2:9e:47:b8:65:55:2f:c6:3a:81:d6:58:2e: 76:e5:73:69:d9:7d:1c:67:7c:b3:ee:6b:9a:cf:f4:92:0b:65: 40:a7:46:4b:36:74:1c:ae:28:83:73:19:00:2d:10:44:fa:42: cd:ec:e3:73:b7:19:6b:e2:f2:03:e9:e8:b1:a0:4f:3e:81:a6: 40:14:a8:61:3f:31:46:71:03:34:86:ea:c3:5e:21:9a:47:a6: 4f:a1:ff:67:9e:0a:b8:dc:3a:02:ca:81:c7:00:60:30:3f:15: b6:41:9f:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ4RTAxMTAvBgNVBAUTKENDNTQxOUM4QTc4QkNENTNBRDE3MUM1Qjc0QTQwNzFE OTUzOTUwNDkwHhcNMjQwNTE4MjE1NjIxWhcNMjQwNTI1MjE1NjIxWjAYMRYwFAYD VQQDEw02NjQ5MjQwNi0yMTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FhRABI+5NE/7IYItz39/e7PkC0IePRPPMGlLcy95X/KeGuVAfUS+cmkJyyS 7ZGfRRdmYRBrji3bET2n7A9MDVyhmW+OYhq0wNWAuSB3Imw70Hc0TFflbORaVxpF G1eoUCtcwFUZ9/UOnXiX2m0smwMKEbG01R00nBK6uEw+gko4Py3CB2vB/rCIzp4F nNYoClJ4FBp2PNrCd3lMVmlFtjbSUGY4et5CALRPL8jlZeef2vsaL+cBPpwdhHdI joZgYBESGjZHnK+cvR3u1BxIytcLm1VNsg46JZXLIVO4NecaJ/UivTqxIbMmiOcw CgPinxD9rigJ+O2gUOumeeqSlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFI4J4rx ue1aOsTGn97mmyhuDB3nMB8GA1UdIwQYMBaAFMxUGcini81TrRccW3SkBx2VOVBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDhFMC9FRTJENTMyNkI5 NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpWT3RGeHhiZEtRSEhaVTVV RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGUVp5S2VMelZPdEZ4eGJkS1FISFpVNVVFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDhFMC9FRTJENTMyNkI5NDcxMUVBOEE2NDlFNzZDNEY5QUUwMi96RlFaeUtlTHpW T3RGeHhiZEtRSEhaVTVVRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2FjL3uKcyhZ4BxdSxwGR3qv/FVoyzfookrBPugTmLj6SwkoxKr/Tt UCYVLgUpsRE7pQ0lcu6tWSgl5a6NMW1dPcZ58h8DhIWNp8D/YeUWFq2roD31eHUg OBQltN0zcCzSkWe7hypFD87LSRl4K+cqpoXM3DTcGMNXiZ7ZuEdT0V/XxbRRBcwk cp2pAiE2QgOdqoczFaKeR7hlVS/GOoHWWC525XNp2X0cZ3yz7muaz/SSC2VAp0ZL NnQcriiDcxkALRBE+kLN7ONztxlr4vID6eixoE8+gaZAFKhhPzFGcQM0hurDXiGa R6ZPof9nngq43DoCyoHHAGAwPxW2QZ8c -----END CERTIFICATE-----Generated at Sun May 19 00:16:20 2024 by rpki-client on console-fra.rpki-client.org