$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft File: zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft (raw, json) Hash identifier: 8dVLTWDW9pFunuiG6Qj90dtrln3gaYXMUXjI1dFRCuo= Subject key identifier: 73:AB:1E:71:50:52:E9:73:F0:5B:4D:CE:A2:A4:CC:39:46:3F:68:05 Authority key identifier: CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E Certificate issuer: /CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft Manifest number: 45 Signing time: Sun 19 May 2024 08:03:57 +0000 Manifest this update: Sun 19 May 2024 08:03:57 +0000 Manifest next update: Sun 26 May 2024 08:03:57 +0000 Files and hashes: 1: zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl (hash: S39YAkNLTP5Sz1cDWuv+qrT89v/ohw2uIioZKwZutqM=) 2: 91056478AF6A11EE93DDE73AC4F9AE02.roa (hash: W5uM4QWl7/kjuoUsTk27Qd3J9/dVP6EbOqHpeD+YgC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBA0C/serialNumber=CD5CD590913E4F89AF3D1CA6E29FAB3C067D214E Validity Not Before: May 19 08:03:57 2024 GMT Not After : May 26 08:03:57 2024 GMT Subject: CN=6649b26d-3df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:ae:da:8e:d8:2c:18:b0:c0:1a:e9:9c:d3: 26:20:24:52:62:d7:7f:55:d6:64:ab:82:ec:a9:de: 3d:15:7f:a2:f2:9b:b2:46:68:68:9a:8e:f4:ca:ea: c0:b2:0d:60:9d:1b:17:c9:f0:33:a0:0a:ca:7e:a8: 49:cf:62:1a:a2:28:6b:79:2d:85:1d:0f:d7:35:af: 53:e8:93:8c:9b:60:2e:70:1c:05:96:f0:65:54:11: e9:b4:65:26:9f:5b:6c:15:51:89:98:a4:47:3d:e9: 2d:96:40:88:d3:8f:dc:dd:b2:44:f0:9d:c0:f5:ee: 6d:4b:be:08:dc:8d:48:6f:21:02:e7:e6:c4:c7:4d: 7b:53:7f:a9:d4:ff:4a:0b:c9:cc:e1:46:c3:09:f2: 71:5d:07:6d:d4:20:63:18:0e:2a:3a:72:4f:05:7f: ea:8b:4b:b1:c5:8f:ef:5b:72:76:29:33:21:39:6f: 88:5e:bc:10:80:57:7e:06:85:58:c9:80:34:31:cf: 21:02:6e:4e:75:64:27:d6:1f:26:02:e1:c7:1a:1f: d9:8c:63:84:e6:55:7d:6d:d9:28:f8:35:3e:41:e8: 7f:df:e0:da:34:2f:49:11:29:63:68:0c:20:2e:5b: 2e:ab:9f:21:1c:e2:52:02:52:b0:2f:47:85:52:cf: 09:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:AB:1E:71:50:52:E9:73:F0:5B:4D:CE:A2:A4:CC:39:46:3F:68:05 X509v3 Authority Key Identifier: keyid:CD:5C:D5:90:91:3E:4F:89:AF:3D:1C:A6:E2:9F:AB:3C:06:7D:21:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zVzVkJE-T4mvPRym4p-rPAZ9IU4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBA0C/41531B0CAECD11EE86F1B249C4F9AE02/zVzVkJE-T4mvPRym4p-rPAZ9IU4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:b7:67:dd:76:b6:7b:58:b4:57:72:1d:f3:71:76:ea:17:88: 83:a0:12:97:30:1a:61:49:02:9d:ff:1d:23:27:a9:b9:23:ea: 21:25:c0:20:72:c6:b6:8f:ff:13:a0:09:b0:97:b0:54:bb:01: 2e:c9:0d:fd:51:67:fc:c5:3f:bf:11:ae:9e:59:08:0a:29:a6: fd:44:27:7d:69:a5:ac:dd:ac:fb:bc:83:73:d0:ab:d9:47:db: 87:40:a1:b0:b8:65:94:f9:83:17:99:fa:79:b1:ae:73:02:01: bd:8e:71:3a:7d:e1:f4:82:b3:bd:bd:9f:b2:28:25:fb:fd:a3: 34:5c:4d:b7:7f:9a:77:b2:22:31:5a:53:0c:af:c2:92:42:0f: 92:1d:a6:68:89:2d:25:e2:5a:6b:49:5a:52:c0:2d:4a:0f:93: 32:39:23:f4:ca:5e:b1:05:95:33:95:f0:c3:41:c8:ad:12:aa: 6e:b5:19:e6:49:92:f8:b2:bf:1c:7e:32:d1:40:b4:f4:e8:02: bc:87:36:94:51:a8:f5:9a:13:95:cf:f6:f4:15:e0:3b:fb:4d: 6b:37:55:ac:63:2c:69:41:2b:de:a6:70:2c:b4:2a:7c:36:6c: 71:a8:99:59:c1:51:62:d9:75:a5:1f:22:0f:7f:37:45:c2:2d: 48:07:f3:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkEwQzExMC8GA1UEBRMoQ0Q1Q0Q1OTA5MTNFNEY4OUFGM0QxQ0E2RTI5RkFCM0Mw NjdEMjE0RTAeFw0yNDA1MTkwODAzNTdaFw0yNDA1MjYwODAzNTdaMBgxFjAUBgNV BAMTDTY2NDliMjZkLTNkZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9r67ajtgsGLDAGumc0yYgJFJi139V1mSrguyp3j0Vf6Lym7JGaGiajvTK6sCy DWCdGxfJ8DOgCsp+qEnPYhqiKGt5LYUdD9c1r1Pok4ybYC5wHAWW8GVUEem0ZSaf W2wVUYmYpEc96S2WQIjTj9zdskTwncD17m1LvgjcjUhvIQLn5sTHTXtTf6nU/0oL yczhRsMJ8nFdB23UIGMYDio6ck8Ff+qLS7HFj+9bcnYpMyE5b4hevBCAV34GhVjJ gDQxzyECbk51ZCfWHyYC4ccaH9mMY4TmVX1t2Sj4NT5B6H/f4No0L0kRKWNoDCAu Wy6rnyEc4lICUrAvR4VSzwkBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc6secVBS 6XPwW03OoqTMOUY/aAUwHwYDVR0jBBgwFoAUzVzVkJE+T4mvPRym4p+rPAZ9IU4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCQTBDLzQxNTMxQjBDQUVD RDExRUU4NkYxQjI0OUM0RjlBRTAyL3pWelZrSkUtVDRtdlBSeW00cC1yUEFaOUlV NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelZ6VmtKRS1UNG12UFJ5bTRwLXJQQVo5SVU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC QTBDLzQxNTMxQjBDQUVDRDExRUU4NkYxQjI0OUM0RjlBRTAyL3pWelZrSkUtVDRt dlBSeW00cC1yUEFaOUlVNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABa3Z912tntYtFdyHfNxduoXiIOgEpcwGmFJAp3/HSMnqbkj6iElwCBy xraP/xOgCbCXsFS7AS7JDf1RZ/zFP78Rrp5ZCAoppv1EJ31ppazdrPu8g3PQq9lH 24dAobC4ZZT5gxeZ+nmxrnMCAb2OcTp94fSCs729n7IoJfv9ozRcTbd/mneyIjFa UwyvwpJCD5IdpmiJLSXiWmtJWlLALUoPkzI5I/TKXrEFlTOV8MNByK0Sqm61GeZJ kviyvxx+MtFAtPToAryHNpRRqPWaE5XP9vQV4Dv7TWs3VaxjLGlBK96mcCy0Knw2 bHGomVnBUWLZdaUfIg9/N0XCLUgH84E= -----END CERTIFICATE-----Generated at Sun May 19 09:04:15 2024 by rpki-client on console-fra.rpki-client.org