$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: +lv/IypuOTvGlW75bJwhDfeRUdhnRNWdK9rRd59MtDw= Subject key identifier: 3F:CE:69:D4:A7:C5:DF:DE:89:C4:CE:1B:B8:EE:7C:57:97:90:76:22 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 096E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 0965 Signing time: Thu 02 May 2024 21:08:54 +0000 Manifest this update: Thu 02 May 2024 21:08:53 +0000 Manifest next update: Thu 09 May 2024 21:08:53 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: OOO5L8KaMQU8wbdjX5s2qR/+O5lxxQ8AYDRlJRj9AaU=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: 4pMLQrsvo0eE1V4mwyRrVEl4/gwvFne0nTtSMdkpPeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2414 (0x96e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: May 2 21:08:53 2024 GMT Not After : May 9 21:08:53 2024 GMT Subject: CN=663400e6-b4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c0:05:9f:e1:f9:ff:08:26:0d:f5:31:d5:3a: 30:54:54:3f:f1:9f:6c:a6:88:cd:53:f4:a5:a3:52: eb:14:64:b9:11:d5:32:13:a6:b2:c7:b7:01:3d:e0: d3:12:bc:4d:7f:9f:81:1e:6d:e1:ad:3c:6c:88:19: a1:d7:00:5a:91:c6:1d:6c:b2:33:d0:02:e6:e6:7a: ff:8c:7c:a3:1b:39:b6:b9:48:af:e6:f3:4f:48:b0: dc:ca:ff:ef:c2:e3:8b:4e:0e:30:9e:44:45:c4:50: 04:6e:07:11:43:6f:2b:56:e6:ca:74:b3:77:19:d7: e1:95:52:a2:48:c1:42:27:66:0e:76:67:ef:6d:1f: 95:7a:1e:2e:78:fe:99:1a:b2:4c:23:ac:0d:f2:de: 57:7b:8f:6a:fc:c0:fb:34:03:6d:21:c4:20:0f:97: 01:46:35:62:86:33:95:a6:be:ff:16:ef:88:4b:12: 82:eb:f1:73:64:b5:c2:a7:cb:76:b5:6b:ae:96:e3: 93:6d:dd:65:98:f3:31:00:36:a1:0b:a3:37:bd:71: 89:8b:00:62:5c:28:ee:d8:3a:1e:15:01:4b:4b:22: 27:40:34:1b:76:7c:00:59:f4:aa:ef:d3:86:5e:d5: 5a:90:29:67:b8:6f:cf:08:d1:e0:6b:d9:8d:69:5d: 0e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:CE:69:D4:A7:C5:DF:DE:89:C4:CE:1B:B8:EE:7C:57:97:90:76:22 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:4c:c6:33:59:4f:7b:d7:47:ba:db:d3:ca:c0:95:46:d5:d4: 6c:ac:20:3b:82:f9:02:f6:54:f9:13:01:31:a9:ec:e1:d9:65: 0b:35:fd:7b:e4:4f:89:9d:93:d2:0b:5e:6a:bf:de:e5:f6:6a: 30:0c:73:23:d2:91:a8:f0:47:03:22:f8:23:b2:cf:22:b5:ab: 57:4c:d0:54:a5:cc:7f:bb:db:95:73:3f:82:6e:4b:e2:60:83: 1e:79:8e:e4:41:0b:0d:29:0a:88:03:bd:9e:16:81:d6:f2:15: f7:9b:9d:27:8d:b3:c1:a4:5f:6e:85:97:88:64:69:13:01:df: 11:3f:02:d1:9a:97:54:e3:5e:ec:71:bc:fd:5f:9d:b1:a2:8a: 0c:55:84:57:62:36:b2:e7:a3:6a:33:f5:4f:c1:6b:7d:20:81: aa:3a:39:70:a9:45:c2:13:e0:54:c8:b6:b1:28:a7:b2:bc:ee: 42:fa:bd:f3:15:ef:57:e7:2f:ba:1e:9f:cb:f6:0f:94:ee:2c: bc:db:7b:54:3f:16:26:9a:59:ac:26:1e:7a:be:12:fe:76:6b: bc:73:13:d0:ab:50:70:91:c3:e4:8e:b0:6d:f1:6e:21:1d:29: 23:2d:35:86:9b:51:8a:bf:6e:cd:f4:05:92:28:2a:78:c8:bb: dc:06:6e:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjQwNTAyMjEwODUzWhcNMjQwNTA5MjEwODUzWjAYMRYwFAYD VQQDEw02NjM0MDBlNi1iNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MAFn+H5/wgmDfUx1TowVFQ/8Z9spojNU/Slo1LrFGS5EdUyE6ayx7cBPeDT ErxNf5+BHm3hrTxsiBmh1wBakcYdbLIz0ALm5nr/jHyjGzm2uUiv5vNPSLDcyv/v wuOLTg4wnkRFxFAEbgcRQ28rVubKdLN3GdfhlVKiSMFCJ2YOdmfvbR+Veh4ueP6Z GrJMI6wN8t5Xe49q/MD7NANtIcQgD5cBRjVihjOVpr7/Fu+ISxKC6/FzZLXCp8t2 tWuuluOTbd1lmPMxADahC6M3vXGJiwBiXCju2DoeFQFLSyInQDQbdnwAWfSq79OG XtVakClnuG/PCNHga9mNaV0O1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/OadSn xd/eicTOG7jufFeXkHYiMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXTMYzWU9710e629PKwJVG1dRsrCA7gvkC9lT5EwExqezh2WULNf17 5E+JnZPSC15qv97l9mowDHMj0pGo8EcDIvgjss8itatXTNBUpcx/u9uVcz+Cbkvi YIMeeY7kQQsNKQqIA72eFoHW8hX3m50njbPBpF9uhZeIZGkTAd8RPwLRmpdU417s cbz9X52xoooMVYRXYjay56NqM/VPwWt9IIGqOjlwqUXCE+BUyLaxKKeyvO5C+r3z Fe9X5y+6Hp/L9g+U7iy823tUPxYmmlmsJh56vhL+dmu8cxPQq1BwkcPkjrBt8W4h HSkjLTWGm1GKv27N9AWSKCp4yLvcBm7N -----END CERTIFICATE-----Generated at Thu May 2 22:28:47 2024 by rpki-client on console-ams.rpki-client.org