$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: bNlXVi1815Yo5iUrzkr4fuqKyzaodyntdYQR3SrLcpw= Subject key identifier: 34:16:DB:A3:22:A6:62:33:12:70:1D:12:80:A6:CE:26:0E:77:38:61 Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 1669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 1650 Signing time: Mon 06 May 2024 17:16:07 +0000 Manifest this update: Mon 06 May 2024 17:16:07 +0000 Manifest next update: Mon 13 May 2024 17:16:07 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: aJYvRmtBrPWSevRSSliogrphlOm1a+iOyvuxR2xYkCU=) 2: 9AE12F1CB74111EDB0C38030C4F9AE02.roa (hash: 8RSjYugc2F9VWw0Ud3ECEZ6Drs3HKkHChTyELE7deCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 17:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5737 (0x1669) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: May 6 17:16:07 2024 GMT Not After : May 13 17:16:07 2024 GMT Subject: CN=66391057-6e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ac:1e:e9:66:6b:2b:74:37:f4:b9:67:60:f5: aa:47:f9:91:4c:d8:7e:aa:a2:59:ea:76:05:ff:62: 50:e5:ba:f0:68:39:3d:d4:ed:11:4a:5a:f2:bd:86: f5:f2:7d:c4:3b:4b:e7:9c:97:1b:7e:50:a6:ba:13: 60:b2:87:54:97:19:37:1a:a8:71:f6:1f:09:97:72: 2e:dc:63:b4:53:e1:f8:13:d6:9d:e1:4d:da:1c:8b: 78:de:76:f5:25:9c:18:19:2e:30:04:52:15:69:9c: ef:ab:62:74:f1:a8:26:05:3c:31:3c:0c:58:5d:ac: d3:9d:5b:36:f4:cd:75:a5:71:6d:22:6c:42:e0:2a: 6c:f6:be:56:dd:03:65:a0:4a:47:34:4c:31:65:68: 13:50:57:2a:73:a5:2e:65:db:19:75:a6:b9:f4:04: 0e:57:6d:b4:09:78:9a:f7:0e:9e:73:76:85:2e:87: 37:0f:a7:62:60:7f:89:05:3c:78:03:6d:97:93:43: 77:d1:2c:7b:8d:5c:91:27:27:bd:12:11:47:ca:c7: 63:15:78:60:dd:58:be:af:68:7e:9e:f7:39:03:c6: c0:bc:cf:f0:bc:31:75:3c:71:6a:ec:7f:55:d2:cf: c9:56:a0:17:c8:20:ff:cc:7e:3e:03:19:6d:f6:8a: 19:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:16:DB:A3:22:A6:62:33:12:70:1D:12:80:A6:CE:26:0E:77:38:61 X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:62:46:ad:5e:d1:9d:3d:dc:32:4a:c7:0e:8d:68:d1:e8:7c: ba:f7:79:29:47:b5:62:f6:8e:72:65:4f:f4:9d:94:b2:fd:f4: c9:ab:05:aa:1d:1a:42:2c:98:81:66:e2:f5:df:8d:73:fc:69: 51:6a:4a:1b:44:b6:0c:ff:87:cb:c9:39:3e:49:a7:a3:df:55: fd:20:09:8c:ea:be:0f:16:7b:f8:65:12:86:49:c4:e1:b8:3d: 2a:1d:ed:58:55:8a:cd:2d:c6:b4:96:e7:1f:f1:2b:76:b4:4f: ba:e6:4d:33:58:28:61:e5:d3:b4:1e:11:bf:7d:30:54:be:57: 66:81:53:4e:d3:2f:cc:fa:f4:90:bb:c8:72:64:7d:26:98:7f: 4c:b2:96:1c:0e:32:00:b3:7d:2d:a0:ae:89:b6:c8:3f:57:3f: 68:e0:41:81:ba:29:ce:fc:dc:22:bd:ff:b3:e1:ae:be:3a:74: 0f:5b:65:fb:ed:77:9e:01:62:94:b3:c7:ba:08:f6:53:a0:05: c7:ac:ff:13:b3:e0:5e:f8:18:c8:9d:2a:3d:8a:4b:91:2e:ba: 1b:36:48:86:c3:90:c6:fd:85:57:e4:48:c5:b1:45:cd:00:d6: 61:cf:48:6b:5a:fc:83:43:ea:8d:5d:1d:e5:8e:b8:36:e6:62: 08:00:8c:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjQwNTA2MTcxNjA3WhcNMjQwNTEzMTcxNjA3WjAYMRYwFAYD VQQDEw02NjM5MTA1Ny02ZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqwe6WZrK3Q39LlnYPWqR/mRTNh+qqJZ6nYF/2JQ5brwaDk91O0RSlryvYb1 8n3EO0vnnJcbflCmuhNgsodUlxk3Gqhx9h8Jl3Iu3GO0U+H4E9ad4U3aHIt43nb1 JZwYGS4wBFIVaZzvq2J08agmBTwxPAxYXazTnVs29M11pXFtImxC4Cps9r5W3QNl oEpHNEwxZWgTUFcqc6UuZdsZdaa59AQOV220CXia9w6ec3aFLoc3D6diYH+JBTx4 A22Xk0N30Sx7jVyRJye9EhFHysdjFXhg3Vi+r2h+nvc5A8bAvM/wvDF1PHFq7H9V 0s/JVqAXyCD/zH4+Axlt9ooZzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQW26Mi pmIzEnAdEoCmziYOdzhhMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGYkatXtGdPdwySscOjWjR6Hy693kpR7Vi9o5yZU/0nZSy/fTJqwWq HRpCLJiBZuL1341z/GlRakobRLYM/4fLyTk+Saej31X9IAmM6r4PFnv4ZRKGScTh uD0qHe1YVYrNLca0lucf8St2tE+65k0zWChh5dO0HhG/fTBUvldmgVNO0y/M+vSQ u8hyZH0mmH9MspYcDjIAs30toK6Jtsg/Vz9o4EGBuinO/Nwivf+z4a6+OnQPW2X7 7XeeAWKUs8e6CPZToAXHrP8Ts+Be+BjInSo9ikuRLrobNkiGw5DG/YVX5EjFsUXN ANZhz0hrWvyDQ+qNXR3ljrg25mIIAIzw -----END CERTIFICATE-----Generated at Mon May 6 20:19:07 2024 by rpki-client on console-fra.rpki-client.org