$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: LY71+xyWYWKv2KaJihPa9ycVihdiytASH8qhs7S8zRk= Subject key identifier: A8:6B:FE:DE:7B:24:E8:B6:9B:30:56:F1:A0:E6:F4:06:B3:37:EA:4B Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0A52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0A44 Signing time: Sat 04 May 2024 20:36:01 +0000 Manifest this update: Sat 04 May 2024 20:36:00 +0000 Manifest next update: Sat 11 May 2024 20:36:00 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: IWHYNctFFV9p9/+vOvhwmveH1BM81w4l2t/KS9cbpBc=) 2: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (hash: aZFk/jeAKBRQ9pX8ov3nhu9S2K8GPr033EG+y/UBeE8=) 3: F3AFC1DE417011EA951D4669C4F9AE02.roa (hash: f2ZdUvCW7NMjhFBjgaI5+riea8AbuENSUk1KSW/65Iw=) 4: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: X2hY9dLSEi0KLChyX6EN8ewtqBNd6x6WyrUR2WYRH4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: May 4 20:36:00 2024 GMT Not After : May 11 20:36:00 2024 GMT Subject: CN=66369c30-aef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7f:c9:28:4f:8a:1e:ea:ea:4b:99:09:2e:ee: dc:1f:79:1d:c5:c8:cd:63:ed:98:cb:86:54:a4:33: cd:62:26:01:5e:b4:3d:de:ce:ab:2c:62:aa:da:07: f3:19:3c:ba:31:d3:14:10:f2:2c:75:28:85:6a:5b: 42:0d:97:81:e3:a1:84:5f:46:a6:3a:ce:5f:72:ca: 25:14:5a:9a:6e:65:10:44:e8:03:80:9c:68:bf:bf: e0:cc:40:e2:93:f9:34:e1:08:4e:29:04:6e:d0:65: b2:49:5d:09:e5:d6:74:4c:b4:e7:a6:28:ef:7a:ea: 49:7d:14:f4:62:03:f9:86:7e:6a:e8:ae:7a:64:a0: 06:51:b6:b5:98:57:51:d2:7c:6c:8f:08:60:26:06: 5e:35:fe:55:ed:7e:fb:4e:71:2a:ab:d8:b3:af:59: f1:d9:b6:cc:34:e8:38:e8:94:39:d0:c2:7c:1c:18: 0e:aa:7e:a7:5e:89:99:1c:1f:a5:4e:c6:79:11:4c: 38:f7:a7:a9:f5:af:d5:da:93:0e:47:c0:22:ad:e3: df:82:0a:59:d4:79:eb:55:c4:b3:71:b4:0e:f1:5b: 6a:c4:b2:72:3e:e1:c1:bc:66:9f:69:a4:70:67:d5: be:97:31:8f:42:73:8e:c2:d6:da:4e:41:e1:79:f4: e6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6B:FE:DE:7B:24:E8:B6:9B:30:56:F1:A0:E6:F4:06:B3:37:EA:4B X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:50:1b:22:13:a7:f7:3f:07:76:7c:1d:f2:13:4a:03:f3:37: df:f8:81:7b:b4:91:f2:ea:b5:e6:52:77:55:cc:41:7d:0b:aa: dc:6d:40:b0:a8:e7:28:72:f7:b7:e8:9d:b0:d1:7e:90:d8:51: b4:3f:bf:eb:f0:71:81:52:8d:ef:65:ae:b1:3c:54:99:a1:10: 5c:cd:04:ba:4a:ea:90:2d:78:47:51:99:2f:c3:62:26:01:2e: 0d:b1:c2:93:5a:b7:99:4d:cb:b5:60:24:49:d5:cb:ae:5d:0c: 66:58:4f:ce:d9:24:41:4d:18:4d:fc:e9:59:81:28:01:58:4c: 82:f9:f7:6f:57:d5:85:74:a2:12:b8:14:ce:5f:ca:1f:42:af: d8:aa:55:f8:9c:60:38:f8:45:fd:92:76:e0:32:68:fa:a1:d1: dd:fe:36:2f:af:ad:8e:fe:22:3c:59:00:94:6b:76:9e:c1:fb: a7:eb:e0:de:5e:bd:da:0a:49:59:eb:bd:1b:e2:50:ba:7d:08: 6e:2d:7a:7c:5a:4b:d7:29:df:1c:4a:b8:d6:4d:7e:72:0f:65: 23:99:76:b7:be:96:4b:1e:b3:59:37:8e:10:f2:05:bf:7d:06: 41:71:4b:3e:f2:fc:b9:c0:3e:ed:c4:6c:8a:bb:74:f2:eb:6b: 65:b3:5c:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjQwNTA0MjAzNjAwWhcNMjQwNTExMjAzNjAwWjAYMRYwFAYD VQQDEw02NjM2OWMzMC1hZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyH/JKE+KHurqS5kJLu7cH3kdxcjNY+2Yy4ZUpDPNYiYBXrQ93s6rLGKq2gfz GTy6MdMUEPIsdSiFaltCDZeB46GEX0amOs5fcsolFFqabmUQROgDgJxov7/gzEDi k/k04QhOKQRu0GWySV0J5dZ0TLTnpijveupJfRT0YgP5hn5q6K56ZKAGUba1mFdR 0nxsjwhgJgZeNf5V7X77TnEqq9izr1nx2bbMNOg46JQ50MJ8HBgOqn6nXomZHB+l TsZ5EUw496ep9a/V2pMOR8AirePfggpZ1HnrVcSzcbQO8VtqxLJyPuHBvGafaaRw Z9W+lzGPQnOOwtbaTkHhefTm2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhr/t57 JOi2mzBW8aDm9AazN+pLMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoUBsiE6f3Pwd2fB3yE0oD8zff+IF7tJHy6rXmUndVzEF9C6rcbUCw qOcocve36J2w0X6Q2FG0P7/r8HGBUo3vZa6xPFSZoRBczQS6SuqQLXhHUZkvw2Im AS4NscKTWreZTcu1YCRJ1cuuXQxmWE/O2SRBTRhN/OlZgSgBWEyC+fdvV9WFdKIS uBTOX8ofQq/YqlX4nGA4+EX9knbgMmj6odHd/jYvr62O/iI8WQCUa3aewfun6+De Xr3aCklZ670b4lC6fQhuLXp8WkvXKd8cSrjWTX5yD2UjmXa3vpZLHrNZN44Q8gW/ fQZBcUs+8vy5wD7txGyKu3Ty62tls1zb -----END CERTIFICATE-----Generated at Sat May 4 21:32:57 2024 by rpki-client on console-fra.rpki-client.org