$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: zNFpGrqePqgIgTn9F9cKulFfHOXEPTkX6WKWROiHkbI= Subject key identifier: 50:96:AD:74:B4:EA:34:38:95:BA:B8:68:5D:FC:F6:FA:7F:4B:55:C0 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 0FA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 0F9D Signing time: Tue 30 Apr 2024 18:20:48 +0000 Manifest this update: Tue 30 Apr 2024 18:20:48 +0000 Manifest next update: Tue 07 May 2024 18:20:48 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: iyp9ceJE+KGVsSi588mQs1FXGk8pDZxgJHfJV0jyEho=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: WsFnnJ9tOKw92AuHWBqArMTWSmjEnxiOvKWkqqpRfVk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 18:20:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4005 (0xfa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Apr 30 18:20:48 2024 GMT Not After : May 7 18:20:48 2024 GMT Subject: CN=66313680-b989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ea:e2:0c:d2:90:9c:8a:b6:3c:f8:90:75:5a: 98:03:50:d5:a6:e0:0e:c9:2f:5b:a2:9a:43:b1:ba: 06:bc:99:e9:07:97:53:83:3d:5b:14:75:ab:34:63: c2:7f:1e:47:8c:04:b2:95:94:60:e8:20:ae:b6:07: ca:fc:30:4f:9c:13:fe:fe:e4:d8:67:8f:9b:e6:dc: 30:11:7e:51:25:50:59:be:ef:39:63:2d:0c:21:ea: a9:f3:be:4e:2f:26:f4:51:de:cc:b4:1a:b8:6d:18: 39:8c:d8:cd:f0:e2:d0:b5:6c:98:a1:c4:59:43:33: 3a:6d:08:e9:5f:a1:57:5f:65:a6:b1:42:dc:09:06: 84:42:f6:7e:cd:5a:d2:85:ef:dd:ba:ef:d6:2e:33: 60:17:c2:e4:ab:92:9f:94:d4:f7:9a:3d:ca:dd:d7: 47:28:83:19:95:93:ab:c7:5a:b9:2a:36:df:41:cb: 48:92:64:79:67:fc:7d:84:28:d3:a5:e8:85:c7:d3: 6c:65:d8:96:92:ce:5b:30:d7:5a:a8:56:ea:cb:a5: 71:80:ca:13:05:72:70:cc:0c:13:ec:c7:a8:dd:05: bd:75:c6:17:73:1d:96:7f:58:b1:c2:a1:24:8f:b5: ad:06:58:99:da:79:09:15:39:3b:1c:37:b3:de:c3: ac:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:96:AD:74:B4:EA:34:38:95:BA:B8:68:5D:FC:F6:FA:7F:4B:55:C0 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:87:86:8f:52:42:b1:cb:19:d5:9e:ac:47:97:b6:85:d9:e8: 46:47:48:9d:bd:cc:a6:68:ce:1c:c1:a5:cc:77:0a:4c:c8:68: fe:54:59:9e:49:73:e6:e5:8e:98:17:ad:4e:69:47:c8:d5:06: 34:e3:b9:db:b2:02:07:d5:8b:ec:f0:d4:1a:f6:c0:d5:d5:c8: f5:25:6c:7f:62:e5:a8:a6:83:97:19:bd:60:66:23:34:0e:c3: 77:2c:a8:96:39:b6:ca:ac:80:dc:5c:e3:52:00:96:32:01:65: 33:5b:38:e0:8b:87:7a:f4:b3:a8:0e:f3:78:6e:16:59:0d:1d: 2d:46:dc:e3:03:0a:3f:6e:83:00:54:68:68:ec:13:9c:1d:ff: 32:c1:55:84:8b:9d:bc:8a:9c:13:aa:db:70:ec:e6:1c:b6:f0: b7:7b:65:42:a3:db:85:51:08:8b:0a:94:9b:6d:9d:31:eb:d5: 31:e1:5a:88:fc:b9:7f:f1:1b:e3:3b:9c:54:ce:99:ee:30:16: 2e:fa:6d:4c:49:b7:c1:ea:57:d8:10:1f:da:16:29:0e:7a:07: 06:22:cf:b4:29:ee:0a:2d:76:06:3c:c6:10:92:9c:a9:a3:f6: 4e:b4:d7:b6:f2:e1:b0:1c:77:8a:e9:1f:1d:d8:5b:48:09:d7: 91:f6:d3:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjQwNDMwMTgyMDQ4WhcNMjQwNTA3MTgyMDQ4WjAYMRYwFAYD VQQDEw02NjMxMzY4MC1iOTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+riDNKQnIq2PPiQdVqYA1DVpuAOyS9boppDsboGvJnpB5dTgz1bFHWrNGPC fx5HjASylZRg6CCutgfK/DBPnBP+/uTYZ4+b5twwEX5RJVBZvu85Yy0MIeqp875O Lyb0Ud7MtBq4bRg5jNjN8OLQtWyYocRZQzM6bQjpX6FXX2WmsULcCQaEQvZ+zVrS he/duu/WLjNgF8Lkq5KflNT3mj3K3ddHKIMZlZOrx1q5KjbfQctIkmR5Z/x9hCjT peiFx9NsZdiWks5bMNdaqFbqy6VxgMoTBXJwzAwT7Meo3QW9dcYXcx2Wf1ixwqEk j7WtBliZ2nkJFTk7HDez3sOs6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCWrXS0 6jQ4lbq4aF389vp/S1XAMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZh4aPUkKxyxnVnqxHl7aF2ehGR0idvcymaM4cwaXMdwpMyGj+VFme SXPm5Y6YF61OaUfI1QY047nbsgIH1Yvs8NQa9sDV1cj1JWx/YuWopoOXGb1gZiM0 DsN3LKiWObbKrIDcXONSAJYyAWUzWzjgi4d69LOoDvN4bhZZDR0tRtzjAwo/boMA VGho7BOcHf8ywVWEi528ipwTqttw7OYctvC3e2VCo9uFUQiLCpSbbZ0x69Ux4VqI /Ll/8RvjO5xUzpnuMBYu+m1MSbfB6lfYEB/aFikOegcGIs+0Ke4KLXYGPMYQkpyp o/ZOtNe28uGwHHeK6R8d2FtICdeR9tOj -----END CERTIFICATE-----Generated at Tue Apr 30 18:56:58 2024 by rpki-client on console-fra.rpki-client.org