$ rpki-client -vvf rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft File: 2zfNKCxsfbw6kLEDt6I53NFY_2A.mft (raw, json) Hash identifier: Ki9ZAVpHGTbDpzQLTDoz7QeJk1/WmGxdowx4tI68ol0= Subject key identifier: 0C:3B:21:EB:FB:54:8E:79:1D:14:87:A0:C6:0D:AC:7A:CF:35:50:52 Authority key identifier: DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 Certificate issuer: /CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Certificate serial: 0804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft Manifest number: 07FF Signing time: Sat 04 May 2024 22:03:33 +0000 Manifest this update: Sat 04 May 2024 22:03:33 +0000 Manifest next update: Sat 11 May 2024 22:03:33 +0000 Files and hashes: 1: 2zfNKCxsfbw6kLEDt6I53NFY_2A.crl (hash: n9oVtucPrySWevF2Q+bhp4eJcZ/WQ90LvQfJhZcfH70=) 2: 6154A3B0B2B611EAA5884016C4F9AE02.roa (hash: bwqm3eXH4Pq2TLKBY01Dp4vmzkj0Oa/mlaYXh3jfcS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2052 (0x804) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E652/serialNumber=DB37CD282C6C7DBC3A90B103B7A239DCD158FF60 Validity Not Before: May 4 22:03:33 2024 GMT Not After : May 11 22:03:33 2024 GMT Subject: CN=6636b0b5-8825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cf:c4:8e:4a:43:2b:f0:b6:d5:35:1b:b1:5f: 67:94:ff:0c:c9:25:ef:8b:d6:f9:9e:a3:bf:dc:c0: c2:f3:46:a1:93:e0:56:19:ce:1d:db:c1:99:89:fe: de:62:1a:62:45:70:51:7c:10:e9:08:f4:d1:62:18: ca:a2:37:ed:30:c2:45:33:ef:96:4d:d2:cb:f2:78: 5f:86:d4:ca:01:9d:a2:40:8b:5b:3e:4d:91:ff:0d: 02:09:db:17:50:b6:84:7d:15:c0:e3:59:b1:85:cd: 80:85:82:47:9c:3b:f5:2e:b6:fb:7a:64:e2:c1:74: 7a:a5:df:9a:26:bd:13:e9:f0:b7:ed:c1:c3:81:de: a5:55:6c:ae:f1:79:95:d1:48:7a:84:ea:be:39:f7: db:d9:66:e9:45:df:72:fe:cb:dd:7a:a3:88:1e:66: ec:51:59:34:b9:93:ef:86:87:9e:71:65:95:df:d7: 0d:80:c5:89:67:88:c5:d3:ef:a2:48:47:48:aa:1f: ea:cb:5a:44:48:df:ed:85:32:80:66:83:97:a9:3b: 9f:b5:b6:8a:cf:b5:81:48:ee:6c:99:82:7e:44:5f: 0f:a2:ff:9a:74:2d:99:1c:e8:b4:c5:2e:29:96:9a: 11:f0:46:2d:16:96:b3:dd:6a:92:58:9f:c7:c3:7e: 94:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3B:21:EB:FB:54:8E:79:1D:14:87:A0:C6:0D:AC:7A:CF:35:50:52 X509v3 Authority Key Identifier: keyid:DB:37:CD:28:2C:6C:7D:BC:3A:90:B1:03:B7:A2:39:DC:D1:58:FF:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zfNKCxsfbw6kLEDt6I53NFY_2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E652/600AB464B2B511EA8ADC4415C4F9AE02/2zfNKCxsfbw6kLEDt6I53NFY_2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:42:ce:c8:a2:26:9a:1d:42:f5:a1:70:d1:f8:13:d5:a5:98: 4f:ba:09:94:5a:88:da:6b:d0:5e:b6:57:e1:38:3e:03:d5:5c: 63:34:39:67:f9:07:dd:1a:53:56:b6:8d:30:da:4d:7c:d4:49: 15:60:6a:e7:dd:0b:5c:60:20:e9:27:39:e9:14:bd:f4:9e:1e: fd:6a:2c:6e:86:5d:aa:6b:b4:16:15:1f:4b:d8:5e:a2:f9:36: a4:02:df:9c:67:9c:79:78:c6:44:b9:ac:3d:7a:5e:cb:c9:b1: 75:44:ff:40:04:81:35:98:2e:de:a2:6d:b5:be:da:a6:6f:69: df:f2:1f:c1:96:87:e9:64:7c:4f:0a:f1:cc:3c:32:a5:ee:8d: 0a:13:ed:af:5a:54:51:42:f5:93:1e:7b:7a:13:ff:3f:37:8e: 69:66:79:de:9e:15:11:9b:3e:98:86:a6:e1:93:65:9d:86:f3: d5:4d:d8:86:7b:5d:0b:54:1a:ce:6d:24:c1:f6:6b:b1:8c:b0: 86:a2:11:ca:92:fd:5e:7a:5e:76:6e:fb:b9:5d:28:d7:57:ff: e7:74:6f:9b:2c:15:83:e3:e0:af:04:0a:c0:49:0b:c7:1e:1d: 64:28:62:5a:a0:ed:a7:67:ce:c1:82:af:ad:f9:86:2b:a0:cd: 85:63:2f:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U2NTIxMTAvBgNVBAUTKERCMzdDRDI4MkM2QzdEQkMzQTkwQjEwM0I3QTIzOURD RDE1OEZGNjAwHhcNMjQwNTA0MjIwMzMzWhcNMjQwNTExMjIwMzMzWjAYMRYwFAYD VQQDEw02NjM2YjBiNS04ODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArs/EjkpDK/C21TUbsV9nlP8MySXvi9b5nqO/3MDC80ahk+BWGc4d28GZif7e YhpiRXBRfBDpCPTRYhjKojftMMJFM++WTdLL8nhfhtTKAZ2iQItbPk2R/w0CCdsX ULaEfRXA41mxhc2AhYJHnDv1Lrb7emTiwXR6pd+aJr0T6fC37cHDgd6lVWyu8XmV 0Uh6hOq+Offb2WbpRd9y/svdeqOIHmbsUVk0uZPvhoeecWWV39cNgMWJZ4jF0++i SEdIqh/qy1pESN/thTKAZoOXqTuftbaKz7WBSO5smYJ+RF8Pov+adC2ZHOi0xS4p lpoR8EYtFpaz3WqSWJ/Hw36UmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAw7Iev7 VI55HRSHoMYNrHrPNVBSMB8GA1UdIwQYMBaAFNs3zSgsbH28OpCxA7eiOdzRWP9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTY1Mi82MDBBQjQ2NEIy QjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2ZidzZrTEVEdDZJNTNORllf MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6Zk5LQ3hzZmJ3NmtMRUR0Nkk1M05GWV8yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTY1Mi82MDBBQjQ2NEIyQjUxMUVBOEFEQzQ0MTVDNEY5QUUwMi8yemZOS0N4c2Zi dzZrTEVEdDZJNTNORllfMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkQs7IoiaaHUL1oXDR+BPVpZhPugmUWojaa9BetlfhOD4D1VxjNDln +QfdGlNWto0w2k181EkVYGrn3QtcYCDpJznpFL30nh79aixuhl2qa7QWFR9L2F6i +TakAt+cZ5x5eMZEuaw9el7LybF1RP9ABIE1mC7eom21vtqmb2nf8h/BlofpZHxP CvHMPDKl7o0KE+2vWlRRQvWTHnt6E/8/N45pZnnenhURmz6Yhqbhk2WdhvPVTdiG e10LVBrObSTB9muxjLCGohHKkv1eel52bvu5XSjXV//ndG+bLBWD4+CvBArASQvH Hh1kKGJaoO2nZ87Bgq+t+YYroM2FYy/x -----END CERTIFICATE-----Generated at Sun May 5 00:12:21 2024 by rpki-client on console-fra.rpki-client.org