$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: dIWuJNBomoK2KeNmiVzYK8a8cbr8uoJkwJEvY6RoqnQ= Subject key identifier: 48:79:C7:70:E1:6C:6F:A7:D1:8C:3D:A8:84:06:30:8E:F5:52:34:8B Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0A4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0A45 Signing time: Sat 04 May 2024 20:35:17 +0000 Manifest this update: Sat 04 May 2024 20:35:17 +0000 Manifest next update: Sat 11 May 2024 20:35:17 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: 0QuSwAHr9hNMrY2PBJD6iIKLZeIMOD9vLaeISESNF4U=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: DZEkEnTNgplGMbRRw6SaRTBPqyRQF1awLdG5QG2XDnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2634 (0xa4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: May 4 20:35:17 2024 GMT Not After : May 11 20:35:17 2024 GMT Subject: CN=66369c05-1e1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f3:01:62:25:f4:8b:a8:b0:1b:8a:25:36:b3: dc:82:f3:94:0c:72:fc:3c:e8:4f:f5:2a:18:37:e6: f1:bf:77:aa:a5:0d:b0:bf:ce:5e:67:42:2f:17:5e: be:b7:64:1c:58:c2:43:b8:74:ee:8c:43:a0:0a:34: 35:35:6f:d9:c0:a9:00:11:21:24:85:86:33:97:0c: 0e:98:dd:25:d8:8c:5b:72:47:6e:c6:3b:b2:47:85: 8c:a2:70:06:21:38:3b:2d:7d:7a:02:7f:77:31:94: e6:d0:d8:be:2d:0b:66:80:c5:17:c4:14:6b:3d:97: bf:73:4f:c7:fc:f9:f7:fb:95:31:cb:8a:ac:82:80: dd:d0:5a:fc:38:d6:29:76:ce:bd:b2:71:bd:13:38: ba:29:73:eb:2c:7b:8f:3a:76:13:c4:8f:08:1b:a8: 42:b4:b7:1c:c0:74:8d:98:c0:b4:45:7b:dd:67:bd: e2:4b:9f:d5:d1:eb:f2:48:04:19:51:dc:c9:b1:2b: eb:97:77:11:83:06:57:ea:85:96:a2:ad:11:43:a0: 1b:5c:23:dd:7f:88:5f:6b:fb:51:2e:7a:5c:a5:e1: 83:40:4b:3e:6e:dc:b3:ce:00:d9:fd:a7:18:46:b3: f8:bd:ac:92:5d:8e:b0:00:43:e3:09:74:ee:ad:40: 9e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:79:C7:70:E1:6C:6F:A7:D1:8C:3D:A8:84:06:30:8E:F5:52:34:8B X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7a:51:08:fc:04:e2:06:2b:0a:07:ee:16:11:95:46:d4:f0: cd:3f:f4:c5:33:51:8c:33:d1:d1:1d:58:0c:5b:bd:b4:c9:48: 00:9b:97:f2:99:7c:2e:47:11:f8:eb:4c:d8:87:9c:e3:f6:c9: c3:18:5b:0c:1e:c6:dc:a2:52:68:63:ae:df:1d:36:a8:81:67: 5d:ff:bd:2b:da:b3:df:1c:54:79:dd:24:c9:60:9f:98:ef:9e: 1f:0d:0d:58:f3:b0:32:d5:5f:a8:62:c7:48:f8:73:c0:37:ea: 7b:f2:1b:a8:93:37:bc:18:b3:3a:67:c3:29:9f:fb:73:91:2f: 41:aa:cf:ee:71:b1:ae:b1:27:be:fd:25:bc:a3:8d:b8:7e:b1: 06:0e:46:76:b9:88:21:9a:8e:e4:0e:c6:3f:4b:d8:59:1b:f2: 4e:e8:c6:01:3c:94:23:12:62:7c:28:62:78:7c:bf:4c:28:fd: c6:ac:c6:e9:3c:ab:11:9b:64:f5:34:2e:f5:4c:eb:95:aa:bb: 53:41:3e:fb:3f:a0:30:d6:5b:72:b2:56:8e:0a:a2:1c:08:60: f3:d3:59:2b:6a:e9:d8:fd:0c:a5:b4:da:6a:7d:72:67:cf:0b: fe:bf:83:ea:6a:8e:11:b9:cd:ba:d4:4e:28:e4:96:1f:30:7b: 66:dd:df:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjQwNTA0MjAzNTE3WhcNMjQwNTExMjAzNTE3WjAYMRYwFAYD VQQDEw02NjM2OWMwNS0xZTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPMBYiX0i6iwG4olNrPcgvOUDHL8POhP9SoYN+bxv3eqpQ2wv85eZ0IvF16+ t2QcWMJDuHTujEOgCjQ1NW/ZwKkAESEkhYYzlwwOmN0l2IxbckduxjuyR4WMonAG ITg7LX16An93MZTm0Ni+LQtmgMUXxBRrPZe/c0/H/Pn3+5Uxy4qsgoDd0Fr8ONYp ds69snG9Ezi6KXPrLHuPOnYTxI8IG6hCtLccwHSNmMC0RXvdZ73iS5/V0evySAQZ UdzJsSvrl3cRgwZX6oWWoq0RQ6AbXCPdf4hfa/tRLnpcpeGDQEs+btyzzgDZ/acY RrP4vaySXY6wAEPjCXTurUCeZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEh5x3Dh bG+n0Yw9qIQGMI71UjSLMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATelEI/ATiBisKB+4WEZVG1PDNP/TFM1GMM9HRHVgMW720yUgAm5fy mXwuRxH460zYh5zj9snDGFsMHsbcolJoY67fHTaogWdd/70r2rPfHFR53STJYJ+Y 754fDQ1Y87Ay1V+oYsdI+HPAN+p78huokze8GLM6Z8Mpn/tzkS9Bqs/ucbGusSe+ /SW8o424frEGDkZ2uYghmo7kDsY/S9hZG/JO6MYBPJQjEmJ8KGJ4fL9MKP3GrMbp PKsRm2T1NC71TOuVqrtTQT77P6Aw1ltyslaOCqIcCGDz01kraunY/QyltNpqfXJn zwv+v4Pqao4Ruc261E4o5JYfMHtm3d82 -----END CERTIFICATE-----Generated at Sat May 4 21:32:58 2024 by rpki-client on console-fra.rpki-client.org