$ rpki-client -vvf rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft File: ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft (raw, json) Hash identifier: JaVcvJPIqF3uJpkFCDNKTESafJTCPMwaaQ4XK4fpBBM= Subject key identifier: 66:4C:52:6B:CF:88:85:55:C9:76:AD:83:78:97:45:32:2D:1D:78:0C Authority key identifier: 64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5 Certificate issuer: /CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5 Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft Manifest number: 04D2 Signing time: Fri 29 Mar 2024 01:09:32 +0000 Manifest this update: Fri 29 Mar 2024 01:09:32 +0000 Manifest next update: Fri 05 Apr 2024 01:09:32 +0000 Files and hashes: 1: ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl (hash: JrYwbeHbDk8FuV37wPWC9S3tm859yPGV7ZKcZaBbhoc=) 2: C8C6FC86CB4D11EB8EE48035C4F9AE02.roa (hash: JaIO2dT8Os8Peb5EgUHztrbnapJvSWl51qr0MY1dg+Q=) 3: C874A7C0058511ECA3212F6DC4F9AE02.roa (hash: ElYbSEk4rRJAjj7lezEHri8iWNpjG/As8ucdEHqyHv8=) 4: 2ED60096A91211ED8AC9104EC4F9AE02.roa (hash: Uc+rOEUpW18Fwe88i2RcZR2/2RCIPE1rXogHeTVj4MY=) 5: 1ED18488A91511ED9E2AC948C4F9AE02.roa (hash: e1klgolsSajatFbf1LJ30moBI1ympGhIPAvqXY1BcVg=) 6: C9FE370ECB4D11EB8EE48035C4F9AE02.roa (hash: TyLHpZxtrsbvNAjuHbPVOkbwAxDeJrj6EAR9jI37KvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Apr 2024 23:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5 Validity Not Before: Mar 29 01:09:32 2024 GMT Not After : Apr 5 01:09:32 2024 GMT Subject: CN=660614cc-ff49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:26:9c:29:d9:7a:f4:32:b4:78:5e:e3:51:92: 2b:74:3e:e6:d3:46:bf:fd:8d:43:cc:f9:1c:64:34: 5c:f4:f6:ca:1e:63:e1:33:6f:48:49:04:13:23:75: 57:91:f0:b8:0f:1a:17:7e:d2:a3:df:6b:7e:45:35: 1e:d2:6d:cb:ba:35:7f:15:61:3d:e2:4b:ec:b4:0f: 77:2f:33:e9:fd:52:77:b9:69:a7:82:75:4e:9e:ef: cf:a1:85:72:3d:85:69:de:b7:87:e7:8b:63:50:2f: cb:3b:9d:f4:17:e6:c8:0b:b7:84:ff:6b:a5:83:b7: 86:38:48:a2:07:54:06:61:ee:0b:13:31:73:4d:ee: 4f:6f:02:80:66:ae:5f:b4:31:90:d8:35:9b:1f:97: 18:0b:d7:4c:1c:d1:f6:12:b3:8a:01:6c:cc:28:78: 61:52:06:a5:7e:6e:b1:2a:62:05:7f:cc:fa:d1:45: f1:68:0c:bd:a5:38:43:33:35:74:32:83:1c:05:3f: 8c:c6:b5:78:4d:67:1b:f6:6e:e2:83:b5:96:84:e5: 50:ec:12:c9:be:48:47:b6:ba:f5:c9:01:8b:48:d8: e9:82:7a:75:6c:c3:e5:6e:fd:9a:78:74:34:b5:a4: 49:98:7d:3f:22:08:11:a3:b6:12:8c:40:ad:e3:b9: ce:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4C:52:6B:CF:88:85:55:C9:76:AD:83:78:97:45:32:2D:1D:78:0C X509v3 Authority Key Identifier: keyid:64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:ea:dc:da:40:f0:87:aa:59:ce:c8:90:cb:d7:69:d4:36:34: 87:20:e4:a0:94:8f:f8:bc:21:fd:d8:b1:30:ec:17:ae:1a:9a: a6:4a:4a:06:cb:e2:56:14:c3:84:b8:3a:23:93:e2:7e:45:e0: da:ad:d7:0d:bd:c2:75:2e:f6:50:7f:b1:42:de:64:cb:18:24: 2c:43:67:e8:e1:cb:cd:c0:ee:5b:01:a7:65:27:92:65:4f:aa: a8:93:80:0f:6e:8c:09:bf:95:3d:37:8f:93:2f:db:30:6f:ca: c6:84:f3:12:03:16:a7:ee:11:bc:49:2c:6b:02:af:ca:d1:25: 90:d5:01:0a:27:98:25:c7:ca:9c:7b:68:68:f4:f3:c3:74:30: 25:13:4f:60:98:5b:d3:c9:5e:af:32:c4:85:7d:6a:94:d5:18: ee:52:69:de:43:0a:41:d2:fb:3b:ab:17:fb:73:9d:51:93:40: b6:ff:ad:37:b0:d9:78:60:af:5b:4e:c3:b9:9b:ea:c1:1e:7a: 49:d9:b6:e7:0f:69:2c:ad:70:04:e1:27:3e:17:d9:b6:d8:98: 92:9d:6b:44:69:48:96:e7:fc:2b:a7:da:3f:18:24:b4:a2:0c: c9:7a:5e:f7:ff:bd:a2:4e:c6:49:f7:5b:01:36:6e:95:cf:f9: 57:ec:5d:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RjIxMTAvBgNVBAUTKDY0QjY4NkIwNURDQkU4QkVBOTI4MDc1MzJERTI5QTc3 OTA1MTU2RjUwHhcNMjQwMzI5MDEwOTMyWhcNMjQwNDA1MDEwOTMyWjAYMRYwFAYD VQQDEw02NjA2MTRjYy1mZjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSacKdl69DK0eF7jUZIrdD7m00a//Y1DzPkcZDRc9PbKHmPhM29ISQQTI3VX kfC4DxoXftKj32t+RTUe0m3LujV/FWE94kvstA93LzPp/VJ3uWmngnVOnu/PoYVy PYVp3reH54tjUC/LO530F+bIC7eE/2ulg7eGOEiiB1QGYe4LEzFzTe5PbwKAZq5f tDGQ2DWbH5cYC9dMHNH2ErOKAWzMKHhhUgalfm6xKmIFf8z60UXxaAy9pThDMzV0 MoMcBT+MxrV4TWcb9m7ig7WWhOVQ7BLJvkhHtrr1yQGLSNjpgnp1bMPlbv2aeHQ0 taRJmH0/IggRo7YSjECt47nOhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZMUmvP iIVVyXatg3iXRTItHXgMMB8GA1UdIwQYMBaAFGS2hrBdy+i+qSgHUy3imneQUVb1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZGMi8yQkU0M0RBMENC MkMxMUVCQkMzNUM0NDBDNEY5QUUwMi9aTGFHc0YzTDZMNnBLQWRUTGVLYWQ1QlJW dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pMYUdzRjNMNkw2cEtBZFRMZUthZDVCUlZ2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZGMi8yQkU0M0RBMENCMkMxMUVCQkMzNUM0NDBDNEY5QUUwMi9aTGFHc0YzTDZM NnBLQWRUTGVLYWQ1QlJWdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI6tzaQPCHqlnOyJDL12nUNjSHIOSglI/4vCH92LEw7BeuGpqmSkoG y+JWFMOEuDojk+J+ReDardcNvcJ1LvZQf7FC3mTLGCQsQ2fo4cvNwO5bAadlJ5Jl T6qok4APbowJv5U9N4+TL9swb8rGhPMSAxan7hG8SSxrAq/K0SWQ1QEKJ5glx8qc e2ho9PPDdDAlE09gmFvTyV6vMsSFfWqU1RjuUmneQwpB0vs7qxf7c51Rk0C2/603 sNl4YK9bTsO5m+rBHnpJ2bbnD2ksrXAE4Sc+F9m22JiSnWtEaUiW5/wrp9o/GCS0 ogzJel73/72iTsZJ91sBNm6Vz/lX7F3L -----END CERTIFICATE-----Generated at Fri Mar 29 02:19:22 2024 by rpki-client on console-ams.rpki-client.org