$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: GiMd/PJa3y54t9n1rFkI/WrjAXK5R15IGPxOVeZrotI= Subject key identifier: FE:32:4C:A7:D8:4F:55:15:C1:5E:E5:5E:B4:42:60:4D:DA:0F:2B:9E Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: 95 Signing time: Fri 17 May 2024 06:59:40 +0000 Manifest this update: Fri 17 May 2024 06:59:39 +0000 Manifest next update: Fri 24 May 2024 06:59:39 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: aVJizLKce6NaZC3jrq6a+Wi1Dw52up9Y1LyXEoTpXQc=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: bFE0C6cY72P0B85UzFO6PyAXBD4kZvyKw41cMruk0XM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: May 17 06:59:39 2024 GMT Not After : May 24 06:59:39 2024 GMT Subject: CN=6647005c-034f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:33:aa:e9:9f:30:70:89:3a:ed:33:79:60:5f: b2:d3:48:52:d0:98:4f:32:5c:7c:9d:22:6a:ec:87: 97:38:21:d9:fa:63:39:4a:85:36:1f:76:19:8e:96: ce:2a:6d:b6:e8:86:70:f0:8d:d0:27:2e:cb:2e:ce: 0e:e9:67:41:af:66:ae:d4:1c:34:7f:88:32:42:4a: e8:e7:19:ba:81:e5:53:dd:83:6d:9b:78:63:c8:6b: cf:4b:0b:02:45:cc:5b:e0:cb:e5:48:0c:b3:ea:04: bb:06:76:80:78:51:94:55:73:6d:98:15:cf:d9:60: 5b:0b:6d:72:c6:2b:d3:fd:2b:94:44:3c:24:c6:4e: 39:b7:fd:a0:5d:a3:fa:34:ef:5f:8d:56:ec:90:db: 80:51:ba:44:84:55:d4:8a:84:8c:bb:41:b8:a7:a1: c2:d4:68:52:30:d7:4d:93:6d:8b:e4:5a:7d:fe:b7: 6e:03:02:06:16:2a:65:d3:89:47:a2:a8:7d:43:4e: 8d:89:40:2a:a2:3b:9a:16:f9:ba:37:3d:24:f4:35: db:1e:6c:d4:95:17:3d:77:43:51:53:9e:19:a4:50: 1c:44:68:d1:06:5d:b9:e7:b0:9b:83:a2:1e:1e:9e: 0a:99:a7:14:3d:b2:c7:72:1e:9f:f9:ec:8a:15:8f: 1e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:32:4C:A7:D8:4F:55:15:C1:5E:E5:5E:B4:42:60:4D:DA:0F:2B:9E X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:09:67:3a:48:1a:2c:0b:b9:e9:7a:50:57:26:ee:a6:4e:2a: 16:df:78:16:08:d7:b0:0b:6a:0d:b6:e0:6d:22:b2:38:41:52: 00:3b:4b:f0:a1:e0:24:cb:4f:0d:32:64:ab:52:a5:33:65:26: 9d:a7:43:72:b4:bc:b7:6d:2a:b3:b1:4a:f7:9e:24:4b:c0:a0: e6:26:e9:bc:b3:cf:ed:3c:61:87:e1:be:35:ab:8d:8b:1e:13: e8:1f:ae:db:ed:a4:24:66:0b:2e:74:6d:72:be:52:de:b2:8b: d8:9a:f2:8e:2b:b2:68:d3:03:33:a1:4f:99:4d:4e:61:25:1d: 3f:d8:3c:be:33:2e:a9:8b:ef:c7:be:21:89:b8:36:37:b1:94: 8d:15:da:7d:f9:92:f6:a4:65:dd:7f:85:64:a6:02:cf:84:28: 69:0f:98:46:d4:33:a7:f3:0c:3b:4e:03:7f:7d:6e:07:1a:8b: 14:84:f3:19:df:32:18:35:b3:4f:54:57:51:5b:de:f0:0d:3b: 87:83:8e:ad:53:71:95:87:28:ba:8b:8d:98:4a:0d:c1:e5:ba: 63:d3:8b:69:a7:fa:2b:27:e2:17:74:d2:fe:ab:58:54:45:aa: 06:2e:1d:86:58:54:6a:e1:4f:19:41:0c:28:31:25:7a:98:3a: 59:1c:46:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjQwNTE3MDY1OTM5WhcNMjQwNTI0MDY1OTM5WjAYMRYwFAYD VQQDEw02NjQ3MDA1Yy0wMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zOq6Z8wcIk67TN5YF+y00hS0JhPMlx8nSJq7IeXOCHZ+mM5SoU2H3YZjpbO Km226IZw8I3QJy7LLs4O6WdBr2au1Bw0f4gyQkro5xm6geVT3YNtm3hjyGvPSwsC Rcxb4MvlSAyz6gS7BnaAeFGUVXNtmBXP2WBbC21yxivT/SuURDwkxk45t/2gXaP6 NO9fjVbskNuAUbpEhFXUioSMu0G4p6HC1GhSMNdNk22L5Fp9/rduAwIGFipl04lH oqh9Q06NiUAqojuaFvm6Nz0k9DXbHmzUlRc9d0NRU54ZpFAcRGjRBl2557Cbg6Ie Hp4KmacUPbLHch6f+eyKFY8e2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4yTKfY T1UVwV7lXrRCYE3aDyueMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaCWc6SBosC7npelBXJu6mTioW33gWCNewC2oNtuBtIrI4QVIAO0vw oeAky08NMmSrUqUzZSadp0NytLy3bSqzsUr3niRLwKDmJum8s8/tPGGH4b41q42L HhPoH67b7aQkZgsudG1yvlLesovYmvKOK7Jo0wMzoU+ZTU5hJR0/2Dy+My6pi+/H viGJuDY3sZSNFdp9+ZL2pGXdf4VkpgLPhChpD5hG1DOn8ww7TgN/fW4HGosUhPMZ 3zIYNbNPVFdRW97wDTuHg46tU3GVhyi6i42YSg3B5bpj04tpp/orJ+IXdNL+q1hU RaoGLh2GWFRq4U8ZQQwoMSV6mDpZHEYb -----END CERTIFICATE-----Generated at Fri May 17 08:52:47 2024 by rpki-client on console-ams.rpki-client.org