$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: 3ul053WkEgXbhm+koP+yxJqLrbUlnBmdvyW6hD1lXXA= Subject key identifier: 7F:B7:C5:45:8A:B4:E9:2D:18:37:4D:E3:A0:40:20:91:EE:84:80:9C Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 023B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 0231 Signing time: Wed 01 May 2024 04:23:05 +0000 Manifest this update: Wed 01 May 2024 04:23:05 +0000 Manifest next update: Wed 08 May 2024 04:23:05 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: vTmH0NIT3obeqjHgbitzpAGs1zEou754TdpI4/C+uBw=) 2: A77AF65E806811EEBC08242BC4F9AE02.roa (hash: DCqEbPQXS1PCcGfN1Dew3lBGegqFMuMpjFuWnBw+Ido=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: May 1 04:23:05 2024 GMT Not After : May 8 04:23:05 2024 GMT Subject: CN=6631c3a9-501e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0d:4d:70:50:44:92:a5:51:53:8e:10:85:fd: 65:25:ef:46:37:87:84:dc:4a:ea:72:16:7e:fa:77: ad:e0:4a:2f:34:43:45:70:14:1d:e9:70:7e:ea:4f: 6b:a7:9f:f5:9d:ba:75:08:ff:d7:6c:15:0a:f2:a6: 6f:48:72:5c:10:a4:d7:8e:7c:59:1d:f1:3e:79:30: 09:72:b8:90:8f:1d:5f:70:f5:73:96:a7:bc:2e:dc: 05:2e:6e:00:d2:bb:7f:ab:b7:85:8e:f5:e5:aa:62: 9b:1d:7e:b2:60:29:b7:1c:22:4d:3b:d6:87:87:20: ba:e0:6f:7d:28:2c:a2:76:d3:2a:ab:06:e1:33:a7: c0:49:14:42:27:36:a5:bb:25:4c:d2:20:0c:87:37: ab:03:54:13:f3:d2:2a:b5:c2:b4:6d:ee:bf:1b:1b: 8a:2f:8b:81:e4:92:6f:3a:02:51:6e:93:19:12:0e: fc:04:e9:23:8b:95:30:37:af:1d:05:39:32:d3:b5: c2:7d:99:cd:b8:d4:90:45:0c:ae:74:da:68:b9:18: 64:3e:47:ad:48:02:74:a8:c4:36:0a:d7:bb:55:4d: e2:ee:40:59:71:5a:d2:c4:97:e9:6d:ef:6b:15:9d: 9d:e1:f9:8a:2e:26:ee:22:2f:10:8f:30:1c:17:81: e6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B7:C5:45:8A:B4:E9:2D:18:37:4D:E3:A0:40:20:91:EE:84:80:9C X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:16:ef:a6:e1:2d:03:50:27:74:d8:c2:70:a1:a2:10:4d:ed: 85:f4:76:f5:d3:21:42:83:c3:49:35:06:21:8b:04:a6:b3:5f: 04:15:3a:72:2a:68:4f:f8:96:5a:77:16:2f:c8:4e:93:4d:52: 91:34:6f:19:1d:55:2c:2d:81:1d:b7:ea:ad:67:8d:5b:e0:70: 4f:17:bd:3d:3d:9b:e7:ab:da:39:c9:24:97:9f:c2:27:fd:6c: 53:9e:6e:ca:15:28:05:45:63:77:04:4a:d2:00:98:69:32:e4: e0:ad:a7:1a:e8:9e:d3:e1:d6:bb:a9:59:fc:10:6b:1a:98:08: 8a:2a:c9:24:ee:42:c1:c4:8c:92:77:67:2b:19:56:fa:4f:b7: 43:cf:76:04:e8:c4:b4:ce:51:88:47:7b:a2:f9:8b:99:0c:42: 98:58:39:f1:41:b4:dc:08:ec:46:c7:93:e9:1e:28:7a:40:03: 93:28:c5:88:05:ce:49:f3:ca:5a:15:36:25:10:a4:e1:69:30: 33:b2:c8:7d:c2:1f:54:c4:43:95:fb:41:55:ae:1a:01:4c:86: 79:96:62:1d:ee:9a:cf:48:af:ea:9c:76:e4:a9:0f:b5:e9:94: 00:5c:ae:4b:e8:ac:34:f6:a2:f0:aa:e7:14:5f:27:16:4c:20: d7:57:a2:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjQwNTAxMDQyMzA1WhcNMjQwNTA4MDQyMzA1WjAYMRYwFAYD VQQDEw02NjMxYzNhOS01MDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4g1NcFBEkqVRU44Qhf1lJe9GN4eE3ErqchZ++net4EovNENFcBQd6XB+6k9r p5/1nbp1CP/XbBUK8qZvSHJcEKTXjnxZHfE+eTAJcriQjx1fcPVzlqe8LtwFLm4A 0rt/q7eFjvXlqmKbHX6yYCm3HCJNO9aHhyC64G99KCyidtMqqwbhM6fASRRCJzal uyVM0iAMhzerA1QT89IqtcK0be6/GxuKL4uB5JJvOgJRbpMZEg78BOkji5UwN68d BTky07XCfZnNuNSQRQyudNpouRhkPketSAJ0qMQ2Cte7VU3i7kBZcVrSxJfpbe9r FZ2d4fmKLibuIi8QjzAcF4Hm3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+3xUWK tOktGDdN46BAIJHuhICcMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSFu+m4S0DUCd02MJwoaIQTe2F9Hb10yFCg8NJNQYhiwSms18EFTpy KmhP+JZadxYvyE6TTVKRNG8ZHVUsLYEdt+qtZ41b4HBPF709PZvnq9o5ySSXn8In /WxTnm7KFSgFRWN3BErSAJhpMuTgraca6J7T4da7qVn8EGsamAiKKskk7kLBxIyS d2crGVb6T7dDz3YE6MS0zlGIR3ui+YuZDEKYWDnxQbTcCOxGx5PpHih6QAOTKMWI Bc5J88paFTYlEKThaTAzssh9wh9UxEOV+0FVrhoBTIZ5lmId7prPSK/qnHbkqQ+1 6ZQAXK5L6Kw09qLwqucUXycWTCDXV6L/ -----END CERTIFICATE-----Generated at Wed May 1 05:59:02 2024 by rpki-client on console-fra.rpki-client.org