$ rpki-client -vvf rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft File: Zctcy-UxzE70Kh0wffe0XLDpdNk.mft (raw, json) Hash identifier: zAWumN2/WpqLKrNKICY/s8gjvReeQ8Ai8VGmXiuMEZQ= Subject key identifier: 98:95:2A:6A:71:50:13:9E:EB:0E:4F:70:F0:A0:BC:D0:48:D9:71:69 Authority key identifier: 65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 Certificate issuer: /CN=A915451D/serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft Manifest number: 07DC Signing time: Fri 26 Apr 2024 21:57:07 +0000 Manifest this update: Fri 26 Apr 2024 21:57:07 +0000 Manifest next update: Fri 03 May 2024 21:57:07 +0000 Files and hashes: 1: Zctcy-UxzE70Kh0wffe0XLDpdNk.crl (hash: mthe/RtFND9YiS+o3f8Th5brGKgw1z0tSa3lxEOtrCM=) 2: 593FC45EB89011EA8C060064C4F9AE02.roa (hash: sEqiEs5IQnIMD0fm87k6VrSFmcriEzJRh8Kb+n14+C8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 21:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915451D/serialNumber=65CB5CCBE531CC4EF42A1D307DF7B45CB0E974D9 Validity Not Before: Apr 26 21:57:07 2024 GMT Not After : May 3 21:57:07 2024 GMT Subject: CN=662c2333-277a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:11:13:4b:bc:77:65:31:6f:f7:3f:41:ae:b2: ba:bb:77:ea:f0:5e:1b:7c:ae:f1:6f:49:b3:b8:1e: 0f:b6:e2:72:1c:1f:cd:83:cf:de:da:1e:60:3d:71: a8:bd:bc:18:6a:a4:21:74:c1:8d:18:f1:b8:85:6a: e0:c2:76:ee:08:c0:78:2a:e9:72:6b:e3:a9:65:7d: 5b:1a:4c:f2:0d:a3:bc:bb:31:5c:02:65:97:bd:99: 8b:ad:ff:9a:d7:a6:3f:a3:38:5e:cc:c5:06:89:68: 16:a5:b5:f4:1f:d9:95:34:cd:dc:b9:f1:57:47:da: bb:50:e4:f9:16:29:4e:b9:69:ae:1f:b6:fd:30:14: 27:5f:a5:91:c2:ff:76:56:01:cb:1f:47:55:6a:37: b4:6b:3e:96:dc:45:5b:63:30:b2:8a:4f:fe:ee:07: 09:05:60:95:a1:99:d6:4f:e3:cc:32:46:89:78:5c: 57:66:84:62:11:63:aa:54:7c:3e:ac:28:97:ad:22: 35:7c:1c:a8:43:d1:66:e0:6e:a9:11:33:e5:3a:26: 70:98:ab:69:71:9c:6b:a2:32:f8:bd:6f:fd:a1:8d: 97:af:75:3b:e4:d7:6c:f1:5e:6e:77:4c:76:9f:e0: 3e:5f:a7:91:4e:d8:dd:19:36:ff:c4:d9:48:cd:42: a6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:95:2A:6A:71:50:13:9E:EB:0E:4F:70:F0:A0:BC:D0:48:D9:71:69 X509v3 Authority Key Identifier: keyid:65:CB:5C:CB:E5:31:CC:4E:F4:2A:1D:30:7D:F7:B4:5C:B0:E9:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zctcy-UxzE70Kh0wffe0XLDpdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915451D/5CB1EA06B88E11EABA33AC61C4F9AE02/Zctcy-UxzE70Kh0wffe0XLDpdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:b6:10:66:28:33:9b:93:a6:ff:00:0a:46:c2:7f:01:f0:08: 45:c6:f0:c6:3f:83:a8:28:70:ba:4b:f2:ed:77:d8:01:e2:56: fe:56:52:4b:2c:a4:64:56:ec:ce:1e:ec:a3:4f:7e:35:12:fe: 45:69:d1:31:f5:db:3a:41:f8:b3:e2:97:7c:a4:3f:75:2f:59: 13:2a:d8:2f:ac:66:b9:dc:ab:3d:d8:a9:26:d5:42:f8:7d:dc: 56:d1:d3:97:19:27:46:e4:75:a1:e9:52:42:50:41:58:37:08: b3:35:ff:30:3d:d3:2a:1f:c4:6b:9a:c9:74:a7:2a:6a:b7:54: a5:34:3b:ad:94:d3:f8:ef:b7:b0:16:c0:00:d4:79:38:07:a0: 6d:ae:6b:3b:0c:a1:34:e7:c4:16:56:14:e9:6c:f2:e0:81:3b: a5:4e:7e:a0:61:2b:97:80:2e:0b:83:1a:42:c9:e0:6f:e8:7a: 11:65:75:27:8e:ad:71:63:d5:7b:cf:e1:55:ee:d6:24:36:04: fd:9f:de:8f:c5:3b:9e:13:45:8b:66:e5:8a:69:3c:3c:6f:42: a1:1b:69:45:42:78:0e:cb:b1:f6:2f:3f:54:52:81:6b:c5:d4: 7e:f1:59:96:6d:1f:35:f6:4e:84:5d:99:ee:65:c4:c8:1a:7d: af:44:66:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ1MUQxMTAvBgNVBAUTKDY1Q0I1Q0NCRTUzMUNDNEVGNDJBMUQzMDdERjdCNDVD QjBFOTc0RDkwHhcNMjQwNDI2MjE1NzA3WhcNMjQwNTAzMjE1NzA3WjAYMRYwFAYD VQQDEw02NjJjMjMzMy0yNzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxETS7x3ZTFv9z9BrrK6u3fq8F4bfK7xb0mzuB4PtuJyHB/Ng8/e2h5gPXGo vbwYaqQhdMGNGPG4hWrgwnbuCMB4Kulya+OpZX1bGkzyDaO8uzFcAmWXvZmLrf+a 16Y/ozhezMUGiWgWpbX0H9mVNM3cufFXR9q7UOT5FilOuWmuH7b9MBQnX6WRwv92 VgHLH0dVaje0az6W3EVbYzCyik/+7gcJBWCVoZnWT+PMMkaJeFxXZoRiEWOqVHw+ rCiXrSI1fByoQ9Fm4G6pETPlOiZwmKtpcZxrojL4vW/9oY2Xr3U75Nds8V5ud0x2 n+A+X6eRTtjdGTb/xNlIzUKmdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJiVKmpx UBOe6w5PcPCgvNBI2XFpMB8GA1UdIwQYMBaAFGXLXMvlMcxO9CodMH33tFyw6XTZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDUxRC81Q0IxRUEwNkI4 OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpFNzBLaDB3ZmZlMFhMRHBk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pjdGN5LVV4ekU3MEtoMHdmZmUwWExEcGROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxRC81Q0IxRUEwNkI4OEUxMUVBQkEzM0FDNjFDNEY5QUUwMi9aY3RjeS1VeHpF NzBLaDB3ZmZlMFhMRHBkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALthBmKDObk6b/AApGwn8B8AhFxvDGP4OoKHC6S/Ltd9gB4lb+VlJL LKRkVuzOHuyjT341Ev5FadEx9ds6Qfiz4pd8pD91L1kTKtgvrGa53Ks92Kkm1UL4 fdxW0dOXGSdG5HWh6VJCUEFYNwizNf8wPdMqH8Rrmsl0pypqt1SlNDutlNP477ew FsAA1Hk4B6Btrms7DKE058QWVhTpbPLggTulTn6gYSuXgC4LgxpCyeBv6HoRZXUn jq1xY9V7z+FV7tYkNgT9n96PxTueE0WLZuWKaTw8b0KhG2lFQngOy7H2Lz9UUoFr xdR+8VmWbR819k6EXZnuZcTIGn2vRGaL -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:55 2024 by rpki-client on console-ams.rpki-client.org