$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: wohAgTizGPk+//YVBY+YSnMY5hySYla0sbWvaRfaSdQ= Subject key identifier: 46:69:21:C6:17:F2:7A:95:0F:45:BA:79:EA:9D:04:09:FC:D9:9A:FC Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1BF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3E0D Signing time: Mon 06 May 2024 14:32:43 +0000 Manifest this update: Mon 06 May 2024 14:32:42 +0000 Manifest next update: Mon 13 May 2024 14:32:42 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: YEm2fRq1xytaae75HHQ8lJeKCQyI+UXrWVlJOhrsRjE=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: BRuFC7zf6VXlceKjS5xzZ4XHUrmuAxFBfkUSNuAiOAc=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: a0NWrHL2A8WL4AhnawSmIL3+zqHhuwWv/RsJAGp7bW0=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: Roh1KCgx2d7yViTiJmXnrmApOZZvqG65uAQZz4WGMkU=) 5: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: KyoKzrfAU3BX3yBXxWgeIjgt0hT8g5IZj1NXfChymq4=) 6: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: Spe+ZLCWYOdA8CBDsQkTSRMy9zIya/08gNcBNSJsUdc=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: 3STasabjcRMl5sCRIraeb7Jdqbu/6EJSWvLncXV//AY=) 8: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: SAA6G9YqOhy0hnk+8K9zJxRbTp07Kne93pAeDS5gSfg=) 9: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: peQlUcQf5eEnUli6/CyN1hvF+tSSh4tIO3YSa+ZPFdI=) 10: 66891B80943011EA8988B883C4F9AE02.roa (hash: YvWxPWOnvydLYC2ddZYUXs8VWWsust2lfoevpAIOxpI=) 11: 727C68508AB411EA89D83541C4F9AE02.roa (hash: bNLbopYTIZnkRHkV3iJSMmgEj50I2SsjijBIBUsXZ/o=) 12: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: 6KmMNzHs39Hbebeh/wdix0UtI7gBt79tuL29k7NloPA=) 13: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: mAa852TCkZhviddLBCirFVWcnGiv3BjKk50mxM6ts2w=) 14: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: s3Af68TNCkvJmIaaAZIqx3F3CV/1jXfTLZY7Q/GCjCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7161 (0x1bf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: May 6 14:32:42 2024 GMT Not After : May 13 14:32:42 2024 GMT Subject: CN=6638ea0b-42f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bb:cc:c7:14:b6:a4:94:8e:85:6f:d1:27:13: 16:6b:9a:7b:36:7b:f6:d5:33:1b:e2:79:d7:fc:d1: 30:c0:f8:4c:e0:86:26:4a:59:2c:54:2c:20:e4:a2: f7:a2:5d:2e:86:41:80:16:12:0c:ed:47:7e:28:41: 57:bc:9a:94:84:2c:f8:4c:6b:05:d7:f4:4a:80:3a: 00:ee:af:cc:ee:b8:b5:2e:f3:15:71:b8:27:3a:a5: 94:56:a1:0a:55:4b:66:8e:70:85:0f:41:1f:e0:87: be:b3:fd:b4:62:2f:0f:a0:ce:54:54:ff:67:ee:3f: 08:0e:fe:75:91:ae:57:e4:1d:a2:5f:e4:ba:26:77: db:51:8e:20:f0:01:77:a4:68:0e:6f:d8:fb:a2:4f: d2:22:e8:4d:c9:da:c9:83:bd:15:b2:67:eb:0d:ac: 9b:6d:63:f5:f5:88:2e:a0:94:62:6e:80:36:ce:d9: d0:24:76:26:b5:97:76:a1:8b:05:3b:61:38:1c:35: 72:f7:e2:31:a6:a9:eb:62:77:dc:b0:f0:0c:25:da: 3f:2f:ab:97:7f:0b:a3:57:71:f0:fc:1e:9f:8e:03: e9:3b:1b:37:ea:8f:42:69:54:a3:8f:16:01:74:e1: 3c:f9:c3:f5:b0:5a:b1:8a:02:b6:b5:c6:35:6f:08: 24:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:69:21:C6:17:F2:7A:95:0F:45:BA:79:EA:9D:04:09:FC:D9:9A:FC X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:c3:75:60:f4:3c:ac:16:8d:b6:40:a9:ca:e5:72:e9:fd:b0: 9e:45:0b:c8:45:57:0a:1b:25:54:05:d7:e1:58:f6:34:43:d0: 24:c9:4f:6a:e3:4f:85:d3:7f:51:6e:5f:a7:09:7b:c0:69:5b: 2e:8e:27:fe:ee:f3:bb:12:0d:16:c6:36:65:a7:6f:d0:95:13: 52:12:5a:f2:91:26:aa:cc:61:d7:97:51:02:98:d1:69:d1:20: 8a:93:90:69:70:05:ec:85:7b:e5:26:b2:37:89:3e:26:da:f0: dd:d9:29:36:67:fa:fc:ba:52:ba:27:44:93:e9:b8:94:a1:c2: 63:f8:6b:c6:1d:c5:f4:fc:56:e5:b9:01:01:2a:73:db:87:54: 33:3b:fa:cb:a5:de:2d:59:a2:d3:b1:23:55:29:6f:b9:2a:44: 88:80:66:60:32:ef:d0:c8:33:7d:f4:3d:f9:15:98:9a:2f:4e: 9e:5a:1c:a0:84:13:81:89:cc:24:c5:87:2f:9b:c2:ff:72:4a: 86:65:91:25:61:81:70:ae:61:8f:bd:82:b8:bb:fd:39:4b:b6: 00:c8:f7:46:f7:66:66:49:e4:cb:3d:a6:87:c6:16:b2:a8:0a: 9a:b0:da:f1:cf:59:73:70:dc:01:9d:73:33:53:26:a4:09:91: 02:2e:b2:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjQwNTA2MTQzMjQyWhcNMjQwNTEzMTQzMjQyWjAYMRYwFAYD VQQDEw02NjM4ZWEwYi00MmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1rvMxxS2pJSOhW/RJxMWa5p7Nnv21TMb4nnX/NEwwPhM4IYmSlksVCwg5KL3 ol0uhkGAFhIM7Ud+KEFXvJqUhCz4TGsF1/RKgDoA7q/M7ri1LvMVcbgnOqWUVqEK VUtmjnCFD0Ef4Ie+s/20Yi8PoM5UVP9n7j8IDv51ka5X5B2iX+S6JnfbUY4g8AF3 pGgOb9j7ok/SIuhNydrJg70VsmfrDaybbWP19YguoJRiboA2ztnQJHYmtZd2oYsF O2E4HDVy9+IxpqnrYnfcsPAMJdo/L6uXfwujV3Hw/B6fjgPpOxs36o9CaVSjjxYB dOE8+cP1sFqxigK2tcY1bwgk2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZpIcYX 8nqVD0W6eeqdBAn82Zr8MB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuw3Vg9DysFo22QKnK5XLp/bCeRQvIRVcKGyVUBdfhWPY0Q9AkyU9q 40+F039Rbl+nCXvAaVsujif+7vO7Eg0WxjZlp2/QlRNSElrykSaqzGHXl1ECmNFp 0SCKk5BpcAXshXvlJrI3iT4m2vDd2Sk2Z/r8ulK6J0ST6biUocJj+GvGHcX0/Fbl uQEBKnPbh1QzO/rLpd4tWaLTsSNVKW+5KkSIgGZgMu/QyDN99D35FZiaL06eWhyg hBOBicwkxYcvm8L/ckqGZZElYYFwrmGPvYK4u/05S7YAyPdG92ZmSeTLPaaHxhay qAqasNrxz1lzcNwBnXMzUyakCZECLrKN -----END CERTIFICATE-----Generated at Mon May 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org