$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: LleWWG/KZdcRbkaGvbeW+4msnGC71otAJG+bGSdhxlU= Subject key identifier: 42:8B:3B:AD:1D:1E:0F:A1:40:EF:0E:DE:41:03:48:89:10:60:0E:60 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: 5F Signing time: Mon 20 May 2024 17:29:28 +0000 Manifest this update: Mon 20 May 2024 17:29:27 +0000 Manifest next update: Mon 27 May 2024 17:29:27 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: yKKT5lZnvrd+2OMNcMaO39mtCTYUQD+3s/+SLV9r0bg=) 2: A265A002901611EE89038D46C4F9AE02.roa (hash: Zt5qvo7bdT8x4NuI4JryFe04Cr3lcEVUUTE57WJ4weQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 17:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: May 20 17:29:27 2024 GMT Not After : May 27 17:29:27 2024 GMT Subject: CN=664b8878-59b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a1:05:a2:ed:03:c0:cc:f7:bb:23:82:6e:27: 82:9b:e2:88:13:e0:06:d3:8c:a4:bd:47:db:ac:9d: 06:be:80:66:da:bf:34:b7:c7:2d:f3:c7:78:f7:fe: 8a:45:8e:dc:86:68:ee:48:ec:4a:e4:f2:63:3c:d3: 9b:5d:99:20:9c:32:87:67:a8:c0:63:24:e9:29:ec: f2:8f:3d:e9:da:83:6d:43:c0:39:e2:e2:e8:15:53: cc:d6:5e:3b:f6:6d:0b:cd:b0:35:05:58:d2:23:11: 93:7f:91:cc:16:0c:c0:36:1f:78:12:b5:62:56:ae: c3:a8:59:6c:2e:3f:fa:48:7b:11:0b:aa:c4:e4:69: 49:29:95:5a:84:30:20:a7:bf:ab:c1:fe:4e:9e:fb: 4b:e1:41:b4:d6:f2:04:86:73:6d:e1:70:4c:20:b2: 90:91:b8:f7:7f:79:71:c6:d3:17:98:b3:6b:35:7b: 37:11:25:b3:b2:42:33:5a:e1:9e:8f:e5:cb:4b:59: 08:a8:30:99:02:25:e0:ce:ee:40:a1:77:c1:91:e1: f7:1c:4d:1a:9a:d8:ea:30:2b:bd:85:77:19:3d:18: f7:67:19:39:ec:47:c1:d8:73:d7:77:99:e5:46:88: f9:d9:d8:97:99:9f:05:42:00:28:11:9a:dc:65:14: 81:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8B:3B:AD:1D:1E:0F:A1:40:EF:0E:DE:41:03:48:89:10:60:0E:60 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:6a:95:ee:2b:62:f6:c1:70:c5:0f:bb:b0:1f:ed:7d:04:5f: f0:6b:a8:c1:89:0d:dc:40:21:5e:57:c3:59:75:e3:01:e7:cf: 42:cc:c0:3a:29:eb:0a:7b:55:e3:da:0b:4f:6f:54:d1:c8:3e: 46:18:51:6b:84:b3:10:e7:21:61:b7:3c:93:b2:d4:16:ce:67: 02:6c:39:bb:41:1d:e0:3e:49:b3:f7:f3:96:a6:67:b8:53:cf: 10:90:59:d8:be:89:4d:4a:73:bf:7a:3d:1d:3a:4b:5a:9a:49: eb:52:81:a4:d9:45:9f:26:2c:13:9d:8c:b1:78:e4:de:a1:56: fb:7d:50:79:f1:2a:ec:97:58:a2:41:27:81:77:05:16:eb:d6: 5a:05:d7:5a:6a:29:a6:5d:f2:21:18:73:fb:b4:38:30:c4:3b: 57:62:db:c5:c4:ec:b8:73:a8:e9:8e:70:a9:88:1e:7c:60:f7: 3a:6b:01:2a:91:67:a1:e7:1d:62:30:0d:d5:fe:7f:6d:7b:5c: 03:61:7e:00:24:45:22:d4:96:86:3e:68:a7:d2:1d:b1:69:6f: b5:8d:d1:83:fb:d1:44:15:7b:05:15:13:8e:15:b7:3e:b7:95: e6:31:c4:03:86:4f:eb:c0:d1:7b:69:9b:89:f8:17:db:11:99: 09:d9:de:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RkE0OTExMC8GA1UEBRMoQ0Q2NUU2NzQwQkFFN0VCMzNCRDVFNTM4QzlFRTZERThC MzM1NDQzMTAeFw0yNDA1MjAxNzI5MjdaFw0yNDA1MjcxNzI5MjdaMBgxFjAUBgNV BAMTDTY2NGI4ODc4LTU5YjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeoQWi7QPAzPe7I4JuJ4Kb4ogT4AbTjKS9R9usnQa+gGbavzS3xy3zx3j3/opF jtyGaO5I7Erk8mM805tdmSCcModnqMBjJOkp7PKPPenag21DwDni4ugVU8zWXjv2 bQvNsDUFWNIjEZN/kcwWDMA2H3gStWJWrsOoWWwuP/pIexELqsTkaUkplVqEMCCn v6vB/k6e+0vhQbTW8gSGc23hcEwgspCRuPd/eXHG0xeYs2s1ezcRJbOyQjNa4Z6P 5ctLWQioMJkCJeDO7kChd8GR4fccTRqa2OowK72Fdxk9GPdnGTnsR8HYc9d3meVG iPnZ2JeZnwVCACgRmtxlFIE1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQos7rR0e D6FA7w7eQQNIiRBgDmAwHwYDVR0jBBgwFoAUzWXmdAuufrM71eU4ye5t6LM1RDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZGQTQ5L0E0QzBDQTk2OTAw OTExRUU5RTU0QTAzM0M0RjlBRTAyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveldYbWRBdXVmck03MWVVNHllNXQ2TE0xUkRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZG QTQ5L0E0QzBDQTk2OTAwOTExRUU5RTU0QTAzM0M0RjlBRTAyL3pXWG1kQXV1ZnJN NzFlVTR5ZTV0NkxNMVJERS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEVqle4rYvbBcMUPu7Af7X0EX/BrqMGJDdxAIV5Xw1l14wHnz0LMwDop 6wp7VePaC09vVNHIPkYYUWuEsxDnIWG3PJOy1BbOZwJsObtBHeA+SbP385amZ7hT zxCQWdi+iU1Kc796PR06S1qaSetSgaTZRZ8mLBOdjLF45N6hVvt9UHnxKuyXWKJB J4F3BRbr1loF11pqKaZd8iEYc/u0ODDEO1di28XE7LhzqOmOcKmIHnxg9zprASqR Z6HnHWIwDdX+f217XANhfgAkRSLUloY+aKfSHbFpb7WN0YP70UQVewUVE44Vtz63 leYxxAOGT+vA0Xtpm4n4F9sRmQnZ3lY= -----END CERTIFICATE-----Generated at Mon May 20 19:20:07 2024 by rpki-client on console-fra.rpki-client.org