$ rpki-client -vvf rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft File: Z-1VajxcS_wnyhWKWXdWTDIHzso.mft (raw, json) Hash identifier: BkSR0fd7uvlLhFWKnQnuQhr6GwnjIe+B1yhovSzjCmQ= Subject key identifier: 3C:FA:A9:E9:19:0C:3A:11:09:05:21:7C:B1:61:34:FA:D6:DC:94:62 Authority key identifier: 67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA Certificate issuer: /CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Certificate serial: 2F6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft Manifest number: 2F64 Signing time: Thu 02 May 2024 15:43:57 +0000 Manifest this update: Thu 02 May 2024 15:43:56 +0000 Manifest next update: Thu 09 May 2024 15:43:56 +0000 Files and hashes: 1: Z-1VajxcS_wnyhWKWXdWTDIHzso.crl (hash: yh3xBKolIqu7JcCLLb3+/qfyeuGrwPwaoloQKzXG/dc=) 2: 332821EE4BF311EAB4860A6FC4F9AE02.roa (hash: hyeyp4oVKRW4lvC5yQ7rRx3/jF4h9o6qj/FRYX9l6Zs=) 3: 329BEBF24BF311EAB4860A6FC4F9AE02.roa (hash: mCWJYcc13zZ2uPoYBjSERJh3FcrlxDm1lS4//jTPyB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12143 (0x2f6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91752F4/serialNumber=67ED556A3C5C4BFC27CA158A5977564C3207CECA Validity Not Before: May 2 15:43:56 2024 GMT Not After : May 9 15:43:56 2024 GMT Subject: CN=6633b4bc-21a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6f:30:2f:ad:47:22:e4:7d:b8:79:f4:f8:56: e5:f5:5e:a0:ab:95:e4:46:b3:fb:4b:0e:3f:38:24: a2:4f:6c:13:c4:06:17:02:03:20:5f:79:29:80:84: 71:20:7b:f9:94:80:25:bd:72:1d:40:58:85:30:99: af:bd:78:d2:2e:0a:58:11:77:34:d7:72:d3:b3:57: 1b:02:8b:0e:55:d1:47:f1:ec:bd:4f:fa:2f:f5:63: e1:10:99:84:03:e5:85:6f:63:4b:ff:75:be:f9:d6: a5:eb:a3:d1:be:fa:b8:96:b5:76:db:8d:77:ce:11: 70:ef:40:8d:03:9a:28:48:aa:5b:73:3e:bf:25:f0: 12:6a:17:5a:8f:4b:3a:a5:3b:33:e0:d6:f6:87:84: e8:46:e3:2d:3a:b5:dd:35:6b:2b:e4:fa:3e:c4:1d: a3:50:90:7a:28:ee:5b:0d:d9:76:68:59:99:cd:4a: 9e:30:42:c2:22:8e:d4:e6:5d:8c:18:d3:cc:61:61: a3:39:25:16:0a:f0:10:d8:61:5c:29:e3:4d:b7:01: b6:f0:3d:11:89:70:f3:ea:55:de:95:1d:4f:d1:a0: d7:de:88:c4:27:b5:6e:1c:51:e3:86:43:c8:81:c7: 68:9c:8f:9c:12:4d:6a:08:a2:84:b5:39:ca:81:fe: 1c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:FA:A9:E9:19:0C:3A:11:09:05:21:7C:B1:61:34:FA:D6:DC:94:62 X509v3 Authority Key Identifier: keyid:67:ED:55:6A:3C:5C:4B:FC:27:CA:15:8A:59:77:56:4C:32:07:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z-1VajxcS_wnyhWKWXdWTDIHzso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91752F4/80164F4EF8BC11E2AD91813B5911EA32/Z-1VajxcS_wnyhWKWXdWTDIHzso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:8c:b4:3e:73:d1:35:8c:82:ec:3f:09:d4:eb:4d:8d:87:17: b8:d4:e6:d6:42:78:fb:85:c3:10:6e:d4:88:c1:23:9d:cf:30: 17:12:70:10:83:ef:29:e1:42:a0:9e:47:f6:8c:94:af:28:34: 2d:cc:87:6c:df:d9:46:df:98:51:7c:f1:32:fe:ed:e2:dd:b9: dd:a7:e4:44:4f:04:c7:20:6b:9b:9a:01:c1:59:9b:7f:5c:9a: a8:c4:65:5e:c7:cf:b7:44:51:8a:ca:cc:60:8f:02:bf:e4:37: cb:ee:f5:95:7e:04:1f:5f:5c:8b:8c:24:71:83:14:bd:56:4c: 60:b9:56:6e:e3:a6:0f:11:6c:30:83:3e:8a:05:a0:1d:5f:4d: e8:b3:f7:9f:b9:76:a6:3e:86:4b:52:3d:a2:4b:a6:f7:99:1e: e8:89:52:7f:06:c5:b7:3a:58:f4:fd:72:23:da:29:ef:d4:30: 9a:3b:02:77:5b:0a:7a:3f:6b:38:fe:0c:82:c0:63:4f:2c:8a: d1:b2:30:e5:8e:18:9e:5e:b7:da:6f:e3:41:23:b5:0b:7a:a0: 4a:5a:66:d7:2a:ba:db:95:91:0e:a1:1f:84:4b:c1:f5:33:67: 0e:d9:36:b4:ff:79:ea:a8:ae:77:f2:75:36:20:5f:ad:82:44: 47:d6:64:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyRjQxMTAvBgNVBAUTKDY3RUQ1NTZBM0M1QzRCRkMyN0NBMTU4QTU5Nzc1NjRD MzIwN0NFQ0EwHhcNMjQwNTAyMTU0MzU2WhcNMjQwNTA5MTU0MzU2WjAYMRYwFAYD VQQDEw02NjMzYjRiYy0yMWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1W8wL61HIuR9uHn0+Fbl9V6gq5XkRrP7Sw4/OCSiT2wTxAYXAgMgX3kpgIRx IHv5lIAlvXIdQFiFMJmvvXjSLgpYEXc013LTs1cbAosOVdFH8ey9T/ov9WPhEJmE A+WFb2NL/3W++dal66PRvvq4lrV22413zhFw70CNA5ooSKpbcz6/JfASahdaj0s6 pTsz4Nb2h4ToRuMtOrXdNWsr5Po+xB2jUJB6KO5bDdl2aFmZzUqeMELCIo7U5l2M GNPMYWGjOSUWCvAQ2GFcKeNNtwG28D0RiXDz6lXelR1P0aDX3ojEJ7VuHFHjhkPI gcdonI+cEk1qCKKEtTnKgf4cywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDz6qekZ DDoRCQUhfLFhNPrW3JRiMB8GA1UdIwQYMBaAFGftVWo8XEv8J8oVill3VkwyB87K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTJGNC84MDE2NEY0RUY4 QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nfd255aFdLV1hkV1RESUh6 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1otMVZhanhjU193bnloV0tXWGRXVERJSHpzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTJGNC84MDE2NEY0RUY4QkMxMUUyQUQ5MTgxM0I1OTExRUEzMi9aLTFWYWp4Y1Nf d255aFdLV1hkV1RESUh6c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVjLQ+c9E1jILsPwnU602Nhxe41ObWQnj7hcMQbtSIwSOdzzAXEnAQ g+8p4UKgnkf2jJSvKDQtzIds39lG35hRfPEy/u3i3bndp+RETwTHIGubmgHBWZt/ XJqoxGVex8+3RFGKysxgjwK/5DfL7vWVfgQfX1yLjCRxgxS9VkxguVZu46YPEWww gz6KBaAdX03os/efuXamPoZLUj2iS6b3mR7oiVJ/BsW3Olj0/XIj2inv1DCaOwJ3 Wwp6P2s4/gyCwGNPLIrRsjDljhieXrfab+NBI7ULeqBKWmbXKrrblZEOoR+ES8H1 M2cO2Ta0/3nqqK538nU2IF+tgkRH1mQ8 -----END CERTIFICATE-----Generated at Thu May 2 17:43:10 2024 by rpki-client on console-fra.rpki-client.org