$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft File: 0Z0h9lpMk802wwczAhMPTmW38Ok.mft (raw, json) Hash identifier: Qt1Q5TaiYrMbkOkVOT8q9S4H/JRPviaguSOU/XVjBME= Subject key identifier: 18:30:EB:38:20:59:ED:54:4D:A4:4E:9D:BC:B1:40:37:58:FC:E8:AD Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft Manifest number: B0 Signing time: Fri 17 May 2024 06:38:52 +0000 Manifest this update: Fri 17 May 2024 06:38:52 +0000 Manifest next update: Fri 24 May 2024 06:38:52 +0000 Files and hashes: 1: 0Z0h9lpMk802wwczAhMPTmW38Ok.crl (hash: FjLw1+AL5fqOOgVwpQs3/AxtTPB+u7+4bzBMUg6Dgys=) 2: 277E1906063111EEA8D4704BC4F9AE02.roa (hash: THC/L5YLjrONtGlxNBxJEuWTknijbFjGs5qqW005o70=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:38:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: May 17 06:38:52 2024 GMT Not After : May 24 06:38:52 2024 GMT Subject: CN=6646fb7c-865b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e0:c2:21:fb:25:43:ad:d1:37:2a:c7:17:b6: 32:49:e0:28:f0:c0:2f:97:20:0b:ea:5d:7e:c1:a7: c2:5c:dd:f9:6e:1d:d3:fd:88:e8:55:c8:03:93:97: fc:62:c1:bf:45:8d:3d:42:31:53:e6:06:83:f7:16: 77:34:f0:3c:b2:d9:27:48:7c:4a:6a:c8:a0:47:c1: 9d:ec:21:d1:27:c4:75:c7:a3:c4:97:b0:7d:6c:f4: 1a:3d:b8:de:2b:00:40:30:2b:0c:c2:ec:a5:74:89: 7b:31:4d:8b:d0:c8:69:d4:b5:c4:4e:15:24:08:fa: 3c:88:28:1f:8c:43:5c:24:19:6a:e0:fe:f7:51:9d: dc:70:7d:40:51:3e:24:3b:94:fd:86:64:ae:92:ec: 2b:67:3e:30:16:b5:f9:3a:fe:20:1a:28:e7:99:b5: ed:a7:70:6a:31:e7:62:a7:99:27:92:59:70:b7:5e: bc:7d:f5:4f:f8:67:9e:da:41:bc:bd:1e:83:73:e1: 61:69:ce:e6:4e:3d:a3:81:1e:ee:6e:c8:7d:b3:67: 6f:70:80:c0:07:fe:6b:bc:f0:4c:9e:86:0a:d5:8c: 7a:1a:d7:c4:40:c3:c2:81:95:4c:5b:31:01:5b:c7: d6:ce:ba:79:21:ea:9f:d6:f0:98:33:ca:2b:1e:7c: 62:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:30:EB:38:20:59:ED:54:4D:A4:4E:9D:BC:B1:40:37:58:FC:E8:AD X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:67:99:b9:a2:c4:09:32:8e:3e:b5:71:f9:00:38:fe:3b:2f: 85:26:e2:14:aa:eb:3b:f7:38:03:3c:ee:83:46:a8:03:fc:32: dc:ec:b0:37:1f:1e:1e:92:d3:12:cd:1b:53:b5:a1:9a:a0:3a: 2f:5b:2a:0b:b9:a4:6c:48:c2:1a:9f:00:b1:b1:f1:be:09:80: b8:ad:33:d5:dd:22:8a:db:c3:02:b7:d9:3e:b7:54:8a:ac:24: c2:68:55:35:58:40:2c:23:b5:40:0b:2b:49:98:a1:8e:9f:24: 26:35:71:6e:53:91:3a:8d:2d:f7:3a:af:46:76:9d:f9:2c:d8: 69:4f:a7:c9:58:2a:b6:14:22:18:30:2a:d1:97:a6:6a:c0:9a: 07:14:1c:0a:f3:34:a1:e7:c3:4f:95:22:75:2d:62:da:3a:ed: c7:64:79:ca:fa:02:7e:ae:2b:17:d5:06:37:ac:80:b3:73:ce: ca:75:6b:9a:72:3e:be:ff:72:9f:61:60:93:51:fa:ac:c7:e2: 94:9c:39:a0:4c:94:3a:12:8b:b4:7e:3e:65:f1:07:18:a6:c4: 3a:2d:c7:94:95:81:7a:d0:95:d5:55:75:ae:33:bb:c1:4c:29: 1f:0c:7e:d9:23:e7:23:9a:e3:9b:ed:96:ae:e0:b6:23:5c:87: 45:06:64:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjQwNTE3MDYzODUyWhcNMjQwNTI0MDYzODUyWjAYMRYwFAYD VQQDEw02NjQ2ZmI3Yy04NjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsODCIfslQ63RNyrHF7YySeAo8MAvlyAL6l1+wafCXN35bh3T/YjoVcgDk5f8 YsG/RY09QjFT5gaD9xZ3NPA8stknSHxKasigR8Gd7CHRJ8R1x6PEl7B9bPQaPbje KwBAMCsMwuyldIl7MU2L0Mhp1LXEThUkCPo8iCgfjENcJBlq4P73UZ3ccH1AUT4k O5T9hmSukuwrZz4wFrX5Ov4gGijnmbXtp3BqMedip5knkllwt168ffVP+Gee2kG8 vR6Dc+Fhac7mTj2jgR7ubsh9s2dvcIDAB/5rvPBMnoYK1Yx6GtfEQMPCgZVMWzEB W8fWzrp5Ieqf1vCYM8orHnxiEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgw6zgg We1UTaROnbyxQDdY/OitMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjVDQi82OTU1MTVFMDA2MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4 MDJ3d2N6QWhNUFRtVzM4T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANZ5m5osQJMo4+tXH5ADj+Oy+FJuIUqus79zgDPO6DRqgD/DLc7LA3 Hx4ektMSzRtTtaGaoDovWyoLuaRsSMIanwCxsfG+CYC4rTPV3SKK28MCt9k+t1SK rCTCaFU1WEAsI7VACytJmKGOnyQmNXFuU5E6jS33Oq9Gdp35LNhpT6fJWCq2FCIY MCrRl6ZqwJoHFBwK8zSh58NPlSJ1LWLaOu3HZHnK+gJ+risX1QY3rICzc87KdWua cj6+/3KfYWCTUfqsx+KUnDmgTJQ6Eou0fj5l8QcYpsQ6LceUlYF60JXVVXWuM7vB TCkfDH7ZI+cjmuOb7Zau4LYjXIdFBmT7 -----END CERTIFICATE-----Generated at Fri May 17 08:52:49 2024 by rpki-client on console-ams.rpki-client.org