$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft File: ZuoPg73TYyv_GUALOhum_t_8VYc.mft (raw, json) Hash identifier: aJ+i0NnZF4HfyQJ4PRCiQDZrakICG6tJYvH8eKjQLz0= Subject key identifier: F2:79:52:2D:48:7C:A2:DA:7B:B2:1C:BA:A0:84:5A:6C:2A:42:1A:DB Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 33D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft Manifest number: 33C7 Signing time: Sun 28 Apr 2024 15:27:43 +0000 Manifest this update: Sun 28 Apr 2024 15:27:42 +0000 Manifest next update: Sun 05 May 2024 15:27:42 +0000 Files and hashes: 1: ZuoPg73TYyv_GUALOhum_t_8VYc.crl (hash: F/L99/Yp3PzOYCFhDQZwF+AMjhJqal7deFL3IENmvhQ=) 2: 1190361AAF1B11E7B89F3883C4F9AE02.roa (hash: 2r/WkcrEUZXWVN/lqD4AS0KrozHazrd6MKeH3nsay0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 15:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13266 (0x33d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Validity Not Before: Apr 28 15:27:42 2024 GMT Not After : May 5 15:27:42 2024 GMT Subject: CN=662e6aef-172d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:72:8f:c9:8f:3a:79:fe:39:33:cf:b3:83:50: e5:25:c6:90:db:bb:79:f7:be:04:a3:02:43:91:e9: b8:c4:7c:61:3f:14:6c:55:5b:6d:fa:4f:32:7b:c1: ba:99:dc:e1:7a:21:23:84:0d:4d:45:c1:b4:25:96: b5:d1:7a:40:48:fd:63:ab:c3:07:a8:13:1c:95:c9: 97:82:a8:c5:f5:23:91:41:9f:dd:85:75:f5:19:45: a2:0d:31:94:ef:4c:d1:22:d3:da:40:0e:6e:8d:c5: 9e:e2:f9:c5:d4:ba:53:92:cf:aa:69:31:c5:b1:23: 4d:66:25:89:a2:a8:29:22:84:88:9d:5a:33:75:e7: 70:7e:96:3f:d7:a4:08:58:5e:89:2a:02:cf:38:ea: 0a:e5:f1:ef:f8:2f:fb:c1:a1:7a:c4:63:ab:bb:bc: 7c:0a:11:81:d6:96:24:19:6b:3e:88:dd:2d:92:40: f4:f8:7f:18:e7:a1:af:44:80:4a:1c:d6:84:c4:c1: d1:e8:e1:6b:7a:67:29:82:ed:35:f4:63:fc:e2:35: 39:55:31:89:01:bf:a3:cf:ab:ce:28:25:70:eb:dc: 86:9b:37:23:ab:06:6c:29:f9:cc:7a:00:51:71:d1: 1c:9f:07:0d:18:3e:f7:bd:06:16:ba:17:89:7f:c1: c7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:79:52:2D:48:7C:A2:DA:7B:B2:1C:BA:A0:84:5A:6C:2A:42:1A:DB X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:08:9c:48:60:b8:0e:f8:fb:ac:50:47:c9:de:bd:48:59:b9: 74:73:ed:85:1c:d7:a3:1b:5b:bb:c4:a5:69:5d:77:d4:ea:44: c9:9a:17:e9:01:ec:41:ca:1d:4b:0b:e6:c3:ec:aa:20:eb:5d: 0b:e6:32:86:e6:45:ee:0d:fe:9f:ae:f7:14:5e:96:7e:3e:21: 22:44:2d:ad:19:44:5a:ea:01:38:18:17:2f:d4:76:90:6d:37: 7d:35:81:00:f0:8c:fb:78:66:b9:59:19:3d:f3:c3:34:92:25: 84:95:39:b9:5b:a8:ed:59:eb:97:b9:be:4f:8f:3f:f3:04:75: 06:54:45:27:d6:19:07:fc:14:43:41:44:36:49:6b:a0:07:e4: e5:85:ca:f0:0e:dc:1c:2f:d1:16:50:31:9c:9c:5b:29:7b:a4: 74:88:22:93:94:45:93:22:3e:5b:6b:82:d2:c3:b2:1e:8f:41: 7a:58:24:19:34:f3:4b:93:9a:e7:ef:32:32:c3:b3:23:22:8e: cc:4e:e6:d5:66:60:97:37:24:25:6e:2c:b9:6a:26:76:0a:07: 71:74:a1:76:46:2d:9a:a1:a6:a4:35:02:de:b4:45:2a:bc:21: f9:9c:46:ae:d8:7e:4b:b9:5b:f1:9d:97:c2:da:ba:e2:1e:54: 0f:f2:54:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjQwNDI4MTUyNzQyWhcNMjQwNTA1MTUyNzQyWjAYMRYwFAYD VQQDEw02NjJlNmFlZi0xNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HKPyY86ef45M8+zg1DlJcaQ27t5974EowJDkem4xHxhPxRsVVtt+k8ye8G6 mdzheiEjhA1NRcG0JZa10XpASP1jq8MHqBMclcmXgqjF9SORQZ/dhXX1GUWiDTGU 70zRItPaQA5ujcWe4vnF1LpTks+qaTHFsSNNZiWJoqgpIoSInVozdedwfpY/16QI WF6JKgLPOOoK5fHv+C/7waF6xGOru7x8ChGB1pYkGWs+iN0tkkD0+H8Y56GvRIBK HNaExMHR6OFremcpgu019GP84jU5VTGJAb+jz6vOKCVw69yGmzcjqwZsKfnMegBR cdEcnwcNGD73vQYWuheJf8HHgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPJ5Ui1I fKLae7IcuqCEWmwqQhrbMB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0I2My9FMUIwNTRGQzFEQTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5 dl9HVUFMT2h1bV90XzhWWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSCJxIYLgO+PusUEfJ3r1IWbl0c+2FHNejG1u7xKVpXXfU6kTJmhfp AexByh1LC+bD7Kog610L5jKG5kXuDf6frvcUXpZ+PiEiRC2tGURa6gE4GBcv1HaQ bTd9NYEA8Iz7eGa5WRk988M0kiWElTm5W6jtWeuXub5Pjz/zBHUGVEUn1hkH/BRD QUQ2SWugB+TlhcrwDtwcL9EWUDGcnFspe6R0iCKTlEWTIj5ba4LSw7Iej0F6WCQZ NPNLk5rn7zIyw7MjIo7MTubVZmCXNyQlbiy5aiZ2CgdxdKF2Ri2aoaakNQLetEUq vCH5nEau2H5LuVvxnZfC2rriHlQP8lQx -----END CERTIFICATE-----Generated at Sun Apr 28 19:00:57 2024 by rpki-client on console-fra.rpki-client.org