$ rpki-client -vvf rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft File: 9ZvGR-kMztyU6oWmLrjrGL0DUms.mft (raw, json) Hash identifier: tOZ74vAziT5+5Hn7uBWzXFEUsMED6BfsqqRCIrxsBiI= Subject key identifier: CD:03:97:F5:77:02:A9:31:6F:CF:20:98:33:FC:FF:52:09:52:3E:D8 Authority key identifier: F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B Certificate issuer: /CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Certificate serial: 073C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft Manifest number: 0731 Signing time: Thu 02 May 2024 22:38:42 +0000 Manifest this update: Thu 02 May 2024 22:38:41 +0000 Manifest next update: Thu 09 May 2024 22:38:41 +0000 Files and hashes: 1: 9ZvGR-kMztyU6oWmLrjrGL0DUms.crl (hash: W12L1IgUBwJOREI2m4W4BF198cqy1JnB+HLNP8Spn1I=) 2: EED16B2CEC4211EABC227339C4F9AE02.roa (hash: RMR7KwU7xyWXlKtABuhss5yJpFReeaEZyLkq7UcoIo4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1852 (0x73c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Validity Not Before: May 2 22:38:41 2024 GMT Not After : May 9 22:38:41 2024 GMT Subject: CN=663415f2-9988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:08:ef:34:33:88:3e:11:c6:48:93:aa:a6:13: 31:98:f8:74:a5:54:b8:01:4f:57:d9:28:ea:c0:5a: a6:0e:ca:8a:b6:d7:1e:68:63:d9:f4:e4:1c:73:71: ea:00:29:c9:75:df:4a:16:ee:f5:a2:76:a6:de:88: 44:3c:12:b2:22:cb:21:33:5d:c5:22:63:8b:db:32: 47:ef:8d:be:dc:ed:bc:5b:41:bd:5d:e0:d2:a7:6f: a1:df:ff:77:a2:d9:cc:cb:8c:31:02:b9:ab:7c:77: e7:f5:13:af:de:44:2c:48:01:97:a5:5b:59:0c:05: 1b:ea:39:f9:eb:ad:5c:cc:cc:29:11:96:52:c8:79: 6c:44:b6:fd:1d:c7:a9:23:96:e8:f2:4e:93:07:3d: 91:f3:12:aa:ee:8b:03:64:39:81:db:95:d1:c9:3b: d4:86:53:7e:0d:29:e4:03:46:9a:de:3e:7d:11:db: 37:bd:5b:bb:ba:a5:f6:4e:92:0a:9c:8e:33:59:13: 54:72:46:37:dc:dc:9b:0d:51:d0:8f:42:d7:99:20: a4:8d:45:9e:2a:13:ca:8f:fc:b0:58:61:41:7d:8c: c9:ce:99:ec:02:f3:dd:fb:9d:e2:74:7d:d1:4c:4c: d1:85:b0:69:d2:7c:19:76:a7:c4:ee:29:54:75:c9: 58:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:03:97:F5:77:02:A9:31:6F:CF:20:98:33:FC:FF:52:09:52:3E:D8 X509v3 Authority Key Identifier: keyid:F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:38:92:0c:a6:44:42:c9:7d:12:a6:eb:51:06:94:5f:ba:4c: 18:66:e6:87:5c:7a:9f:76:50:d7:6e:25:1e:6e:19:3a:5c:24: 29:95:a0:29:86:c8:b4:76:37:1a:a3:fe:bb:ea:5d:09:a3:b1: d0:02:36:7d:08:cc:9d:22:6f:0e:27:cf:3c:05:0e:c0:c4:3c: 93:2c:8d:20:8e:2e:7b:bb:70:a3:fc:95:d5:f9:90:8c:69:54: bb:41:b7:03:ef:8b:f1:29:d3:44:b7:58:15:c4:ca:e9:6c:e8: 6f:15:46:6c:bd:1a:dd:0e:f5:81:9b:f3:9b:c5:32:15:d0:ba: 25:7b:18:02:c7:71:dc:61:78:88:bf:dc:7b:af:aa:26:56:0c: 9f:ea:7d:84:5d:59:cf:c4:6f:c5:24:a4:fc:d2:4b:2f:ec:b9: 43:dd:81:3f:67:6d:0f:f5:8b:02:3a:9a:ee:22:3c:60:f2:11: 78:67:cf:54:c0:64:56:4a:f2:39:30:8e:01:0c:59:d3:4b:59: c3:77:dc:7b:4e:56:b3:48:f8:28:c8:87:15:b2:3e:d3:65:45: 3c:1e:25:fc:83:15:3b:0a:c2:b7:77:81:6c:e6:33:ef:8a:30: 85:df:09:1d:70:4a:89:b9:a8:95:71:e0:56:73:e9:e7:8a:1f: 9e:00:7c:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NGRDIxMTAvBgNVBAUTKEY1OUJDNjQ3RTkwQ0NFREM5NEVBODVBNjJFQjhFQjE4 QkQwMzUyNkIwHhcNMjQwNTAyMjIzODQxWhcNMjQwNTA5MjIzODQxWjAYMRYwFAYD VQQDEw02NjM0MTVmMi05OTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQjvNDOIPhHGSJOqphMxmPh0pVS4AU9X2SjqwFqmDsqKttceaGPZ9OQcc3Hq ACnJdd9KFu71onam3ohEPBKyIsshM13FImOL2zJH742+3O28W0G9XeDSp2+h3/93 otnMy4wxArmrfHfn9ROv3kQsSAGXpVtZDAUb6jn5661czMwpEZZSyHlsRLb9Hcep I5bo8k6TBz2R8xKq7osDZDmB25XRyTvUhlN+DSnkA0aa3j59Eds3vVu7uqX2TpIK nI4zWRNUckY33NybDVHQj0LXmSCkjUWeKhPKj/ywWGFBfYzJzpnsAvPd+53idH3R TEzRhbBp0nwZdqfE7ilUdclYMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0Dl/V3 Aqkxb88gmDP8/1IJUj7YMB8GA1UdIwQYMBaAFPWbxkfpDM7clOqFpi646xi9A1Jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0ZEMi8xRDJBODk0MkU2 RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0eVU2b1dtTHJqckdMMERV bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzladkdSLWtNenR5VTZvV21McmpyR0wwRFVtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0ZEMi8xRDJBODk0MkU2RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0 eVU2b1dtTHJqckdMMERVbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaOJIMpkRCyX0SputRBpRfukwYZuaHXHqfdlDXbiUebhk6XCQplaAp hsi0djcao/676l0Jo7HQAjZ9CMydIm8OJ888BQ7AxDyTLI0gji57u3Cj/JXV+ZCM aVS7QbcD74vxKdNEt1gVxMrpbOhvFUZsvRrdDvWBm/ObxTIV0LolexgCx3HcYXiI v9x7r6omVgyf6n2EXVnPxG/FJKT80ksv7LlD3YE/Z20P9YsCOpruIjxg8hF4Z89U wGRWSvI5MI4BDFnTS1nDd9x7TlazSPgoyIcVsj7TZUU8HiX8gxU7CsK3d4Fs5jPv ijCF3wkdcEqJuaiVceBWc+nnih+eAHwG -----END CERTIFICATE-----Generated at Thu May 2 23:48:43 2024 by rpki-client on console-fra.rpki-client.org