$ rpki-client -vvf rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft File: ZTiBnzv0kyyggsFGry_qy--HjLg.mft (raw, json) Hash identifier: Zh485W1iKGZO2SFt26f2WAgoGtF/4+jE0J8BYWE05JU= Subject key identifier: B7:26:5B:B2:E0:54:E3:A6:1C:44:FD:69:A2:19:09:6A:CF:98:7D:E5 Authority key identifier: 65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 Certificate issuer: /CN=A918134E/serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft Manifest number: 3C Signing time: Wed 15 May 2024 08:24:13 +0000 Manifest this update: Wed 15 May 2024 08:24:12 +0000 Manifest next update: Wed 22 May 2024 08:24:12 +0000 Files and hashes: 1: ZTiBnzv0kyyggsFGry_qy--HjLg.crl (hash: Jy1KB+HpL5ujQenPIMFwzgT9E9JMvGJIJ96tYUDwjg8=) 2: F8672B3EBB5D11EEB6706D74C4F9AE02.roa (hash: Yh/0O+/9sJ9Bo7kh2InfCjfpVJvuhcPwhFDv9ZgEWQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918134E/serialNumber=6538819F3BF4932CA082C146AF2FEACBEF878CB8 Validity Not Before: May 15 08:24:12 2024 GMT Not After : May 22 08:24:12 2024 GMT Subject: CN=6644712d-c827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cf:d4:75:62:dc:b2:9c:33:ba:cb:10:5a:9e: c1:df:42:2d:2c:18:60:c4:a0:20:b2:94:12:64:f9: 03:d7:e8:25:44:d0:39:44:4a:f6:72:33:d9:c1:c0: 63:1c:63:34:0a:b0:25:fd:19:1d:47:59:d4:ec:f8: c2:6f:19:63:d6:2c:58:7c:f6:6c:e2:9d:f5:ca:32: 13:f1:57:c9:27:92:2b:01:82:e8:d2:97:3b:0d:9a: 0e:0a:df:c7:3a:1a:09:9e:c2:4b:0a:a0:ae:62:88: 6f:e1:16:46:d1:d9:39:f1:a2:58:1e:c8:c7:69:b6: aa:8a:42:42:e0:ac:97:a1:56:da:b1:e5:40:cd:20: 56:0f:d5:3a:66:62:a9:f2:e1:41:1d:77:80:6c:db: 6c:07:98:f3:11:82:28:c2:e5:64:a7:a5:1f:23:a9: df:36:7f:b0:9e:6c:e1:c8:e5:0d:cc:84:55:e4:88: 38:9a:74:a6:c1:2b:f1:e8:d4:11:ec:56:31:0f:d3: 1b:a3:06:a1:b1:67:d9:8f:57:c2:e6:94:94:d9:f1: 11:37:9a:6d:21:d8:e1:84:26:81:26:c8:c5:0d:38: 76:3c:9b:80:6c:c5:d5:1a:d6:b8:d8:39:e9:20:bb: 88:1d:ba:ed:44:21:85:54:9a:b0:b1:24:ba:97:5d: 0e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:26:5B:B2:E0:54:E3:A6:1C:44:FD:69:A2:19:09:6A:CF:98:7D:E5 X509v3 Authority Key Identifier: keyid:65:38:81:9F:3B:F4:93:2C:A0:82:C1:46:AF:2F:EA:CB:EF:87:8C:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZTiBnzv0kyyggsFGry_qy--HjLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918134E/2BFF1412BB5D11EE83302073C4F9AE02/ZTiBnzv0kyyggsFGry_qy--HjLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a9:a9:e8:15:5e:de:e7:6e:4e:00:28:aa:30:e2:af:c3:e5: fa:a4:d3:35:97:ac:24:8f:d3:9b:18:11:c7:2e:a2:75:bd:c5: 51:17:b9:c3:27:c9:8d:ee:68:a5:9c:68:c4:b7:ad:9c:b6:09: b5:b9:e3:7a:99:e6:db:2a:1f:cf:94:2a:44:20:66:79:f2:e1: 73:38:47:29:54:16:6b:0b:16:68:aa:36:89:ea:f8:64:51:10: a9:e8:39:d0:b8:c9:4a:4e:be:e1:50:bb:04:15:0a:6b:c2:bb: 4a:30:3d:c8:c4:44:e3:e2:56:02:29:da:7b:c4:71:2e:2b:a6: bf:58:3c:4a:f4:78:4a:74:42:c7:81:3f:d2:ba:f3:28:e0:c6: 37:2c:55:1a:10:18:b5:c1:14:75:75:71:50:ad:cd:fb:24:f2: 32:60:bc:eb:4a:fd:4b:b0:18:b0:0c:f6:37:14:11:88:aa:47: a3:8c:89:7b:35:26:7e:d7:87:56:e2:71:69:f4:db:ec:02:6f: 6f:ae:b8:08:03:10:4d:f8:87:c5:fb:e9:a7:a0:4f:b6:86:94: db:62:e1:83:b7:33:d0:83:6b:de:4d:35:77:e4:60:d1:d5:a0: 24:05:c4:9a:12:5f:46:1e:c8:5f:47:f1:1e:cf:a0:23:c1:8b: a3:df:1d:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MTM0RTExMC8GA1UEBRMoNjUzODgxOUYzQkY0OTMyQ0EwODJDMTQ2QUYyRkVBQ0JF Rjg3OENCODAeFw0yNDA1MTUwODI0MTJaFw0yNDA1MjIwODI0MTJaMBgxFjAUBgNV BAMTDTY2NDQ3MTJkLWM4MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGz9R1YtyynDO6yxBansHfQi0sGGDEoCCylBJk+QPX6CVE0DlESvZyM9nBwGMc YzQKsCX9GR1HWdTs+MJvGWPWLFh89mzinfXKMhPxV8knkisBgujSlzsNmg4K38c6 GgmewksKoK5iiG/hFkbR2TnxolgeyMdptqqKQkLgrJehVtqx5UDNIFYP1TpmYqny 4UEdd4Bs22wHmPMRgijC5WSnpR8jqd82f7CebOHI5Q3MhFXkiDiadKbBK/Ho1BHs VjEP0xujBqGxZ9mPV8LmlJTZ8RE3mm0h2OGEJoEmyMUNOHY8m4BsxdUa1rjYOekg u4gduu1EIYVUmrCxJLqXXQ6TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtyZbsuBU 46YcRP1pohkJas+YfeUwHwYDVR0jBBgwFoAUZTiBnzv0kyyggsFGry/qy++HjLgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgxMzRFLzJCRkYxNDEyQkI1 RDExRUU4MzMwMjA3M0M0RjlBRTAyL1pUaUJuenYwa3l5Z2dzRkdyeV9xeS0tSGpM Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlRpQm56djBreXlnZ3NGR3J5X3F5LS1IakxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgx MzRFLzJCRkYxNDEyQkI1RDExRUU4MzMwMjA3M0M0RjlBRTAyL1pUaUJuenYwa3l5 Z2dzRkdyeV9xeS0tSGpMZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF2pqegVXt7nbk4AKKow4q/D5fqk0zWXrCSP05sYEccuonW9xVEXucMn yY3uaKWcaMS3rZy2CbW543qZ5tsqH8+UKkQgZnny4XM4RylUFmsLFmiqNonq+GRR EKnoOdC4yUpOvuFQuwQVCmvCu0owPcjEROPiVgIp2nvEcS4rpr9YPEr0eEp0QseB P9K68yjgxjcsVRoQGLXBFHV1cVCtzfsk8jJgvOtK/UuwGLAM9jcUEYiqR6OMiXs1 Jn7Xh1bicWn02+wCb2+uuAgDEE34h8X76aegT7aGlNti4YO3M9CDa95NNXfkYNHV oCQFxJoSX0YeyF9H8R7PoCPBi6PfHQQ= -----END CERTIFICATE-----Generated at Wed May 15 09:27:35 2024 by rpki-client on console-fra.rpki-client.org