$ rpki-client -vvf rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft File: ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft (raw, json) Hash identifier: FIxNJ4GOuxwqHBgxiyKFt1IBkkk0aIrj0dWBmFYK+Xk= Subject key identifier: 69:02:C7:39:25:70:27:E1:1B:F3:8E:B3:DC:AF:72:0F:68:B9:C5:09 Authority key identifier: 65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 Certificate issuer: /CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Certificate serial: 035D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft Manifest number: 0353 Signing time: Sun 05 May 2024 03:04:26 +0000 Manifest this update: Sun 05 May 2024 03:04:26 +0000 Manifest next update: Sun 12 May 2024 03:04:26 +0000 Files and hashes: 1: ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl (hash: h7Bt2R+zt4QOu4V4vTnmXzCKEccGaASDzkCJP5xz0K0=) 2: 266A625CF25611ED95804341C4F9AE02.roa (hash: tapgQdUV2Yd542wXP2Lz7pxKBXtOXYVylkyP5cUGAuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182047/serialNumber=65012AF0571086B9EAB30346F624B6312A551C38 Validity Not Before: May 5 03:04:26 2024 GMT Not After : May 12 03:04:26 2024 GMT Subject: CN=6636f73a-d8d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:84:65:70:a6:4e:b7:7f:86:fc:62:92:50:2a: c5:be:84:92:ba:e1:5c:4a:4b:5d:0f:64:28:60:d3: 8f:aa:05:d4:4c:a8:0e:11:06:be:2c:7e:2f:39:d8: fc:f3:4e:3f:af:d4:26:01:97:da:79:e1:b7:ca:05: 72:c7:70:8a:f5:0c:f0:8f:6e:65:fc:f2:8b:52:bb: 1d:52:99:ea:91:0e:57:3a:29:ea:88:15:3e:f8:91: 9e:85:d3:df:23:4b:22:b8:11:c6:ae:15:5b:65:e5: 14:f3:03:6b:3f:89:4f:77:87:58:a9:ea:9d:a0:82: c7:62:ca:81:bd:b5:16:98:b8:0a:f3:33:66:7a:cf: 0a:65:61:46:97:92:7a:93:91:b7:77:4f:4f:e6:78: 5c:e5:45:32:16:0d:b9:53:14:49:ae:38:e4:bd:94: de:af:76:e7:43:cb:5e:b2:05:d0:1a:5c:83:a5:8c: b4:69:14:52:01:29:f0:3b:ab:17:ab:c4:64:4b:2e: fb:7e:f4:f9:bf:d6:c6:8a:56:82:9e:dd:8d:bf:19: 72:5b:a9:82:37:58:11:d1:ab:90:6a:1e:ca:f9:6b: 2d:25:57:0b:b0:99:4a:4d:24:0d:99:97:eb:1d:cd: 0a:2d:b1:5b:3d:6f:3e:ae:f2:08:85:25:5f:6d:f9: fb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:02:C7:39:25:70:27:E1:1B:F3:8E:B3:DC:AF:72:0F:68:B9:C5:09 X509v3 Authority Key Identifier: keyid:65:01:2A:F0:57:10:86:B9:EA:B3:03:46:F6:24:B6:31:2A:55:1C:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQEq8FcQhrnqswNG9iS2MSpVHDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182047/33ADB3E66E0011EC9A63BD6AC4F9AE02/ZQEq8FcQhrnqswNG9iS2MSpVHDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:13:c6:b1:53:fd:c3:4e:73:6a:e5:b8:49:80:c1:e3:25:50: cb:a4:48:47:a4:0a:76:d2:d6:fd:ed:9a:7a:3b:88:4a:f1:1d: 42:18:1a:6c:2f:be:01:64:94:91:d8:e1:92:99:70:22:8e:c6: d2:82:19:29:dd:4b:e0:85:34:30:c4:d2:07:9a:7d:0d:b1:7b: 11:36:b5:25:fa:42:02:a7:7a:d9:47:f0:12:3b:96:ed:b4:5a: a4:bf:35:12:81:94:42:0f:0d:bf:f6:3e:59:1e:2b:bf:bf:b4: 91:de:2a:41:0e:ad:df:bb:cb:32:6f:67:2c:33:55:fd:cc:46: 2c:56:1d:a3:74:93:08:95:91:8f:36:da:43:9c:7c:a2:fb:db: 00:ce:87:f4:3b:57:4f:a4:8c:66:f1:39:96:16:76:47:37:d4: b0:ea:90:89:c0:77:01:84:97:56:5f:b9:a6:95:43:89:51:ff: 80:66:d3:d6:3c:95:25:86:d9:ee:9a:9d:7d:eb:31:b6:41:f7: 43:f5:a6:86:a1:dc:da:08:8c:9c:ba:94:55:50:98:07:57:53: 8a:30:53:da:69:13:5a:16:1b:8c:95:24:bc:f1:21:72:99:4a: 1f:3a:5e:1f:ce:d7:3b:43:3f:3d:7b:17:1c:d0:79:6d:7b:2a: 15:6c:37:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIwNDcxMTAvBgNVBAUTKDY1MDEyQUYwNTcxMDg2QjlFQUIzMDM0NkY2MjRCNjMx MkE1NTFDMzgwHhcNMjQwNTA1MDMwNDI2WhcNMjQwNTEyMDMwNDI2WjAYMRYwFAYD VQQDEw02NjM2ZjczYS1kOGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoRlcKZOt3+G/GKSUCrFvoSSuuFcSktdD2QoYNOPqgXUTKgOEQa+LH4vOdj8 804/r9QmAZfaeeG3ygVyx3CK9Qzwj25l/PKLUrsdUpnqkQ5XOinqiBU++JGehdPf I0siuBHGrhVbZeUU8wNrP4lPd4dYqeqdoILHYsqBvbUWmLgK8zNmes8KZWFGl5J6 k5G3d09P5nhc5UUyFg25UxRJrjjkvZTer3bnQ8tesgXQGlyDpYy0aRRSASnwO6sX q8RkSy77fvT5v9bGilaCnt2NvxlyW6mCN1gR0auQah7K+WstJVcLsJlKTSQNmZfr Hc0KLbFbPW8+rvIIhSVfbfn7wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkCxzkl cCfhG/OOs9yvcg9oucUJMB8GA1UdIwQYMBaAFGUBKvBXEIa56rMDRvYktjEqVRw4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjA0Ny8zM0FEQjNFNjZF MDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhybnFzd05HOWlTMk1TcFZI RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRRXE4RmNRaHJucXN3Tkc5aVMyTVNwVkhEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjA0Ny8zM0FEQjNFNjZFMDAxMUVDOUE2M0JENkFDNEY5QUUwMi9aUUVxOEZjUWhy bnFzd05HOWlTMk1TcFZIRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlE8axU/3DTnNq5bhJgMHjJVDLpEhHpAp20tb97Zp6O4hK8R1CGBps L74BZJSR2OGSmXAijsbSghkp3UvghTQwxNIHmn0NsXsRNrUl+kICp3rZR/ASO5bt tFqkvzUSgZRCDw2/9j5ZHiu/v7SR3ipBDq3fu8syb2csM1X9zEYsVh2jdJMIlZGP NtpDnHyi+9sAzof0O1dPpIxm8TmWFnZHN9Sw6pCJwHcBhJdWX7mmlUOJUf+AZtPW PJUlhtnump196zG2QfdD9aaGodzaCIycupRVUJgHV1OKMFPaaRNaFhuMlSS88SFy mUofOl4fztc7Qz89excc0HlteyoVbDcJ -----END CERTIFICATE-----Generated at Sun May 5 03:47:46 2024 by rpki-client on console-fra.rpki-client.org