$ rpki-client -vvf rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft File: zXuGlWvtndYhW-SF8McVuSDJp3A.mft (raw, json) Hash identifier: hRY+MTV2ijkv83zz87Qm/IJHQwu4rWLS0bP0NFRmx5k= Subject key identifier: E1:B7:BE:C0:09:DE:9C:12:9D:EB:55:FE:0E:78:67:77:47:4B:92:00 Authority key identifier: CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 Certificate issuer: /CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft Manifest number: 29 Signing time: Fri 17 May 2024 08:37:28 +0000 Manifest this update: Fri 17 May 2024 08:37:27 +0000 Manifest next update: Fri 24 May 2024 08:37:27 +0000 Files and hashes: 1: zXuGlWvtndYhW-SF8McVuSDJp3A.crl (hash: sE6IKC9EfgF8XqQXzbyMGy2er16h0ScasDsDa1sa8tM=) 2: 60DF983AD54F11EE93ED1E3BC4F9AE02.roa (hash: qer/jvQLuDWQeiqhtv22JqWSNVi6TRuPW71Y4gEp5sM=) 3: 601B8CF6D54F11EE93ED1E3BC4F9AE02.roa (hash: KWFbStFkFf6GQmPcZe90F6cDYULKqJF0gEQglndvgSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B61E/serialNumber=CD7B86956BED9DD6215BE485F0C715B920C9A770 Validity Not Before: May 17 08:37:27 2024 GMT Not After : May 24 08:37:27 2024 GMT Subject: CN=66471747-300f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3e:17:dc:3a:93:14:21:63:86:85:c4:cc:42: c6:18:4d:a5:f2:8d:fa:59:89:46:c9:e7:9c:33:37: 1a:b5:fe:3f:86:96:5b:03:bf:dc:c7:43:7f:8d:7a: a7:9f:d0:9d:b2:b5:dc:ef:37:ee:60:79:30:d6:1b: 63:46:6a:87:4a:e7:06:ce:40:e3:14:f3:45:b3:4b: 1c:1e:3f:aa:19:ed:34:1b:74:91:b3:54:83:f6:42: 39:4f:a2:29:cf:3e:c4:e9:7c:f7:54:a5:a0:aa:18: ec:27:99:2f:60:25:6b:a5:4a:df:87:4a:16:23:3f: 4e:1e:94:af:2e:3e:c1:fa:4f:af:29:f5:a2:f9:17: b8:b3:7e:d5:62:ab:25:04:33:98:10:0a:f9:a2:b4: aa:fb:69:11:57:28:72:08:51:0a:17:f4:a4:e9:fd: be:3b:a1:fb:5d:94:da:3d:c8:2c:7b:31:23:de:44: ff:db:b9:b0:44:81:81:cb:d2:ec:a5:3b:8b:64:d1: f3:ac:56:4c:3f:a4:b0:89:23:bf:af:49:81:28:73: 3b:49:f8:f2:3d:f3:d9:05:91:52:ac:bc:ac:49:07: 13:05:43:cc:26:5f:e6:d5:c4:ba:0d:df:e7:7b:95: 6b:d8:42:fc:d1:84:4b:55:dc:ca:2c:3a:9c:f7:58: c7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B7:BE:C0:09:DE:9C:12:9D:EB:55:FE:0E:78:67:77:47:4B:92:00 X509v3 Authority Key Identifier: keyid:CD:7B:86:95:6B:ED:9D:D6:21:5B:E4:85:F0:C7:15:B9:20:C9:A7:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zXuGlWvtndYhW-SF8McVuSDJp3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B61E/807F9254D54E11EE8CC96530C4F9AE02/zXuGlWvtndYhW-SF8McVuSDJp3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:1f:2f:87:84:4a:b4:44:ac:a2:b6:55:10:a6:8a:c5:86:3f: 34:cb:0c:b8:c7:9f:43:2c:1b:5d:c3:63:21:59:6b:f2:24:2e: ed:d5:69:75:4c:b5:9c:42:75:8a:05:7d:de:7e:46:9e:70:d6: 3e:ff:28:b5:2d:20:db:29:f8:c4:b6:9f:00:2d:a6:0f:5e:07: 44:c5:44:eb:2f:d4:a5:2e:a4:d3:3a:23:bb:97:cd:3f:6e:f4: 5e:5b:8e:0d:a7:68:a6:c8:c4:6d:73:79:9d:2f:36:da:49:18: 41:2d:45:5d:8e:4e:80:ab:9f:09:47:de:c3:57:5e:9d:60:05: c1:fe:2d:9d:62:5a:82:cb:96:91:6d:4b:80:28:c4:c3:5b:7c: e7:60:8f:ad:50:ab:ff:b3:84:80:20:04:12:e0:ea:42:91:ce: 03:78:7b:ab:62:75:90:68:30:0a:a3:ee:37:05:d4:08:86:f6: e1:bb:5a:4f:80:1a:ed:cb:62:5f:b4:f4:ea:b7:a2:22:ea:a7: 53:3b:aa:10:33:a1:20:70:eb:ae:b9:89:8f:d3:e8:4b:d5:89: 28:f6:eb:ec:52:b6:83:c1:3a:93:13:f5:aa:70:09:30:b9:36: a8:c5:f7:8b:17:13:d3:21:2b:58:0e:b2:00:a7:43:73:83:45: 90:91:36:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QjYxRTExMC8GA1UEBRMoQ0Q3Qjg2OTU2QkVEOURENjIxNUJFNDg1RjBDNzE1Qjky MEM5QTc3MDAeFw0yNDA1MTcwODM3MjdaFw0yNDA1MjQwODM3MjdaMBgxFjAUBgNV BAMTDTY2NDcxNzQ3LTMwMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUPhfcOpMUIWOGhcTMQsYYTaXyjfpZiUbJ55wzNxq1/j+GllsDv9zHQ3+Neqef 0J2ytdzvN+5geTDWG2NGaodK5wbOQOMU80WzSxweP6oZ7TQbdJGzVIP2QjlPoinP PsTpfPdUpaCqGOwnmS9gJWulSt+HShYjP04elK8uPsH6T68p9aL5F7izftViqyUE M5gQCvmitKr7aRFXKHIIUQoX9KTp/b47oftdlNo9yCx7MSPeRP/bubBEgYHL0uyl O4tk0fOsVkw/pLCJI7+vSYEocztJ+PI989kFkVKsvKxJBxMFQ8wmX+bVxLoN3+d7 lWvYQvzRhEtV3MosOpz3WMc9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4be+wAne nBKd61X+Dnhnd0dLkgAwHwYDVR0jBBgwFoAUzXuGlWvtndYhW+SF8McVuSDJp3Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCNjFFLzgwN0Y5MjU0RDU0 RTExRUU4Q0M5NjUzMEM0RjlBRTAyL3pYdUdsV3Z0bmRZaFctU0Y4TWNWdVNESnAz QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvelh1R2xXdnRuZFloVy1TRjhNY1Z1U0RKcDNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThC NjFFLzgwN0Y5MjU0RDU0RTExRUU4Q0M5NjUzMEM0RjlBRTAyL3pYdUdsV3Z0bmRZ aFctU0Y4TWNWdVNESnAzQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH8fL4eESrRErKK2VRCmisWGPzTLDLjHn0MsG13DYyFZa/IkLu3VaXVM tZxCdYoFfd5+Rp5w1j7/KLUtINsp+MS2nwAtpg9eB0TFROsv1KUupNM6I7uXzT9u 9F5bjg2naKbIxG1zeZ0vNtpJGEEtRV2OToCrnwlH3sNXXp1gBcH+LZ1iWoLLlpFt S4AoxMNbfOdgj61Qq/+zhIAgBBLg6kKRzgN4e6tidZBoMAqj7jcF1AiG9uG7Wk+A Gu3LYl+09Oq3oiLqp1M7qhAzoSBw6665iY/T6EvViSj26+xStoPBOpMT9apwCTC5 NqjF94sXE9MhK1gOsgCnQ3ODRZCRNus= -----END CERTIFICATE-----Generated at Fri May 17 10:10:51 2024 by rpki-client on console-fra.rpki-client.org