$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: WwS7obYq9UQWTSTT8scM9ftzGaJYYfoCoZhGJbK3YTQ= Subject key identifier: 37:DC:5C:CC:08:25:67:EC:FA:4D:46:3F:25:D8:83:AB:DE:7E:7A:72 Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 0900 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 08F1 Signing time: Wed 24 Apr 2024 21:21:15 +0000 Manifest this update: Wed 24 Apr 2024 21:21:15 +0000 Manifest next update: Wed 01 May 2024 21:21:15 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: o9aCHijgHvD3yDnDfG4mzCJuK+81MWqxngAKRXwBjfk=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: cX5jruIutxzq0VvAFSmdLDYS4hJPXEWjAR7XYKB1s2o=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: HboE+xy7piKC3zUkYtpAMfNbbtMEPRumlNey38Milh0=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: rn9WF0fvz3rSau/NSjCzGQFLyqGPaM5bqudbfPMMbLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2304 (0x900) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Apr 24 21:21:15 2024 GMT Not After : May 1 21:21:15 2024 GMT Subject: CN=662977cb-d15b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:08:66:23:0d:c9:44:0b:31:c3:c0:89:52: ab:bf:55:37:f8:42:0c:52:03:f7:c5:b2:1f:b2:45: 32:c3:62:2b:6e:dd:25:7a:47:54:22:6c:55:03:3d: 2d:d0:77:a4:2c:ed:3a:23:09:60:ec:41:e2:04:6f: 7e:ab:e0:9f:1c:05:39:17:ba:66:4e:eb:ad:b4:b1: 00:24:0f:05:2f:01:93:ed:52:a9:bc:1f:26:a4:4c: 9c:ee:1f:1e:f8:22:86:b0:17:fe:4b:43:46:e3:1e: 9a:50:f6:c7:a5:61:cf:41:d3:7d:30:1a:77:cf:7e: 41:e6:cc:72:c9:b6:fe:61:31:02:a7:aa:65:64:6e: f0:f2:19:e4:c5:91:c3:e4:7b:be:1c:8d:de:80:e3: ee:a7:9c:bb:d3:d3:4d:42:94:14:59:33:43:d6:be: 45:14:37:1c:ee:9c:ef:bd:44:52:68:6d:98:91:19: de:f4:36:c4:d4:f0:ce:19:d4:c2:ff:66:63:bf:b3: 30:dc:0d:73:fd:ed:16:d4:21:15:94:03:78:94:da: 3c:0e:c8:79:7f:f4:e4:9f:7b:dd:f6:5b:3f:5b:66: 2b:e8:fb:21:80:ca:df:1a:b7:41:c6:8e:b3:9b:be: bd:b7:34:e6:ab:be:af:23:c3:4b:6a:46:32:07:d0: 9f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DC:5C:CC:08:25:67:EC:FA:4D:46:3F:25:D8:83:AB:DE:7E:7A:72 X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:33:70:28:65:4d:60:ac:11:17:1c:ab:ae:25:85:26:6b:1e: 54:a0:96:87:f7:c8:fb:10:bf:1d:63:db:e7:cc:f1:db:3d:04: 83:a5:cc:db:81:63:5a:d7:eb:8b:5a:68:84:0a:e4:53:5d:6e: 2e:5b:fa:23:18:12:10:76:4e:2b:07:23:13:a8:98:54:f1:97: e4:03:07:d0:6d:a8:4f:5b:15:f4:b7:46:4a:25:79:18:7c:52: 41:b3:43:e9:14:82:a9:97:f3:89:a4:31:bf:29:e6:42:bd:d0: 86:15:6f:a7:74:34:96:5f:a9:c0:2f:cc:11:fc:59:a6:a0:2f: 41:4c:6a:33:34:c4:63:67:92:79:12:be:d7:6b:d5:d9:40:b8: a2:8b:fd:ce:90:bc:ab:69:e1:de:76:0b:13:c4:c2:c0:20:89: 84:c1:62:c7:d8:dd:12:0f:0b:ba:58:d4:60:b5:97:82:4f:dc: 7c:a7:b5:03:e2:38:81:c8:4e:4e:35:08:e1:c0:10:be:f1:92: de:6c:3e:64:fb:14:dc:b4:00:df:14:1b:2a:93:cf:fd:5e:f3: ac:6a:6e:66:95:cc:a4:0c:f8:d4:15:8c:58:c5:71:29:d0:e2: 25:59:5d:3d:ff:9f:2e:cc:50:ab:89:e8:73:c2:f2:b1:3e:80: da:98:18:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjQwNDI0MjEyMTE1WhcNMjQwNTAxMjEyMTE1WjAYMRYwFAYD VQQDEw02NjI5NzdjYi1kMTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwsIZiMNyUQLMcPAiVKrv1U3+EIMUgP3xbIfskUyw2Irbt0lekdUImxVAz0t 0HekLO06Iwlg7EHiBG9+q+CfHAU5F7pmTuuttLEAJA8FLwGT7VKpvB8mpEyc7h8e +CKGsBf+S0NG4x6aUPbHpWHPQdN9MBp3z35B5sxyybb+YTECp6plZG7w8hnkxZHD 5Hu+HI3egOPup5y709NNQpQUWTND1r5FFDcc7pzvvURSaG2YkRne9DbE1PDOGdTC /2Zjv7Mw3A1z/e0W1CEVlAN4lNo8Dsh5f/Tkn3vd9ls/W2Yr6PshgMrfGrdBxo6z m769tzTmq76vI8NLakYyB9CfXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDfcXMwI JWfs+k1GPyXYg6vefnpyMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATM3AoZU1grBEXHKuuJYUmax5UoJaH98j7EL8dY9vnzPHbPQSDpczb gWNa1+uLWmiECuRTXW4uW/ojGBIQdk4rByMTqJhU8ZfkAwfQbahPWxX0t0ZKJXkY fFJBs0PpFIKpl/OJpDG/KeZCvdCGFW+ndDSWX6nAL8wR/FmmoC9BTGozNMRjZ5J5 Er7Xa9XZQLiii/3OkLyraeHedgsTxMLAIImEwWLH2N0SDwu6WNRgtZeCT9x8p7UD 4jiByE5ONQjhwBC+8ZLebD5k+xTctADfFBsqk8/9XvOsam5mlcykDPjUFYxYxXEp 0OIlWV09/58uzFCriehzwvKxPoDamBjB -----END CERTIFICATE-----Generated at Wed Apr 24 22:30:03 2024 by rpki-client on console-fra.rpki-client.org