$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: LIwY4C4tPnRHMV7FBXfiNH9STdMaaOZKLtJ5uIvTCyQ= Subject key identifier: 83:D5:25:CF:A2:00:97:E6:4E:F6:E9:75:05:AA:82:61:DD:7E:6E:5E Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 05BA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 05B5 Signing time: Mon 20 May 2024 15:26:14 +0000 Manifest this update: Mon 20 May 2024 15:26:13 +0000 Manifest next update: Mon 27 May 2024 15:26:13 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: YajWIk+XDCwmGSfyNkW8SOeR6x4r0hP8ApmPCHyHBaA=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: qiqkWwHqRRJzS1+kLrMRORcyejq5wX+sQ/09xLL4Yok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1466 (0x5ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: May 20 15:26:13 2024 GMT Not After : May 27 15:26:13 2024 GMT Subject: CN=664b6b96-5ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:12:b8:38:36:dd:b4:ec:4a:3f:ce:89:b6:57: 23:9f:a3:c2:ea:79:74:51:83:df:66:e1:64:37:4f: 82:c4:a9:09:91:37:ed:63:58:f3:7f:ed:34:a4:5e: e0:ba:63:55:63:ed:30:7f:01:1e:8f:25:78:64:54: 9f:f9:32:b0:6e:62:c5:2a:2a:86:ce:59:87:e8:62: 0b:1b:38:a8:c5:5d:1e:0d:24:94:5b:75:63:d0:dd: fa:3e:1f:09:fc:61:e3:72:dc:df:80:ef:59:ce:de: a5:f3:f2:a3:58:6b:13:84:52:ec:72:20:21:9c:f1: 55:fd:0d:88:7b:4e:d6:6a:ae:65:f3:06:50:4c:6b: f4:5e:74:8f:e9:59:92:af:0c:3e:d2:40:56:5e:40: b4:a8:86:96:9b:7d:c8:ba:e4:89:09:1b:59:d5:82: 72:b0:d1:05:ad:5c:a2:77:d1:8d:bc:99:4f:12:1c: 7b:b6:7d:68:46:26:ec:17:3e:2b:4e:eb:f8:a4:7b: c4:8e:27:79:3b:c1:11:ab:f1:1a:5c:62:55:0b:81: 00:94:dc:74:b1:20:b6:57:9b:38:94:f0:da:b4:33: 1a:34:84:85:6d:87:ef:b8:d6:74:d4:28:7d:10:cf: 00:05:98:05:99:9e:36:2c:8c:74:82:9a:d3:c2:b3: 58:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D5:25:CF:A2:00:97:E6:4E:F6:E9:75:05:AA:82:61:DD:7E:6E:5E X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:75:4c:64:49:68:68:01:ee:38:78:6e:e5:e0:51:c7:f0:50: 1c:d3:81:b9:28:71:08:d8:37:d8:59:1f:b0:cb:6f:f9:2b:26: 04:c3:67:f4:10:8e:1b:da:eb:cf:27:d1:9b:08:4b:a9:79:8d: e8:64:90:3e:47:8f:fa:b7:2f:aa:b6:34:b3:7a:42:84:97:8c: 79:ed:67:86:7e:52:85:b9:2a:60:5d:33:e0:16:11:e6:c2:df: 37:92:f6:c2:c6:bf:8a:70:64:c2:03:b4:46:c6:33:2a:79:38: 82:c7:60:1b:2f:fa:ee:36:2c:c9:e1:9f:5d:53:33:53:fb:6d: 89:96:e6:4b:94:fa:f9:c9:f3:4c:e0:b7:cc:4e:9d:ff:6f:15: 9e:19:05:38:96:1c:ec:5c:40:18:12:5d:d5:7c:71:85:f0:6f: 8b:4b:87:6c:ab:8c:a6:47:9c:56:c3:c5:08:2f:a5:10:7a:22: 90:86:20:66:92:f9:12:61:6a:96:2f:35:4c:29:9c:56:aa:e3: 79:59:c9:aa:93:e2:f5:16:32:85:21:c2:8b:43:af:6e:43:c5: 75:d8:f6:b5:70:c1:15:2b:5a:cf:9a:da:44:b3:4b:3a:53:86: b6:fd:5d:68:d6:6e:4c:da:73:71:49:43:75:e4:d8:10:78:ae: c5:89:65:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjQwNTIwMTUyNjEzWhcNMjQwNTI3MTUyNjEzWjAYMRYwFAYD VQQDEw02NjRiNmI5Ni01ZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xK4ODbdtOxKP86Jtlcjn6PC6nl0UYPfZuFkN0+CxKkJkTftY1jzf+00pF7g umNVY+0wfwEejyV4ZFSf+TKwbmLFKiqGzlmH6GILGzioxV0eDSSUW3Vj0N36Ph8J /GHjctzfgO9Zzt6l8/KjWGsThFLsciAhnPFV/Q2Ie07Waq5l8wZQTGv0XnSP6VmS rww+0kBWXkC0qIaWm33IuuSJCRtZ1YJysNEFrVyid9GNvJlPEhx7tn1oRibsFz4r Tuv4pHvEjid5O8ERq/EaXGJVC4EAlNx0sSC2V5s4lPDatDMaNISFbYfvuNZ01Ch9 EM8ABZgFmZ42LIx0gprTwrNYOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPVJc+i AJfmTvbpdQWqgmHdfm5eMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEdUxkSWhoAe44eG7l4FHH8FAc04G5KHEI2DfYWR+wy2/5KyYEw2f0 EI4b2uvPJ9GbCEupeY3oZJA+R4/6ty+qtjSzekKEl4x57WeGflKFuSpgXTPgFhHm wt83kvbCxr+KcGTCA7RGxjMqeTiCx2AbL/ruNizJ4Z9dUzNT+22JluZLlPr5yfNM 4LfMTp3/bxWeGQU4lhzsXEAYEl3VfHGF8G+LS4dsq4ymR5xWw8UIL6UQeiKQhiBm kvkSYWqWLzVMKZxWquN5Wcmqk+L1FjKFIcKLQ69uQ8V12Pa1cMEVK1rPmtpEs0s6 U4a2/V1o1m5M2nNxSUN15NgQeK7FiWWf -----END CERTIFICATE-----Generated at Mon May 20 17:22:31 2024 by rpki-client on console-fra.rpki-client.org