$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft File: Z187oflqnh7CsBN2YsdU2x0eAHM.mft (raw, json) Hash identifier: iAOieDIzC/AvA1c2tBmzsUDSQqQiCxsdrs1rXHo9Z48= Subject key identifier: D3:73:30:A1:65:F4:82:3B:BE:AC:AB:D5:E3:C4:6C:9F:18:4E:2E:29 Authority key identifier: 67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 Certificate issuer: /CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Certificate serial: 2843 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft Manifest number: 2826 Signing time: Thu 02 May 2024 15:55:26 +0000 Manifest this update: Thu 02 May 2024 15:55:26 +0000 Manifest next update: Thu 09 May 2024 15:55:26 +0000 Files and hashes: 1: Z187oflqnh7CsBN2YsdU2x0eAHM.crl (hash: Dg9y6KPgHo6VYaBpLduqheJvYBPlkIa4KEUye2HIv/E=) 2: F4246CDA561811E98A165872C4F9AE02.roa (hash: qqcgVf3R5iW0yFC9ut5EMQrhE+oKVoowhStxRcRW600=) 3: 5B0D0BFE04D411EAA7E3F81FC4F9AE02.roa (hash: rwCF53o/2VLZF/xLvGMTlFyQCHhpOILr4tGZzUzVyo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 15:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10307 (0x2843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4517/serialNumber=675F3BA1F96A9E1EC2B0137662C754DB1D1E0073 Validity Not Before: May 2 15:55:26 2024 GMT Not After : May 9 15:55:26 2024 GMT Subject: CN=6633b76e-bd19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f7:a6:d0:30:4a:7c:a5:06:70:f1:57:e5:47: 5c:35:cd:93:bd:ea:f7:75:e6:02:1a:68:c5:9f:60: 86:81:af:5f:6a:af:ef:16:58:2e:14:d8:94:40:9e: cb:4f:46:b7:ed:01:86:2d:c9:81:17:a3:20:49:a0: d0:74:61:c5:e9:99:a0:14:1e:10:1b:d5:f7:0a:0d: 8a:90:f3:81:aa:36:7c:88:86:77:35:05:fc:de:79: f0:42:e0:13:c9:b1:e6:df:52:c3:4c:48:49:27:39: 7d:d5:ac:8d:37:ac:70:b2:1a:29:34:65:ff:ba:31: 68:21:d6:ce:b1:fe:2a:1b:c4:b9:1e:a8:8a:7e:ae: 9a:9c:41:32:43:f7:64:da:fe:23:13:03:ec:a3:e4: 6f:f3:f1:e7:5a:57:37:3a:91:66:e7:64:15:b2:9f: 44:1f:97:3a:ba:71:48:ae:bf:65:e6:d1:03:80:42: fc:7f:b7:02:a2:3b:fd:73:69:7a:b4:01:7d:58:12: eb:35:99:23:b4:60:e7:8b:0a:bc:9f:e3:db:e5:3f: 26:73:0a:3b:81:af:a2:4b:a4:aa:ab:da:31:35:ad: 07:2d:2d:07:7d:2a:5f:7b:df:29:cc:64:be:7e:ee: 10:98:d0:5c:7a:c0:fc:27:4c:0c:e9:33:b4:99:dc: 21:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:73:30:A1:65:F4:82:3B:BE:AC:AB:D5:E3:C4:6C:9F:18:4E:2E:29 X509v3 Authority Key Identifier: keyid:67:5F:3B:A1:F9:6A:9E:1E:C2:B0:13:76:62:C7:54:DB:1D:1E:00:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z187oflqnh7CsBN2YsdU2x0eAHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4517/406F904C6AE611E491914687C4F9AE02/Z187oflqnh7CsBN2YsdU2x0eAHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:ff:bc:3a:7d:b8:7b:d6:47:81:59:36:a7:58:4d:d6:11:c4: ca:69:44:29:83:70:8d:5d:06:7f:fc:d3:59:82:2a:1b:99:39: 69:26:b0:58:75:6e:16:ed:07:d6:12:7c:e0:59:38:c6:21:ec: 41:a3:77:c2:a3:bb:3b:e7:1d:6b:61:d7:49:85:00:20:62:8e: 8d:ed:fc:3d:fe:51:e5:9d:ad:c1:61:e6:c4:6d:d5:ff:33:18: 2c:96:d4:1d:24:ef:43:22:a6:f0:0e:8d:76:60:18:71:68:53: 33:9b:b7:3c:78:4b:40:25:8d:b5:cd:ff:02:1c:d1:6f:c9:36: 68:85:0b:b4:09:06:0a:cc:39:14:a4:78:e7:14:d3:cf:02:89: 34:c7:fc:8f:40:cd:55:43:ad:e6:b3:fd:19:fb:66:86:ac:72: 38:b8:4d:6c:cd:73:e9:18:4f:59:5d:6e:58:23:be:6b:84:be: ce:05:7c:79:8e:c0:0d:00:ff:ed:31:e6:80:a3:fb:85:52:d3: 24:cf:14:ff:58:a5:03:67:a7:7f:e6:41:19:70:ae:60:43:2e: 50:5a:82:1c:13:94:f2:46:0c:96:02:61:49:6e:e7:19:e9:a3: 28:18:8d:d2:97:e4:41:56:05:54:28:ce:11:00:5e:59:64:6c: 78:73:ee:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1MTcxMTAvBgNVBAUTKDY3NUYzQkExRjk2QTlFMUVDMkIwMTM3NjYyQzc1NERC MUQxRTAwNzMwHhcNMjQwNTAyMTU1NTI2WhcNMjQwNTA5MTU1NTI2WjAYMRYwFAYD VQQDEw02NjMzYjc2ZS1iZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/em0DBKfKUGcPFX5UdcNc2Tver3deYCGmjFn2CGga9faq/vFlguFNiUQJ7L T0a37QGGLcmBF6MgSaDQdGHF6ZmgFB4QG9X3Cg2KkPOBqjZ8iIZ3NQX83nnwQuAT ybHm31LDTEhJJzl91ayNN6xwshopNGX/ujFoIdbOsf4qG8S5HqiKfq6anEEyQ/dk 2v4jEwPso+Rv8/HnWlc3OpFm52QVsp9EH5c6unFIrr9l5tEDgEL8f7cCojv9c2l6 tAF9WBLrNZkjtGDniwq8n+Pb5T8mcwo7ga+iS6Sqq9oxNa0HLS0HfSpfe98pzGS+ fu4QmNBcesD8J0wM6TO0mdwh5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNzMKFl 9II7vqyr1ePEbJ8YTi4pMB8GA1UdIwQYMBaAFGdfO6H5ap4ewrATdmLHVNsdHgBz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDUxNy80MDZGOTA0QzZB RTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5oN0NzQk4yWXNkVTJ4MGVB SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxODdvZmxxbmg3Q3NCTjJZc2RVMngwZUFITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDUxNy80MDZGOTA0QzZBRTYxMUU0OTE5MTQ2ODdDNEY5QUUwMi9aMTg3b2ZscW5o N0NzQk4yWXNkVTJ4MGVBSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw/7w6fbh71keBWTanWE3WEcTKaUQpg3CNXQZ//NNZgiobmTlpJrBY dW4W7QfWEnzgWTjGIexBo3fCo7s75x1rYddJhQAgYo6N7fw9/lHlna3BYebEbdX/ MxgsltQdJO9DIqbwDo12YBhxaFMzm7c8eEtAJY21zf8CHNFvyTZohQu0CQYKzDkU pHjnFNPPAok0x/yPQM1VQ63ms/0Z+2aGrHI4uE1szXPpGE9ZXW5YI75rhL7OBXx5 jsANAP/tMeaAo/uFUtMkzxT/WKUDZ6d/5kEZcK5gQy5QWoIcE5TyRgyWAmFJbucZ 6aMoGI3Sl+RBVgVUKM4RAF5ZZGx4c+6x -----END CERTIFICATE-----Generated at Thu May 2 17:18:54 2024 by rpki-client on console-ams.rpki-client.org