$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: r9HdjqSyJxUvpQFO27mVxLRyDSBlN1AfayH1/RnTa0s= Subject key identifier: 72:DC:6C:E6:28:3F:17:93:AC:98:94:A7:FF:F3:79:C6:02:D6:AE:DC Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1D4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1D3F Signing time: Mon 06 May 2024 16:34:59 +0000 Manifest this update: Mon 06 May 2024 16:34:58 +0000 Manifest next update: Mon 13 May 2024 16:34:58 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: G9/Rq8pFyGXRt3MLvIISQE8nyWmfF/lV+egavFpk7Ek=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: ephK7A4JNPWeKDKMs+nHQPIJnX05hx7QwVHerCqN4Jg=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: YcuxRz8K9RLj5bAsbMtgJ7Ztwmm6/Dt53hn8CfH7/1o=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: qO7QJpamN0YCO67eAk0dIWWMjbYS5UTc/e5iCxrMsTI=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: HQq8TqfKAhLWQ+QIZgUuXW1pTNsorhgqbcOP+SCp6Vw=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: 1ZwfcibXXD78qIDpt5glI/3vJDHrAKkJdTFVoYFKI0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 16:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7499 (0x1d4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: May 6 16:34:58 2024 GMT Not After : May 13 16:34:58 2024 GMT Subject: CN=663906b3-7e31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:63:72:da:3a:74:67:ba:4a:27:5d:c0:99:0f: c1:f9:42:00:3e:3e:bb:f3:1d:98:50:1d:00:20:b6: c3:fe:9c:20:48:de:48:6c:32:aa:5a:dc:98:26:2e: 47:0d:4f:80:ce:5f:e2:0c:fa:0e:61:7b:2f:f3:45: 55:96:5a:bc:b3:3e:ed:ac:af:4f:b6:33:0c:69:b7: c9:78:49:cb:15:a3:5b:e0:36:90:c1:45:0b:a1:b3: e9:1f:7e:ed:56:1d:9a:41:66:03:f6:a5:6b:a3:21: da:e7:bb:c5:9f:9a:99:a8:47:d6:c0:73:14:1d:a2: f2:7d:f5:e4:01:2e:c2:9a:b8:a9:51:76:64:16:fd: 9a:1f:17:7f:e2:7d:97:c6:25:a6:0a:86:ab:06:32: 73:d3:46:f2:49:df:b4:2b:bf:1f:57:db:2e:1c:e8: 23:cd:95:6c:12:f1:60:bc:4d:6a:56:63:91:4b:19: 44:2c:0a:1a:e1:dd:ed:8e:69:5f:00:19:99:69:2d: 49:c5:aa:76:57:d1:d2:9a:75:8c:fb:7e:7c:1a:ba: 02:ca:9d:22:d7:3f:61:be:67:85:64:2f:e1:9c:c9: de:53:b8:32:88:a8:d8:8a:f4:06:d7:f7:73:8f:fa: f3:7d:0d:e6:af:18:23:eb:91:a5:c5:77:89:22:33: 80:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DC:6C:E6:28:3F:17:93:AC:98:94:A7:FF:F3:79:C6:02:D6:AE:DC X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:59:55:78:a7:ab:d0:18:43:44:3d:a6:8a:87:25:cd:8a:1d: 5e:56:8f:e2:4f:64:63:ad:33:54:c0:58:f2:17:1b:b9:af:da: 7e:5d:a9:a9:6f:91:cd:99:e2:48:4b:1c:55:bc:ad:98:20:4f: e2:55:3a:90:19:c6:99:e8:26:93:ff:47:ed:b3:d6:e3:7e:a7: e8:43:95:b3:35:e2:c3:a6:cd:6f:73:3c:f8:61:ca:65:9a:3c: 4b:1b:d6:62:4a:c3:23:16:ea:5e:8b:a1:f0:23:ab:77:4e:b2: 75:9f:6b:3e:6e:cc:0d:eb:61:f8:a3:64:09:9d:c4:7c:53:40: 09:28:e8:3c:74:ac:56:03:63:8f:f3:06:d3:c5:cf:60:af:06: 35:8f:f9:90:46:ac:ff:95:9e:94:13:28:38:b7:c4:98:01:78: 6e:3b:e8:d0:bd:3f:3d:00:63:7d:1d:f4:16:30:42:39:44:ac: 12:9c:16:19:a1:ba:cd:2a:89:67:dd:a3:d4:29:70:0a:b5:8d: b8:79:3a:7b:e8:d7:55:52:25:5f:eb:68:82:0a:2d:ae:ea:84: 9b:ec:56:e4:7b:49:38:b7:d0:9a:c3:3f:1f:e8:2a:37:7e:cf: 9d:62:07:ea:72:29:90:df:52:5d:f4:72:5f:c4:75:88:7e:f7: 67:a8:2c:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjQwNTA2MTYzNDU4WhcNMjQwNTEzMTYzNDU4WjAYMRYwFAYD VQQDEw02NjM5MDZiMy03ZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2Ny2jp0Z7pKJ13AmQ/B+UIAPj678x2YUB0AILbD/pwgSN5IbDKqWtyYJi5H DU+Azl/iDPoOYXsv80VVllq8sz7trK9PtjMMabfJeEnLFaNb4DaQwUULobPpH37t Vh2aQWYD9qVroyHa57vFn5qZqEfWwHMUHaLyffXkAS7CmripUXZkFv2aHxd/4n2X xiWmCoarBjJz00bySd+0K78fV9suHOgjzZVsEvFgvE1qVmORSxlELAoa4d3tjmlf ABmZaS1Jxap2V9HSmnWM+358GroCyp0i1z9hvmeFZC/hnMneU7gyiKjYivQG1/dz j/rzfQ3mrxgj65GlxXeJIjOALQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLcbOYo PxeTrJiUp//zecYC1q7cMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhWVV4p6vQGENEPaaKhyXNih1eVo/iT2RjrTNUwFjyFxu5r9p+Xamp b5HNmeJISxxVvK2YIE/iVTqQGcaZ6CaT/0fts9bjfqfoQ5WzNeLDps1vczz4Ycpl mjxLG9ZiSsMjFupei6HwI6t3TrJ1n2s+bswN62H4o2QJncR8U0AJKOg8dKxWA2OP 8wbTxc9grwY1j/mQRqz/lZ6UEyg4t8SYAXhuO+jQvT89AGN9HfQWMEI5RKwSnBYZ obrNKoln3aPUKXAKtY24eTp76NdVUiVf62iCCi2u6oSb7Fbke0k4t9Cawz8f6Co3 fs+dYgfqcimQ31Jd9HJfxHWIfvdnqCyq -----END CERTIFICATE-----Generated at Mon May 6 17:36:17 2024 by rpki-client on console-fra.rpki-client.org