$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: FZOjhj3QUtnIyGZNTTmDhTIV4Iku0D/+c7XGd+5LDlc= Subject key identifier: 20:9F:83:A4:31:CF:E2:59:46:1C:09:A2:F2:C9:19:E1:C2:4A:99:C0 Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 1641 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 1636 Signing time: Sat 04 May 2024 17:18:29 +0000 Manifest this update: Sat 04 May 2024 17:18:29 +0000 Manifest next update: Sat 11 May 2024 17:18:29 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: weY/1wKzHd3oXDRMij98gBHpJS3Y9UZ6c0VPxDb/oGQ=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: RnPGEfV6shc3FzcBRmER7fg9U9kjWKrlb9yCQ0fI2KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5697 (0x1641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: May 4 17:18:29 2024 GMT Not After : May 11 17:18:29 2024 GMT Subject: CN=66366de5-a054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e5:7b:b8:9c:f0:04:03:3e:d2:e3:81:84:d8: 40:9e:a1:9c:c4:1f:b9:cc:ea:06:73:cb:e8:98:c4: 8d:9d:f2:98:5d:02:63:a3:cf:68:a2:a5:6a:d4:a8: aa:3b:71:c9:28:59:85:45:b0:9a:01:17:8d:48:fa: 82:7e:73:a0:64:93:eb:e2:24:38:9f:14:23:7b:58: ba:97:ef:e7:d8:49:f5:94:36:d9:d7:b0:ce:7b:27: b0:6d:3b:e0:3f:d3:d3:ea:fd:e8:8d:96:28:eb:bb: ae:d7:2f:80:5c:62:35:f4:fe:a0:23:d1:4c:c6:80: fc:62:8f:a1:31:e4:e9:b9:e6:15:42:7f:8d:34:8d: d6:8b:82:b1:fc:e8:a3:dc:63:a0:e6:21:db:d4:3d: 96:02:00:e1:fe:8a:88:3f:c0:80:2c:27:62:0f:eb: 35:be:b4:8e:cf:4b:e4:04:07:73:65:74:c2:10:fe: e0:d0:7a:4a:df:d8:71:71:38:d1:9f:a5:79:6f:f5: 9a:cb:94:70:26:ad:db:7c:b0:a8:b6:04:50:4b:b3: 03:70:22:a5:54:44:d2:db:18:5d:44:84:a7:02:55: e9:3d:15:f9:d7:0f:cb:fc:9b:79:41:bc:a4:3e:71: fa:4d:f6:92:6b:97:e3:d8:fe:35:75:fe:fd:70:4e: 3d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9F:83:A4:31:CF:E2:59:46:1C:09:A2:F2:C9:19:E1:C2:4A:99:C0 X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:01:4a:06:ff:1e:70:83:5a:e1:e1:2a:07:fc:98:55:bd:d9: 02:f5:cc:5b:c7:e1:bc:15:62:fd:65:92:6f:f0:68:8c:04:0b: a1:4f:12:e6:16:b1:e8:43:28:4e:c4:37:63:24:68:07:2f:12: 77:ce:f8:80:3f:2b:84:7a:fa:38:d6:cf:82:e3:38:75:12:f9: 5d:92:9d:18:49:d2:36:43:c8:87:9d:4e:f3:46:c9:30:5b:b3: 81:dd:64:c4:90:07:d3:28:9f:9f:6b:3f:17:58:59:cd:a9:9b: a6:2b:1a:d5:e2:5e:81:9d:8f:dd:3d:a4:10:db:f3:77:ef:f8: 77:a7:c4:10:57:47:e2:cd:5a:02:33:b1:71:e0:5c:ec:14:e9: 75:b7:64:0d:45:7a:7d:b5:9e:74:44:47:3b:c0:4d:08:cd:50: cf:32:e4:70:44:b8:25:9b:c6:e5:61:e8:4b:3f:af:49:c6:26: 73:c0:a9:8f:74:d6:99:de:55:c8:16:42:68:bf:e3:99:06:87: 66:47:cb:10:75:bd:ef:fd:5d:a8:bd:98:54:65:24:bb:88:3e: 42:e7:dd:8c:e6:da:73:76:1f:48:28:a0:1b:ab:3d:4b:b7:d5: 63:e3:2f:94:15:79:43:e2:cc:ec:15:fd:bb:14:2c:49:db:48: b4:87:72:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjQwNTA0MTcxODI5WhcNMjQwNTExMTcxODI5WjAYMRYwFAYD VQQDEw02NjM2NmRlNS1hMDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OV7uJzwBAM+0uOBhNhAnqGcxB+5zOoGc8vomMSNnfKYXQJjo89ooqVq1Kiq O3HJKFmFRbCaAReNSPqCfnOgZJPr4iQ4nxQje1i6l+/n2En1lDbZ17DOeyewbTvg P9PT6v3ojZYo67uu1y+AXGI19P6gI9FMxoD8Yo+hMeTpueYVQn+NNI3Wi4Kx/Oij 3GOg5iHb1D2WAgDh/oqIP8CALCdiD+s1vrSOz0vkBAdzZXTCEP7g0HpK39hxcTjR n6V5b/Way5RwJq3bfLCotgRQS7MDcCKlVETS2xhdRISnAlXpPRX51w/L/Jt5Qbyk PnH6TfaSa5fj2P41df79cE495QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCfg6Qx z+JZRhwJovLJGeHCSpnAMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4AUoG/x5wg1rh4SoH/JhVvdkC9cxbx+G8FWL9ZZJv8GiMBAuhTxLm FrHoQyhOxDdjJGgHLxJ3zviAPyuEevo41s+C4zh1Evldkp0YSdI2Q8iHnU7zRskw W7OB3WTEkAfTKJ+faz8XWFnNqZumKxrV4l6BnY/dPaQQ2/N37/h3p8QQV0fizVoC M7Fx4FzsFOl1t2QNRXp9tZ50REc7wE0IzVDPMuRwRLglm8blYehLP69JxiZzwKmP dNaZ3lXIFkJov+OZBodmR8sQdb3v/V2ovZhUZSS7iD5C592M5tpzdh9IKKAbqz1L t9Vj4y+UFXlD4szsFf27FCxJ20i0h3KL -----END CERTIFICATE-----Generated at Sat May 4 18:00:12 2024 by rpki-client on console-fra.rpki-client.org