$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: xGfgyde+a9LxDDA6dFttcLmwhpI+4bfOdA16QbHIJXw= Subject key identifier: 83:73:47:C1:CF:49:1C:59:4A:70:ED:79:39:D5:FE:80:64:FE:A9:8B Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: D4 Signing time: Tue 07 May 2024 06:07:18 +0000 Manifest this update: Tue 07 May 2024 06:07:18 +0000 Manifest next update: Tue 14 May 2024 06:07:18 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: 6oSWQbwn2oqYa+X6TwhTeeqZwci08AzXVpIOLGXXL1M=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: vOf7Hf6UBW10mc1F+PJXd3/VFuhi+q06hNtpKe+h4bQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 06:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: May 7 06:07:18 2024 GMT Not After : May 14 06:07:18 2024 GMT Subject: CN=6639c516-cc87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b5:b7:02:05:e0:ce:47:05:9f:dc:a7:e6:71: 1a:65:68:73:c4:a6:7e:65:a6:46:4e:2f:87:79:1b: 71:9d:52:f9:21:b5:0a:81:23:6c:f9:e6:88:e2:6c: ef:92:f5:f4:44:ed:c7:10:58:37:02:63:d9:2b:6e: 23:75:de:7b:8d:e5:5f:65:5f:71:87:cd:cb:87:bd: aa:64:52:42:13:b6:66:f4:04:cc:3e:49:6a:18:24: ba:bf:ed:cc:cd:3b:5e:68:e7:a0:5b:c2:25:a4:a1: b6:eb:18:62:4d:b7:f2:b8:a8:30:d1:b8:43:57:16: 37:a6:61:bf:72:3a:4d:83:e7:59:72:1b:a5:8b:ef: 13:e3:f1:c3:68:55:5a:85:c6:2d:0b:99:88:33:cd: ad:6a:85:78:60:6a:be:d6:d2:16:fe:74:81:f4:46: 6f:1e:93:46:4c:04:7b:2b:1c:ec:53:68:68:ef:55: ee:27:99:c9:8e:9a:3f:b2:f6:c9:96:4f:39:15:a5: f5:db:48:aa:b4:ed:3f:5f:69:74:9b:79:eb:a3:42: 34:66:a5:ce:9a:52:09:5f:66:e6:7b:3d:7b:8a:0e: 8c:1b:f4:e9:fb:9d:b8:6d:13:a4:b4:f9:4a:e1:d6: d3:28:87:3b:74:b1:94:0f:6c:40:d5:31:83:75:10: 79:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:73:47:C1:CF:49:1C:59:4A:70:ED:79:39:D5:FE:80:64:FE:A9:8B X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:0b:1a:e1:15:76:92:2b:83:13:0d:3f:df:56:e4:de:8e:95: 29:5c:ac:75:d3:fe:a6:49:d1:94:e0:c3:13:04:76:23:2e:89: e1:31:64:32:53:fd:4e:a8:23:c3:a6:d6:90:f8:ee:95:e4:64: 25:a9:cd:7f:f9:9c:47:4a:5b:64:9e:de:70:e7:8c:89:54:36: c2:5a:0e:3c:c8:fa:db:15:01:03:9c:38:4d:0d:a5:c3:11:58: 2c:ff:c0:8f:ca:d3:c8:30:e2:fb:25:a2:ba:a8:bc:28:d8:22: 5a:0e:50:ba:3d:69:e7:10:f6:1f:8e:5e:de:60:cf:79:a6:99: e3:cf:fa:d3:bf:ff:13:a5:e6:43:f6:58:33:fd:17:a2:fd:8e: 6a:37:01:68:a5:12:30:07:0f:9e:98:58:65:1a:0a:63:57:e0: e5:83:be:c2:24:61:6e:a4:cb:c8:0a:0d:9f:4b:9b:d4:18:c2: 5c:1b:2f:43:f3:52:22:aa:79:2b:8c:d9:c5:6f:68:24:f3:ff: 4f:ae:3f:7d:f9:cb:09:90:c4:26:ac:65:23:d4:dc:2b:28:28: ab:37:d3:7f:e2:e0:37:0b:3b:f4:21:f0:79:04:5c:e5:c5:ca: 9a:aa:a4:4f:c1:b3:ae:68:c8:b1:a6:62:a7:40:1e:73:24:ed: 03:33:86:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjQwNTA3MDYwNzE4WhcNMjQwNTE0MDYwNzE4WjAYMRYwFAYD VQQDEw02NjM5YzUxNi1jYzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57W3AgXgzkcFn9yn5nEaZWhzxKZ+ZaZGTi+HeRtxnVL5IbUKgSNs+eaI4mzv kvX0RO3HEFg3AmPZK24jdd57jeVfZV9xh83Lh72qZFJCE7Zm9ATMPklqGCS6v+3M zTteaOegW8IlpKG26xhiTbfyuKgw0bhDVxY3pmG/cjpNg+dZchuli+8T4/HDaFVa hcYtC5mIM82taoV4YGq+1tIW/nSB9EZvHpNGTAR7KxzsU2ho71XuJ5nJjpo/svbJ lk85FaX120iqtO0/X2l0m3nro0I0ZqXOmlIJX2bmez17ig6MG/Tp+524bROktPlK 4dbTKIc7dLGUD2xA1TGDdRB5QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFINzR8HP SRxZSnDteTnV/oBk/qmLMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOCxrhFXaSK4MTDT/fVuTejpUpXKx10/6mSdGU4MMTBHYjLonhMWQy U/1OqCPDptaQ+O6V5GQlqc1/+ZxHSltknt5w54yJVDbCWg48yPrbFQEDnDhNDaXD EVgs/8CPytPIMOL7JaK6qLwo2CJaDlC6PWnnEPYfjl7eYM95ppnjz/rTv/8TpeZD 9lgz/Rei/Y5qNwFopRIwBw+emFhlGgpjV+Dlg77CJGFupMvICg2fS5vUGMJcGy9D 81IiqnkrjNnFb2gk8/9Prj99+csJkMQmrGUj1NwrKCirN9N/4uA3Czv0IfB5BFzl xcqaqqRPwbOuaMixpmKnQB5zJO0DM4Zi -----END CERTIFICATE-----Generated at Tue May 7 07:13:01 2024 by rpki-client on console-ams.rpki-client.org