$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: llRWZZs9GC6nAQDhk7KA3vHDdO/j5WUiWtOWvQBIwvA= Subject key identifier: 99:B9:D5:A5:22:68:5F:D0:46:CC:10:AE:4B:4B:01:51:C6:55:7D:1F Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 2FDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 2FC5 Signing time: Fri 26 Apr 2024 15:42:44 +0000 Manifest this update: Fri 26 Apr 2024 15:42:44 +0000 Manifest next update: Fri 03 May 2024 15:42:44 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: lsoHfU02qtmXHR5OnGxACvIJSlXDXtNfLmoy5j+i+Yo=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: slc5PZ764I0a4GJ+ghR69dJPBm3mYwOgWuKrbU/Ievk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12252 (0x2fdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: Apr 26 15:42:44 2024 GMT Not After : May 3 15:42:44 2024 GMT Subject: CN=662bcb74-3590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b8:e5:2d:ab:36:55:72:aa:3a:f7:29:37:eb: 4c:65:50:1b:16:6c:a4:29:96:c7:80:52:1c:f6:8d: dc:67:97:c8:57:fb:f6:fe:47:8d:20:53:43:4a:15: 4e:0d:30:d6:19:c6:f8:69:e8:3b:13:fc:1d:ef:c4: 83:a5:b4:f9:c8:9d:16:30:0f:cb:7f:11:34:ca:fb: 40:76:79:75:4f:55:9c:fc:fc:bb:f2:34:83:27:e2: 97:4b:76:73:2e:43:55:a5:80:97:ef:9d:29:d0:c5: cc:5c:c0:c8:c6:9d:28:7d:2c:21:4c:4f:2d:91:e3: 9c:79:1a:f4:8c:33:2e:5e:31:a0:bf:a6:f5:d6:41: ab:71:97:a2:b2:e8:18:e8:f5:5e:29:d0:7d:78:d0: da:de:e8:65:11:06:2a:ef:90:e3:c4:2a:ea:42:77: 4c:de:3e:47:54:cb:4e:eb:71:a1:71:f6:46:7b:c1: 9f:a8:52:a7:1c:dd:1e:52:8e:99:34:cc:1c:1f:c4: 2e:63:93:e8:b4:03:87:dc:26:31:28:4b:23:4e:6e: 25:0d:1c:4d:91:07:69:05:f3:c6:6b:88:3d:b0:25: 76:cb:47:cf:24:ad:77:4b:e7:56:1e:9a:a5:a9:e6: 89:da:ac:2e:bc:1b:77:4c:4b:1b:2d:ef:f8:a0:af: a0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B9:D5:A5:22:68:5F:D0:46:CC:10:AE:4B:4B:01:51:C6:55:7D:1F X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:bc:9a:51:94:c7:1b:4b:e6:18:9c:27:2a:4f:94:d8:d1:65: 5b:e1:4c:e0:a9:e8:81:df:a3:17:bf:30:00:de:4e:7b:17:58: 82:db:ab:43:6a:fd:b7:be:56:56:2a:6d:ad:34:ac:c1:49:d9: a1:0c:1a:ed:26:a6:8f:2d:1d:be:96:41:00:9b:b1:bf:0f:41: 74:8c:8a:0b:f4:a5:72:4f:51:b1:34:3e:b3:cf:62:c3:99:09: a1:d4:dc:c3:b7:f4:97:34:a7:1e:09:95:ad:7a:78:fc:b9:c6: fc:51:72:21:c2:f3:b8:85:77:75:c3:14:ce:63:32:3a:d2:79: af:1c:ab:d1:93:d5:6b:08:cd:d9:58:82:7b:17:53:3d:c1:a2: 1b:3d:5c:98:74:c1:02:2c:ec:00:7d:9a:bb:07:b1:5a:86:12: 61:7e:60:4a:18:b6:81:0c:bf:1c:40:61:01:0c:49:c0:6c:c6: 0b:d0:fd:47:da:11:5c:c5:02:b2:bc:ce:3d:0d:a7:1d:98:9b: 34:f7:7a:d5:08:02:e3:06:5d:18:5c:e6:d8:99:8e:42:cd:b1: d9:ba:f9:0b:a8:78:12:f6:e0:01:06:9f:c3:ea:42:26:13:8e: 5b:72:c8:89:ba:0e:a8:28:b0:d9:e3:9d:cf:b7:42:97:e1:73: 76:99:b3:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjQwNDI2MTU0MjQ0WhcNMjQwNTAzMTU0MjQ0WjAYMRYwFAYD VQQDEw02NjJiY2I3NC0zNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybjlLas2VXKqOvcpN+tMZVAbFmykKZbHgFIc9o3cZ5fIV/v2/keNIFNDShVO DTDWGcb4aeg7E/wd78SDpbT5yJ0WMA/LfxE0yvtAdnl1T1Wc/Py78jSDJ+KXS3Zz LkNVpYCX750p0MXMXMDIxp0ofSwhTE8tkeOceRr0jDMuXjGgv6b11kGrcZeisugY 6PVeKdB9eNDa3uhlEQYq75DjxCrqQndM3j5HVMtO63GhcfZGe8GfqFKnHN0eUo6Z NMwcH8QuY5PotAOH3CYxKEsjTm4lDRxNkQdpBfPGa4g9sCV2y0fPJK13S+dWHpql qeaJ2qwuvBt3TEsbLe/4oK+g2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJm51aUi aF/QRswQrktLAVHGVX0fMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6vJpRlMcbS+YYnCcqT5TY0WVb4UzgqeiB36MXvzAA3k57F1iC26tD av23vlZWKm2tNKzBSdmhDBrtJqaPLR2+lkEAm7G/D0F0jIoL9KVyT1GxND6zz2LD mQmh1NzDt/SXNKceCZWtenj8ucb8UXIhwvO4hXd1wxTOYzI60nmvHKvRk9VrCM3Z WIJ7F1M9waIbPVyYdMECLOwAfZq7B7FahhJhfmBKGLaBDL8cQGEBDEnAbMYL0P1H 2hFcxQKyvM49DacdmJs093rVCALjBl0YXObYmY5CzbHZuvkLqHgS9uABBp/D6kIm E45bcsiJug6oKLDZ453Pt0KX4XN2mbOw -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:22 2024 by rpki-client on console-ams.rpki-client.org