$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft File: ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft (raw, json) Hash identifier: zHGtSJ4ae0WcNGxG17QnMV+XlSORi7sIMpl39K5mpAA= Subject key identifier: C5:82:49:D4:A2:29:D1:6F:46:85:E3:0F:40:95:DE:E2:2E:A7:E6:C9 Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft Manifest number: 0AFF Signing time: Tue 30 Apr 2024 20:18:41 +0000 Manifest this update: Tue 30 Apr 2024 20:18:41 +0000 Manifest next update: Tue 07 May 2024 20:18:41 +0000 Files and hashes: 1: ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl (hash: yKASV8meUZrTrYj8yE/l+zZ/ZspgkjCfTBsN9nS4puk=) 2: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (hash: ui4ljtDiDWkqbmWppjIYNuaiiXQP5EQeL1mb2go5cP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:18:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: Apr 30 20:18:41 2024 GMT Not After : May 7 20:18:41 2024 GMT Subject: CN=66315221-baf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:69:09:31:d8:d5:2e:8d:97:fe:99:8d:53:a0: e4:61:cd:7e:d3:65:e2:17:f2:38:44:60:f4:85:0c: 9f:01:7d:b2:b7:42:1c:e4:f4:0d:ee:47:8c:8f:0b: 9a:c3:dc:e6:0b:c2:fe:ab:e6:c0:4f:c9:5b:db:88: b0:41:8e:6f:93:1d:7f:0b:ee:bd:a2:f8:35:67:c1: 47:3d:69:e9:83:58:77:95:6c:97:07:40:d7:da:03: 52:95:07:7c:2f:94:79:c9:2d:b8:8f:91:c6:b7:a9: 67:8a:8f:8c:db:a1:0a:06:30:59:10:d4:85:9f:4c: 36:23:b4:84:3b:b6:b7:4a:7f:54:cd:a8:e1:b2:90: 7b:43:5e:0c:4e:78:5b:a4:5d:4b:8d:4b:74:57:41: 40:0b:82:95:47:04:4f:d0:a5:59:ce:92:27:dd:c4: b1:de:60:8f:23:b0:ec:fb:8c:42:59:b3:f9:76:54: 7d:2b:da:9f:72:dd:f5:d5:38:49:38:06:f7:07:f6: 8d:f4:d0:bb:78:d4:37:3d:8a:68:63:48:9a:21:a4: 0f:16:6b:a2:e2:d1:c5:a6:49:9f:a6:50:03:c8:be: 1c:5d:cd:c8:70:87:c6:a1:44:99:16:1e:6e:3c:8f: c5:7c:9e:c3:c6:c7:52:a5:d8:2c:54:9a:f2:72:a9: 2b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:82:49:D4:A2:29:D1:6F:46:85:E3:0F:40:95:DE:E2:2E:A7:E6:C9 X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:aa:8c:d5:5b:43:58:92:bd:f3:2a:eb:bb:5a:c9:42:c4:61: 74:bc:d6:a7:69:80:cc:01:05:fc:88:4f:2f:a5:1a:12:c6:cc: 97:d9:84:30:c6:f7:24:41:8f:a1:3d:cf:5e:17:09:72:c0:17: 3d:9f:98:f1:4a:a3:cb:1d:1c:ac:e7:fa:34:89:cd:35:c7:ec: d9:43:20:03:b9:65:2b:d4:68:fc:95:9e:ee:72:36:26:16:d5: ae:46:d1:8d:d0:b4:53:ea:04:01:71:d4:b6:f7:3c:c3:a4:38: fa:26:4f:27:7d:9c:09:8f:36:86:a5:fb:08:45:c9:00:48:e2: ee:16:f1:2b:95:c8:ef:03:96:18:a8:06:27:36:13:f0:a3:fb: ce:30:66:08:d9:d9:7c:6c:36:c4:da:48:ce:bb:c5:25:8f:ab: bb:db:f7:c7:08:f7:6f:5d:c7:72:5a:7c:b5:04:fa:33:a1:8d: 58:5d:d7:4d:cc:c0:28:d2:24:79:7b:9d:27:b2:1b:27:4c:95: 0c:90:79:ac:09:3d:db:44:7c:30:d3:33:3a:6f:95:e7:5b:0d: be:a8:3f:ee:2d:65:db:cf:f7:61:ea:3d:9f:1b:f4:e4:3a:da: 22:f7:2a:4d:ef:f4:49:cd:09:f7:d0:76:c4:ce:2e:f3:6a:ef: d5:81:f2:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjQwNDMwMjAxODQxWhcNMjQwNTA3MjAxODQxWjAYMRYwFAYD VQQDEw02NjMxNTIyMS1iYWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2kJMdjVLo2X/pmNU6DkYc1+02XiF/I4RGD0hQyfAX2yt0Ic5PQN7keMjwua w9zmC8L+q+bAT8lb24iwQY5vkx1/C+69ovg1Z8FHPWnpg1h3lWyXB0DX2gNSlQd8 L5R5yS24j5HGt6lnio+M26EKBjBZENSFn0w2I7SEO7a3Sn9UzajhspB7Q14MTnhb pF1LjUt0V0FAC4KVRwRP0KVZzpIn3cSx3mCPI7Ds+4xCWbP5dlR9K9qfct311ThJ OAb3B/aN9NC7eNQ3PYpoY0iaIaQPFmui4tHFpkmfplADyL4cXc3IcIfGoUSZFh5u PI/FfJ7DxsdSpdgsVJrycqkrrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWCSdSi KdFvRoXjD0CV3uIup+bJMB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mzg2OS83NURBNDQ3QzFGNEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRV ZHZTWlZFQ3pZRXBuRzdfYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcqozVW0NYkr3zKuu7WslCxGF0vNanaYDMAQX8iE8vpRoSxsyX2YQw xvckQY+hPc9eFwlywBc9n5jxSqPLHRys5/o0ic01x+zZQyADuWUr1Gj8lZ7ucjYm FtWuRtGN0LRT6gQBcdS29zzDpDj6Jk8nfZwJjzaGpfsIRckASOLuFvErlcjvA5YY qAYnNhPwo/vOMGYI2dl8bDbE2kjOu8Ulj6u72/fHCPdvXcdyWny1BPozoY1YXddN zMAo0iR5e50nshsnTJUMkHmsCT3bRHww0zM6b5XnWw2+qD/uLWXbz/dh6j2fG/Tk Otoi9ypN7/RJzQn30HbEzi7zau/VgfLw -----END CERTIFICATE-----Generated at Tue Apr 30 21:38:05 2024 by rpki-client on console-fra.rpki-client.org