$ rpki-client -vvf rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft File: zIO7bQqhd53qFp7bpKQCKN4hvXs.mft (raw, json) Hash identifier: Ab8dgV4qos3HxMbEKDVyasbOis1GoDHy6eS2nhGpPK4= Subject key identifier: 47:55:2F:AA:F4:30:88:E5:DA:D9:86:79:59:19:EF:65:A6:82:CF:C8 Authority key identifier: CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B Certificate issuer: /CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft Manifest number: 025E Signing time: Sun 05 May 2024 03:58:50 +0000 Manifest this update: Sun 05 May 2024 03:58:49 +0000 Manifest next update: Sun 12 May 2024 03:58:49 +0000 Files and hashes: 1: zIO7bQqhd53qFp7bpKQCKN4hvXs.crl (hash: 9XuaCtiepMgIg3O8aaGABBL2wvCQQyhrjFS8oPwxor0=) 2: 684DDD32CAB311ECBBCE9843C4F9AE02.roa (hash: qlH2HXjlgr8PBnyTmgV2A1ZCVpY5oeqzGuzCwKUpWe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 02:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D493B/serialNumber=CC83BB6D0AA1779DEA169EDBA4A40228DE21BD7B Validity Not Before: May 5 03:58:49 2024 GMT Not After : May 12 03:58:49 2024 GMT Subject: CN=663703f9-6a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:87:99:f3:75:34:03:76:d2:82:20:0c:85:41: 6e:4c:31:37:aa:9e:f3:18:14:7c:cf:c7:50:f9:36: 66:98:9e:99:76:d4:6c:4a:3e:80:4f:9e:39:1e:dc: f7:72:16:91:23:23:fb:60:42:da:ec:5e:bf:85:1f: 9c:c1:cd:28:a4:ad:83:2a:bd:d5:6d:5b:88:ed:4c: c9:a9:10:64:32:36:c5:d0:ae:56:4b:42:90:b9:57: 37:f3:22:e2:e1:1b:ea:82:6d:7a:16:eb:72:1c:8c: 30:61:f3:0c:c6:76:7d:11:43:c6:64:d4:42:16:20: 17:26:35:a7:56:08:35:6d:ec:c0:8e:b0:eb:6f:bd: e3:a9:a8:37:e6:3b:8b:bf:6e:94:17:95:36:9e:df: 90:29:b7:4f:97:01:e0:fd:fe:6a:34:c4:89:cc:21: 27:87:e7:fa:44:fe:19:92:7d:95:4e:6e:31:fa:b4: 6e:98:64:15:40:af:df:4a:01:16:e1:75:6b:fd:2e: 63:a6:1f:7f:07:04:59:c6:d9:c1:b7:3b:a7:0b:0f: ee:bd:2b:2e:71:ef:74:3d:b7:f4:cb:8e:10:2d:87: 4b:97:1f:c2:94:be:42:1d:d0:ed:b2:62:06:33:e4: 9e:ea:9a:85:52:52:d9:04:29:d3:7a:93:1a:56:de: ff:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:55:2F:AA:F4:30:88:E5:DA:D9:86:79:59:19:EF:65:A6:82:CF:C8 X509v3 Authority Key Identifier: keyid:CC:83:BB:6D:0A:A1:77:9D:EA:16:9E:DB:A4:A4:02:28:DE:21:BD:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIO7bQqhd53qFp7bpKQCKN4hvXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D493B/DBAD37A0CAAE11EC8241280DC4F9AE02/zIO7bQqhd53qFp7bpKQCKN4hvXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:cd:66:3c:5f:68:1f:05:60:10:85:1c:9c:ad:b6:71:dc:8f: 87:a6:3d:30:a9:93:0a:53:2c:fe:ae:d6:c2:2d:5b:76:c3:16: e6:8d:9f:30:61:73:9c:bb:08:c2:ee:d3:1d:f8:7b:7b:7a:7e: 33:84:d3:b6:c4:b9:2c:db:c6:d6:f9:1e:b6:a4:a0:e0:56:3b: 46:54:a8:08:cc:ef:16:e2:5d:9e:f7:67:d4:9b:17:28:55:43: 34:f5:f2:d1:66:36:25:47:0b:e5:b8:0b:29:9e:bb:02:da:29: 2f:7c:8b:d8:ce:ba:b2:8a:9c:28:c1:ab:7a:17:7f:09:92:e8: 44:41:a9:7b:50:11:80:b4:ee:15:50:19:8c:11:f6:54:35:a9: 46:89:ad:e6:66:d4:f4:e7:e1:ad:de:dc:b4:a1:9f:fa:c8:de: 01:42:9d:37:e0:75:8a:21:d2:01:81:3e:a8:74:01:27:be:45: 63:ee:f4:e6:60:62:4b:23:cd:ab:3d:c1:9d:b0:9d:30:d4:dd: b5:ac:ec:ff:28:f6:f6:f4:3d:89:a5:83:38:97:a7:1e:1b:01: 38:27:16:d5:6e:ff:61:24:cb:7d:27:48:c8:57:62:2f:f4:5f: ad:3c:77:84:e4:3f:b5:09:cc:07:63:c6:72:db:33:44:40:2a: e5:00:9d:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ5M0IxMTAvBgNVBAUTKENDODNCQjZEMEFBMTc3OURFQTE2OUVEQkE0QTQwMjI4 REUyMUJEN0IwHhcNMjQwNTA1MDM1ODQ5WhcNMjQwNTEyMDM1ODQ5WjAYMRYwFAYD VQQDEw02NjM3MDNmOS02YTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YeZ83U0A3bSgiAMhUFuTDE3qp7zGBR8z8dQ+TZmmJ6ZdtRsSj6AT545Htz3 chaRIyP7YELa7F6/hR+cwc0opK2DKr3VbVuI7UzJqRBkMjbF0K5WS0KQuVc38yLi 4Rvqgm16FutyHIwwYfMMxnZ9EUPGZNRCFiAXJjWnVgg1bezAjrDrb73jqag35juL v26UF5U2nt+QKbdPlwHg/f5qNMSJzCEnh+f6RP4Zkn2VTm4x+rRumGQVQK/fSgEW 4XVr/S5jph9/BwRZxtnBtzunCw/uvSsuce90Pbf0y44QLYdLlx/ClL5CHdDtsmIG M+Se6pqFUlLZBCnTepMaVt7/WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdVL6r0 MIjl2tmGeVkZ72Wmgs/IMB8GA1UdIwQYMBaAFMyDu20KoXed6hae26SkAijeIb17 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDkzQi9EQkFEMzdBMENB QUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1M3FGcDdicEtRQ0tONGh2 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJTzdiUXFoZDUzcUZwN2JwS1FDS040aHZYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDkzQi9EQkFEMzdBMENBQUUxMUVDODI0MTI4MERDNEY5QUUwMi96SU83YlFxaGQ1 M3FGcDdicEtRQ0tONGh2WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAzWY8X2gfBWAQhRycrbZx3I+Hpj0wqZMKUyz+rtbCLVt2wxbmjZ8w YXOcuwjC7tMd+Ht7en4zhNO2xLks28bW+R62pKDgVjtGVKgIzO8W4l2e92fUmxco VUM09fLRZjYlRwvluAspnrsC2ikvfIvYzrqyipwowat6F38JkuhEQal7UBGAtO4V UBmMEfZUNalGia3mZtT05+Gt3ty0oZ/6yN4BQp034HWKIdIBgT6odAEnvkVj7vTm YGJLI82rPcGdsJ0w1N21rOz/KPb29D2JpYM4l6ceGwE4JxbVbv9hJMt9J0jIV2Iv 9F+tPHeE5D+1CcwHY8Zy2zNEQCrlAJ1a -----END CERTIFICATE-----Generated at Sun May 5 04:40:01 2024 by rpki-client on console-ams.rpki-client.org