$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: uy2zmCRVVV9UNOAsVLRnIcNhlFeT5wemTPNeZAHy7dc= Subject key identifier: C2:2E:67:77:04:56:F9:A5:79:62:C0:AA:B6:E8:A9:57:26:DD:B4:93 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 5C Signing time: Wed 15 May 2024 07:53:27 +0000 Manifest this update: Wed 15 May 2024 07:53:26 +0000 Manifest next update: Wed 22 May 2024 07:53:26 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: ZOd2OtXvDcYeabnbIIjzN7cbILRKvt3oZTY8d89Tw/o=) 2: 61197D78FBC611EEB9955A21C4F9AE02.roa (hash: Yu67+oO8/kTjV9kF809TuqcFvB8300/eLYd04vQxASc=) 3: 603F991EFBC611EEB9955A21C4F9AE02.roa (hash: r2V60U+filZ9WsshbD94j+NylRL3iTvXXTRf5Yud0XM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: May 15 07:53:26 2024 GMT Not After : May 22 07:53:26 2024 GMT Subject: CN=664469f6-3579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b2:fb:25:3b:a9:3b:98:64:07:ca:69:40:e5: 93:27:9d:45:70:94:e2:18:a8:69:fa:84:c9:07:20: e2:eb:f2:55:e4:36:d2:df:4a:67:c5:61:30:de:cc: 04:12:ff:cb:e5:1d:0a:23:4c:45:b2:a5:ac:9d:42: e4:d3:ba:21:da:7d:ac:0b:29:14:1b:1a:01:ea:0b: 93:6c:60:7c:cb:df:f9:19:50:a0:49:12:a6:1f:88: 51:75:de:92:b8:34:bc:d3:46:e1:56:90:d0:dc:71: 86:2a:f1:3e:55:c0:d5:e4:81:d2:6a:0f:9e:dc:f3: 72:4f:7f:5b:a2:82:44:78:ea:fd:ac:61:20:fa:bb: 3f:fc:7a:a6:a4:fe:9c:8e:71:d8:7a:bf:c7:aa:71: 0f:5c:ba:df:8e:b1:6f:45:1c:d7:b0:a7:b4:95:d8: 1b:df:0e:58:10:11:e7:1f:3d:ec:da:3d:b4:0b:a1: 6e:b1:f5:e6:af:bb:88:e7:06:cc:13:e8:e2:1a:ae: 2a:e0:28:d8:5c:c3:03:89:4c:93:e6:6f:73:31:d1: 57:39:51:6b:3e:d8:36:e2:14:b6:1b:78:7b:a5:7b: 49:77:e4:dd:8c:0a:ff:32:a8:89:24:13:00:31:7a: 66:23:75:13:13:c3:5b:71:87:94:b2:dc:f5:0e:d1: 4b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2E:67:77:04:56:F9:A5:79:62:C0:AA:B6:E8:A9:57:26:DD:B4:93 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:d7:be:d3:7b:df:0c:ef:60:7f:9e:91:ad:6e:af:34:5f:04: b7:cb:a2:0f:e8:e8:78:63:9c:e9:be:fa:60:f9:8a:ae:ea:fd: 50:52:98:93:29:30:1d:b7:f1:c9:23:57:5d:0b:cb:6e:df:46: 99:93:a1:fa:04:f0:70:42:3e:59:4f:87:fc:d5:ae:61:72:b1: 03:1d:96:c1:cb:61:77:42:ea:d9:20:df:51:fd:98:18:92:ef: cf:f5:3b:b0:19:a2:5c:fb:d9:73:8c:d7:b4:36:58:11:34:08: de:c0:69:d9:9e:b8:61:f2:9b:47:7c:9f:e5:70:91:ed:7b:64: f7:95:ff:68:fe:08:12:36:04:28:48:54:86:f3:f8:ea:2a:62: ef:9f:d2:37:93:4d:a7:de:48:db:49:97:c3:4c:db:7b:62:0f: 0d:ad:26:0d:0b:5d:29:a0:b8:22:08:df:86:8d:6a:45:38:e1: ad:12:02:f1:3b:cb:b1:2e:98:57:17:a6:11:ca:fe:a1:6c:4b: 63:be:90:e4:67:9f:15:13:5d:ca:6c:65:68:cf:9c:8f:f8:7c: d7:97:22:0b:25:84:8e:48:a8:e0:1a:75:5e:5d:46:ab:6e:3b: db:46:0d:12:49:5f:85:56:d3:cd:da:ff:ec:ef:90:64:c2:0c: 0f:a3:c3:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDQ2ODExMC8GA1UEBRMoQUZGQ0U2Mzc5ODgxNjVFNkM1MUJGQkZFQkQxMjgzRDUx MTI0MDE5MDAeFw0yNDA1MTUwNzUzMjZaFw0yNDA1MjIwNzUzMjZaMBgxFjAUBgNV BAMTDTY2NDQ2OWY2LTM1NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5svslO6k7mGQHymlA5ZMnnUVwlOIYqGn6hMkHIOLr8lXkNtLfSmfFYTDezAQS /8vlHQojTEWypaydQuTTuiHafawLKRQbGgHqC5NsYHzL3/kZUKBJEqYfiFF13pK4 NLzTRuFWkNDccYYq8T5VwNXkgdJqD57c83JPf1uigkR46v2sYSD6uz/8eqak/pyO cdh6v8eqcQ9cut+OsW9FHNewp7SV2BvfDlgQEecfPezaPbQLoW6x9eavu4jnBswT 6OIarirgKNhcwwOJTJPmb3Mx0Vc5UWs+2DbiFLYbeHule0l35N2MCv8yqIkkEwAx emYjdRMTw1txh5Sy3PUO0Uu5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwi5ndwRW +aV5YsCqtuipVybdtJMwHwYDVR0jBBgwFoAUr/zmN5iBZebFG/v+vRKD1REkAZAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NDY4LzgyNzUyNEU4OEVF NTExRUVBMkVFREQxMkM0RjlBRTAyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0Fa QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcl96bU41aUJaZWJGR192LXZSS0QxUkVrQVpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 NDY4LzgyNzUyNEU4OEVFNTExRUVBMkVFREQxMkM0RjlBRTAyL3Jfem1ONWlCWmVi Rkdfdi12UktEMVJFa0FaQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJvXvtN73wzvYH+eka1urzRfBLfLog/o6HhjnOm++mD5iq7q/VBSmJMp MB238ckjV10Ly27fRpmTofoE8HBCPllPh/zVrmFysQMdlsHLYXdC6tkg31H9mBiS 78/1O7AZolz72XOM17Q2WBE0CN7AadmeuGHym0d8n+Vwke17ZPeV/2j+CBI2BChI VIbz+OoqYu+f0jeTTafeSNtJl8NM23tiDw2tJg0LXSmguCII34aNakU44a0SAvE7 y7EumFcXphHK/qFsS2O+kORnnxUTXcpsZWjPnI/4fNeXIgslhI5IqOAadV5dRqtu O9tGDRJJX4VW083a/+zvkGTCDA+jw5w= -----END CERTIFICATE-----Generated at Wed May 15 09:04:46 2024 by rpki-client on console-ams.rpki-client.org