$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft File: z4nWqxHn1Hqhe0MJxypytxy6R64.mft (raw, json) Hash identifier: rHFANpPwHpy5mFWwm2eJOVNuavwKKLkF9k0XR036qxk= Subject key identifier: 3A:40:ED:0B:9E:63:73:19:0B:35:F1:AB:B3:23:EA:54:A5:0A:B9:75 Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 07A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft Manifest number: 0798 Signing time: Sat 04 May 2024 22:21:17 +0000 Manifest this update: Sat 04 May 2024 22:21:16 +0000 Manifest next update: Sat 11 May 2024 22:21:16 +0000 Files and hashes: 1: z4nWqxHn1Hqhe0MJxypytxy6R64.crl (hash: gPLDc3GEsZlBqpOKSus5l8Csb3H/nw10Vf9EXXfJRyI=) 2: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (hash: hrvGA1g4ZVTaulXjNCurfAH28ziH6PDXu4DUUcEtJpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: May 4 22:21:16 2024 GMT Not After : May 11 22:21:16 2024 GMT Subject: CN=6636b4dd-b860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c2:f1:cd:3a:2e:49:9b:24:58:23:e1:87:35: 94:df:98:6d:33:91:89:c5:29:90:62:9e:cc:88:6f: 34:74:6d:9a:cd:39:fe:13:d7:60:5e:de:40:1e:66: 65:b4:be:ec:bb:65:a2:c8:9e:77:86:6e:91:fd:1e: bf:47:c1:8e:28:d1:d2:d4:c0:f8:c5:f0:99:84:d0: 21:b2:03:a3:8a:b9:b1:c5:66:33:3a:88:5d:ee:53: 59:4a:88:b8:e3:f7:95:ba:b7:1f:6f:d9:19:27:5a: a2:de:84:0c:62:70:af:1d:0e:0c:72:85:98:20:0e: 6f:57:e3:f9:73:89:65:fd:05:81:8c:c3:65:c4:82: be:14:b8:e8:47:8c:8d:3b:e4:73:02:e4:58:82:45: 54:f3:b8:5f:d9:21:92:47:df:71:c5:3a:18:47:82: 2a:5d:de:59:90:85:cd:e5:cf:11:88:39:fa:b1:f2: b1:ca:af:69:03:08:48:bd:f8:a7:2f:f9:30:ae:2d: 6c:e1:df:39:26:d4:14:5f:08:01:8f:95:1b:ed:6c: 8d:6c:4f:59:8e:3f:c6:5e:bc:5d:d6:66:31:03:22: e4:69:c2:d1:92:a6:2f:82:38:42:cd:b7:db:c4:32: c8:8a:b8:09:f5:f3:a3:ac:d9:94:b9:ee:c2:81:36: a6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:40:ED:0B:9E:63:73:19:0B:35:F1:AB:B3:23:EA:54:A5:0A:B9:75 X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b2:46:73:42:8e:60:37:db:01:bc:d1:d0:5f:74:c4:df:af: f4:ab:7b:3d:21:16:9c:e9:ad:45:3c:07:9e:3f:bf:04:ce:e8: 27:39:83:25:8a:ea:46:06:a9:09:ed:e8:3b:35:f4:23:f7:cf: 43:e0:6a:d3:23:aa:27:10:c3:3d:1b:61:59:07:90:5f:cc:3c: 30:a9:21:d0:f5:70:b1:c6:87:21:16:20:86:64:38:7f:2e:01: 21:ce:0f:e3:4d:6f:72:08:10:06:80:ec:48:57:cd:9f:86:02: 54:c3:a6:64:2c:d7:d5:c8:da:54:3b:06:1b:58:15:a2:10:b1: 10:c9:a3:a7:d3:01:6b:6f:01:0d:6c:25:4d:2f:df:e1:5f:79: 4f:11:48:67:3a:28:75:b2:49:41:e5:bd:d7:0f:66:13:36:ca: ba:2b:e0:97:ec:7e:a3:53:6e:06:15:48:66:67:48:c8:20:36: e2:bf:b9:81:81:e1:ea:bb:8f:a0:0d:0e:97:1b:1f:30:39:d7: 2f:50:04:8e:6b:81:6a:b5:32:54:b6:3b:20:05:62:12:e0:3f: be:77:cf:d3:17:5f:39:fe:e5:ec:15:44:ad:fe:c9:6f:6b:2c: a2:1b:e9:cd:c8:80:36:1d:b9:82:87:e3:45:ef:ae:8b:84:f1: f3:a3:11:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjQwNTA0MjIyMTE2WhcNMjQwNTExMjIyMTE2WjAYMRYwFAYD VQQDEw02NjM2YjRkZC1iODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsLxzTouSZskWCPhhzWU35htM5GJxSmQYp7MiG80dG2azTn+E9dgXt5AHmZl tL7su2WiyJ53hm6R/R6/R8GOKNHS1MD4xfCZhNAhsgOjirmxxWYzOohd7lNZSoi4 4/eVurcfb9kZJ1qi3oQMYnCvHQ4McoWYIA5vV+P5c4ll/QWBjMNlxIK+FLjoR4yN O+RzAuRYgkVU87hf2SGSR99xxToYR4IqXd5ZkIXN5c8RiDn6sfKxyq9pAwhIvfin L/kwri1s4d85JtQUXwgBj5Ub7WyNbE9Zjj/GXrxd1mYxAyLkacLRkqYvgjhCzbfb xDLIirgJ9fOjrNmUue7CgTamIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpA7Que Y3MZCzXxq7Mj6lSlCrl1MB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQ5Qi9GNUJBQTNEOEM4MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFI cWhlME1KeHlweXR4eTZSNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtskZzQo5gN9sBvNHQX3TE36/0q3s9IRac6a1FPAeeP78EzugnOYMl iupGBqkJ7eg7NfQj989D4GrTI6onEMM9G2FZB5BfzDwwqSHQ9XCxxochFiCGZDh/ LgEhzg/jTW9yCBAGgOxIV82fhgJUw6ZkLNfVyNpUOwYbWBWiELEQyaOn0wFrbwEN bCVNL9/hX3lPEUhnOih1sklB5b3XD2YTNsq6K+CX7H6jU24GFUhmZ0jIIDbiv7mB geHqu4+gDQ6XGx8wOdcvUASOa4FqtTJUtjsgBWIS4D++d8/TF185/uXsFUSt/slv ayyiG+nNyIA2HbmCh+NF766LhPHzoxHB -----END CERTIFICATE-----Generated at Sun May 5 00:14:47 2024 by rpki-client on console-ams.rpki-client.org