$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft File: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft (raw, json) Hash identifier: 1C7oyRKJtwvS05N96emdsAluOk5mhf7PnK8dIuNlOT4= Subject key identifier: B5:5A:5D:66:67:6C:EB:F2:A2:0E:11:82:96:13:A1:F5:53:1E:E4:DD Authority key identifier: 64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 Certificate issuer: /CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Certificate serial: 19F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft Manifest number: 9C04 Signing time: Wed 24 Apr 2024 14:33:15 +0000 Manifest this update: Wed 24 Apr 2024 14:33:15 +0000 Manifest next update: Wed 01 May 2024 14:33:15 +0000 Files and hashes: 1: ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl (hash: +YW8qag2+VK6trLoqD8iDWJEVXjaUToP4kXKLWsFMZk=) 2: 959AC422557911EBBD21EB2FC4F9AE02.roa (hash: J+i+xHglF30YrTu7x6Pre7wquyLrlypNp53kEuUro+A=) 3: 20C6F2EC699D11EAA33EAE83C4F9AE02.roa (hash: 2Wfkdn7MfVQXrZ9H0XtMLTt93Bf8/BHzsOt+OvV3+jE=) 4: 191363A69DD911EC99D91668C4F9AE02.roa (hash: qZR0aFszDY/l5eui6uQTd6Rpwe1MnohTwQCzV7r+27A=) 5: ACC8833824DE11EDAEC0E529C4F9AE02.roa (hash: QGAwZUuCqo2rdVld9FJT3Ob19+cZKtlgVcmXc6DM0f4=) 6: 4FF339D8F01D11EB8C4B505BC4F9AE02.roa (hash: kzECbfpnJK1DMJfZUK8eDMDVYRqxWsJZ8xpJMfAbRdI=) 7: C89FD6DA557611EBA04C290BC4F9AE02.roa (hash: /NtTWdjr9LcEfZeZzwzUDEyqZqjWCjb59tYobseoHp4=) 8: 4B6349ECD79011ED98D6CE6AC4F9AE02.roa (hash: tYaYyaQsrpnXSYsOGrwwzLRKJ2VgPEGWc1iN6aMv68A=) 9: 5C818B14EEF911ED891BBB4EC4F9AE02.roa (hash: L2w0Fzx0VxoM82eKyoPgr1hCZprmQxiXYiAMQCUIaXY=) 10: FC6A19D892D511EC8FBFF32AC4F9AE02.roa (hash: F72hMyPFufNAn6x52lJUWTMTr8HB/3kn400XNImKBbM=) 11: 0B24875C7A4411EB804B7430C4F9AE02.roa (hash: suClGwc5MHcSEsoUjuBqNLkT149rEK2HHOalRigGnJI=) 12: 3D68F8C29A4A11EA94706012C4F9AE02.roa (hash: kSBhw14t2y5sCzRw5nLpnIcdv7ebTARlD7OJV5Y29aA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 14:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6646 (0x19f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D/serialNumber=64A665816AEFED73B3075007DA5337AC7DEC4B81 Validity Not Before: Apr 24 14:33:15 2024 GMT Not After : May 1 14:33:15 2024 GMT Subject: CN=6629182b-edb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:28:1b:4d:1b:bd:33:0e:43:fa:ae:9f:44: 41:95:4a:6b:16:e6:36:4c:d0:0b:f6:ae:da:cb:81: 94:75:77:78:47:3b:3c:c0:3e:5f:13:ac:44:2b:ea: 60:a1:05:38:76:59:c2:b3:ef:f5:17:a2:a2:4c:9b: 08:9b:4a:32:e0:cc:1c:10:bb:97:75:1e:50:8d:04: a8:ae:45:35:09:84:1f:25:02:a7:d6:a4:21:06:f7: e5:3d:23:93:cb:2d:55:67:10:df:41:54:88:15:7b: dd:36:f6:e8:40:7b:4f:e9:9c:e7:8f:8d:02:ef:c2: 84:ff:d6:1d:ba:39:e8:5b:0b:a7:4d:30:08:21:e3: 76:8c:d6:74:4c:b9:2f:f9:a7:23:ef:37:0f:53:39: 72:5a:86:02:f7:bb:57:98:7b:92:e0:af:f8:dc:16: 41:1c:63:ed:bd:de:0b:64:90:87:c6:68:43:ac:01: 66:e6:0a:08:f9:6c:09:99:cd:e4:cb:6f:6a:0a:34: b4:4e:44:8d:1f:35:0b:13:39:17:f6:2a:2e:e8:73: 71:55:d1:de:08:b5:ad:07:5c:07:92:70:cc:ca:06: 66:21:76:0a:ff:c0:a2:71:f1:28:78:1e:90:2f:24: 61:b7:17:54:7e:0d:bc:1b:99:92:ed:b8:f8:99:ea: 68:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5A:5D:66:67:6C:EB:F2:A2:0E:11:82:96:13:A1:F5:53:1E:E4:DD X509v3 Authority Key Identifier: keyid:64:A6:65:81:6A:EF:ED:73:B3:07:50:07:DA:53:37:AC:7D:EC:4B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/ZKZlgWrv7XOzB1AH2lM3rH3sS4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b1:74:46:1b:18:c9:ce:6c:61:27:af:29:5c:f1:00:f2:b4: dc:23:39:e7:9b:3d:3c:06:77:a3:ec:19:73:1a:c4:c7:14:ff: e2:ba:48:2c:87:68:6f:10:06:bb:93:91:c1:04:34:92:3b:19: 3f:51:3e:b6:85:f6:4e:d2:0d:30:cf:86:db:89:bb:aa:68:b9: 67:a1:ec:a3:57:e9:2f:de:4d:bc:e7:82:68:7c:d0:54:e7:90: a7:59:a6:a2:a0:75:48:c8:67:b0:9d:13:b6:20:98:5c:9a:a8: e7:88:ef:db:63:21:3e:a1:0c:77:59:88:1c:5e:a6:1e:f1:e8: 17:a4:36:11:09:d0:d5:0c:88:4f:b3:eb:c0:21:e0:32:2f:61: fc:75:30:47:28:0a:b2:7f:e4:db:f8:5c:a3:05:dc:09:c5:c7: 4e:a8:00:3d:41:be:74:d6:4c:44:b5:55:c1:1d:2f:01:9e:86: b1:bb:42:2a:98:30:0f:48:93:55:c5:55:24:c1:b9:4b:e5:ec: d0:d5:9f:5e:74:03:0e:58:52:64:f6:c4:b4:5f:47:33:c8:b6: 4c:91:ac:af:43:fa:6b:89:80:31:13:f3:c6:af:e8:b0:c4:bd: 05:f8:52:ed:77:fb:20:cf:d0:cd:c0:88:e8:eb:85:c2:82:c1: 31:58:34:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDY0QTY2NTgxNkFFRkVENzNCMzA3NTAwN0RBNTMzN0FD N0RFQzRCODEwHhcNMjQwNDI0MTQzMzE1WhcNMjQwNTAxMTQzMzE1WjAYMRYwFAYD VQQDEw02NjI5MTgyYi1lZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tAoG00bvTMOQ/qun0RBlUprFuY2TNAL9q7ay4GUdXd4Rzs8wD5fE6xEK+pg oQU4dlnCs+/1F6KiTJsIm0oy4MwcELuXdR5QjQSorkU1CYQfJQKn1qQhBvflPSOT yy1VZxDfQVSIFXvdNvboQHtP6Zznj40C78KE/9YdujnoWwunTTAIIeN2jNZ0TLkv +acj7zcPUzlyWoYC97tXmHuS4K/43BZBHGPtvd4LZJCHxmhDrAFm5goI+WwJmc3k y29qCjS0TkSNHzULEzkX9iou6HNxVdHeCLWtB1wHknDMygZmIXYK/8CicfEoeB6Q LyRhtxdUfg28G5mS7bj4mepovQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVaXWZn bOvyog4RgpYTofVTHuTdMB8GA1UdIwQYMBaAFGSmZYFq7+1zswdQB9pTN6x97EuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdYT3pCMUFIMmxNM3JIM3NT NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLWmxnV3J2N1hPekIxQUgybE0zckgzc1M0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9aS1psZ1dydjdY T3pCMUFIMmxNM3JIM3NTNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtsXRGGxjJzmxhJ68pXPEA8rTcIznnmz08Bnej7BlzGsTHFP/iukgs h2hvEAa7k5HBBDSSOxk/UT62hfZO0g0wz4bbibuqaLlnoeyjV+kv3k2854JofNBU 55CnWaaioHVIyGewnRO2IJhcmqjniO/bYyE+oQx3WYgcXqYe8egXpDYRCdDVDIhP s+vAIeAyL2H8dTBHKAqyf+Tb+FyjBdwJxcdOqAA9Qb501kxEtVXBHS8Bnoaxu0Iq mDAPSJNVxVUkwblL5ezQ1Z9edAMOWFJk9sS0X0czyLZMkayvQ/priYAxE/PGr+iw xL0F+FLtd/sgz9DNwIjo64XCgsExWDRl -----END CERTIFICATE-----Generated at Wed Apr 24 16:36:14 2024 by rpki-client on console-fra.rpki-client.org