$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft File: zdfMWZTjQE5sI66UKlkhi1fFwTE.mft (raw, json) Hash identifier: DXOQ8fh/69mOxyvcCx23AcfvD24vZFU1GdC0T8ZMelY= Subject key identifier: CB:4A:A8:5D:AE:CB:A2:89:E1:90:75:12:4B:3E:62:FD:1A:4B:05:D7 Authority key identifier: CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 Certificate issuer: /CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft Manifest number: B2 Signing time: Sun 05 May 2024 06:39:15 +0000 Manifest this update: Sun 05 May 2024 06:39:14 +0000 Manifest next update: Sun 12 May 2024 06:39:14 +0000 Files and hashes: 1: zdfMWZTjQE5sI66UKlkhi1fFwTE.crl (hash: DFB4MCLv9VA1DePOpCnwGEetAu51oQRxRecYvwNfUgc=) 2: 1D45B78003C211EEB2272068C4F9AE02.roa (hash: MhnlI9exW+RMMsOOeA0js7t38sgb1HY334sjZbPPcIs=) 3: 1E7F6B9603C211EEB2272068C4F9AE02.roa (hash: /NkHsi+HD36xg3F3z+E/an+GAt3cjkWAYoYG1NwlCDQ=) 4: 1DDE652A03C211EEB2272068C4F9AE02.roa (hash: bHJCi6Fx94Tr82fyaUmP4Kxgcl4MBtO25etlERplKes=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA6A1/serialNumber=CDD7CC5994E3404E6C23AE942A59218B57C5C131 Validity Not Before: May 5 06:39:14 2024 GMT Not After : May 12 06:39:14 2024 GMT Subject: CN=66372993-7a5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e8:a8:35:ec:38:9d:ea:34:47:1c:3a:09:67: 65:5c:6d:28:39:1e:4c:d5:d1:f4:6e:95:14:83:f6: b5:3a:f5:20:c3:c4:76:7d:e9:73:07:b5:fc:44:1d: ab:8d:42:46:ad:91:2c:5e:ab:94:4e:e8:01:5c:6f: f0:a3:98:f1:57:b7:a8:52:9d:52:de:28:63:de:8f: 1b:26:65:bb:bd:14:75:e9:dc:6d:26:fd:41:8e:3f: b7:d1:c2:8d:97:0c:ff:1f:96:06:49:d9:2c:25:96: 18:0b:05:00:24:bb:e8:33:2f:da:7c:63:3f:be:ef: fc:3b:79:f3:74:1d:14:0a:56:49:26:b1:f2:b1:40: 1a:1e:40:d8:5d:3b:f9:ce:d1:c7:88:cb:d5:1f:07: a8:28:db:37:e1:5d:41:6a:5d:89:a2:42:60:e0:be: d1:3d:7f:d8:4b:97:c9:97:7a:cb:c6:cd:c0:92:c8: 00:7a:bb:97:2b:25:98:ad:aa:38:6d:9d:59:f1:ad: 37:e3:dc:c6:28:cf:6c:97:72:2a:6d:04:86:f9:a6: df:8f:2f:7c:9a:be:40:57:bb:60:b8:1d:09:35:0d: 3d:4e:56:66:11:14:87:3c:5f:10:5a:10:80:5b:4c: 2d:c0:61:2f:15:54:7f:bc:d6:8c:0a:70:2d:a4:9c: 60:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:4A:A8:5D:AE:CB:A2:89:E1:90:75:12:4B:3E:62:FD:1A:4B:05:D7 X509v3 Authority Key Identifier: keyid:CD:D7:CC:59:94:E3:40:4E:6C:23:AE:94:2A:59:21:8B:57:C5:C1:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zdfMWZTjQE5sI66UKlkhi1fFwTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA6A1/315B7E08FF7B11EDA62DF10EC4F9AE02/zdfMWZTjQE5sI66UKlkhi1fFwTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5a:d3:ee:28:f8:78:e8:51:1b:5d:75:32:b6:66:0e:00:5d: c4:22:d1:05:6c:f4:51:43:1c:22:6b:5e:c7:ea:9b:9e:1b:2c: 6e:c7:71:61:75:2f:65:66:d6:03:1f:d6:03:80:1e:4e:7f:4d: 41:56:c3:a1:d0:f9:16:3e:56:f7:ed:85:e7:91:51:31:f7:8f: 76:9f:67:07:56:84:2a:4d:c9:79:a4:39:4b:e8:30:8d:01:73: e3:c5:22:2d:a6:5e:b4:6d:bf:30:98:00:15:24:4e:6c:1b:ee: 40:07:ff:5f:31:24:96:16:bc:db:e0:95:6f:f4:15:a6:61:3b: d3:37:90:ea:93:88:d5:8a:72:c5:8b:c7:f6:c9:9d:0e:57:f3: 1b:16:3b:1c:60:ce:4e:7b:8b:dc:60:d5:46:ab:5e:6b:b8:e5: 23:8a:12:99:29:a5:e2:ba:93:b2:eb:6a:3e:5f:e0:a8:fc:cb: 67:06:09:ba:aa:1c:d1:5c:77:fa:2b:a4:d0:64:04:c9:98:e7: 97:0e:4b:a1:9c:59:35:fc:0f:98:91:34:68:13:e0:e9:8f:08: 20:ce:ab:a5:0d:bd:91:fb:f9:b1:e5:ea:c0:fe:14:92:30:6d: 05:70:a6:50:e5:62:c5:78:5a:35:f5:be:d5:fc:b0:af:8f:c7: 6e:c2:60:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2QTExMTAvBgNVBAUTKENERDdDQzU5OTRFMzQwNEU2QzIzQUU5NDJBNTkyMThC NTdDNUMxMzEwHhcNMjQwNTA1MDYzOTE0WhcNMjQwNTEyMDYzOTE0WjAYMRYwFAYD VQQDEw02NjM3Mjk5My03YTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoeioNew4neo0Rxw6CWdlXG0oOR5M1dH0bpUUg/a1OvUgw8R2felzB7X8RB2r jUJGrZEsXquUTugBXG/wo5jxV7eoUp1S3ihj3o8bJmW7vRR16dxtJv1Bjj+30cKN lwz/H5YGSdksJZYYCwUAJLvoMy/afGM/vu/8O3nzdB0UClZJJrHysUAaHkDYXTv5 ztHHiMvVHweoKNs34V1Bal2JokJg4L7RPX/YS5fJl3rLxs3AksgAeruXKyWYrao4 bZ1Z8a0349zGKM9sl3IqbQSG+abfjy98mr5AV7tguB0JNQ09TlZmERSHPF8QWhCA W0wtwGEvFVR/vNaMCnAtpJxgpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtKqF2u y6KJ4ZB1Eks+Yv0aSwXXMB8GA1UdIwQYMBaAFM3XzFmU40BObCOulCpZIYtXxcEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTZBMS8zMTVCN0UwOEZG N0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFFNXNJNjZVS2xraGkxZkZ3 VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pkZk1XWlRqUUU1c0k2NlVLbGtoaTFmRndURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTZBMS8zMTVCN0UwOEZGN0IxMUVEQTYyREYxMEVDNEY5QUUwMi96ZGZNV1pUalFF NXNJNjZVS2xraGkxZkZ3VEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBWtPuKPh46FEbXXUytmYOAF3EItEFbPRRQxwia17H6pueGyxux3Fh dS9lZtYDH9YDgB5Of01BVsOh0PkWPlb37YXnkVEx9492n2cHVoQqTcl5pDlL6DCN AXPjxSItpl60bb8wmAAVJE5sG+5AB/9fMSSWFrzb4JVv9BWmYTvTN5Dqk4jVinLF i8f2yZ0OV/MbFjscYM5Oe4vcYNVGq15ruOUjihKZKaXiupOy62o+X+Co/MtnBgm6 qhzRXHf6K6TQZATJmOeXDkuhnFk1/A+YkTRoE+DpjwggzqulDb2R+/mx5erA/hSS MG0FcKZQ5WLFeFo19b7V/LCvj8duwmCK -----END CERTIFICATE-----Generated at Sun May 5 08:39:15 2024 by rpki-client on console-fra.rpki-client.org