$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: 3wNkykcW8QKdK1HpNUcNfqfdHHcYZoQXFNd6YInp+p4= Subject key identifier: E8:25:60:24:D6:82:F8:05:56:11:A4:65:75:D3:26:F0:BB:EE:5A:2F Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0BB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0BB4 Signing time: Fri 26 Apr 2024 19:09:33 +0000 Manifest this update: Fri 26 Apr 2024 19:09:32 +0000 Manifest next update: Fri 03 May 2024 19:09:32 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: SD+FS7rdmLJsRLzc6yWmZxRt7j/oHV203fcduLjV8RQ=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tRW1SHxCN8QAU/mz80KqvbDC65dMejXwVIGduSjQTvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 19:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Apr 26 19:09:32 2024 GMT Not After : May 3 19:09:32 2024 GMT Subject: CN=662bfbed-a405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:19:58:d4:27:8a:48:72:cf:bb:20:a9:9c:b3: 19:ad:4a:24:ff:e1:5d:5a:12:ef:41:ae:3e:2b:e3: 6a:e7:c9:07:26:7b:f1:75:32:6d:69:39:30:53:fa: 7b:b6:05:8b:92:da:bf:90:68:52:28:c8:88:75:1b: 1d:fe:35:e4:65:fa:ca:a3:a0:fb:c3:49:ed:be:fd: b1:c1:e8:d2:29:45:b8:4a:96:f0:be:5e:08:bc:fe: 8a:85:d2:c1:04:7c:bb:e8:72:bc:84:62:94:86:29: 12:d2:43:5d:5a:1b:00:06:31:1b:c6:e4:02:99:a4: dc:63:fc:20:4b:a7:67:9f:3c:d1:eb:68:94:6c:7f: e7:06:77:95:db:3f:7e:d3:6b:43:19:d4:e3:8f:d9: 76:bb:a7:f8:9f:e4:28:9a:83:6f:ec:ef:87:e7:e0: 40:3d:8c:40:03:0a:5d:28:3b:b7:e7:b9:4d:71:5d: cc:cb:8f:35:54:ee:6d:2d:29:ce:42:f2:a4:67:2d: 25:75:d8:c9:36:be:32:d9:35:06:f0:b0:d4:30:49: 6c:cb:cb:17:ee:1a:b8:b6:90:30:46:97:97:6e:95: 18:b3:f4:a9:50:86:2b:c7:43:be:76:34:94:8c:c6: 9d:96:c8:5f:68:0c:49:39:d0:01:e4:d5:57:b2:48: dd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:25:60:24:D6:82:F8:05:56:11:A4:65:75:D3:26:F0:BB:EE:5A:2F X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:c7:1d:10:a3:48:3c:98:b4:46:6b:6a:dd:32:fe:7c:45:46: 6f:9e:a0:c8:e6:03:52:25:c0:65:1e:d2:24:2d:d2:b6:50:82: 22:88:37:d7:c7:d9:7a:e4:00:44:12:29:54:59:6b:00:e0:9d: 4f:41:49:19:5b:a5:0d:4b:22:78:0e:b9:d3:30:9a:e6:4a:b0: 43:c8:65:70:d6:bb:a0:6b:81:5c:e7:0c:3a:83:4f:fc:09:b0: d0:d4:97:fc:a4:79:5a:41:dc:2e:b5:3e:88:8b:89:43:8c:e4: a4:d7:58:88:fa:05:ce:2e:2d:25:73:f7:48:e6:8d:8a:22:bf: 9d:aa:1a:97:5d:0c:f9:44:8c:0f:fd:f4:b7:a4:36:e5:26:86: d6:ae:f2:2c:35:0c:7b:ec:f9:71:ef:dd:84:6c:36:05:f5:89: 56:36:9d:2c:e3:db:fb:21:1c:1b:c0:39:53:7b:c2:c9:60:34: fa:74:1e:53:da:90:86:bb:84:35:a2:ec:df:e3:6c:9e:a1:8b: 80:0a:2d:aa:e0:7b:64:60:e2:96:f4:6c:85:50:cc:f7:1a:51: aa:7a:ec:80:44:a4:3d:f8:44:67:d9:99:bd:d9:7c:a9:34:5c: c2:bf:18:09:89:99:4f:ee:2d:e1:75:4e:92:6b:fb:5a:7d:98: 3d:cc:62:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjQwNDI2MTkwOTMyWhcNMjQwNTAzMTkwOTMyWjAYMRYwFAYD VQQDEw02NjJiZmJlZC1hNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBlY1CeKSHLPuyCpnLMZrUok/+FdWhLvQa4+K+Nq58kHJnvxdTJtaTkwU/p7 tgWLktq/kGhSKMiIdRsd/jXkZfrKo6D7w0ntvv2xwejSKUW4Spbwvl4IvP6KhdLB BHy76HK8hGKUhikS0kNdWhsABjEbxuQCmaTcY/wgS6dnnzzR62iUbH/nBneV2z9+ 02tDGdTjj9l2u6f4n+QomoNv7O+H5+BAPYxAAwpdKDu357lNcV3My481VO5tLSnO QvKkZy0lddjJNr4y2TUG8LDUMElsy8sX7hq4tpAwRpeXbpUYs/SpUIYrx0O+djSU jMadlshfaAxJOdAB5NVXskjd+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOglYCTW gvgFVhGkZXXTJvC77lovMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSxx0Qo0g8mLRGa2rdMv58RUZvnqDI5gNSJcBlHtIkLdK2UIIiiDfX x9l65ABEEilUWWsA4J1PQUkZW6UNSyJ4DrnTMJrmSrBDyGVw1ruga4Fc5ww6g0/8 CbDQ1Jf8pHlaQdwutT6Ii4lDjOSk11iI+gXOLi0lc/dI5o2KIr+dqhqXXQz5RIwP /fS3pDblJobWrvIsNQx77Plx792EbDYF9YlWNp0s49v7IRwbwDlTe8LJYDT6dB5T 2pCGu4Q1ouzf42yeoYuACi2q4HtkYOKW9GyFUMz3GlGqeuyARKQ9+ERn2Zm92Xyp NFzCvxgJiZlP7i3hdU6Sa/tafZg9zGKY -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:52 2024 by rpki-client on console-ams.rpki-client.org