$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: VHlnFnwuitg2v9vyDYajg2CRaw1e3Qe+AX9ficb+Nog= Subject key identifier: 55:1C:6A:BE:F5:43:67:3E:47:5F:3A:52:8D:7C:AE:B7:87:F2:B5:EA Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 107D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 1062 Signing time: Sat 04 May 2024 18:06:10 +0000 Manifest this update: Sat 04 May 2024 18:06:09 +0000 Manifest next update: Sat 11 May 2024 18:06:09 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: zu8Nn+Ygpo8pYRSza5EkP7wo1W9HI7Zo7T/swpIE7iM=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: f1Axpq+Y9qp0ZeZKbPlrZpgSxrjbARoaWRKQTgoHG74=) 3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: Es9AKZiU8brb3GnSF7C7yqjk6OwYTW61+uidALQGL7g=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: MeknSXi6oQaKYDd3WwvfqyiM9CHRmo26fLY2uU/axvE=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: nlVHEDuSU/mAswQSloG1200oxpfI5TuHaS9wuRrpi9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4221 (0x107d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: May 4 18:06:09 2024 GMT Not After : May 11 18:06:09 2024 GMT Subject: CN=66367911-5e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:92:a1:62:2a:d0:26:99:c0:95:5d:9d:ac:78: 61:18:6d:e2:88:7b:cf:37:cc:8b:c2:f8:23:ac:4b: 94:ef:b0:06:69:74:5a:73:65:49:c2:50:a5:3c:32: 81:e8:9c:7a:ae:60:40:d5:93:7e:78:e8:0c:d8:c3: 08:e2:9a:c7:d1:fa:4a:a5:98:05:ce:6d:41:28:22: 11:c7:1d:7d:cb:6a:64:e6:dd:bc:ca:0b:5a:6e:e0: 11:b0:70:d5:32:6d:1a:ea:cd:ae:85:6d:c5:b8:08: 4f:45:31:66:1a:50:29:8b:3a:7c:63:e7:18:dd:29: 46:ee:eb:75:87:44:34:88:cb:0e:79:84:61:99:3f: 2a:5c:28:e1:ed:e8:a9:4b:58:37:d7:43:1e:e8:a2: a1:86:ba:ac:36:07:33:e8:af:f3:37:05:79:9e:ff: 2d:ae:a7:82:40:46:ac:08:a0:f5:3b:75:6d:5e:5a: f4:cd:39:a5:8d:66:48:99:95:ec:7a:b2:34:12:8a: c2:17:8b:03:d3:30:4b:e9:df:17:ac:e8:3e:31:86: b1:3b:85:c3:70:86:a5:28:ff:64:7f:08:a2:20:df: 1d:d2:53:57:db:57:82:b2:b7:c6:e5:96:14:aa:a6: 05:5c:62:7c:66:6e:24:f6:51:9c:90:32:7c:c7:f6: 42:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1C:6A:BE:F5:43:67:3E:47:5F:3A:52:8D:7C:AE:B7:87:F2:B5:EA X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:55:79:d6:2a:5d:89:7c:a0:37:bc:c0:05:6f:cd:4f:01:11: 95:21:19:49:ae:60:b4:78:3a:9c:54:70:af:d9:64:21:02:f0: 7a:f2:2a:fa:26:0c:d9:c7:e5:d9:01:dd:d6:40:fd:f4:24:54: b3:2c:0c:74:b4:70:24:1d:84:da:45:4f:98:05:9c:5e:b5:c8: 31:99:79:29:1e:f6:3c:f0:05:00:46:b9:04:da:11:ce:ff:45: 88:c5:bd:91:f4:f9:ed:5a:c4:db:c4:05:4b:31:af:a4:62:8c: 49:1c:04:0e:87:50:d4:bf:f5:17:9d:5e:8a:4a:3a:93:48:08: 19:ee:54:ae:bc:e9:ee:b9:5b:2e:ba:c6:d9:d4:ae:c7:fc:0c: 38:08:9c:fb:f4:91:4f:93:f3:be:b2:d0:1c:50:ce:58:6d:dd: b0:ed:54:64:2f:6b:ff:a4:dc:e4:ca:e8:18:1e:9b:70:57:bc: 44:3c:9e:97:b7:5d:bc:1d:ef:78:ee:63:bd:6c:40:30:d6:b7: dc:29:4b:43:7a:b2:6d:05:80:8d:44:7d:62:3b:a1:11:2f:2d: 75:d1:42:00:cd:4d:fe:bb:cd:17:4e:be:66:63:2d:61:34:98: 94:7c:e6:b8:44:d2:53:31:eb:b2:8b:e1:62:05:2b:ce:0d:80: e7:05:8d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjQwNTA0MTgwNjA5WhcNMjQwNTExMTgwNjA5WjAYMRYwFAYD VQQDEw02NjM2NzkxMS01ZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZKhYirQJpnAlV2drHhhGG3iiHvPN8yLwvgjrEuU77AGaXRac2VJwlClPDKB 6Jx6rmBA1ZN+eOgM2MMI4prH0fpKpZgFzm1BKCIRxx19y2pk5t28ygtabuARsHDV Mm0a6s2uhW3FuAhPRTFmGlApizp8Y+cY3SlG7ut1h0Q0iMsOeYRhmT8qXCjh7eip S1g310Me6KKhhrqsNgcz6K/zNwV5nv8trqeCQEasCKD1O3VtXlr0zTmljWZImZXs erI0EorCF4sD0zBL6d8XrOg+MYaxO4XDcIalKP9kfwiiIN8d0lNX21eCsrfG5ZYU qqYFXGJ8Zm4k9lGckDJ8x/ZCGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUcar71 Q2c+R186Uo18rreH8rXqMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNVXnWKl2JfKA3vMAFb81PARGVIRlJrmC0eDqcVHCv2WQhAvB68ir6 JgzZx+XZAd3WQP30JFSzLAx0tHAkHYTaRU+YBZxetcgxmXkpHvY88AUARrkE2hHO /0WIxb2R9PntWsTbxAVLMa+kYoxJHAQOh1DUv/UXnV6KSjqTSAgZ7lSuvOnuuVsu usbZ1K7H/Aw4CJz79JFPk/O+stAcUM5Ybd2w7VRkL2v/pNzkyugYHptwV7xEPJ6X t128He947mO9bEAw1rfcKUtDerJtBYCNRH1iO6ERLy110UIAzU3+u80XTr5mYy1h NJiUfOa4RNJTMeuyi+FiBSvODYDnBY0V -----END CERTIFICATE-----Generated at Sat May 4 19:58:46 2024 by rpki-client on console-ams.rpki-client.org