$ rpki-client -vvf rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft File: CZLDze-CUAZzzNehdgX9M9hk_wE.mft (raw, json) Hash identifier: fcjBivzVEZtqrRAPsmVIaxyfBBEW4+CYd0ObHWnQzpg= Subject key identifier: B2:E8:7F:43:16:96:54:BB:95:32:0B:95:FF:2F:32:6F:ED:DA:AB:A9 Authority key identifier: 09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 Certificate issuer: /CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Certificate serial: 073B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft Manifest number: 1350 Signing time: Fri 22 Nov 2024 18:13:18 +0000 Manifest this update: Fri 22 Nov 2024 18:13:18 +0000 Manifest next update: Fri 29 Nov 2024 18:13:18 +0000 Files and hashes: 1: CZLDze-CUAZzzNehdgX9M9hk_wE.crl (hash: dsqNjHY1Hl54aBCfxBaO/g1mGZvWHuZ8aKP9i2/3HY8=) 2: AB3040224C0211EF84B00D1EC4F9AE02.roa (hash: noVdM6ngikXxZBW4pTHIBoQSLKize1jndamJhpeixzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:13:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1851 (0x73b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112804/serialNumber=0992C3CDEF82500673CCD7A17605FD33D864FF01 Validity Not Before: Nov 22 18:13:18 2024 GMT Not After : Nov 29 18:13:18 2024 GMT Subject: CN=6740c9be-a85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ac:a4:a4:1a:62:47:ea:63:f8:ed:f2:6d:d8: 5c:e0:c9:ec:38:8d:26:10:d7:e5:71:e7:5d:7a:cc: 96:af:a7:06:6f:0b:7c:a1:75:78:97:71:d7:b9:ff: 25:ac:34:3c:40:fa:55:78:d9:84:53:3d:e9:4a:f0: 4e:34:09:81:b9:0c:62:5b:34:50:c7:fc:ef:aa:7d: e9:f6:1d:3a:7a:73:93:3a:47:f9:5d:89:59:77:ab: 7b:0a:e2:0f:7f:9d:fa:a8:5b:5b:0f:c2:8b:8a:14: 75:bb:e2:59:f2:04:b3:8b:55:d2:17:02:b7:3d:d7: bb:b9:b0:fb:bf:5c:3a:e7:5c:73:03:ad:be:fb:c0: 17:16:a4:97:ee:b0:64:0e:d2:bf:fd:78:81:7e:43: 55:96:f5:ef:99:c3:32:20:5a:44:1f:fe:22:96:2c: 97:1b:dd:d6:dc:5c:30:33:5c:0c:6c:65:57:76:eb: ec:e3:1d:aa:65:8e:92:90:e2:ca:c4:25:f8:8a:0c: 25:e9:f7:81:37:84:6d:15:0b:dc:34:e5:e2:42:e7: da:82:af:96:8f:bf:48:08:48:1b:52:2e:dd:4f:1d: 69:f6:aa:cd:34:04:c2:0b:2d:7e:87:4a:62:56:3d: 92:33:42:6d:c2:0f:1c:54:ad:8d:92:39:94:c5:38: 6d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:E8:7F:43:16:96:54:BB:95:32:0B:95:FF:2F:32:6F:ED:DA:AB:A9 X509v3 Authority Key Identifier: keyid:09:92:C3:CD:EF:82:50:06:73:CC:D7:A1:76:05:FD:33:D8:64:FF:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZLDze-CUAZzzNehdgX9M9hk_wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112804/36ECDA54F4FA11E99918433DC4F9AE02/CZLDze-CUAZzzNehdgX9M9hk_wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:3b:d3:f8:94:61:c9:83:e3:ac:24:3e:4f:db:48:d1:e0:3d: 81:45:1a:8f:97:b3:8c:11:8e:0b:53:0d:6b:14:fc:02:07:6c: d5:b4:09:0f:af:05:ec:5a:91:c1:e1:5d:17:79:0e:98:a9:db: 46:75:a7:0c:76:0a:af:cd:b3:cd:e9:80:45:29:18:28:a6:bf: 31:8d:c4:e1:40:52:ed:26:d3:9b:13:40:3b:f1:8d:a4:77:7c: a2:27:ef:0f:95:ab:db:ef:1d:c8:13:6d:a1:33:08:f3:1a:87: c7:e1:95:26:d6:35:13:74:15:53:cd:b1:a1:e3:f2:9d:86:b6: c6:51:b4:63:61:f3:8a:27:9f:3c:08:5c:51:27:f4:d9:3c:3b: 77:7c:f4:d1:72:0f:3f:78:a9:dc:a1:25:75:90:b9:ac:a0:98: d4:4c:84:ca:71:0d:f2:8a:c5:93:e1:78:cf:7d:a2:ee:aa:2a: ff:dc:41:7e:4d:7d:b1:eb:09:6d:2a:86:d0:d1:87:a2:0d:9c: ef:64:69:05:53:65:02:dc:9d:7b:f0:e9:d6:dc:46:c1:4f:e2: 5b:f0:ab:1e:6f:d8:46:e2:3f:cc:e7:1b:13:a6:c9:f3:a6:c4: 95:4d:b5:69:9e:2a:c1:d6:b3:61:2d:25:ed:8e:b1:a6:a2:9a: a8:4c:68:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4MDQxMTAvBgNVBAUTKDA5OTJDM0NERUY4MjUwMDY3M0NDRDdBMTc2MDVGRDMz RDg2NEZGMDEwHhcNMjQxMTIyMTgxMzE4WhcNMjQxMTI5MTgxMzE4WjAYMRYwFAYD VQQDEw02NzQwYzliZS1hODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16ykpBpiR+pj+O3ybdhc4MnsOI0mENflceddesyWr6cGbwt8oXV4l3HXuf8l rDQ8QPpVeNmEUz3pSvBONAmBuQxiWzRQx/zvqn3p9h06enOTOkf5XYlZd6t7CuIP f536qFtbD8KLihR1u+JZ8gSzi1XSFwK3Pde7ubD7v1w651xzA62++8AXFqSX7rBk DtK//XiBfkNVlvXvmcMyIFpEH/4iliyXG93W3FwwM1wMbGVXduvs4x2qZY6SkOLK xCX4igwl6feBN4RtFQvcNOXiQufagq+Wj79ICEgbUi7dTx1p9qrNNATCCy1+h0pi Vj2SM0Jtwg8cVK2NkjmUxThtqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLof0MW llS7lTILlf8vMm/t2qupMB8GA1UdIwQYMBaAFAmSw83vglAGc8zXoXYF/TPYZP8B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjgwNC8zNkVDREE1NEY0 RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VBWnp6TmVoZGdYOU05aGtf d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaTER6ZS1DVUFaenpOZWhkZ1g5TTloa193RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjgwNC8zNkVDREE1NEY0RkExMUU5OTkxODQzM0RDNEY5QUUwMi9DWkxEemUtQ1VB Wnp6TmVoZGdYOU05aGtfd0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoO9P4lGHJg+OsJD5P20jR4D2BRRqPl7OMEY4LUw1rFPwCB2zVtAkP rwXsWpHB4V0XeQ6YqdtGdacMdgqvzbPN6YBFKRgopr8xjcThQFLtJtObE0A78Y2k d3yiJ+8Plavb7x3IE22hMwjzGofH4ZUm1jUTdBVTzbGh4/KdhrbGUbRjYfOKJ588 CFxRJ/TZPDt3fPTRcg8/eKncoSV1kLmsoJjUTITKcQ3yisWT4XjPfaLuqir/3EF+ TX2x6wltKobQ0YeiDZzvZGkFU2UC3J178OnW3EbBT+Jb8Kseb9hG4j/M5xsTpsnz psSVTbVpnirB1rNhLSXtjrGmopqoTGgT -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:55 2024 by rpki-client on console-ams.rpki-client.org