$ rpki-client -vvf rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft File: 2MZzCV6Cqbfn381GWA94MajRiso.mft (raw, json) Hash identifier: AOx73Z3PmUl6GWy7lAYWC9rEZb7ziWGVPvzA5XGmafM= Subject key identifier: F0:5F:15:53:25:1C:C9:FA:33:9B:3F:68:CD:41:5B:EB:8B:14:06:4C Authority key identifier: D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA Certificate issuer: /CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Certificate serial: 16D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft Manifest number: 16BB Signing time: Fri 22 Nov 2024 16:41:04 +0000 Manifest this update: Fri 22 Nov 2024 16:41:04 +0000 Manifest next update: Fri 29 Nov 2024 16:41:04 +0000 Files and hashes: 1: 2MZzCV6Cqbfn381GWA94MajRiso.crl (hash: y4800bBQ2zO5mPhB9Y8xxfXc03XCyaXQ1t9+jVntbIo=) 2: D4A7497E6E6B11EF9FC61C6AC4F9AE02.roa (hash: 1uhD7+JbuBl90uKrTPBRfoJO19VNOC0xi6lVI/rkLgc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5845 (0x16d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911862D/serialNumber=D8C673095E82A9B7E7DFCD46580F7831A8D18ACA Validity Not Before: Nov 22 16:41:04 2024 GMT Not After : Nov 29 16:41:04 2024 GMT Subject: CN=6740b420-d576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:03:d5:b0:8d:40:48:d5:f7:e2:73:d6:94:c1: 26:27:f5:b5:bb:cd:f2:c8:57:be:c1:47:c8:b8:57: b8:04:f8:ed:5e:b5:c3:e5:6f:1d:05:66:de:6e:d8: ba:b0:4a:66:8b:14:ac:b7:40:7e:7a:55:95:69:a9: 08:82:83:d4:0d:3c:5b:d6:14:bb:f0:5b:36:d8:2c: cf:b9:f4:55:d3:fc:61:a1:e8:56:ac:60:5b:a1:75: ca:4e:aa:e6:f6:0d:e7:79:eb:4b:ce:6e:cf:6f:2d: 2e:52:11:93:fd:32:df:62:f5:86:12:e0:7e:be:bd: 22:dd:63:c3:13:3f:6f:db:1a:7c:69:45:03:1e:19: 76:16:2d:98:3c:78:ca:9a:1a:e0:aa:ab:1b:12:a9: b7:ae:32:f1:4c:00:99:82:48:a8:f3:80:a2:af:95: 9e:5e:76:cd:23:50:d3:1b:77:e0:60:3a:04:1e:65: d9:42:79:86:0e:83:b7:f3:72:eb:0b:21:48:84:ab: 82:71:f2:3e:50:e4:03:87:01:d7:09:1b:9c:3d:4c: c9:f9:53:52:13:43:af:4e:ad:fa:60:cd:96:50:02: 1c:04:80:99:de:bb:16:9a:b1:68:d0:0b:50:17:2f: e2:04:71:4e:57:01:0e:d4:ce:45:10:d8:eb:e0:c5: 2a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5F:15:53:25:1C:C9:FA:33:9B:3F:68:CD:41:5B:EB:8B:14:06:4C X509v3 Authority Key Identifier: keyid:D8:C6:73:09:5E:82:A9:B7:E7:DF:CD:46:58:0F:78:31:A8:D1:8A:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2MZzCV6Cqbfn381GWA94MajRiso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911862D/32879D3AE8BA11E78A6A7042C4F9AE02/2MZzCV6Cqbfn381GWA94MajRiso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:0f:fc:b2:08:1c:f2:1f:18:1c:a3:c3:7c:57:71:1c:24:9f: 8e:58:c2:94:14:a4:ca:37:8b:df:16:3d:23:33:2c:63:1a:3b: 09:d1:18:70:e9:01:84:78:f2:1c:80:e6:7c:1d:05:5f:57:e2: 26:45:1a:cb:4f:b3:de:24:c5:63:aa:2d:3f:c6:ac:78:2c:3a: 99:f6:fd:8a:0c:60:d0:ec:8c:b2:47:50:21:fa:e8:c1:df:99: 96:7f:b3:1b:bb:93:01:14:93:b9:1a:7b:f1:b9:ae:57:25:97: e7:7e:4c:1e:98:99:66:0c:71:17:bc:14:4e:f9:4b:50:d4:19: b7:cd:74:67:0b:f0:e3:a6:5c:a0:ac:e5:78:c6:a9:2b:95:56: 4a:2f:09:79:f6:48:c2:49:f2:be:b4:42:35:a2:0b:1e:08:fc: ba:62:47:d7:4f:95:4c:2e:c1:f5:eb:7c:ae:53:f0:19:18:bd: 99:b5:3e:c9:78:89:a9:59:74:ef:a1:5c:59:48:a8:b7:e3:85: 8c:ef:ef:e4:ef:06:a2:c5:c0:34:18:de:d8:e5:b3:a3:db:59: 7d:b7:f8:16:0a:ad:8f:98:91:c8:b1:75:36:ba:8f:89:52:8e: b7:78:46:d1:d6:f4:07:e8:1c:66:c7:c3:0e:fb:12:84:db:c7: a8:9a:76:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2MkQxMTAvBgNVBAUTKEQ4QzY3MzA5NUU4MkE5QjdFN0RGQ0Q0NjU4MEY3ODMx QThEMThBQ0EwHhcNMjQxMTIyMTY0MTA0WhcNMjQxMTI5MTY0MTA0WjAYMRYwFAYD VQQDEw02NzQwYjQyMC1kNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQPVsI1ASNX34nPWlMEmJ/W1u83yyFe+wUfIuFe4BPjtXrXD5W8dBWbebti6 sEpmixSst0B+elWVaakIgoPUDTxb1hS78Fs22CzPufRV0/xhoehWrGBboXXKTqrm 9g3neetLzm7Pby0uUhGT/TLfYvWGEuB+vr0i3WPDEz9v2xp8aUUDHhl2Fi2YPHjK mhrgqqsbEqm3rjLxTACZgkio84Cir5WeXnbNI1DTG3fgYDoEHmXZQnmGDoO383Lr CyFIhKuCcfI+UOQDhwHXCRucPUzJ+VNSE0OvTq36YM2WUAIcBICZ3rsWmrFo0AtQ Fy/iBHFOVwEO1M5FENjr4MUqDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBfFVMl HMn6M5s/aM1BW+uLFAZMMB8GA1UdIwQYMBaAFNjGcwlegqm359/NRlgPeDGo0YrK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODYyRC8zMjg3OUQzQUU4 QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3FiZm4zODFHV0E5NE1halJp c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJNWnpDVjZDcWJmbjM4MUdXQTk0TWFqUmlzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODYyRC8zMjg3OUQzQUU4QkExMUU3OEE2QTcwNDJDNEY5QUUwMi8yTVp6Q1Y2Q3Fi Zm4zODFHV0E5NE1halJpc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1D/yyCBzyHxgco8N8V3EcJJ+OWMKUFKTKN4vfFj0jMyxjGjsJ0Rhw 6QGEePIcgOZ8HQVfV+ImRRrLT7PeJMVjqi0/xqx4LDqZ9v2KDGDQ7IyyR1Ah+ujB 35mWf7Mbu5MBFJO5Gnvxua5XJZfnfkwemJlmDHEXvBRO+UtQ1Bm3zXRnC/Djplyg rOV4xqkrlVZKLwl59kjCSfK+tEI1ogseCPy6YkfXT5VMLsH163yuU/AZGL2ZtT7J eImpWXTvoVxZSKi344WM7+/k7waixcA0GN7Y5bOj21l9t/gWCq2PmJHIsXU2uo+J Uo63eEbR1vQH6Bxmx8MO+xKE28eomnaj -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:37 2024 by rpki-client on console-fra.rpki-client.org