$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: y96gJCWQMJJ/PwPENkZUbDNORN+Lju5PHd7Q70nCorA= Subject key identifier: 2E:0C:AA:74:65:10:6C:09:D5:F7:97:CC:17:0A:50:3F:6C:57:C0:BF Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: A2 Signing time: Sat 23 Nov 2024 04:21:37 +0000 Manifest this update: Sat 23 Nov 2024 04:21:36 +0000 Manifest next update: Sat 30 Nov 2024 04:21:36 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: T3QftYXSAy8HrBQ+EDtMFX+igsf4VxYRcP+gCkj6fdw=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Nov 23 04:21:36 2024 GMT Not After : Nov 30 04:21:36 2024 GMT Subject: CN=67415851-642f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:a8:61:c3:6d:35:24:71:9f:2a:be:57:c0: cd:cc:fb:a2:f9:c5:c7:17:11:d8:73:28:76:de:ee: 6f:08:b2:c5:14:69:f8:cb:aa:48:a2:fc:a2:c8:1e: 39:65:d6:f7:a7:80:f0:4a:80:17:48:b0:73:58:2a: 33:a0:f4:8e:2d:8c:b1:f1:0f:94:32:90:e2:b7:92: da:7c:c8:6f:dc:03:91:ef:e9:00:c8:29:1e:9c:00: 3c:89:3c:7f:b8:15:6e:7f:7f:25:2d:72:41:2e:a5: c5:c4:54:2e:a9:0c:a1:a7:4f:f7:c0:b9:ff:f3:2e: d3:54:05:60:26:94:76:fa:67:77:f4:a3:fd:4c:1e: 18:e8:7d:4d:fd:a2:ea:dc:cf:e7:5d:42:45:8b:89: 60:49:c9:e5:f8:cd:33:b7:4c:3c:c4:7c:17:bf:13: a2:fe:a5:9e:f1:50:75:0c:ad:3a:fd:db:49:94:31: f4:10:e9:7b:64:9b:c5:2d:1c:3f:fa:ba:46:29:f2: cd:7e:3d:6b:5b:87:94:98:f8:9e:5c:b0:02:52:a3: fa:c1:b6:34:3e:73:60:59:aa:c0:37:ce:4c:39:84: 2f:e9:81:ae:0f:61:c6:3b:60:3e:57:d7:03:18:35: ec:98:19:a0:ae:75:e6:24:ab:ca:97:38:23:0b:1d: 72:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:0C:AA:74:65:10:6C:09:D5:F7:97:CC:17:0A:50:3F:6C:57:C0:BF X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:b2:48:3a:02:a2:0c:8a:ce:fe:d5:2e:3b:31:1f:d2:49:2e: e8:46:99:0b:5a:e1:78:15:3f:0c:50:48:92:09:98:2b:50:d4: 2d:65:64:49:c1:61:1c:67:df:dd:ec:c7:dd:da:da:c8:fd:c8: eb:bd:ec:73:84:39:7f:10:e7:30:e4:34:5a:d2:f8:0b:26:94: 72:df:50:1b:8b:77:a2:53:45:de:8b:bb:05:9e:41:e7:4e:5a: 16:b8:89:20:fc:7b:79:b6:a6:13:ab:67:50:8f:b0:74:63:27: e7:ac:e9:9c:99:03:f8:7d:1f:fb:a5:47:7f:67:19:c0:59:51: 5b:85:3e:3d:78:6e:bc:b3:72:d1:5f:70:cf:71:a6:89:81:06: 96:9e:ac:c2:5f:82:48:4e:b4:5f:e0:37:64:d5:b5:10:c3:58: 83:3a:ca:59:9e:b4:19:38:1b:f8:03:e2:84:24:b7:e0:13:3a: ef:c3:27:f9:34:04:f4:21:2c:07:b4:03:e7:31:d4:8e:8a:7a: d7:de:a9:06:67:f8:79:c2:36:53:29:e1:24:d6:1c:30:c1:ae: a5:43:fd:e5:50:57:38:2a:6c:16:aa:ef:7c:64:1c:08:b4:ee: 2d:88:16:3c:82:a3:48:03:8d:b2:c8:70:11:00:33:74:79:2e: ad:f5:44:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjQxMTIzMDQyMTM2WhcNMjQxMTMwMDQyMTM2WjAYMRYwFAYD VQQDEw02NzQxNTg1MS02NDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7uoYcNtNSRxnyq+V8DNzPui+cXHFxHYcyh23u5vCLLFFGn4y6pIovyiyB45 Zdb3p4DwSoAXSLBzWCozoPSOLYyx8Q+UMpDit5LafMhv3AOR7+kAyCkenAA8iTx/ uBVuf38lLXJBLqXFxFQuqQyhp0/3wLn/8y7TVAVgJpR2+md39KP9TB4Y6H1N/aLq 3M/nXUJFi4lgScnl+M0zt0w8xHwXvxOi/qWe8VB1DK06/dtJlDH0EOl7ZJvFLRw/ +rpGKfLNfj1rW4eUmPieXLACUqP6wbY0PnNgWarAN85MOYQv6YGuD2HGO2A+V9cD GDXsmBmgrnXmJKvKlzgjCx1yLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4MqnRl EGwJ1feXzBcKUD9sV8C/MB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgskg6AqIMis7+1S47MR/SSS7oRpkLWuF4FT8MUEiSCZgrUNQtZWRJ wWEcZ9/d7Mfd2trI/cjrvexzhDl/EOcw5DRa0vgLJpRy31Abi3eiU0Xei7sFnkHn TloWuIkg/Ht5tqYTq2dQj7B0YyfnrOmcmQP4fR/7pUd/ZxnAWVFbhT49eG68s3LR X3DPcaaJgQaWnqzCX4JITrRf4Ddk1bUQw1iDOspZnrQZOBv4A+KEJLfgEzrvwyf5 NAT0ISwHtAPnMdSOinrX3qkGZ/h5wjZTKeEk1hwwwa6lQ/3lUFc4KmwWqu98ZBwI tO4tiBY8gqNIA42yyHARADN0eS6t9USA -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org