$ rpki-client -vvf rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft File: 5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft (raw, json) Hash identifier: ilGSUcHPq2sPpkgYDteblZrrdUX56WDjA9Zo2eVPu8U= Subject key identifier: E1:73:19:1E:B3:7B:CD:6B:CA:4E:B1:BC:83:E2:6B:D7:56:E2:5C:E2 Authority key identifier: E5:95:BC:B7:BF:E3:C8:67:2A:82:82:1C:C9:36:BC:8E:C3:92:03:69 Certificate issuer: /CN=A9127B77/serialNumber=E595BCB7BFE3C8672A82821CC936BC8EC3920369 Certificate serial: 3429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft Manifest number: 3429 Signing time: Sun 24 Nov 2024 15:10:09 +0000 Manifest this update: Sun 24 Nov 2024 15:10:08 +0000 Manifest next update: Sun 01 Dec 2024 15:10:08 +0000 Files and hashes: 1: 5ZW8t7_jyGcqgoIcyTa8jsOSA2k.crl (hash: l/Ckd1NR/T2hMfF+ZSq0+muUtRRXg6U7Fj+CAAO+12A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.crl rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13353 (0x3429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127B77/serialNumber=E595BCB7BFE3C8672A82821CC936BC8EC3920369 Validity Not Before: Nov 24 15:10:08 2024 GMT Not After : Dec 1 15:10:08 2024 GMT Subject: CN=674341d0-d6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c5:fb:f1:be:35:88:c6:f0:1f:e5:20:21:6c: 87:db:0a:4f:8b:24:8a:9d:09:69:a0:c8:5e:53:60: 2e:97:b9:a8:d2:d9:be:0a:71:70:a6:29:27:f0:7f: fb:24:41:77:05:cb:b6:54:e7:a7:e6:45:a4:13:08: 25:2d:48:2b:91:d9:fb:d4:02:18:a8:fb:b0:23:80: 04:6c:16:3a:81:66:41:e2:a4:c3:87:2f:cd:21:3a: 34:74:24:ef:e6:bb:96:92:0c:63:44:2b:13:97:51: f0:d1:57:f7:e4:e2:f4:08:bf:ef:f4:11:b1:c1:0f: 3b:12:cf:35:7f:d7:07:8e:0a:b7:30:32:19:67:5a: 8d:dd:5b:63:f2:3b:e7:51:e1:aa:d7:6c:e2:4f:8e: 09:19:50:38:3a:e1:47:c2:81:bf:6f:15:0c:84:6b: 34:6a:7c:31:4e:e6:ae:a0:a5:c2:a9:a8:2d:95:c4: fc:9b:0d:15:03:59:01:61:ef:1c:ac:7d:42:3c:af: b2:ac:dd:39:6b:f8:85:53:25:b9:e5:23:e9:03:e5: f4:1a:7e:16:1b:a5:6b:51:1d:0f:9c:14:89:62:50: d0:57:dc:f0:b7:8e:63:09:96:52:a7:d9:39:58:a9: 1c:5f:f4:4e:61:58:ed:26:18:3b:65:fb:e0:98:ee: 2b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:73:19:1E:B3:7B:CD:6B:CA:4E:B1:BC:83:E2:6B:D7:56:E2:5C:E2 X509v3 Authority Key Identifier: keyid:E5:95:BC:B7:BF:E3:C8:67:2A:82:82:1C:C9:36:BC:8E:C3:92:03:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127B77/5898A56C1DA611E29785999D08B02CD2/5ZW8t7_jyGcqgoIcyTa8jsOSA2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:91:f3:14:df:30:8f:64:50:ae:57:92:f0:b0:9d:6c:95:44: ca:f8:d1:4e:e9:22:fe:ae:40:8f:06:15:ef:ac:a3:77:82:aa: 20:ce:62:8d:61:6b:61:17:ac:8c:ed:4d:69:8a:5a:16:50:c4: fc:de:33:22:43:53:3e:24:7c:c0:88:90:47:15:a5:f4:ce:95: 5f:ea:cc:7a:1f:bc:99:9e:b5:ae:48:7a:e4:86:c1:ca:a6:4d: 27:b8:b7:aa:ba:55:4e:d6:02:64:25:27:37:b5:49:7c:4f:c2: bc:a8:d7:0b:72:e7:44:b8:17:88:aa:90:dc:65:94:e9:06:88: 4a:f2:0c:30:51:56:bf:cd:1d:35:41:82:33:8c:0f:08:32:a5: ba:f9:b2:92:44:77:30:db:25:cd:98:4f:35:57:de:40:2b:83: 12:0d:88:7d:14:6a:fd:fc:39:11:0c:7e:0b:54:e8:c2:24:af: 49:e0:ab:d5:3b:e1:ec:8a:f4:a7:d3:2d:1b:23:32:42:4e:9d: 0f:f8:92:97:5b:87:7a:b2:98:03:4f:3c:15:48:7c:d9:72:b6: 7a:58:26:e8:ee:52:d3:a8:b5:95:45:46:b9:53:ba:21:bb:f1: 86:59:8c:6c:d9:31:b0:82:1c:d5:9b:6d:45:28:51:d0:cf:ba: 72:fe:bd:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdCNzcxMTAvBgNVBAUTKEU1OTVCQ0I3QkZFM0M4NjcyQTgyODIxQ0M5MzZCQzhF QzM5MjAzNjkwHhcNMjQxMTI0MTUxMDA4WhcNMjQxMjAxMTUxMDA4WjAYMRYwFAYD VQQDEw02NzQzNDFkMC1kNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycX78b41iMbwH+UgIWyH2wpPiySKnQlpoMheU2Aul7mo0tm+CnFwpikn8H/7 JEF3Bcu2VOen5kWkEwglLUgrkdn71AIYqPuwI4AEbBY6gWZB4qTDhy/NITo0dCTv 5ruWkgxjRCsTl1Hw0Vf35OL0CL/v9BGxwQ87Es81f9cHjgq3MDIZZ1qN3Vtj8jvn UeGq12ziT44JGVA4OuFHwoG/bxUMhGs0anwxTuauoKXCqagtlcT8mw0VA1kBYe8c rH1CPK+yrN05a/iFUyW55SPpA+X0Gn4WG6VrUR0PnBSJYlDQV9zwt45jCZZSp9k5 WKkcX/ROYVjtJhg7ZfvgmO4r2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFzGR6z e81ryk6xvIPia9dW4lziMB8GA1UdIwQYMBaAFOWVvLe/48hnKoKCHMk2vI7DkgNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0I3Ny81ODk4QTU2QzFE QTYxMUUyOTc4NTk5OUQwOEIwMkNEMi81Wlc4dDdfanlHY3Fnb0ljeVRhOGpzT1NB MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVaVzh0N19qeUdjcWdvSWN5VGE4anNPU0Eyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0I3Ny81ODk4QTU2QzFEQTYxMUUyOTc4NTk5OUQwOEIwMkNEMi81Wlc4dDdfanlH Y3Fnb0ljeVRhOGpzT1NBMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQkfMU3zCPZFCuV5LwsJ1slUTK+NFO6SL+rkCPBhXvrKN3gqogzmKN YWthF6yM7U1piloWUMT83jMiQ1M+JHzAiJBHFaX0zpVf6sx6H7yZnrWuSHrkhsHK pk0nuLequlVO1gJkJSc3tUl8T8K8qNcLcudEuBeIqpDcZZTpBohK8gwwUVa/zR01 QYIzjA8IMqW6+bKSRHcw2yXNmE81V95AK4MSDYh9FGr9/DkRDH4LVOjCJK9J4KvV O+HsivSn0y0bIzJCTp0P+JKXW4d6spgDTzwVSHzZcrZ6WCbo7lLTqLWVRUa5U7oh u/GGWYxs2TGwghzVm21FKFHQz7py/r0d -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:05 2024 by rpki-client on console-ams.rpki-client.org