$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft (raw, json) Hash identifier: ioNCeLMw7wKaZSm5NuUFJP58tt/H28umgB3UAfGUTnQ= Subject key identifier: D2:B1:34:A1:53:78:E8:3E:A3:5E:FA:31:BF:D6:76:4F:6F:88:3A:F0 Authority key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A Certificate issuer: /CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft Manifest number: 0D Signing time: Sat 23 Nov 2024 06:01:55 +0000 Manifest this update: Sat 23 Nov 2024 06:01:55 +0000 Manifest next update: Sat 30 Nov 2024 06:01:55 +0000 Files and hashes: 1: z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl (hash: PPa0LWPZg6/Nx+p269YPpYInlnNoCs3tZKi3b+a7sc8=) 2: 088C9298981611EFBE510B59C4F9AE02.roa (hash: qXlLmIEo6DdPF2wbC+hI8xTl9OfbwJAdMpbZ+ukL71g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C62/serialNumber=CF804A6F3D86A19713A4E886D597B4DC6445686A Validity Not Before: Nov 23 06:01:55 2024 GMT Not After : Nov 30 06:01:55 2024 GMT Subject: CN=67416fd3-5ae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:50:bc:72:ab:47:6b:e9:5f:bb:ea:53:a2: 14:55:5f:41:74:6d:59:1a:c0:c5:a5:c1:41:1b:b7: 9a:ff:51:9b:0c:2d:80:5b:70:f5:a4:b1:f4:b6:b9: 4d:68:42:1a:56:6e:08:6a:05:40:9d:65:f0:2c:c9: 8f:60:d0:83:3c:45:2f:b8:de:fb:96:df:d5:30:10: 9d:c7:68:0f:54:64:0e:75:7b:2b:8b:f7:67:32:a6: 08:a1:7f:ab:e0:4d:c2:13:3c:92:18:78:49:8e:11: 8c:46:a6:56:0a:3a:61:32:c9:ee:f8:22:c1:34:7f: af:fa:73:9e:d0:bf:3a:12:d4:72:90:e7:56:3a:30: 70:46:28:08:3d:41:a7:2c:a3:95:1c:37:ed:c4:04: 21:00:4b:75:69:12:75:07:aa:75:ef:13:20:97:f0: 2e:c0:7d:5c:db:3b:a2:f7:72:57:c3:30:f3:78:77: bb:75:30:f8:95:23:06:15:ce:f4:33:6f:0c:e2:82: 41:70:7a:9d:ae:30:21:60:44:10:53:ef:a3:b1:c4: de:5a:f9:70:92:69:ff:17:78:1a:f4:4c:4b:e7:f8: 25:d6:c2:da:24:8a:b2:37:60:c9:13:22:67:56:ab: b9:4c:b0:b2:ea:c9:01:b4:20:2b:1b:3b:37:75:b9: 50:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B1:34:A1:53:78:E8:3E:A3:5E:FA:31:BF:D6:76:4F:6F:88:3A:F0 X509v3 Authority Key Identifier: keyid:CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:42:ea:c8:09:9e:9b:1c:77:2e:4d:23:08:22:89:27:78:fe: 50:a1:f9:81:52:45:26:cb:d7:93:ad:68:13:dd:f1:a9:90:22: 19:c5:0a:f6:0c:40:a0:2f:9a:f4:b3:31:d2:9e:d8:65:7d:16: a9:64:28:c2:83:46:82:c6:9d:5b:db:fc:70:d4:89:24:ff:f0: 7c:d7:05:89:9b:b9:c5:d3:e7:f4:aa:ac:eb:da:d0:76:6d:b9: 4a:1c:12:f8:df:ab:04:c4:e5:79:d9:c6:82:ee:ce:53:dd:ac: b7:7f:76:eb:36:a1:40:33:b3:63:7d:e0:4b:4b:cd:74:de:13: 10:51:bf:d2:2e:43:27:75:0e:69:7f:b6:07:1a:d1:1a:e7:40: 0a:2c:b0:de:e3:4c:bf:5d:8d:37:84:ef:2c:82:7d:b8:d7:0a: c4:65:eb:34:67:8b:18:07:ac:27:37:40:2d:c6:b9:2c:67:25: a5:72:0e:bc:73:e4:3e:83:44:3d:2c:59:3d:29:b5:38:6a:80: e7:34:72:2a:3d:90:bc:6d:8e:80:09:6c:f9:50:e3:89:c5:9d: 46:03:a6:76:a2:87:7c:34:5f:ec:41:d0:d1:d6:ac:9b:85:d0: df:6f:f2:b8:4b:fa:70:16:61:c2:7b:72:42:d4:8d:e8:60:d9: 10:9f:72:4d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OUM2MjExMC8GA1UEBRMoQ0Y4MDRBNkYzRDg2QTE5NzEzQTRFODg2RDU5N0I0REM2 NDQ1Njg2QTAeFw0yNDExMjMwNjAxNTVaFw0yNDExMzAwNjAxNTVaMBgxFjAUBgNV BAMTDTY3NDE2ZmQzLTVhZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZOlC8cqtHa+lfu+pTohRVX0F0bVkawMWlwUEbt5r/UZsMLYBbcPWksfS2uU1o QhpWbghqBUCdZfAsyY9g0IM8RS+43vuW39UwEJ3HaA9UZA51eyuL92cypgihf6vg TcITPJIYeEmOEYxGplYKOmEyye74IsE0f6/6c57QvzoS1HKQ51Y6MHBGKAg9Qacs o5UcN+3EBCEAS3VpEnUHqnXvEyCX8C7AfVzbO6L3clfDMPN4d7t1MPiVIwYVzvQz bwzigkFwep2uMCFgRBBT76OxxN5a+XCSaf8XeBr0TEvn+CXWwtokirI3YMkTImdW q7lMsLLqyQG0ICsbOzd1uVBnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0rE0oVN4 6D6jXvoxv9Z2T2+IOvAwHwYDVR0jBBgwFoAUz4BKbz2GoZcTpOiG1Ze03GRFaGow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5QzYyLzg0RjQ2QjY4OTgx NTExRUZBNEJEM0Q1N0M0RjlBRTAyL3o0QktiejJHb1pjVHBPaUcxWmUwM0dSRmFH by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejRCS2J6MkdvWmNUcE9pRzFaZTAzR1JGYUdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5 QzYyLzg0RjQ2QjY4OTgxNTExRUZBNEJEM0Q1N0M0RjlBRTAyL3o0QktiejJHb1pj VHBPaUcxWmUwM0dSRmFHby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADZC6sgJnpscdy5NIwgiiSd4/lCh+YFSRSbL15OtaBPd8amQIhnFCvYM QKAvmvSzMdKe2GV9FqlkKMKDRoLGnVvb/HDUiST/8HzXBYmbucXT5/SqrOva0HZt uUocEvjfqwTE5XnZxoLuzlPdrLd/dus2oUAzs2N94EtLzXTeExBRv9IuQyd1Dml/ tgca0RrnQAossN7jTL9djTeE7yyCfbjXCsRl6zRnixgHrCc3QC3GuSxnJaVyDrxz 5D6DRD0sWT0ptThqgOc0cio9kLxtjoAJbPlQ44nFnUYDpnaih3w0X+xB0NHWrJuF 0N9v8rhL+nAWYcJ7ckLUjehg2RCfck0= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org