$ rpki-client -vvf rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft File: Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft (raw, json) Hash identifier: AoZoAXZPb7l1F9Go3oIgvJolB3MRqj/Qkj4SrZPBZ8s= Subject key identifier: 56:46:02:18:39:AB:3E:05:68:F0:7E:19:60:FD:8E:E6:43:29:38:83 Authority key identifier: 67:44:74:8D:61:C4:C6:C7:76:40:EF:58:47:14:E9:78:43:D1:EA:02 Certificate issuer: /CN=A9152EF3/serialNumber=6744748D61C4C6C77640EF584714E97843D1EA02 Certificate serial: 0D77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft Manifest number: 0D71 Signing time: Fri 22 Nov 2024 17:54:55 +0000 Manifest this update: Fri 22 Nov 2024 17:54:54 +0000 Manifest next update: Fri 29 Nov 2024 17:54:54 +0000 Files and hashes: 1: Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl (hash: fl6rAb1EIGuSAcL5ryLsgTgFjvrAWFHVzROcX5RJmgU=) 2: E4AAD78CEFFE11E991390613C4F9AE02.roa (hash: zpjIrqbuu6FZf6yZ6yRXtcMiYEO9icrMtSLSk/Oo5Eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3447 (0xd77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152EF3/serialNumber=6744748D61C4C6C77640EF584714E97843D1EA02 Validity Not Before: Nov 22 17:54:54 2024 GMT Not After : Nov 29 17:54:54 2024 GMT Subject: CN=6740c56f-8c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:02:9c:ac:c1:bb:fa:53:1e:1b:27:96:6d:96: 17:41:cb:ec:90:80:4a:d7:32:45:18:7a:cd:00:9b: 6c:70:52:75:a8:2b:48:76:52:be:a4:8f:81:71:6a: 5f:6f:f0:95:87:8e:2f:39:0f:d8:39:85:61:aa:06: 61:2a:d5:9f:f0:31:a5:72:ce:76:87:18:61:60:ab: 73:60:23:fe:72:13:6c:86:e7:68:20:79:c7:06:d1: 6a:c7:a9:1e:7e:5e:ec:ab:a5:7a:8b:10:5f:b4:28: dc:71:06:79:d1:6f:67:34:ea:1d:94:cd:45:ad:1f: 2a:17:52:7a:05:43:90:bf:55:b9:cc:88:f4:c2:a1: 54:84:7e:89:df:42:47:52:71:78:ed:a6:6c:fc:97: 37:f6:5d:b5:ac:67:40:72:0d:8e:36:b9:fe:ee:ef: ad:87:b5:eb:a0:34:6b:11:fe:4e:8c:e7:d5:a9:ff: 13:18:30:e2:db:2d:11:b7:d4:e4:e8:f5:ae:bf:db: dc:3f:36:f0:4e:e0:2e:c5:b2:fb:4b:ea:97:ee:f3: ec:1d:74:5b:5e:14:be:01:47:d8:97:a8:64:f8:23: fa:ae:58:b7:c3:fe:cc:64:16:af:41:e8:2c:9f:d8: 1d:90:e0:11:35:50:e3:47:d7:5a:5b:36:1d:2b:72: e5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:46:02:18:39:AB:3E:05:68:F0:7E:19:60:FD:8E:E6:43:29:38:83 X509v3 Authority Key Identifier: keyid:67:44:74:8D:61:C4:C6:C7:76:40:EF:58:47:14:E9:78:43:D1:EA:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0R0jWHExsd2QO9YRxTpeEPR6gI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152EF3/76A7D628B67D11E98E13C486C4F9AE02/Z0R0jWHExsd2QO9YRxTpeEPR6gI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:40:2e:e2:91:ea:cf:b4:aa:03:8b:7a:07:67:9a:8d:ae:e4: 13:25:92:20:65:16:1f:04:3a:df:82:de:4c:b0:56:8b:46:9f: 4f:c3:ba:b4:b5:2f:f0:aa:f8:8a:47:8d:46:e8:4f:ac:d9:90: b5:3a:c2:57:bc:d9:4f:cf:b6:f8:4a:be:48:d3:2a:17:ad:c6: 9f:be:a6:61:41:32:d5:83:8f:b1:bb:db:f2:7b:5d:f2:d5:9c: 7e:1c:31:01:5c:51:6b:f5:f5:d8:65:4b:05:14:da:49:7b:6e: a6:a6:af:43:9e:a6:bc:6a:c0:93:b6:fc:f9:41:ba:75:da:f7: 82:f8:61:17:f6:56:c3:fb:64:f0:7f:56:f9:27:31:73:84:b1: 7f:08:02:d4:ef:7b:86:ff:af:94:bb:92:c4:1a:a0:c4:ec:6f: 0d:5d:54:b0:f1:75:c4:ba:6e:e2:af:02:ab:fa:13:99:be:ff: c9:28:07:26:5d:15:67:c5:24:40:eb:9a:f3:0c:99:c0:3e:48: a3:82:36:67:04:54:f1:72:70:e0:a6:5c:43:3d:fc:7a:c7:1f: b1:d1:99:3c:83:a4:ce:ab:65:24:47:29:38:3f:44:8d:28:6c: f7:b1:57:03:3d:b7:1c:8f:6c:8e:6d:ae:3e:82:51:06:65:a9: f2:29:50:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFRjMxMTAvBgNVBAUTKDY3NDQ3NDhENjFDNEM2Qzc3NjQwRUY1ODQ3MTRFOTc4 NDNEMUVBMDIwHhcNMjQxMTIyMTc1NDU0WhcNMjQxMTI5MTc1NDU0WjAYMRYwFAYD VQQDEw02NzQwYzU2Zi04YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QKcrMG7+lMeGyeWbZYXQcvskIBK1zJFGHrNAJtscFJ1qCtIdlK+pI+BcWpf b/CVh44vOQ/YOYVhqgZhKtWf8DGlcs52hxhhYKtzYCP+chNshudoIHnHBtFqx6ke fl7sq6V6ixBftCjccQZ50W9nNOodlM1FrR8qF1J6BUOQv1W5zIj0wqFUhH6J30JH UnF47aZs/Jc39l21rGdAcg2ONrn+7u+th7XroDRrEf5OjOfVqf8TGDDi2y0Rt9Tk 6PWuv9vcPzbwTuAuxbL7S+qX7vPsHXRbXhS+AUfYl6hk+CP6rli3w/7MZBavQegs n9gdkOARNVDjR9daWzYdK3LlBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZGAhg5 qz4FaPB+GWD9juZDKTiDMB8GA1UdIwQYMBaAFGdEdI1hxMbHdkDvWEcU6XhD0eoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkVGMy83NkE3RDYyOEI2 N0QxMUU5OEUxM0M0ODZDNEY5QUUwMi9aMFIwaldIRXhzZDJRTzlZUnhUcGVFUFI2 Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1owUjBqV0hFeHNkMlFPOVlSeFRwZUVQUjZnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkVGMy83NkE3RDYyOEI2N0QxMUU5OEUxM0M0ODZDNEY5QUUwMi9aMFIwaldIRXhz ZDJRTzlZUnhUcGVFUFI2Z0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALQC7ikerPtKoDi3oHZ5qNruQTJZIgZRYfBDrfgt5MsFaLRp9Pw7q0 tS/wqviKR41G6E+s2ZC1OsJXvNlPz7b4Sr5I0yoXrcafvqZhQTLVg4+xu9vye13y 1Zx+HDEBXFFr9fXYZUsFFNpJe26mpq9Dnqa8asCTtvz5Qbp12veC+GEX9lbD+2Tw f1b5JzFzhLF/CALU73uG/6+Uu5LEGqDE7G8NXVSw8XXEum7irwKr+hOZvv/JKAcm XRVnxSRA65rzDJnAPkijgjZnBFTxcnDgplxDPfx6xx+x0Zk8g6TOq2UkRyk4P0SN KGz3sVcDPbccj2yOba4+glEGZanyKVCI -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:02 2024 by rpki-client on console-ams.rpki-client.org