$ rpki-client -vvf rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft File: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft (raw, json) Hash identifier: XK+xUHca6VF0E/LkqB4vhEAMcDnkjKtookh0luAzFZs= Subject key identifier: BA:6D:87:BD:FF:4F:F5:42:C4:03:40:67:DE:7F:DB:20:E6:77:34:F1 Authority key identifier: CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D Certificate issuer: /CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Certificate serial: 0A5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft Manifest number: 0A53 Signing time: Fri 22 Nov 2024 19:27:27 +0000 Manifest this update: Fri 22 Nov 2024 19:27:26 +0000 Manifest next update: Fri 29 Nov 2024 19:27:26 +0000 Files and hashes: 1: zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl (hash: IMaVz2x9dDDAJ4636A8iDyEHHaax9OiulKJuSj1V6Lc=) 2: 38CAF4EC52B911EAACE8041BC4F9AE02.roa (hash: melr0OdWnM49IUzlU41JvKNY+g7F2hByLSoyY38bhQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2650 (0xa5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91594AE/serialNumber=CDA47E0A1EEB525F3B5A0FAFB2FA0DBB363BFA4D Validity Not Before: Nov 22 19:27:26 2024 GMT Not After : Nov 29 19:27:26 2024 GMT Subject: CN=6740db1e-f94a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:a2:c6:1d:ec:d4:eb:7c:de:c7:32:69:6d: 30:96:0a:8e:36:9c:65:55:9e:21:22:36:14:e5:29: 1d:8f:32:d7:b3:3e:52:7d:b5:17:fe:b2:a3:9c:f6: fb:81:10:71:3e:b4:1c:9c:ae:fa:94:36:8f:98:9c: 35:7a:3a:f7:02:b5:7d:81:b1:1d:af:75:8c:e4:b1: 89:f7:44:4c:ba:12:63:88:5b:a4:c4:5d:72:f2:96: 22:01:99:08:d4:b2:e9:d4:63:d1:53:91:f8:d4:cc: 3e:c8:53:b9:66:5b:ec:91:44:13:a9:75:cd:81:fa: b9:91:cf:4e:ae:ed:68:ee:e6:a4:90:97:f4:31:28: 41:5f:27:4f:93:8a:0a:ae:0d:a2:51:b4:37:ef:29: 92:55:13:45:42:29:88:b8:54:66:24:e2:e8:55:3a: 1e:35:1a:55:4f:71:97:a6:af:02:1a:c1:8e:f3:da: cf:42:70:de:c7:ec:45:6c:49:8d:81:36:f9:4e:75: 62:5f:e8:63:81:bb:27:b6:5c:81:60:b8:b8:70:2a: d9:13:e8:5d:8a:73:61:c5:64:68:c0:1d:1d:9b:01: fd:df:0a:8c:7c:46:46:43:da:1d:4c:5b:dc:81:48: 00:99:c4:a6:ba:3e:f5:f1:0b:aa:86:cd:2f:e5:0a: b0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6D:87:BD:FF:4F:F5:42:C4:03:40:67:DE:7F:DB:20:E6:77:34:F1 X509v3 Authority Key Identifier: keyid:CD:A4:7E:0A:1E:EB:52:5F:3B:5A:0F:AF:B2:FA:0D:BB:36:3B:FA:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91594AE/3D8B8C4852B511EAA4A9D20EC4F9AE02/zaR-Ch7rUl87Wg-vsvoNuzY7-k0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:0f:ad:db:d8:ae:98:b0:3b:f1:f3:e0:bf:37:40:fd:61:f7: be:53:eb:b7:73:97:12:d1:a6:40:d4:64:5d:8e:a2:7a:b6:1f: 3a:57:55:4e:2b:95:8a:11:5f:10:55:f2:fc:8f:ba:7f:a9:02: 30:fc:b5:63:0a:da:cb:c8:cb:32:47:6d:39:33:98:ef:1e:5f: b3:98:f9:b0:25:79:57:48:fe:99:2c:ed:ba:2c:95:62:ef:fd: ee:23:bc:b6:6f:65:9c:43:43:92:67:8a:37:d9:ff:67:e5:9e: 95:9f:c9:09:dd:7a:84:1f:35:c4:10:c7:44:66:63:c4:f4:1c: 1b:ec:e2:ec:37:49:e9:d9:49:e1:74:c3:47:fc:f6:33:8f:12: 54:e0:f2:33:58:2b:fc:39:da:d2:e3:72:20:d9:74:71:13:04: d5:bb:b7:7f:dd:13:66:d4:35:06:4d:7f:79:7d:94:9a:52:ea: 71:99:e1:fb:f0:a3:5c:f4:04:c1:ce:93:30:49:44:6b:4b:40: 73:3f:1d:6b:27:5b:93:3f:9d:25:d3:a2:34:b1:da:ce:f0:86: 32:bd:d6:11:b1:72:b5:47:68:b3:af:65:d0:7a:d9:d5:cd:ba: 05:e9:04:2f:f5:d5:ec:8c:ae:10:7b:46:b5:2c:f0:10:be:1a: ca:9c:7b:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk0QUUxMTAvBgNVBAUTKENEQTQ3RTBBMUVFQjUyNUYzQjVBMEZBRkIyRkEwREJC MzYzQkZBNEQwHhcNMjQxMTIyMTkyNzI2WhcNMjQxMTI5MTkyNzI2WjAYMRYwFAYD VQQDEw02NzQwZGIxZS1mOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eyixh3s1Ot83scyaW0wlgqONpxlVZ4hIjYU5SkdjzLXsz5SfbUX/rKjnPb7 gRBxPrQcnK76lDaPmJw1ejr3ArV9gbEdr3WM5LGJ90RMuhJjiFukxF1y8pYiAZkI 1LLp1GPRU5H41Mw+yFO5ZlvskUQTqXXNgfq5kc9Oru1o7uakkJf0MShBXydPk4oK rg2iUbQ37ymSVRNFQimIuFRmJOLoVToeNRpVT3GXpq8CGsGO89rPQnDex+xFbEmN gTb5TnViX+hjgbsntlyBYLi4cCrZE+hdinNhxWRowB0dmwH93wqMfEZGQ9odTFvc gUgAmcSmuj718Quqhs0v5QqwFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpth73/ T/VCxANAZ95/2yDmdzTxMB8GA1UdIwQYMBaAFM2kfgoe61JfO1oPr7L6Dbs2O/pN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTRBRS8zRDhCOEM0ODUy QjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVsODdXZy12c3ZvTnV6WTct azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phUi1DaDdyVWw4N1dnLXZzdm9OdXpZNy1rMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTRBRS8zRDhCOEM0ODUyQjUxMUVBQTRBOUQyMEVDNEY5QUUwMi96YVItQ2g3clVs ODdXZy12c3ZvTnV6WTctazAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2D63b2K6YsDvx8+C/N0D9Yfe+U+u3c5cS0aZA1GRdjqJ6th86V1VO K5WKEV8QVfL8j7p/qQIw/LVjCtrLyMsyR205M5jvHl+zmPmwJXlXSP6ZLO26LJVi 7/3uI7y2b2WcQ0OSZ4o32f9n5Z6Vn8kJ3XqEHzXEEMdEZmPE9Bwb7OLsN0np2Unh dMNH/PYzjxJU4PIzWCv8OdrS43Ig2XRxEwTVu7d/3RNm1DUGTX95fZSaUupxmeH7 8KNc9ATBzpMwSURrS0BzPx1rJ1uTP50l06I0sdrO8IYyvdYRsXK1R2izr2XQetnV zboF6QQv9dXsjK4Qe0a1LPAQvhrKnHvD -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:28 2024 by rpki-client on console-ams.rpki-client.org