$ rpki-client -vvf rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft File: ZrIR6cz336FdfNNyNqX1gvGUUwo.mft (raw, json) Hash identifier: UUD2qARNQH9kW6TxfN6ZslqR7dYxADMuQWbsJ7pr21k= Subject key identifier: 44:49:2F:88:7E:08:84:9A:E7:5A:E0:67:20:57:8D:D6:E9:8C:17:B0 Authority key identifier: 66:B2:11:E9:CC:F7:DF:A1:5D:7C:D3:72:36:A5:F5:82:F1:94:53:0A Certificate issuer: /CN=A9162C2C/serialNumber=66B211E9CCF7DFA15D7CD37236A5F582F194530A Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft Manifest number: 04F2 Signing time: Fri 22 Nov 2024 23:14:00 +0000 Manifest this update: Fri 22 Nov 2024 23:13:59 +0000 Manifest next update: Fri 29 Nov 2024 23:13:59 +0000 Files and hashes: 1: ZrIR6cz336FdfNNyNqX1gvGUUwo.crl (hash: VJ/KVpiGwWY7NrBVoJxRBpmMenWVJkhvJe27y/EHn/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.crl rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162C2C/serialNumber=66B211E9CCF7DFA15D7CD37236A5F582F194530A Validity Not Before: Nov 22 23:13:59 2024 GMT Not After : Nov 29 23:13:59 2024 GMT Subject: CN=67411037-abce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:07:29:4d:e3:fa:b1:36:76:15:26:df:5b:20: c8:cd:97:99:c8:71:2e:6c:a5:50:f7:d6:0d:55:f0: cd:87:44:51:64:f5:9f:87:53:bc:c7:b9:3f:c2:37: b8:75:aa:65:cd:8d:28:79:99:43:e8:7c:a2:ea:92: 1a:0e:a7:96:5c:d5:4e:ff:56:23:f0:0b:e0:1e:42: 98:09:13:2d:4b:60:e5:63:56:55:f1:a5:75:37:80: 14:07:e9:2a:90:00:4e:64:b3:79:b3:10:07:ab:02: b5:0b:48:31:fb:6d:6c:3d:fc:a4:64:10:9b:17:b4: eb:c2:11:6c:0e:33:da:21:ed:75:a0:33:b5:c0:72: b1:e8:26:c2:9e:96:c6:9c:9c:05:14:80:81:04:fa: de:c7:0f:df:fd:ad:7f:cb:3c:67:3a:cc:d8:07:6c: ac:27:f2:34:83:e5:65:d7:c9:52:90:4c:e7:85:54: f3:ff:2c:60:e9:24:04:e4:68:a7:b9:d3:e8:ad:76: aa:3c:73:a5:8f:65:6f:40:cf:bd:57:2b:4f:c3:a2: 9c:39:99:b2:f4:e8:57:bc:30:d9:69:bd:b3:72:5b: f6:83:c9:38:3f:d7:b5:9b:06:e0:39:07:c4:cf:03: 0c:87:5a:55:d2:e4:36:b2:d1:96:f4:5b:19:1e:50: 3b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:49:2F:88:7E:08:84:9A:E7:5A:E0:67:20:57:8D:D6:E9:8C:17:B0 X509v3 Authority Key Identifier: keyid:66:B2:11:E9:CC:F7:DF:A1:5D:7C:D3:72:36:A5:F5:82:F1:94:53:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIR6cz336FdfNNyNqX1gvGUUwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162C2C/0A11DB16EA8911EB80B1C83BC4F9AE02/ZrIR6cz336FdfNNyNqX1gvGUUwo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:29:25:13:e1:3f:5b:40:d8:1a:ac:45:fc:ea:8a:f3:48:e2: f8:1b:fe:e7:5c:b9:d5:cb:3a:c0:e7:c5:eb:b2:59:b4:34:b3: 42:aa:b8:88:0c:df:43:98:a3:b7:db:0c:de:16:d2:69:9e:89: a6:56:8e:59:e3:84:82:dc:ca:18:a7:c4:66:33:c7:2a:9c:2e: 01:97:59:8d:32:3a:f1:94:a3:63:2c:a8:41:bc:73:bc:22:f1: f4:19:d9:cf:28:39:4c:8e:01:72:2d:7b:9a:8b:03:17:e1:c5: 84:37:ce:ac:ba:78:39:f2:e1:69:5d:c1:98:28:8f:85:3d:75: cf:ff:ff:4e:42:55:b5:ce:3f:b1:40:00:da:86:48:fa:1a:6b: d6:62:0e:e8:08:9d:47:b6:bb:63:29:d3:e2:f0:23:56:18:7a: 63:91:cc:cc:6c:ff:fe:82:8d:be:c3:a4:9a:0c:85:51:b8:4c: 05:f9:cc:78:47:56:bd:99:e4:48:5f:cb:a9:ea:8d:f1:ac:ed: 05:d3:54:b9:03:86:b9:0f:72:ec:97:e3:bb:d7:81:6f:0f:ae: 00:69:92:47:7f:70:0f:e7:45:ab:2f:c6:72:1b:07:a4:3b:79: f7:bf:64:e0:e4:3d:9a:ad:35:27:f5:bc:bd:df:08:d9:15:62: 02:d8:45:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJDMkMxMTAvBgNVBAUTKDY2QjIxMUU5Q0NGN0RGQTE1RDdDRDM3MjM2QTVGNTgy RjE5NDUzMEEwHhcNMjQxMTIyMjMxMzU5WhcNMjQxMTI5MjMxMzU5WjAYMRYwFAYD VQQDEw02NzQxMTAzNy1hYmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngcpTeP6sTZ2FSbfWyDIzZeZyHEubKVQ99YNVfDNh0RRZPWfh1O8x7k/wje4 daplzY0oeZlD6Hyi6pIaDqeWXNVO/1Yj8AvgHkKYCRMtS2DlY1ZV8aV1N4AUB+kq kABOZLN5sxAHqwK1C0gx+21sPfykZBCbF7TrwhFsDjPaIe11oDO1wHKx6CbCnpbG nJwFFICBBPrexw/f/a1/yzxnOszYB2ysJ/I0g+Vl18lSkEznhVTz/yxg6SQE5Gin udPorXaqPHOlj2VvQM+9VytPw6KcOZmy9OhXvDDZab2zclv2g8k4P9e1mwbgOQfE zwMMh1pV0uQ2stGW9FsZHlA7twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERJL4h+ CISa51rgZyBXjdbpjBewMB8GA1UdIwQYMBaAFGayEenM99+hXXzTcjal9YLxlFMK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkMyQy8wQTExREIxNkVB ODkxMUVCODBCMUM4M0JDNEY5QUUwMi9acklSNmN6MzM2RmRmTk55TnFYMWd2R1VV d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVI2Y3ozMzZGZGZOTnlOcVgxZ3ZHVVV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkMyQy8wQTExREIxNkVBODkxMUVCODBCMUM4M0JDNEY5QUUwMi9acklSNmN6MzM2 RmRmTk55TnFYMWd2R1VVd28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeKSUT4T9bQNgarEX86orzSOL4G/7nXLnVyzrA58Xrslm0NLNCqriI DN9DmKO32wzeFtJpnommVo5Z44SC3MoYp8RmM8cqnC4Bl1mNMjrxlKNjLKhBvHO8 IvH0GdnPKDlMjgFyLXuaiwMX4cWEN86sung58uFpXcGYKI+FPXXP//9OQlW1zj+x QADahkj6GmvWYg7oCJ1HtrtjKdPi8CNWGHpjkczMbP/+go2+w6SaDIVRuEwF+cx4 R1a9meRIX8up6o3xrO0F01S5A4a5D3Lsl+O714FvD64AaZJHf3AP50WrL8ZyGwek O3n3v2Tg5D2arTUn9by93wjZFWIC2EU8 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org