$ rpki-client -vvf rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft File: zPKlJcCQFETKePBbk5LABFeVZ2E.mft (raw, json) Hash identifier: yBK4vrkJppnKNjqBu5VNnDAd9sVr+/tFwSx95ltIppo= Subject key identifier: 6A:2B:AA:01:4B:14:BA:10:82:69:96:0A:15:0E:9D:7C:28:59:FF:C6 Authority key identifier: CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 Certificate issuer: /CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Certificate serial: 095D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft Manifest number: 0957 Signing time: Fri 22 Nov 2024 19:57:28 +0000 Manifest this update: Fri 22 Nov 2024 19:57:28 +0000 Manifest next update: Fri 29 Nov 2024 19:57:28 +0000 Files and hashes: 1: zPKlJcCQFETKePBbk5LABFeVZ2E.crl (hash: MrBrucH9uVrSgrban5EzTcWJramtyBzuwQAjfC7zulo=) 2: 9BAC68CC83C211EABCB66612C4F9AE02.roa (hash: wkGEAHzXvcSBB9vjvx4GS7uWmUUOnwXejpT3X/pRHM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Validity Not Before: Nov 22 19:57:28 2024 GMT Not After : Nov 29 19:57:28 2024 GMT Subject: CN=6740e228-2db1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:81:53:fd:92:55:77:67:fd:58:76:1c:fb:2b: 84:5c:49:4a:a6:1c:06:f7:e6:7a:61:c3:b7:ea:58: b4:f8:e6:42:c1:c8:be:e9:d6:c9:24:9f:4a:5e:c5: e5:14:d8:a5:bf:69:45:70:fd:46:10:b7:89:4e:dd: 32:41:48:d8:9f:15:27:94:0e:d5:f5:3f:df:16:68: 89:90:5f:46:36:e8:a7:3b:54:fe:d6:1e:9e:b4:16: 3d:48:fc:0c:93:49:6f:a7:4c:24:5d:5e:bf:87:21: 88:16:9e:68:1d:ed:0e:3b:27:3e:53:62:77:76:a5: 02:49:4d:6b:28:6a:5a:19:50:81:53:89:fa:2d:a6: be:e4:c7:c9:23:71:bb:8d:9a:65:4c:b6:f6:76:95: 9e:e7:03:66:a7:dc:00:1f:a3:eb:fe:9d:f5:38:fb: 69:54:4f:5f:98:9d:48:81:98:f2:87:b4:17:87:9a: 37:f5:22:b4:ed:82:a2:eb:5f:8d:b5:95:02:1b:c2: 28:9e:f9:12:20:f7:f6:3d:69:51:3d:dd:82:1b:7b: 87:de:20:39:87:13:1b:84:26:ea:74:4e:89:a9:2a: cb:07:2e:2f:96:e8:a8:82:77:7d:75:ac:af:07:e1: 42:39:8b:87:89:c8:19:b4:16:34:df:4a:ba:8c:cb: b1:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:2B:AA:01:4B:14:BA:10:82:69:96:0A:15:0E:9D:7C:28:59:FF:C6 X509v3 Authority Key Identifier: keyid:CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:95:ce:d1:59:cb:64:bd:a5:a2:83:e3:1e:7a:e9:d9:4a:67: 1b:78:a1:66:d7:d5:17:89:77:58:79:bf:1d:a0:7d:d7:2c:52: 5d:d1:2f:4d:d1:c4:1d:1a:dd:f9:44:8b:79:9f:91:1c:86:42: 77:f7:f1:56:ee:08:e5:05:6e:a8:a1:62:a3:95:0b:e1:bb:61: 30:a6:3c:31:f4:e9:e2:48:1d:e1:85:87:b3:78:56:67:67:87: 70:b2:52:d2:05:23:7a:d2:e7:0f:2f:57:40:c8:da:14:0d:07: fc:44:8e:e4:b0:8d:38:c0:30:e3:e8:15:1f:da:db:27:05:9f: 5a:6c:ab:9f:56:da:2e:3b:85:12:47:b2:49:13:8d:bb:e0:27: e5:b1:6b:a7:70:7e:fd:80:e8:a4:58:61:14:44:8e:3e:ff:78: d7:12:42:ef:1d:48:d6:d7:16:f0:84:ac:93:ab:6f:dd:a5:7e: a3:aa:58:d2:12:b4:ec:26:49:d9:d3:e1:62:62:0f:2d:f4:c9: b4:eb:b7:50:99:41:95:b8:82:7c:b6:33:c2:85:a4:05:31:b4: ee:29:d1:aa:06:39:87:d7:86:d1:73:3a:fd:c3:17:e8:df:6b: 8f:df:68:26:db:1f:bc:ac:06:08:78:e7:76:66:5f:5f:2b:01: fc:d5:42:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwNzExMTAvBgNVBAUTKENDRjJBNTI1QzA5MDE0NDRDQTc4RjA1QjkzOTJDMDA0 NTc5NTY3NjEwHhcNMjQxMTIyMTk1NzI4WhcNMjQxMTI5MTk1NzI4WjAYMRYwFAYD VQQDEw02NzQwZTIyOC0yZGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYFT/ZJVd2f9WHYc+yuEXElKphwG9+Z6YcO36li0+OZCwci+6dbJJJ9KXsXl FNilv2lFcP1GELeJTt0yQUjYnxUnlA7V9T/fFmiJkF9GNuinO1T+1h6etBY9SPwM k0lvp0wkXV6/hyGIFp5oHe0OOyc+U2J3dqUCSU1rKGpaGVCBU4n6Laa+5MfJI3G7 jZplTLb2dpWe5wNmp9wAH6Pr/p31OPtpVE9fmJ1IgZjyh7QXh5o39SK07YKi61+N tZUCG8IonvkSIPf2PWlRPd2CG3uH3iA5hxMbhCbqdE6JqSrLBy4vluiognd9dayv B+FCOYuHicgZtBY030q6jMuxiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGorqgFL FLoQgmmWChUOnXwoWf/GMB8GA1UdIwQYMBaAFMzypSXAkBREynjwW5OSwARXlWdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTA3MS8yODBCMDlBNDgz QkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZFVEtlUEJiazVMQUJGZVZa MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQS2xKY0NRRkVUS2VQQmJrNUxBQkZlVloyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTA3MS8yODBCMDlBNDgzQkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZF VEtlUEJiazVMQUJGZVZaMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIlc7RWctkvaWig+MeeunZSmcbeKFm19UXiXdYeb8doH3XLFJd0S9N 0cQdGt35RIt5n5EchkJ39/FW7gjlBW6ooWKjlQvhu2Ewpjwx9OniSB3hhYezeFZn Z4dwslLSBSN60ucPL1dAyNoUDQf8RI7ksI04wDDj6BUf2tsnBZ9abKufVtouO4US R7JJE4274CflsWuncH79gOikWGEURI4+/3jXEkLvHUjW1xbwhKyTq2/dpX6jqljS ErTsJknZ0+FiYg8t9Mm067dQmUGVuIJ8tjPChaQFMbTuKdGqBjmH14bRczr9wxfo 32uP32gm2x+8rAYIeOd2Zl9fKwH81UII -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org