$ rpki-client -vvf rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.mft File: ZHjucRWjZhsHG7m6Um5Qc1eLE5w.mft (raw, json) Hash identifier: vmDFCurGDxF1FUSZm3otVioqe+171aGGYCQlEAskFlA= Subject key identifier: 01:15:02:21:44:26:C1:5E:01:6A:FF:53:29:5E:65:D2:96:CF:C0:92 Authority key identifier: 64:78:EE:71:15:A3:66:1B:07:1B:B9:BA:52:6E:50:73:57:8B:13:9C Certificate issuer: /CN=A9179581/serialNumber=6478EE7115A3661B071BB9BA526E5073578B139C Certificate serial: 2297 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.mft Manifest number: 2289 Signing time: Sun 24 Nov 2024 15:46:41 +0000 Manifest this update: Sun 24 Nov 2024 15:46:41 +0000 Manifest next update: Sun 01 Dec 2024 15:46:41 +0000 Files and hashes: 1: ZHjucRWjZhsHG7m6Um5Qc1eLE5w.crl (hash: LcFqIIDyQz1SIiBmSlCA3/AnVlwmEEYmDwx0rhJ9CAE=) 2: E043A9A4B14511E5B83D2120C4F9AE02.roa (hash: QfOFkTtfD/JlyUCDGr1ycwluY2IPcNmYuET79lfR5ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.crl rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8855 (0x2297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179581/serialNumber=6478EE7115A3661B071BB9BA526E5073578B139C Validity Not Before: Nov 24 15:46:41 2024 GMT Not After : Dec 1 15:46:41 2024 GMT Subject: CN=67434a61-05aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:ef:c7:9d:e0:3e:ee:4e:87:4e:69:8c:65:ef: eb:52:2d:21:df:f7:1f:fe:71:15:46:d7:c3:10:0c: 79:81:21:84:64:75:28:48:89:eb:ee:b6:7e:25:ff: 12:60:18:13:85:ad:ec:2a:81:fc:a6:fa:c5:d5:13: af:bd:43:25:23:94:c6:47:20:50:e6:1b:31:eb:db: 81:5c:4d:9d:88:73:68:fd:7f:6d:03:2f:d3:4e:ad: 63:a6:0d:b7:1e:f9:65:f0:6f:ce:5a:8b:03:09:d3: d3:d2:97:b0:0b:be:1e:20:82:9d:80:f0:b1:b2:16: ba:0b:f9:57:87:f3:63:02:76:d0:e9:e8:b9:ea:1c: 37:f8:34:f3:55:94:6e:05:7e:be:b5:2d:23:cf:93: d6:73:b3:c4:85:0d:e2:27:6e:67:47:ef:05:b0:03: bd:65:0e:99:0c:7a:22:7c:0f:38:1d:b9:f7:4f:3d: 03:c9:9e:01:0d:f2:cd:54:32:82:37:52:2b:4e:68: 8e:fb:c9:94:4d:33:da:e5:08:23:90:8b:08:32:55: 40:66:a2:f9:ad:e7:af:44:80:51:d1:b4:70:e8:06: fa:ba:62:dc:68:f1:65:eb:da:af:8a:ff:e3:18:25: 99:ef:12:25:3c:92:84:8a:e0:21:a9:3e:ea:7c:dc: 75:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:15:02:21:44:26:C1:5E:01:6A:FF:53:29:5E:65:D2:96:CF:C0:92 X509v3 Authority Key Identifier: keyid:64:78:EE:71:15:A3:66:1B:07:1B:B9:BA:52:6E:50:73:57:8B:13:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a5:8a:c9:79:35:86:75:01:dc:ef:d8:f6:21:26:02:67:ee: 23:2a:9f:98:52:e2:e0:1c:0c:62:66:f0:49:d0:38:b2:ce:87: 97:d1:21:b9:75:fd:44:01:3b:65:ef:7f:2f:45:22:c6:1c:c2: 69:95:e4:67:95:ac:00:1d:7e:47:62:01:72:88:4f:49:a9:54: 3e:4f:92:3b:af:d0:ff:53:d8:b4:4d:87:21:18:fd:a7:2f:df: 6b:07:5f:03:48:cd:64:2b:36:17:26:91:b4:c0:c1:f3:5f:7d: 18:77:39:b5:00:1b:ca:1e:92:da:00:63:21:4a:fc:ca:67:ed: f0:02:a3:51:cd:ac:e0:9a:fe:f9:1d:68:a7:d5:99:6f:71:3f: e9:6f:aa:f4:17:1c:28:20:7e:94:a4:36:e4:af:d0:f2:33:ce: 2f:fd:b8:7f:19:27:ca:44:96:fe:65:5c:e4:83:48:70:cc:ff: fc:1a:f0:6e:ce:3a:61:75:79:3e:f9:8f:61:7e:72:4f:1d:57: 40:c7:e4:47:e2:0c:fe:60:52:5b:74:39:e5:ea:ec:0e:f7:16: 72:86:d0:54:28:96:0e:70:9b:df:f2:aa:83:0e:a5:53:e8:31: 31:15:da:1c:7b:f2:27:af:07:5a:bf:95:ca:94:c0:1a:c6:01: 79:3c:04:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1ODExMTAvBgNVBAUTKDY0NzhFRTcxMTVBMzY2MUIwNzFCQjlCQTUyNkU1MDcz NTc4QjEzOUMwHhcNMjQxMTI0MTU0NjQxWhcNMjQxMjAxMTU0NjQxWjAYMRYwFAYD VQQDEw02NzQzNGE2MS0wNWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8O/HneA+7k6HTmmMZe/rUi0h3/cf/nEVRtfDEAx5gSGEZHUoSInr7rZ+Jf8S YBgTha3sKoH8pvrF1ROvvUMlI5TGRyBQ5hsx69uBXE2diHNo/X9tAy/TTq1jpg23 Hvll8G/OWosDCdPT0pewC74eIIKdgPCxsha6C/lXh/NjAnbQ6ei56hw3+DTzVZRu BX6+tS0jz5PWc7PEhQ3iJ25nR+8FsAO9ZQ6ZDHoifA84Hbn3Tz0DyZ4BDfLNVDKC N1IrTmiO+8mUTTPa5QgjkIsIMlVAZqL5reevRIBR0bRw6Ab6umLcaPFl69qviv/j GCWZ7xIlPJKEiuAhqT7qfNx1IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEVAiFE JsFeAWr/UyleZdKWz8CSMB8GA1UdIwQYMBaAFGR47nEVo2YbBxu5ulJuUHNXixOc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTU4MS83OTcyNzA3QTk0 QkMxMUU1OTEzNDcyN0NDNEY5QUUwMi9aSGp1Y1JXalpoc0hHN202VW01UWMxZUxF NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIanVjUldqWmhzSEc3bTZVbTVRYzFlTEU1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTU4MS83OTcyNzA3QTk0QkMxMUU1OTEzNDcyN0NDNEY5QUUwMi9aSGp1Y1JXalpo c0hHN202VW01UWMxZUxFNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8pYrJeTWGdQHc79j2ISYCZ+4jKp+YUuLgHAxiZvBJ0DiyzoeX0SG5 df1EATtl738vRSLGHMJpleRnlawAHX5HYgFyiE9JqVQ+T5I7r9D/U9i0TYchGP2n L99rB18DSM1kKzYXJpG0wMHzX30Ydzm1ABvKHpLaAGMhSvzKZ+3wAqNRzazgmv75 HWin1ZlvcT/pb6r0FxwoIH6UpDbkr9DyM84v/bh/GSfKRJb+ZVzkg0hwzP/8GvBu zjphdXk++Y9hfnJPHVdAx+RH4gz+YFJbdDnl6uwO9xZyhtBUKJYOcJvf8qqDDqVT 6DExFdoce/Inrwdav5XKlMAaxgF5PATM -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:17 2024 by rpki-client on console-ams.rpki-client.org