$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft File: zmNwmX29E9IOXsYWW1qe46KCprA.mft (raw, json) Hash identifier: CCV/RuXF3uJgnkNz2VPar3uH/UQwjnzBKX75k6fLYOA= Subject key identifier: 57:E6:55:72:87:1D:52:C5:78:90:6D:6E:3E:F3:78:F2:49:18:3E:DC Authority key identifier: CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 Certificate issuer: /CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft Manifest number: AB Signing time: Thu 21 Nov 2024 04:19:34 +0000 Manifest this update: Thu 21 Nov 2024 04:19:33 +0000 Manifest next update: Thu 28 Nov 2024 04:19:33 +0000 Files and hashes: 1: zmNwmX29E9IOXsYWW1qe46KCprA.crl (hash: 3frGl+Nm+NYTenpc1rarXLpMb7A0WF0pkDbx7PxulOc=) 2: 725ED2DC3C3E11EF8E9ED658C4F9AE02.roa (hash: b8Nk35gI73n6vPSPeGhcdp8/EnX7d3C+aJhz3JSGsbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACA8/serialNumber=CE6370997DBD13D20E5EC6165B5A9EE3A282A6B0 Validity Not Before: Nov 21 04:19:33 2024 GMT Not After : Nov 28 04:19:33 2024 GMT Subject: CN=673eb4d6-7b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2f:62:3e:99:ab:4c:7b:3d:8d:8e:c5:c5:e5: dd:2a:99:4f:f5:3c:74:d8:8e:f0:fa:89:fd:dd:f3: aa:9c:de:db:25:14:7e:fa:ac:20:eb:3f:36:43:01: ef:2a:10:ba:56:73:1a:33:d3:d8:c6:83:03:46:64: 34:34:81:ee:4e:84:d3:6c:02:6a:d5:b0:88:39:41: 12:b8:03:de:b9:57:a7:fe:fc:ce:f5:0e:de:f1:0d: 27:c0:8a:4a:25:55:47:d1:f1:5d:41:a8:00:db:8e: 94:9c:ce:c7:01:f1:09:3f:1b:36:ef:e8:ee:e5:ad: 1b:a5:66:91:45:91:37:0d:bb:6a:a7:1d:6e:39:08: 18:43:cb:19:93:f5:7f:81:14:a2:b9:54:7d:25:7a: 0d:5b:9c:83:f5:6e:2e:b8:0d:81:df:cd:fa:da:4b: ba:15:c6:77:b3:ca:93:02:e2:1b:c8:bc:6b:58:79: 5e:dd:51:91:20:ec:cd:10:c1:a6:d5:72:26:fa:a2: 40:5e:cb:b6:f2:56:27:1d:8b:93:24:a5:35:40:21: 17:00:85:e2:8b:21:6d:67:ed:a7:5e:60:b3:d7:ae: bb:75:56:7e:43:a8:5f:14:fc:c5:ab:3c:b0:7e:97: 5c:73:a4:ec:ba:07:8a:9f:b7:01:e1:98:d2:b7:91: cd:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E6:55:72:87:1D:52:C5:78:90:6D:6E:3E:F3:78:F2:49:18:3E:DC X509v3 Authority Key Identifier: keyid:CE:63:70:99:7D:BD:13:D2:0E:5E:C6:16:5B:5A:9E:E3:A2:82:A6:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zmNwmX29E9IOXsYWW1qe46KCprA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACA8/F9714AE6AAFA11EEA221E72EC4F9AE02/zmNwmX29E9IOXsYWW1qe46KCprA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:96:f5:ef:45:08:36:56:09:81:63:aa:18:39:32:6b:48:92: 83:60:6e:08:58:90:b9:21:91:69:51:fc:bd:c3:19:70:82:89: 67:f7:59:f5:c6:f4:b2:a5:18:53:4a:4c:71:02:c0:97:d8:14: a0:c4:de:05:7e:98:6e:a6:cc:23:2b:06:a6:fb:06:21:f9:04: d7:39:38:ba:d1:e6:bc:b8:27:af:e6:93:7c:dc:65:ff:7d:c9: 98:01:17:c8:3d:6f:56:5a:8e:d1:9e:68:bc:fe:47:64:15:05: d9:d0:d5:7b:5e:90:ef:b4:27:8a:4a:91:2f:ec:61:5b:b4:5d: 88:33:81:0b:25:84:54:a9:a8:fe:4d:6d:c2:fe:d9:1e:a2:d3: a0:36:d6:10:19:70:48:19:87:a4:12:db:fa:5d:5e:68:83:eb: 23:56:94:f0:2c:91:48:4c:16:31:83:b6:27:25:6f:8e:9a:71: 34:76:78:f1:bf:9d:d3:66:a9:66:43:a4:78:31:ac:48:bd:ac: 1d:c0:f0:39:c2:6f:99:65:72:bf:46:a9:16:55:40:0d:ea:88: ef:91:ef:8a:35:86:9c:20:e4:39:7a:33:f4:eb:ad:03:3a:79: c9:e2:b9:2a:81:8d:c0:1a:d1:41:fc:fe:71:5c:dd:91:c2:a8: f5:c7:97:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDQTgxMTAvBgNVBAUTKENFNjM3MDk5N0RCRDEzRDIwRTVFQzYxNjVCNUE5RUUz QTI4MkE2QjAwHhcNMjQxMTIxMDQxOTMzWhcNMjQxMTI4MDQxOTMzWjAYMRYwFAYD VQQDEw02NzNlYjRkNi03YjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7i9iPpmrTHs9jY7FxeXdKplP9Tx02I7w+on93fOqnN7bJRR++qwg6z82QwHv KhC6VnMaM9PYxoMDRmQ0NIHuToTTbAJq1bCIOUESuAPeuVen/vzO9Q7e8Q0nwIpK JVVH0fFdQagA246UnM7HAfEJPxs27+ju5a0bpWaRRZE3Dbtqpx1uOQgYQ8sZk/V/ gRSiuVR9JXoNW5yD9W4uuA2B38362ku6FcZ3s8qTAuIbyLxrWHle3VGRIOzNEMGm 1XIm+qJAXsu28lYnHYuTJKU1QCEXAIXiiyFtZ+2nXmCz1667dVZ+Q6hfFPzFqzyw fpdcc6TsugeKn7cB4ZjSt5HNcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfmVXKH HVLFeJBtbj7zePJJGD7cMB8GA1UdIwQYMBaAFM5jcJl9vRPSDl7GFltanuOigqaw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNBOC9GOTcxNEFFNkFB RkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5SU9Yc1lXVzFxZTQ2S0Nw ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ptTndtWDI5RTlJT1hzWVdXMXFlNDZLQ3ByQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNBOC9GOTcxNEFFNkFBRkExMUVFQTIyMUU3MkVDNEY5QUUwMi96bU53bVgyOUU5 SU9Yc1lXVzFxZTQ2S0NwckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjlvXvRQg2VgmBY6oYOTJrSJKDYG4IWJC5IZFpUfy9wxlwgoln91n1 xvSypRhTSkxxAsCX2BSgxN4FfphupswjKwam+wYh+QTXOTi60ea8uCev5pN83GX/ fcmYARfIPW9WWo7Rnmi8/kdkFQXZ0NV7XpDvtCeKSpEv7GFbtF2IM4ELJYRUqaj+ TW3C/tkeotOgNtYQGXBIGYekEtv6XV5og+sjVpTwLJFITBYxg7YnJW+OmnE0dnjx v53TZqlmQ6R4MaxIvawdwPA5wm+ZZXK/RqkWVUAN6ojvke+KNYacIOQ5ejP0660D OnnJ4rkqgY3AGtFB/P5xXN2Rwqj1x5e5 -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:59 2024 by rpki-client on console-fra.rpki-client.org