$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: Chc5wFrLjLPqZGWLToYSBlX2L2TmCnXvM+/xRAVWFuw= Subject key identifier: 11:BD:59:B2:E6:0F:7B:76:B2:C8:5A:07:8A:83:10:93:F1:1C:ED:12 Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 04C2 Signing time: Fri 22 Nov 2024 23:23:33 +0000 Manifest this update: Fri 22 Nov 2024 23:23:33 +0000 Manifest next update: Fri 29 Nov 2024 23:23:33 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: b2pldED3brPKY3+wBrX8RUKXA73ga/39J4b0/mew7cQ=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: LKaE5Y785UxVOloyK6YaYndhpDYFIUGPJ/ZUzeCp7AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Nov 22 23:23:33 2024 GMT Not After : Nov 29 23:23:33 2024 GMT Subject: CN=67411275-7099 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:84:d9:35:12:ca:c4:08:01:bd:81:c9:13: fe:80:86:d6:cd:f3:3d:76:17:45:fe:68:54:bf:90: df:62:fd:66:39:09:e7:14:6a:f6:0e:f3:d8:f6:db: 1b:18:13:9a:44:65:a5:4d:a2:35:e2:3d:5f:69:7c: 7a:e1:94:d6:d1:8c:df:b0:23:f3:31:5a:2f:00:f4: 6e:b1:ef:6a:c7:48:46:93:ce:e1:e7:50:45:be:d9: af:1c:ef:8d:93:fa:b9:b7:a2:d5:42:f2:84:47:f8: ea:d3:73:83:ab:ce:ec:f3:26:8c:51:73:89:94:7e: 18:ad:d7:bb:63:67:10:98:b8:b9:89:30:2a:9f:20: 91:50:63:b4:71:1e:f0:f5:f0:df:28:f4:07:45:b9: 3e:54:d2:6f:35:14:5d:19:58:86:79:41:39:d3:df: 38:64:e7:69:ee:05:e5:8a:8c:e7:c1:13:10:04:88: 71:22:3c:35:c4:98:4d:d5:f0:b9:84:16:62:52:c9: d8:e6:79:0f:1d:93:f2:b8:83:ce:49:73:a4:2a:79: 08:e7:25:c9:95:c6:47:33:c9:ff:de:02:76:7c:33: d4:f2:e9:2c:d1:63:cc:7b:5d:b1:ff:5a:d7:83:95: 0d:c7:a7:6a:30:4c:eb:87:25:b7:fe:2c:9b:36:75: 7b:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BD:59:B2:E6:0F:7B:76:B2:C8:5A:07:8A:83:10:93:F1:1C:ED:12 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:83:b2:83:58:58:11:25:1b:e6:0a:44:d3:f8:b8:15:b0:66: 62:9d:c8:03:38:de:ae:18:04:50:34:d8:3d:1e:ad:ea:a6:09: ce:7d:9a:28:31:1e:ae:cd:01:7a:9a:25:ed:55:4c:bb:c0:e3: 9c:77:46:fe:0a:9c:d0:6d:88:f8:38:4b:3e:4b:b5:a9:95:77: 65:a1:f3:cf:7a:a2:48:76:d4:ef:f6:16:45:11:a3:1a:09:bb: 03:31:e7:1d:f7:ae:f3:91:fa:ea:7a:7d:7c:e4:9a:d2:ec:4f: d6:13:a2:80:dc:dd:d1:df:2d:17:c7:3a:21:b7:02:eb:97:6b: 01:64:06:34:17:74:e9:79:8d:33:97:12:eb:64:e5:75:b1:4c: 21:3d:7a:f5:62:72:31:ae:c7:61:95:cc:39:9a:24:95:65:2a: 01:d2:20:05:21:70:c1:bc:b6:86:58:57:ca:9e:0c:39:72:62: 77:27:c2:5f:7d:03:30:df:02:02:43:b5:d8:3b:45:3c:19:c9: 16:33:0c:4b:e9:fa:f9:5f:ef:6d:3c:72:32:08:40:28:4b:8b: bf:a9:6e:a5:5b:ab:9d:75:1a:36:62:02:1a:eb:8d:6c:62:57: 22:73:16:4f:14:00:96:1d:5b:45:2a:31:85:fd:2b:1c:c5:33: 71:ce:64:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjQxMTIyMjMyMzMzWhcNMjQxMTI5MjMyMzMzWjAYMRYwFAYD VQQDEw02NzQxMTI3NS03MDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfyE2TUSysQIAb2ByRP+gIbWzfM9dhdF/mhUv5DfYv1mOQnnFGr2DvPY9tsb GBOaRGWlTaI14j1faXx64ZTW0YzfsCPzMVovAPRuse9qx0hGk87h51BFvtmvHO+N k/q5t6LVQvKER/jq03ODq87s8yaMUXOJlH4Yrde7Y2cQmLi5iTAqnyCRUGO0cR7w 9fDfKPQHRbk+VNJvNRRdGViGeUE50984ZOdp7gXlioznwRMQBIhxIjw1xJhN1fC5 hBZiUsnY5nkPHZPyuIPOSXOkKnkI5yXJlcZHM8n/3gJ2fDPU8uks0WPMe12x/1rX g5UNx6dqMEzrhyW3/iybNnV7JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG9WbLm D3t2sshaB4qDEJPxHO0SMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsg7KDWFgRJRvmCkTT+LgVsGZincgDON6uGARQNNg9Hq3qpgnOfZoo MR6uzQF6miXtVUy7wOOcd0b+CpzQbYj4OEs+S7WplXdlofPPeqJIdtTv9hZFEaMa CbsDMecd967zkfrqen185JrS7E/WE6KA3N3R3y0XxzohtwLrl2sBZAY0F3TpeY0z lxLrZOV1sUwhPXr1YnIxrsdhlcw5miSVZSoB0iAFIXDBvLaGWFfKngw5cmJ3J8Jf fQMw3wICQ7XYO0U8GckWMwxL6fr5X+9tPHIyCEAoS4u/qW6lW6uddRo2YgIa641s YlcicxZPFACWHVtFKjGF/SscxTNxzmQw -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org