$ rpki-client -vvf rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft File: ZwbZhOcxaBICGI0pntNfAFsBdYA.mft (raw, json) Hash identifier: wrb2sTZ2J304r1+3sA5iA7HxPgBC218/d2e6KOBeBzs= Subject key identifier: 77:8D:0A:6A:31:C3:EC:48:08:E7:0A:A2:B9:35:F8:FD:2A:62:8A:3C Authority key identifier: 67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 Certificate issuer: /CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Certificate serial: 3425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft Manifest number: 3425 Signing time: Sun 24 Nov 2024 14:39:56 +0000 Manifest this update: Sun 24 Nov 2024 14:39:56 +0000 Manifest next update: Sun 01 Dec 2024 14:39:56 +0000 Files and hashes: 1: ZwbZhOcxaBICGI0pntNfAFsBdYA.crl (hash: 50lRwX2j7zeUlAxZ6QK/gtY5cExt+agVUnafWcYqYRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13349 (0x3425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DCDA/serialNumber=6706D984E731681202188D299ED35F005B017580 Validity Not Before: Nov 24 14:39:56 2024 GMT Not After : Dec 1 14:39:56 2024 GMT Subject: CN=67433abc-ada3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ef:0b:bb:cc:77:9e:ec:27:f0:ee:d9:64:a8: 2c:12:5e:7d:97:cc:5e:05:89:7e:0a:65:0c:85:76: aa:c4:b5:2c:ea:15:84:ca:93:03:fc:3f:d4:36:b7: 1c:8d:e4:c8:01:12:e2:b3:5e:b9:22:80:42:af:a9: 22:99:65:a3:7d:41:6a:45:06:16:d0:11:4b:80:95: c9:3e:d5:5f:40:2b:41:22:bb:ef:52:48:c2:57:74: 99:1c:0e:29:10:f7:9a:47:79:e2:ea:a6:a3:92:14: bc:70:85:36:63:7a:62:77:8b:c2:ba:59:ef:5e:80: a0:e1:c6:4c:0a:a3:d6:c1:a5:a2:ac:59:5a:08:76: 8b:b9:b5:31:49:90:6a:53:3f:c8:f6:f5:43:af:4c: 4b:7c:6e:64:cb:74:9a:2d:a2:ea:00:67:09:d4:61: 60:c5:6b:62:75:f6:df:65:83:03:ea:a5:48:4d:1e: 23:89:65:9f:32:37:21:2f:29:b5:6a:90:aa:db:d4: cc:8c:98:60:ed:5f:8a:43:d8:85:54:66:67:6b:48: 11:2a:ad:71:7f:ac:6c:bd:8b:0a:6e:53:48:de:d3: 45:b9:c9:a9:7c:d4:87:d9:72:59:32:38:d7:b3:f8: 27:a0:12:11:49:66:ab:4a:7a:f0:ed:b9:34:b5:4f: 6a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8D:0A:6A:31:C3:EC:48:08:E7:0A:A2:B9:35:F8:FD:2A:62:8A:3C X509v3 Authority Key Identifier: keyid:67:06:D9:84:E7:31:68:12:02:18:8D:29:9E:D3:5F:00:5B:01:75:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZwbZhOcxaBICGI0pntNfAFsBdYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DCDA/192E71F61D9011E2B295ABEF08B02CD2/ZwbZhOcxaBICGI0pntNfAFsBdYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:54:9d:0a:a0:02:81:a2:95:13:8f:30:7c:2e:b1:25:53:9d: 02:8c:e6:a3:ac:e9:06:60:e9:74:7c:14:12:6d:27:72:d4:46: c4:48:04:58:72:c4:f7:99:56:1f:8e:e2:c9:4a:39:45:85:73: 32:ee:fa:e2:fe:07:95:ee:2f:df:40:76:9c:2f:f4:c9:5f:b1: db:d1:6f:82:21:bb:97:65:88:1e:a9:1d:2e:9e:cf:8b:de:71: dc:98:de:78:c4:a8:1c:49:f8:07:34:d2:2d:32:2f:f4:01:9b: 66:ec:5a:23:9a:91:bd:a8:6c:fa:c5:d1:1f:3e:9a:2e:b0:fb: bf:46:28:43:4c:21:b9:82:67:a8:a0:e7:0c:a6:a1:73:8c:f0: 06:07:77:e0:04:43:eb:15:92:21:fd:9a:65:05:0a:8f:de:dd: 81:76:d6:c0:ad:dd:81:42:6c:f2:d0:3b:00:14:8d:d5:4f:b4: de:40:db:a7:b4:cc:4f:c2:b4:d1:f7:89:64:51:d0:63:13:b9: 99:23:d9:5b:65:92:bd:ad:f7:38:a5:fe:4e:5e:03:b2:2d:7f: d4:dd:0b:a0:ac:7e:f4:ad:2e:70:1d:8d:8d:bb:39:9d:ba:5b: 85:71:dd:34:f3:fe:59:e8:cd:1a:5a:d8:d1:fe:0d:08:1c:be: 57:a1:5c:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RDREExMTAvBgNVBAUTKDY3MDZEOTg0RTczMTY4MTIwMjE4OEQyOTlFRDM1RjAw NUIwMTc1ODAwHhcNMjQxMTI0MTQzOTU2WhcNMjQxMjAxMTQzOTU2WjAYMRYwFAYD VQQDEw02NzQzM2FiYy1hZGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO8Lu8x3nuwn8O7ZZKgsEl59l8xeBYl+CmUMhXaqxLUs6hWEypMD/D/UNrcc jeTIARLis165IoBCr6kimWWjfUFqRQYW0BFLgJXJPtVfQCtBIrvvUkjCV3SZHA4p EPeaR3ni6qajkhS8cIU2Y3pid4vCulnvXoCg4cZMCqPWwaWirFlaCHaLubUxSZBq Uz/I9vVDr0xLfG5ky3SaLaLqAGcJ1GFgxWtidfbfZYMD6qVITR4jiWWfMjchLym1 apCq29TMjJhg7V+KQ9iFVGZna0gRKq1xf6xsvYsKblNI3tNFucmpfNSH2XJZMjjX s/gnoBIRSWarSnrw7bk0tU9qmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeNCmox w+xICOcKork1+P0qYoo8MB8GA1UdIwQYMBaAFGcG2YTnMWgSAhiNKZ7TXwBbAXWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RENEQS8xOTJFNzFGNjFE OTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFCSUNHSTBwbnROZkFGc0Jk WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3YlpoT2N4YUJJQ0dJMHBudE5mQUZzQmRZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RENEQS8xOTJFNzFGNjFEOTAxMUUyQjI5NUFCRUYwOEIwMkNEMi9ad2JaaE9jeGFC SUNHSTBwbnROZkFGc0JkWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBVJ0KoAKBopUTjzB8LrElU50CjOajrOkGYOl0fBQSbSdy1EbESARY csT3mVYfjuLJSjlFhXMy7vri/geV7i/fQHacL/TJX7Hb0W+CIbuXZYgeqR0uns+L 3nHcmN54xKgcSfgHNNItMi/0AZtm7FojmpG9qGz6xdEfPpousPu/RihDTCG5gmeo oOcMpqFzjPAGB3fgBEPrFZIh/ZplBQqP3t2BdtbArd2BQmzy0DsAFI3VT7TeQNun tMxPwrTR94lkUdBjE7mZI9lbZZK9rfc4pf5OXgOyLX/U3QugrH70rS5wHY2Nuzmd uluFcd008/5Z6M0aWtjR/g0IHL5XoVwq -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:18 2024 by rpki-client on console-ams.rpki-client.org