$ rpki-client -vvf rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft File: zPugs5k5MOsTt6JZJyqoEfh0SyM.mft (raw, json) Hash identifier: tgqZsL94vHsmLfHfTKK0lr8Rn+KgF8HTNJ1k4vKwvEo= Subject key identifier: A1:96:66:F7:D6:0D:19:25:F2:36:55:13:01:B4:D8:EA:B1:0C:79:7D Authority key identifier: CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 Certificate issuer: /CN=A9191D22/serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Certificate serial: 0992 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft Manifest number: 098A Signing time: Fri 22 Nov 2024 19:51:30 +0000 Manifest this update: Fri 22 Nov 2024 19:51:29 +0000 Manifest next update: Fri 29 Nov 2024 19:51:29 +0000 Files and hashes: 1: zPugs5k5MOsTt6JZJyqoEfh0SyM.crl (hash: oXOFGx+DoMTeI+YDpVSkxhmoGFDFh3hQyRcb0cAwE3k=) 2: 047A427C7E2B11EAB1B5B00DC4F9AE02.roa (hash: vYfbYGbaZtOjNPwwYTLo3cpgHwXTvaA/VLhLM/0gXjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:51:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2450 (0x992) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191D22/serialNumber=CCFBA0B3993930EB13B7A259272AA811F8744B23 Validity Not Before: Nov 22 19:51:29 2024 GMT Not After : Nov 29 19:51:29 2024 GMT Subject: CN=6740e0c1-f7e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e2:53:d3:19:51:94:c3:91:34:90:28:14:a9: 1a:c3:7f:46:56:59:8c:4e:13:96:12:5e:69:d8:e9: 2f:42:74:bd:7d:eb:fb:86:90:80:f6:d7:38:e2:cf: a5:5a:d4:5f:49:5d:04:7e:09:62:58:78:cf:f6:63: cf:2f:49:eb:0e:c3:df:81:89:7f:54:15:90:60:f8: 37:7b:9a:0f:70:4e:67:c9:fc:7c:7b:29:f2:ed:54: 0b:af:fb:38:11:2b:5e:fa:78:1f:e4:90:e5:80:32: 1f:6e:93:b0:50:1a:82:fe:4b:1c:d4:88:e7:49:28: e4:cb:c8:12:45:61:ff:35:df:e1:2f:84:82:cb:ce: 56:13:cf:fe:4f:f3:af:62:51:33:82:60:97:64:44: bb:d7:8e:d2:b4:2d:a3:cc:82:55:85:20:8c:69:97: 21:dd:31:33:3b:10:ae:ab:77:fc:93:40:94:5a:95: 5c:88:fb:0d:5c:bb:d5:71:b9:7c:04:69:b7:cc:cf: 88:b0:dc:25:94:c3:8f:58:63:6b:7c:fc:2c:c6:21: 81:29:7a:e0:6e:3a:78:01:50:48:e3:62:a9:fb:f5: 90:5e:35:4f:a4:55:d9:71:d6:38:d1:3a:a2:35:27: 8a:85:c5:50:d3:53:55:ba:5b:9c:aa:61:d4:5c:a9: 7f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:96:66:F7:D6:0D:19:25:F2:36:55:13:01:B4:D8:EA:B1:0C:79:7D X509v3 Authority Key Identifier: keyid:CC:FB:A0:B3:99:39:30:EB:13:B7:A2:59:27:2A:A8:11:F8:74:4B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPugs5k5MOsTt6JZJyqoEfh0SyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191D22/284001EC7B1F11EA858BCD86C4F9AE02/zPugs5k5MOsTt6JZJyqoEfh0SyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4b:f4:eb:25:29:2d:9e:e7:d7:54:f7:25:e3:dd:89:79:bf: 1a:f3:38:42:3e:25:55:78:58:40:9f:07:6f:fb:46:3f:c0:ca: 1d:bf:7e:1e:21:0c:4b:5f:4b:91:e4:3b:1d:1d:4b:b5:ce:9a: 82:bc:5b:29:b7:c4:b1:68:c2:91:3b:3b:34:07:3f:31:59:31: 92:89:03:a0:8b:04:14:f8:79:bc:55:f0:3c:e8:a6:26:fe:21: 30:74:9e:10:db:45:10:e2:ff:4d:a8:56:2d:08:67:0d:5c:95: 1a:50:6b:6d:50:2e:ff:f4:14:f7:d8:c2:77:31:64:7f:69:c2: 34:46:39:44:5d:9d:fb:70:4e:8f:1d:11:81:5b:ef:a5:19:62: 60:30:9b:9a:e3:ba:e3:56:4a:8c:27:13:01:ee:d0:d4:10:2b: de:e0:16:37:83:af:ee:15:6b:f6:85:2d:cc:15:1f:c2:ee:2e: d4:70:01:fb:c4:b6:d5:3d:d1:b5:90:a7:61:af:3a:72:e6:2a: 9b:c4:53:fe:a5:6e:1a:ad:fb:d1:4e:6d:b3:cf:29:68:db:cf: 5b:5d:0b:23:3c:e3:7d:ab:8c:03:a7:1c:00:64:0d:1f:3a:e7: d7:58:34:8d:f5:d0:3c:e4:3a:76:d0:ea:b9:8c:18:22:d0:57: 72:5c:59:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFEMjIxMTAvBgNVBAUTKENDRkJBMEIzOTkzOTMwRUIxM0I3QTI1OTI3MkFBODEx Rjg3NDRCMjMwHhcNMjQxMTIyMTk1MTI5WhcNMjQxMTI5MTk1MTI5WjAYMRYwFAYD VQQDEw02NzQwZTBjMS1mN2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+JT0xlRlMORNJAoFKkaw39GVlmMThOWEl5p2OkvQnS9fev7hpCA9tc44s+l WtRfSV0EfgliWHjP9mPPL0nrDsPfgYl/VBWQYPg3e5oPcE5nyfx8eyny7VQLr/s4 ESte+ngf5JDlgDIfbpOwUBqC/ksc1IjnSSjky8gSRWH/Nd/hL4SCy85WE8/+T/Ov YlEzgmCXZES7147StC2jzIJVhSCMaZch3TEzOxCuq3f8k0CUWpVciPsNXLvVcbl8 BGm3zM+IsNwllMOPWGNrfPwsxiGBKXrgbjp4AVBI42Kp+/WQXjVPpFXZcdY40Tqi NSeKhcVQ01NVulucqmHUXKl/EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGWZvfW DRkl8jZVEwG02OqxDHl9MB8GA1UdIwQYMBaAFMz7oLOZOTDrE7eiWScqqBH4dEsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUQyMi8yODQwMDFFQzdC MUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1Pc1R0NkpaSnlxb0VmaDBT eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQdWdzNWs1TU9zVHQ2SlpKeXFvRWZoMFN5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MUQyMi8yODQwMDFFQzdCMUYxMUVBODU4QkNEODZDNEY5QUUwMi96UHVnczVrNU1P c1R0NkpaSnlxb0VmaDBTeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXS/TrJSktnufXVPcl492Jeb8a8zhCPiVVeFhAnwdv+0Y/wModv34e IQxLX0uR5DsdHUu1zpqCvFspt8SxaMKROzs0Bz8xWTGSiQOgiwQU+Hm8VfA86KYm /iEwdJ4Q20UQ4v9NqFYtCGcNXJUaUGttUC7/9BT32MJ3MWR/acI0RjlEXZ37cE6P HRGBW++lGWJgMJua47rjVkqMJxMB7tDUECve4BY3g6/uFWv2hS3MFR/C7i7UcAH7 xLbVPdG1kKdhrzpy5iqbxFP+pW4arfvRTm2zzylo289bXQsjPON9q4wDpxwAZA0f OufXWDSN9dA85Dp20Oq5jBgi0FdyXFku -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:35 2024 by rpki-client on console-ams.rpki-client.org