$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft File: ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft (raw, json) Hash identifier: RTdcYFUCakBn83gboyPzc45db9YjUNSzhFk/VNwFvt0= Subject key identifier: 83:C2:2C:EA:8C:19:D5:B7:D7:26:80:F7:06:B4:E4:7D:B2:0A:ED:13 Authority key identifier: 66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9 Certificate issuer: /CN=A91A12C4/serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft Manifest number: 2A Signing time: Sat 23 Nov 2024 05:40:53 +0000 Manifest this update: Sat 23 Nov 2024 05:40:52 +0000 Manifest next update: Sat 30 Nov 2024 05:40:52 +0000 Files and hashes: 1: ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl (hash: deS9zQXLYfGbzQxabAt+xamZsxoRg0wV11s69JQlt68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4/serialNumber=66C5B1904B35C47D94508EC0A1ACDA8368DEF4A9 Validity Not Before: Nov 23 05:40:52 2024 GMT Not After : Nov 30 05:40:52 2024 GMT Subject: CN=67416ae4-12d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cc:73:28:86:70:9d:e9:51:e8:8a:2b:82:d5: da:cd:ab:cc:35:a3:9b:64:fc:e2:ca:8f:93:8c:42: 61:41:cf:23:3f:4b:d2:12:3e:9f:ed:15:8d:14:f6: dc:e1:c2:40:da:34:44:d5:64:f6:b1:75:bd:8c:38: 4e:9c:09:dd:fd:60:91:24:ac:1c:2c:c8:1f:68:c9: 49:f5:1a:33:ae:f5:a5:13:29:6d:0e:b1:3f:25:08: 6c:c8:17:99:35:a5:8a:ba:98:a5:a3:06:c2:3c:1e: 28:ca:44:92:17:d6:c9:87:fd:7d:84:62:91:84:64: 0f:f8:81:8a:3d:bc:69:0a:96:d9:46:df:a3:5e:4e: 67:07:a4:c1:d0:e5:3a:25:07:30:be:1b:d3:78:2c: 8b:d0:56:e2:9d:4c:ab:78:b8:e8:7e:b8:af:fa:f0: 2c:6b:eb:c5:79:29:f4:85:53:7a:3a:73:64:f3:97: a6:f4:c4:2c:c8:50:45:f1:d6:4c:57:97:c4:9f:2d: 3b:bf:e5:fc:5d:aa:eb:96:c1:6e:b9:a8:bd:02:83: 69:72:bd:bd:30:2f:9d:69:dd:a8:3c:9b:22:6c:cf: 54:a4:86:f7:b4:f7:25:16:f3:45:23:08:90:d4:db: 85:4f:37:bf:f8:e1:e9:c1:88:7d:66:fb:d5:91:a4: fb:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C2:2C:EA:8C:19:D5:B7:D7:26:80:F7:06:B4:E4:7D:B2:0A:ED:13 X509v3 Authority Key Identifier: keyid:66:C5:B1:90:4B:35:C4:7D:94:50:8E:C0:A1:AC:DA:83:68:DE:F4:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsWxkEs1xH2UUI7Aoazag2je9Kk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/FBF14E726C1711EFBDBFD50BC4F9AE02/ZsWxkEs1xH2UUI7Aoazag2je9Kk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:86:b7:19:1d:ce:de:63:22:6c:7b:b6:13:c0:b0:ce:db:b0: 39:c4:c3:81:98:17:c5:94:07:aa:89:ee:e4:dc:df:b5:be:93: f5:b6:14:1e:95:1c:a2:1d:a7:c8:cd:31:ab:03:d9:f8:1b:a7: 8b:08:f6:59:87:6d:65:6a:02:85:33:26:8b:c3:d2:83:e1:5f: 77:c0:d1:b5:f7:a8:2a:64:30:15:12:5f:97:50:e0:83:16:a0: 7a:aa:2c:d6:37:29:49:4a:51:a0:13:07:92:b2:9d:97:aa:e5: 7e:d9:67:c3:54:ce:9f:1c:1a:6b:d1:71:f3:25:09:ab:62:0a: eb:4e:7f:f0:c2:c4:80:2b:b9:24:fd:14:f4:c9:be:f7:58:d9: b9:a8:50:1e:e2:e4:9a:d4:23:c1:a6:bb:3e:75:41:f3:24:9f: e4:72:44:c4:c3:ee:ed:79:13:e0:7b:1c:03:9d:3a:0e:ff:c2: 99:5e:92:16:c9:3d:17:cd:85:4f:14:47:ee:d1:50:ea:33:90: 0d:ef:93:fa:67:33:09:32:10:90:eb:b2:f1:8f:8d:9f:fd:06: 4f:87:9a:58:c6:d9:40:d5:61:0c:4f:6f:94:44:3b:27:5b:d0: ba:ef:2b:8c:b5:71:d8:9c:e8:b1:5a:c3:c1:06:35:4a:db:25: e6:d8:7d:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoNjZDNUIxOTA0QjM1QzQ3RDk0NTA4RUMwQTFBQ0RBODM2 OERFRjRBOTAeFw0yNDExMjMwNTQwNTJaFw0yNDExMzAwNTQwNTJaMBgxFjAUBgNV BAMTDTY3NDE2YWU0LTEyZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVzHMohnCd6VHoiiuC1drNq8w1o5tk/OLKj5OMQmFBzyM/S9ISPp/tFY0U9tzh wkDaNETVZPaxdb2MOE6cCd39YJEkrBwsyB9oyUn1GjOu9aUTKW0OsT8lCGzIF5k1 pYq6mKWjBsI8HijKRJIX1smH/X2EYpGEZA/4gYo9vGkKltlG36NeTmcHpMHQ5Tol BzC+G9N4LIvQVuKdTKt4uOh+uK/68Cxr68V5KfSFU3o6c2Tzl6b0xCzIUEXx1kxX l8SfLTu/5fxdquuWwW65qL0Cg2lyvb0wL51p3ag8myJsz1Skhve09yUW80UjCJDU 24VPN7/44enBiH1m+9WRpPszAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg8Is6owZ 1bfXJoD3BrTkfbIK7RMwHwYDVR0jBBgwFoAUZsWxkEs1xH2UUI7Aoazag2je9Kkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0ZCRjE0RTcyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL1pzV3hrRXMxeEgyVVVJN0FvYXphZzJqZTlL ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNXeGtFczF4SDJVVUk3QW9hemFnMmplOUtrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MkM0L0ZCRjE0RTcyNkMxNzExRUZCREJGRDUwQkM0RjlBRTAyL1pzV3hrRXMxeEgy VVVJN0FvYXphZzJqZTlLay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJqGtxkdzt5jImx7thPAsM7bsDnEw4GYF8WUB6qJ7uTc37W+k/W2FB6V HKIdp8jNMasD2fgbp4sI9lmHbWVqAoUzJovD0oPhX3fA0bX3qCpkMBUSX5dQ4IMW oHqqLNY3KUlKUaATB5KynZeq5X7ZZ8NUzp8cGmvRcfMlCatiCutOf/DCxIAruST9 FPTJvvdY2bmoUB7i5JrUI8Gmuz51QfMkn+RyRMTD7u15E+B7HAOdOg7/wplekhbJ PRfNhU8UR+7RUOozkA3vk/pnMwkyEJDrsvGPjZ/9Bk+HmljG2UDVYQxPb5REOydb 0LrvK4y1cdic6LFaw8EGNUrbJebYff0= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org