$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft File: zfT3_b4nSk88Ji92EXceUi2uRfI.mft (raw, json) Hash identifier: jaJzExWdy+vW7kV0PtIn8fjV/kFs9WmkPJjHgbVkhT0= Subject key identifier: C7:E9:6E:C0:E1:55:56:A7:8A:CC:D2:B7:B9:4B:CA:6C:22:B3:5F:B8 Authority key identifier: CD:F4:F7:FD:BE:27:4A:4F:3C:26:2F:76:11:77:1E:52:2D:AE:45:F2 Certificate issuer: /CN=A91A4026/serialNumber=CDF4F7FDBE274A4F3C262F7611771E522DAE45F2 Certificate serial: 0BDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft Manifest number: 0BD3 Signing time: Fri 22 Nov 2024 18:32:16 +0000 Manifest this update: Fri 22 Nov 2024 18:32:16 +0000 Manifest next update: Fri 29 Nov 2024 18:32:16 +0000 Files and hashes: 1: zfT3_b4nSk88Ji92EXceUi2uRfI.crl (hash: ycWCBrdUAfXVOU7AIU+h5W55dvg1fZ3U/MzU6gm+Tak=) 2: 76DB2480090511EA8FFC6812C4F9AE02.roa (hash: O2LLRL8b/tm+vv16MRK3yWBKThY2uxl21s2tEaGgYZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.crl rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:32:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3036 (0xbdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4026/serialNumber=CDF4F7FDBE274A4F3C262F7611771E522DAE45F2 Validity Not Before: Nov 22 18:32:16 2024 GMT Not After : Nov 29 18:32:16 2024 GMT Subject: CN=6740ce30-fd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:13:b9:9d:c5:1f:c0:b0:28:07:9d:63:95:bc: b8:17:c8:34:fb:da:1e:47:c7:9b:a8:07:2e:d0:44: 44:c4:94:58:ca:ab:7b:92:dd:00:75:ac:90:f1:16: 51:25:3f:41:ac:a0:75:df:69:de:a0:87:a3:39:b2: ee:03:de:17:ba:59:85:c8:b2:eb:f2:e1:af:7f:8f: c0:b6:7c:2a:9f:fe:77:d2:5f:9b:2c:01:42:36:7d: fc:3a:1c:0d:45:ff:7c:0a:ca:6b:ed:e0:48:a5:a1: 3c:c5:95:6d:52:ac:3e:13:a5:be:28:f1:64:d4:24: 18:00:4e:ff:78:d0:96:56:40:40:7f:2f:f1:3d:30: 5f:08:fd:a8:6a:bb:13:d8:43:97:0c:5e:57:9a:3e: 30:97:87:22:21:70:86:78:d7:2d:00:b3:89:52:77: 6d:ff:79:ad:90:03:64:39:7e:0b:7e:de:29:07:3e: d0:15:96:73:c8:43:3c:36:d5:b5:d0:3c:ae:36:84: 90:cb:cf:7c:48:6c:fd:72:6f:f2:d6:db:48:03:0b: e0:24:8f:80:57:95:ad:af:82:d5:4f:29:33:78:57: 35:bb:28:b9:e2:d7:62:78:fa:cf:f6:27:1f:db:9e: 71:2f:cd:78:6f:a5:c0:11:ac:48:41:2f:d7:b4:3f: 66:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E9:6E:C0:E1:55:56:A7:8A:CC:D2:B7:B9:4B:CA:6C:22:B3:5F:B8 X509v3 Authority Key Identifier: keyid:CD:F4:F7:FD:BE:27:4A:4F:3C:26:2F:76:11:77:1E:52:2D:AE:45:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zfT3_b4nSk88Ji92EXceUi2uRfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4026/BC74C10A090411EAB20D5911C4F9AE02/zfT3_b4nSk88Ji92EXceUi2uRfI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ba:94:a7:74:61:0e:77:2f:27:bc:50:d6:b9:cd:27:d1:e9: 8e:b2:a7:c5:6d:a9:9c:dd:39:2f:89:4f:0f:b4:6b:bb:c9:5d: 4a:c3:41:ea:7f:d8:c4:d4:07:e8:2e:9b:87:7c:5d:d6:0e:b0: 67:65:79:62:9f:3a:ef:7b:63:05:d9:48:4a:65:af:f4:97:6d: 72:8d:97:79:1b:59:a6:dc:47:85:27:c1:6d:a4:1e:ed:a2:e2: 4e:1c:2d:07:c3:43:f5:ea:2e:97:05:0e:da:e1:ff:ff:da:f0: b7:1a:34:6f:6a:fb:b0:2c:4d:b0:b8:70:d1:5b:0b:e3:b0:38: 3b:4e:cf:e4:81:af:c6:ed:c7:82:e6:5d:cd:62:4f:46:7f:36: cc:e3:b9:8a:86:3f:94:d9:e2:19:c8:e2:e2:cf:5b:98:c6:88: 2b:06:17:71:91:8e:91:6b:b2:35:96:e9:4a:63:0c:9d:8f:72: c9:b7:f1:2a:03:0f:f7:87:44:10:f7:58:2d:49:66:9f:67:23: 15:cc:5b:58:5d:b3:c4:5e:70:b5:d8:fb:30:c2:85:26:cb:ab: e7:75:b0:6b:a9:92:f7:7d:4f:a7:e1:d9:94:f6:c6:c0:06:25: b6:73:9c:b9:29:8b:95:d7:cd:30:b6:31:34:84:f9:20:f1:c7: 0f:bd:24:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQwMjYxMTAvBgNVBAUTKENERjRGN0ZEQkUyNzRBNEYzQzI2MkY3NjExNzcxRTUy MkRBRTQ1RjIwHhcNMjQxMTIyMTgzMjE2WhcNMjQxMTI5MTgzMjE2WjAYMRYwFAYD VQQDEw02NzQwY2UzMC1mZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBO5ncUfwLAoB51jlby4F8g0+9oeR8ebqAcu0ERExJRYyqt7kt0AdayQ8RZR JT9BrKB132neoIejObLuA94XulmFyLLr8uGvf4/Atnwqn/530l+bLAFCNn38OhwN Rf98Cspr7eBIpaE8xZVtUqw+E6W+KPFk1CQYAE7/eNCWVkBAfy/xPTBfCP2oarsT 2EOXDF5Xmj4wl4ciIXCGeNctALOJUndt/3mtkANkOX4Lft4pBz7QFZZzyEM8NtW1 0DyuNoSQy898SGz9cm/y1ttIAwvgJI+AV5Wtr4LVTykzeFc1uyi54tdiePrP9icf 255xL814b6XAEaxIQS/XtD9mQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfpbsDh VVaniszSt7lLymwis1+4MB8GA1UdIwQYMBaAFM309/2+J0pPPCYvdhF3HlItrkXy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDAyNi9CQzc0QzEwQTA5 MDQxMUVBQjIwRDU5MTFDNEY5QUUwMi96ZlQzX2I0blNrODhKaTkyRVhjZVVpMnVS ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmVDNfYjRuU2s4OEppOTJFWGNlVWkydVJmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDAyNi9CQzc0QzEwQTA5MDQxMUVBQjIwRDU5MTFDNEY5QUUwMi96ZlQzX2I0blNr ODhKaTkyRVhjZVVpMnVSZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDupSndGEOdy8nvFDWuc0n0emOsqfFbamc3TkviU8PtGu7yV1Kw0Hq f9jE1AfoLpuHfF3WDrBnZXlinzrve2MF2UhKZa/0l21yjZd5G1mm3EeFJ8FtpB7t ouJOHC0Hw0P16i6XBQ7a4f//2vC3GjRvavuwLE2wuHDRWwvjsDg7Ts/kga/G7ceC 5l3NYk9GfzbM47mKhj+U2eIZyOLiz1uYxogrBhdxkY6Ra7I1lulKYwydj3LJt/Eq Aw/3h0QQ91gtSWafZyMVzFtYXbPEXnC12PswwoUmy6vndbBrqZL3fU+n4dmU9sbA BiW2c5y5KYuV180wtjE0hPkg8ccPvSR3 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org