$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft File: ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft (raw, json) Hash identifier: zDH86r+TAQCdEE34xnUkIytnNPgQOJcyKGWc6cdAGug= Subject key identifier: 85:A8:D9:A0:67:39:06:9B:0C:B6:D9:1A:16:BB:BE:C3:06:7B:0D:86 Authority key identifier: 65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 Certificate issuer: /CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Certificate serial: 16A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft Manifest number: 169D Signing time: Fri 22 Nov 2024 16:41:18 +0000 Manifest this update: Fri 22 Nov 2024 16:41:18 +0000 Manifest next update: Fri 29 Nov 2024 16:41:18 +0000 Files and hashes: 1: ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl (hash: MiErYD590VwKSGdyEs8D65lkRXU5AhjO3Npo90LzL6k=) 2: 314E917C651E11E8A8903D42C4F9AE02.roa (hash: RnPGEfV6shc3FzcBRmER7fg9U9kjWKrlb9yCQ0fI2KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5800 (0x16a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8219/serialNumber=6553C3C2180B97E2EB37CB71F6A1CEAA7B95CA47 Validity Not Before: Nov 22 16:41:18 2024 GMT Not After : Nov 29 16:41:18 2024 GMT Subject: CN=6740b42e-7e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a7:a7:a6:93:a8:8b:0c:dd:b7:57:69:fa:5a: 99:ab:52:5f:d6:02:e0:2c:8a:82:2e:86:f1:0f:e2: 28:f8:87:fc:2e:6d:d7:27:5f:f5:10:c0:c6:8e:ca: 79:a5:65:ba:c6:43:4f:3b:b3:74:ca:82:9f:68:ed: 27:43:37:9b:93:19:18:38:a3:60:ff:ed:fc:af:63: 17:a4:9f:b6:89:78:65:0b:15:35:ba:35:18:a7:a7: 46:64:3d:15:24:24:55:5e:90:df:9a:99:d6:dd:25: 86:68:3f:c8:63:ba:78:c4:6f:95:5b:c0:c2:08:c6: ca:e6:1c:9e:9f:68:bf:55:41:c6:08:e3:c7:30:66: fe:6c:69:b2:e7:f1:60:95:5f:b7:e9:b5:73:7b:65: 6a:b6:5f:be:85:2c:2e:a4:b1:b0:d4:13:41:2e:8e: ab:f9:db:0c:c8:44:2c:cc:34:2e:37:66:78:c2:17: 8b:4f:ca:2a:01:87:05:9a:39:1b:17:f0:12:54:d0: 5b:31:3d:4f:75:fb:7d:b5:99:81:f8:65:b8:89:88: 83:f8:f9:10:6c:4e:9b:62:ad:24:78:a2:0f:cb:10: b6:e4:9b:6f:b4:1a:82:f6:13:9e:02:56:ba:33:68: ab:a8:44:74:ba:ff:63:42:8b:7e:ec:3f:44:cd:b5: 0f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A8:D9:A0:67:39:06:9B:0C:B6:D9:1A:16:BB:BE:C3:06:7B:0D:86 X509v3 Authority Key Identifier: keyid:65:53:C3:C2:18:0B:97:E2:EB:37:CB:71:F6:A1:CE:AA:7B:95:CA:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZVPDwhgLl-LrN8tx9qHOqnuVykc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8219/EC0A70F8EA8011E78B42A432C4F9AE02/ZVPDwhgLl-LrN8tx9qHOqnuVykc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:ec:55:15:63:4b:a3:2d:84:1d:89:f0:76:cb:2d:49:5a:e4: c0:19:2f:4e:d7:09:43:cc:66:f6:31:67:fd:48:35:0a:6a:c5: f0:5e:34:84:58:97:ea:3e:22:9c:21:22:bc:04:59:64:7a:e9: fa:d8:1f:00:f4:75:c0:d3:ac:3c:0b:6e:73:d5:c1:a5:73:f9: ab:67:d3:64:dd:76:58:60:f6:5e:67:19:78:19:33:99:3b:c5: a9:e3:9f:7f:d2:35:62:67:c3:10:53:13:9f:12:51:4a:33:2b: 78:d1:3d:9f:2a:f1:a3:59:22:83:14:08:e0:b8:a0:8a:45:9a: b1:10:d0:5b:70:28:cd:a2:38:fc:f4:5c:e6:f1:2e:90:9a:ce: 4f:ac:49:fb:73:71:11:b9:6b:b3:a4:d6:b4:4d:33:19:07:d5: aa:07:4d:2a:e6:05:16:fc:79:83:be:13:3d:ee:6a:4d:21:71: 40:60:a2:78:2f:5f:fd:65:c7:af:55:bc:05:cc:62:d4:6e:7b: a6:15:81:75:e7:a1:46:e6:b8:fe:e7:28:a3:6c:0d:19:83:5c: 59:0e:66:80:90:2b:49:8c:10:46:32:f6:40:44:39:cb:35:39: 87:fe:85:34:97:a8:ce:14:a5:7c:24:c8:2b:b2:fe:75:d0:ed: 11:77:18:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMTkxMTAvBgNVBAUTKDY1NTNDM0MyMTgwQjk3RTJFQjM3Q0I3MUY2QTFDRUFB N0I5NUNBNDcwHhcNMjQxMTIyMTY0MTE4WhcNMjQxMTI5MTY0MTE4WjAYMRYwFAYD VQQDEw02NzQwYjQyZS03ZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6enppOoiwzdt1dp+lqZq1Jf1gLgLIqCLobxD+Io+If8Lm3XJ1/1EMDGjsp5 pWW6xkNPO7N0yoKfaO0nQzebkxkYOKNg/+38r2MXpJ+2iXhlCxU1ujUYp6dGZD0V JCRVXpDfmpnW3SWGaD/IY7p4xG+VW8DCCMbK5hyen2i/VUHGCOPHMGb+bGmy5/Fg lV+36bVze2Vqtl++hSwupLGw1BNBLo6r+dsMyEQszDQuN2Z4wheLT8oqAYcFmjkb F/ASVNBbMT1Pdft9tZmB+GW4iYiD+PkQbE6bYq0keKIPyxC25JtvtBqC9hOeAla6 M2irqER0uv9jQot+7D9EzbUPwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWo2aBn OQabDLbZGha7vsMGew2GMB8GA1UdIwQYMBaAFGVTw8IYC5fi6zfLcfahzqp7lcpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIxOS9FQzBBNzBGOEVB ODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwtTHJOOHR4OXFIT3FudVZ5 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pWUER3aGdMbC1Mck44dHg5cUhPcW51VnlrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIxOS9FQzBBNzBGOEVBODAxMUU3OEI0MkE0MzJDNEY5QUUwMi9aVlBEd2hnTGwt THJOOHR4OXFIT3FudVZ5a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy7FUVY0ujLYQdifB2yy1JWuTAGS9O1wlDzGb2MWf9SDUKasXwXjSE WJfqPiKcISK8BFlkeun62B8A9HXA06w8C25z1cGlc/mrZ9Nk3XZYYPZeZxl4GTOZ O8Wp459/0jViZ8MQUxOfElFKMyt40T2fKvGjWSKDFAjguKCKRZqxENBbcCjNojj8 9Fzm8S6Qms5PrEn7c3ERuWuzpNa0TTMZB9WqB00q5gUW/HmDvhM97mpNIXFAYKJ4 L1/9ZcevVbwFzGLUbnumFYF156FG5rj+5yijbA0Zg1xZDmaAkCtJjBBGMvZARDnL NTmH/oU0l6jOFKV8JMgrsv510O0Rdxhy -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org