$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft File: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft (raw, json) Hash identifier: EP4ZmHTpZGLuSRGhezpeyzsI/1E0FLRYkiesTG4MwQw= Subject key identifier: EA:C2:AC:CE:C6:4D:9B:08:8E:7A:2D:FD:4E:19:87:49:05:ED:F8:E0 Authority key identifier: 09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF Certificate issuer: /CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Certificate serial: 048C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft Manifest number: 0486 Signing time: Fri 22 Nov 2024 23:35:44 +0000 Manifest this update: Fri 22 Nov 2024 23:35:43 +0000 Manifest next update: Fri 29 Nov 2024 23:35:43 +0000 Files and hashes: 1: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl (hash: 5zRSfeMWz/w0neXXQZZdrOVE7JUeFgSYkm7pVII6Ee0=) 2: 630BCB6E1A1D11EC99B84C20C4F9AE02.roa (hash: DgUDwmkN0T0UntF7QmQLHNafJtdHs9vt+l0U9HNHmvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1164 (0x48c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Validity Not Before: Nov 22 23:35:43 2024 GMT Not After : Nov 29 23:35:43 2024 GMT Subject: CN=67411550-7eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d6:0b:ae:a5:2d:96:d1:72:d6:ce:64:fb:73: 31:2b:6b:e7:66:c7:19:eb:ff:20:5c:4f:53:a0:8f: ed:0f:be:59:79:41:24:36:e4:cb:76:af:73:e0:98: 47:5c:f0:1d:04:ad:27:55:0c:91:67:33:6f:8d:a6: 6c:90:db:16:2f:bd:23:88:b1:77:0f:00:c9:f2:48: a4:2e:4f:ee:bf:2d:a1:5f:6a:50:ad:15:51:3f:e4: 59:32:73:ce:27:e3:20:ee:07:e8:6d:52:7d:cb:0e: b8:2d:f7:98:70:50:84:71:36:28:9c:0b:22:2f:9c: 51:76:8a:79:d8:66:18:cb:0e:7a:53:39:45:a3:c9: b1:2d:6b:55:f3:78:bb:10:ef:d8:e6:99:c4:ea:14: 7a:6b:46:96:c1:38:27:35:26:df:4e:35:8c:4d:2e: 56:96:0b:d9:53:9e:01:82:ea:81:28:b2:ac:17:4e: cd:24:62:a9:19:9b:1b:90:e8:cb:7a:f1:45:5e:c7: 5c:5c:05:29:68:4a:f0:9a:2a:ee:d9:62:a6:62:b7: 55:d4:70:59:ca:9c:b6:10:d5:54:2d:c0:62:ef:1d: 78:2f:b4:05:d9:7f:68:ef:7d:bb:a0:04:d7:58:f8: 56:2d:46:78:e1:47:71:8e:d4:6a:b5:40:df:e3:25: 8e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C2:AC:CE:C6:4D:9B:08:8E:7A:2D:FD:4E:19:87:49:05:ED:F8:E0 X509v3 Authority Key Identifier: keyid:09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:e5:e0:4c:52:b3:04:42:6d:7f:77:62:00:b2:8e:af:f9:f6: e3:27:bc:4f:4d:bd:1b:73:3c:a4:aa:8f:5a:da:5b:17:d4:69: 0f:11:87:72:6b:97:90:0a:f0:9c:09:94:b2:b5:ca:05:10:30: e6:e3:17:59:68:64:48:7b:56:05:63:7b:ad:ad:fb:e4:06:9f: d4:51:f5:0d:3c:ae:4e:46:dc:96:d4:5a:24:e4:f4:b8:94:87: a6:3c:db:17:d6:1f:79:35:cf:b4:3c:04:39:30:54:d0:42:f5: d2:d1:e3:7b:a7:28:c3:9f:cb:1a:72:f7:13:1f:dd:0c:23:7b: 0e:ed:77:3c:79:9f:20:7c:0d:5d:57:4f:7e:1e:b6:bc:15:45: fc:a9:d7:4f:ec:09:9d:1d:63:55:f2:34:b0:c4:23:ff:75:70: b3:f4:d2:4e:26:5c:15:8b:26:7a:0e:f1:8e:bb:ff:19:cc:8e: 25:74:b9:bb:38:00:2e:dd:ca:83:7e:60:2b:e8:a1:ad:47:38: 40:36:53:a8:84:a3:76:b0:9f:4e:95:48:d0:ae:31:48:0e:75: d4:33:d8:62:02:8e:21:a0:0a:ec:55:8c:0b:d6:83:6f:4f:e4: 1f:da:ae:3b:3b:21:91:36:bc:78:d6:25:7f:89:4c:2c:4c:a4: 9a:52:69:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMEMxMTAvBgNVBAUTKDA5REUxOTY3RTk1MkVFOEUxQjJERDYwRjg4RjYzQkEy NjA1NzUzRUYwHhcNMjQxMTIyMjMzNTQzWhcNMjQxMTI5MjMzNTQzWjAYMRYwFAYD VQQDEw02NzQxMTU1MC03ZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdYLrqUtltFy1s5k+3MxK2vnZscZ6/8gXE9ToI/tD75ZeUEkNuTLdq9z4JhH XPAdBK0nVQyRZzNvjaZskNsWL70jiLF3DwDJ8kikLk/uvy2hX2pQrRVRP+RZMnPO J+Mg7gfobVJ9yw64LfeYcFCEcTYonAsiL5xRdop52GYYyw56UzlFo8mxLWtV83i7 EO/Y5pnE6hR6a0aWwTgnNSbfTjWMTS5WlgvZU54BguqBKLKsF07NJGKpGZsbkOjL evFFXsdcXAUpaErwmiru2WKmYrdV1HBZypy2ENVULcBi7x14L7QF2X9o7327oATX WPhWLUZ44UdxjtRqtUDf4yWO3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrCrM7G TZsIjnot/U4Zh0kF7fjgMB8GA1UdIwQYMBaAFAneGWfpUu6OGy3WD4j2O6JgV1Pv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQwQy84MTRGNkQwNDFB MUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdvNGJMZFlQaVBZN29tQlhV LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NkNFpaLWxTN280YkxkWVBpUFk3b21CWFUtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQwQy84MTRGNkQwNDFBMUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdv NGJMZFlQaVBZN29tQlhVLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs5eBMUrMEQm1/d2IAso6v+fbjJ7xPTb0bczykqo9a2lsX1GkPEYdy a5eQCvCcCZSytcoFEDDm4xdZaGRIe1YFY3utrfvkBp/UUfUNPK5ORtyW1Fok5PS4 lIemPNsX1h95Nc+0PAQ5MFTQQvXS0eN7pyjDn8sacvcTH90MI3sO7Xc8eZ8gfA1d V09+Hra8FUX8qddP7AmdHWNV8jSwxCP/dXCz9NJOJlwViyZ6DvGOu/8ZzI4ldLm7 OAAu3cqDfmAr6KGtRzhANlOohKN2sJ9OlUjQrjFIDnXUM9hiAo4hoArsVYwL1oNv T+Qf2q47OyGRNrx41iV/iUwsTKSaUmmJ -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org