$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft File: zPWB9MM8pEQeGAfjlsXv51-oLdA.mft (raw, json) Hash identifier: yAXDF83+Tidur/+P2PFgh6ejCwwA0f9YU/QsmNH6pZc= Subject key identifier: B2:91:83:60:24:15:22:EB:EB:1B:C4:B4:EF:72:1A:2C:28:08:2B:43 Authority key identifier: CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 Certificate issuer: /CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Certificate serial: 09D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft Manifest number: 09CE Signing time: Fri 22 Nov 2024 19:43:40 +0000 Manifest this update: Fri 22 Nov 2024 19:43:39 +0000 Manifest next update: Fri 29 Nov 2024 19:43:39 +0000 Files and hashes: 1: zPWB9MM8pEQeGAfjlsXv51-oLdA.crl (hash: ksj+6cWph7qOnO5HEqHclANp847emzorNDu3M1Y3wpw=) 2: EECBCEBE6E3511EABDE26D73C4F9AE02.roa (hash: LPVTnB/0GHrJCLpXZVzzn+Fi+J75+p11hdRea2Hs9CM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:43:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2520 (0x9d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A27/serialNumber=CCF581F4C33CA4441E1807E396C5EFE75FA82DD0 Validity Not Before: Nov 22 19:43:39 2024 GMT Not After : Nov 29 19:43:39 2024 GMT Subject: CN=6740deec-cb2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1f:82:56:1d:14:98:11:de:3e:c1:e1:e1:4b: 62:fa:0a:c9:b9:a1:25:8e:c8:b9:10:65:02:d5:a3: ee:ae:04:e8:35:bb:83:8d:c5:54:7f:5e:bc:80:40: 21:b4:64:33:66:c3:a5:d1:77:ff:0e:ee:a4:8d:d7: 4a:a4:d8:50:b9:56:11:58:0a:1f:27:a9:eb:e9:84: 57:89:94:7c:6d:3d:42:73:16:95:7c:8f:93:f6:c4: 50:5f:59:24:71:79:4b:f0:2c:ba:44:30:8f:21:72: 6c:d0:9f:fd:81:d4:56:53:ee:01:49:d6:0d:26:a6: 1d:fd:84:d3:c9:70:3e:b3:be:77:61:83:15:16:fb: 84:0d:9d:e0:34:25:7d:5a:8f:59:aa:fe:f5:05:6b: 21:f0:9c:ab:1e:74:e8:a8:9b:9e:6b:71:4d:13:b4: f2:02:4c:6a:db:a7:0b:e2:79:39:9d:92:a9:e8:6c: a8:fa:4e:f6:51:ff:a8:4e:1f:33:f8:4d:85:c9:47: 5e:21:37:d7:e3:df:26:4a:0d:be:1a:b5:fa:59:b4: 1a:3e:bb:13:d6:e5:99:5c:ad:24:33:a3:cb:51:ca: ab:ae:73:a5:7d:88:c9:09:b5:9e:08:40:a6:b0:74: 55:fe:8b:a6:29:11:8c:e2:c0:5a:ab:ac:46:5e:07: 9b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:91:83:60:24:15:22:EB:EB:1B:C4:B4:EF:72:1A:2C:28:08:2B:43 X509v3 Authority Key Identifier: keyid:CC:F5:81:F4:C3:3C:A4:44:1E:18:07:E3:96:C5:EF:E7:5F:A8:2D:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPWB9MM8pEQeGAfjlsXv51-oLdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A27/662518BE6E3411EA841D426EC4F9AE02/zPWB9MM8pEQeGAfjlsXv51-oLdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:69:27:94:1c:01:3b:e3:49:1e:aa:d8:3b:c5:0e:5d:ff:a2: 93:d8:64:8d:fb:ae:3c:d9:29:16:9c:92:d9:e4:65:d0:51:5f: a0:47:80:2a:66:96:30:8c:b3:99:d3:0b:c7:f1:48:ce:c5:ff: 90:9e:33:c6:d0:65:b7:6b:1e:8c:55:1e:37:6c:98:3f:93:22: 30:e0:cb:8c:8b:a7:b3:b3:4e:75:cf:20:63:9d:b3:d0:1b:8c: e4:c5:d2:0b:c7:1b:73:03:1c:c5:be:f9:5d:3d:6c:bb:79:cc: dd:6a:7f:ff:5b:be:35:40:d4:ee:92:c4:25:37:5f:79:54:b3: 1e:84:18:2f:9f:30:85:48:19:ae:e4:be:6d:90:9d:c8:64:7f: f5:4f:d7:e1:e2:57:44:59:16:9e:37:f9:9a:f1:36:8e:2c:07: aa:8b:5c:28:4c:92:f8:3b:1e:db:17:9d:fe:86:f7:42:0a:b8: a3:b0:c2:ba:5d:af:5e:28:db:3a:8e:2a:4e:e6:30:a4:8e:f1: 04:72:11:b1:18:05:82:ae:e8:74:a7:8d:d9:7c:09:12:86:72: 50:7a:be:75:83:fb:0b:1e:b1:05:88:8d:a5:5a:2d:60:80:7f: 38:17:40:6f:7d:cf:e8:ba:80:e9:8b:85:b8:41:f5:e6:fc:d2: 70:42:26:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBMjcxMTAvBgNVBAUTKENDRjU4MUY0QzMzQ0E0NDQxRTE4MDdFMzk2QzVFRkU3 NUZBODJERDAwHhcNMjQxMTIyMTk0MzM5WhcNMjQxMTI5MTk0MzM5WjAYMRYwFAYD VQQDEw02NzQwZGVlYy1jYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxh+CVh0UmBHePsHh4Uti+grJuaEljsi5EGUC1aPurgToNbuDjcVUf168gEAh tGQzZsOl0Xf/Du6kjddKpNhQuVYRWAofJ6nr6YRXiZR8bT1CcxaVfI+T9sRQX1kk cXlL8Cy6RDCPIXJs0J/9gdRWU+4BSdYNJqYd/YTTyXA+s753YYMVFvuEDZ3gNCV9 Wo9Zqv71BWsh8JyrHnToqJuea3FNE7TyAkxq26cL4nk5nZKp6Gyo+k72Uf+oTh8z +E2FyUdeITfX498mSg2+GrX6WbQaPrsT1uWZXK0kM6PLUcqrrnOlfYjJCbWeCECm sHRV/oumKRGM4sBaq6xGXgebrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKRg2Ak FSLr6xvEtO9yGiwoCCtDMB8GA1UdIwQYMBaAFMz1gfTDPKREHhgH45bF7+dfqC3Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUEyNy82NjI1MThCRTZF MzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBFUWVHQWZqbHNYdjUxLW9M ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQV0I5TU04cEVRZUdBZmpsc1h2NTEtb0xkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUEyNy82NjI1MThCRTZFMzQxMUVBODQxRDQyNkVDNEY5QUUwMi96UFdCOU1NOHBF UWVHQWZqbHNYdjUxLW9MZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATaSeUHAE740keqtg7xQ5d/6KT2GSN+6482SkWnJLZ5GXQUV+gR4Aq ZpYwjLOZ0wvH8UjOxf+QnjPG0GW3ax6MVR43bJg/kyIw4MuMi6ezs051zyBjnbPQ G4zkxdILxxtzAxzFvvldPWy7eczdan//W741QNTuksQlN195VLMehBgvnzCFSBmu 5L5tkJ3IZH/1T9fh4ldEWRaeN/ma8TaOLAeqi1woTJL4Ox7bF53+hvdCCrijsMK6 Xa9eKNs6jipO5jCkjvEEchGxGAWCruh0p43ZfAkShnJQer51g/sLHrEFiI2lWi1g gH84F0Bvfc/ouoDpi4W4QfXm/NJwQiaz -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org