$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft File: Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft (raw, json) Hash identifier: eP5H4vKgXUMGbhyKZpVptia+DPHwo6Y43TFse0KyGUQ= Subject key identifier: 6A:38:05:6D:6B:F9:52:27:C7:5C:1E:C6:2D:99:A6:D0:38:BC:BA:34 Authority key identifier: 66:9F:B3:A8:CA:2A:20:EA:3B:81:A6:3A:7F:6D:BB:15:9F:BB:D5:74 Certificate issuer: /CN=A911C812/serialNumber=669FB3A8CA2A20EA3B81A63A7F6DBB159FBBD574 Certificate serial: 02FD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Zp-zqMoqIOo7gaY6f227FZ-71XQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft Manifest number: 02FD Signing time: Wed 20 Nov 2024 20:51:50 +0000 Manifest this update: Wed 20 Nov 2024 20:51:50 +0000 Manifest next update: Wed 27 Nov 2024 20:51:50 +0000 Files and hashes: 1: Zp-zqMoqIOo7gaY6f227FZ-71XQ.crl (hash: EKxb7dhh3AJXc7jrF7lA2TjiqfIMp53dPiDDnieJ+Ac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.crl rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Zp-zqMoqIOo7gaY6f227FZ-71XQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 765 (0x2fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812/serialNumber=669FB3A8CA2A20EA3B81A63A7F6DBB159FBBD574 Validity Not Before: Nov 20 20:51:50 2024 GMT Not After : Nov 27 20:51:50 2024 GMT Subject: CN=673e4be6-bd8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7d:e0:3a:66:9a:94:2b:b0:8f:55:1a:6b:e0: 37:65:e5:13:27:88:f6:63:63:66:57:59:95:14:9d: 76:7c:da:8d:2b:68:5c:4c:f5:11:03:ca:f3:66:b7: 07:9f:d3:4b:5c:e9:2b:e6:30:12:c8:65:c3:54:47: fd:30:a8:c5:6c:f6:cd:52:d4:55:03:ba:f3:89:60: 2c:9f:bf:1f:59:71:39:79:4f:2b:3e:84:21:ca:2e: 3c:a8:33:00:55:84:11:a0:ca:4d:00:4b:40:75:44: 4c:ae:8c:b9:58:47:c8:4a:28:3d:be:d9:57:85:bf: 5f:b6:4f:72:35:93:b4:9c:dc:db:93:c8:43:ec:27: 25:46:29:10:99:aa:fd:db:74:a2:0b:92:68:2d:0a: 7e:ac:9b:84:00:24:61:e8:6c:04:ac:a7:c5:ec:1e: 12:de:e2:a7:ef:0d:3c:f1:c9:9e:0e:d2:2b:9d:52: 3a:8c:b6:a1:5f:05:b0:6a:ee:56:c2:1b:f1:31:de: 26:62:6b:50:5c:2b:8a:50:c4:39:76:e9:03:33:fd: e5:be:02:12:5f:f7:22:21:1e:3c:5c:65:36:f2:e0: 0c:71:67:3f:13:3c:24:51:1d:fa:32:cf:37:0a:64: 82:4c:9b:1e:be:43:da:59:d4:5e:b8:77:ab:0f:39: 5f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:38:05:6D:6B:F9:52:27:C7:5C:1E:C6:2D:99:A6:D0:38:BC:BA:34 X509v3 Authority Key Identifier: keyid:66:9F:B3:A8:CA:2A:20:EA:3B:81:A6:3A:7F:6D:BB:15:9F:BB:D5:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Zp-zqMoqIOo7gaY6f227FZ-71XQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/6ABC5B32B3D111EC91BF3C22C4F9AE02/Zp-zqMoqIOo7gaY6f227FZ-71XQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:a3:96:8c:21:c6:f6:27:02:93:bf:f9:fb:9f:d6:24:b6:28: 44:e4:1c:dc:e0:68:f1:bc:1a:60:de:0a:44:4e:a0:a8:5d:cd: 3b:e9:c4:d8:aa:99:57:3d:3d:44:bd:fa:11:26:de:59:b6:15: c8:ad:46:16:d7:9a:3e:c7:ce:fa:85:3f:21:46:ce:8a:85:36: cd:3a:49:01:51:ad:43:02:98:09:ba:96:e8:83:71:ff:24:f1: ce:88:81:55:b2:95:b9:8e:cc:d3:51:58:83:b1:89:a7:4a:b3: 45:6f:5a:e1:d3:4d:de:0c:fe:ae:61:bc:cf:a4:5c:10:a8:d6: 53:7d:99:e0:e5:7d:3f:34:ba:5a:d4:3d:1a:95:5d:cb:2f:66: 57:21:02:69:6d:33:45:1e:3d:b7:83:d2:6e:40:21:8c:18:ed: 74:bd:d9:d8:f5:ad:b8:9e:66:f1:dc:ba:f8:10:0e:cf:d2:c1: 48:ba:18:f2:fe:8c:fb:ea:ce:d2:a8:0b:e1:5c:94:be:8d:8d: cd:91:8d:69:ad:a3:7d:4a:c3:1c:58:58:4f:e4:1a:b7:b0:8e: 54:c2:69:31:6b:38:91:ba:82:1f:31:b4:81:a3:50:69:7d:c1: fa:43:58:37:79:d5:2e:53:9c:e8:19:c0:b4:ad:db:8e:b3:73: a8:14:29:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDY2OUZCM0E4Q0EyQTIwRUEzQjgxQTYzQTdGNkRCQjE1 OUZCQkQ1NzQwHhcNMjQxMTIwMjA1MTUwWhcNMjQxMTI3MjA1MTUwWjAYMRYwFAYD VQQDEw02NzNlNGJlNi1iZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArn3gOmaalCuwj1Uaa+A3ZeUTJ4j2Y2NmV1mVFJ12fNqNK2hcTPURA8rzZrcH n9NLXOkr5jASyGXDVEf9MKjFbPbNUtRVA7rziWAsn78fWXE5eU8rPoQhyi48qDMA VYQRoMpNAEtAdURMroy5WEfISig9vtlXhb9ftk9yNZO0nNzbk8hD7CclRikQmar9 23SiC5JoLQp+rJuEACRh6GwErKfF7B4S3uKn7w088cmeDtIrnVI6jLahXwWwau5W whvxMd4mYmtQXCuKUMQ5dukDM/3lvgISX/ciIR48XGU28uAMcWc/EzwkUR36Ms83 CmSCTJsevkPaWdReuHerDzlftwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGo4BW1r +VInx1wexi2ZptA4vLo0MB8GA1UdIwQYMBaAFGafs6jKKiDqO4GmOn9tuxWfu9V0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi82QUJDNUIzMkIz RDExMUVDOTFCRjNDMjJDNEY5QUUwMi9acC16cU1vcUlPbzdnYVk2ZjIyN0ZaLTcx WFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pwLXpxTW9xSU9vN2dhWTZmMjI3RlotNzFYUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi82QUJDNUIzMkIzRDExMUVDOTFCRjNDMjJDNEY5QUUwMi9acC16cU1vcUlP bzdnYVk2ZjIyN0ZaLTcxWFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLo5aMIcb2JwKTv/n7n9YktihE5Bzc4GjxvBpg3gpETqCoXc076cTY qplXPT1EvfoRJt5ZthXIrUYW15o+x876hT8hRs6KhTbNOkkBUa1DApgJupbog3H/ JPHOiIFVspW5jszTUViDsYmnSrNFb1rh003eDP6uYbzPpFwQqNZTfZng5X0/NLpa 1D0alV3LL2ZXIQJpbTNFHj23g9JuQCGMGO10vdnY9a24nmbx3Lr4EA7P0sFIuhjy /oz76s7SqAvhXJS+jY3NkY1praN9SsMcWFhP5Bq3sI5UwmkxaziRuoIfMbSBo1Bp fcH6Q1g3edUuU5zoGcC0rduOs3OoFCkX -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org