$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft File: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft (raw, json) Hash identifier: ufxWT8Zf/AkOgRL/ZFxamKw4kuG0RsvfgkvM4iXkgvk= Subject key identifier: 0D:B0:FA:D9:5A:4E:1F:EE:1E:A1:3B:15:47:57:72:5C:F5:3B:DF:20 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 0557 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft Manifest number: 0553 Signing time: Fri 22 Nov 2024 22:58:21 +0000 Manifest this update: Fri 22 Nov 2024 22:58:20 +0000 Manifest next update: Fri 29 Nov 2024 22:58:20 +0000 Files and hashes: 1: ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl (hash: zftv6PGB5GOLH3acIjGYR1JaFlWe1OHpWeNCdex4f3k=) 2: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (hash: CQryStIKzl8Fb6AQfW/9ZNw5rOCplIX4niEUR1rZPu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Nov 22 22:58:20 2024 GMT Not After : Nov 29 22:58:20 2024 GMT Subject: CN=67410c8c-9285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f8:3d:36:60:d9:91:c6:77:3f:06:18:a7:62: bb:16:4a:86:05:ce:12:f0:49:4e:ca:71:97:00:19: 1f:80:0f:c5:7e:44:22:79:0c:51:bf:dc:a6:d5:91: c0:bb:7c:30:f8:68:43:3e:f4:fa:f7:df:f9:90:14: cc:04:a4:ff:56:94:7c:32:5b:7d:20:29:17:ec:d6: f8:26:39:2d:90:2a:e9:a4:40:dc:58:8e:ee:00:11: 0b:4a:e9:b6:be:ae:0f:b1:6b:45:2e:80:31:ae:4d: 68:dc:13:0b:72:4b:79:7f:90:28:25:13:ce:7b:87: fe:9a:5e:8e:4a:1a:4b:d3:40:b4:c3:78:ed:e3:16: 1a:df:53:33:a2:b6:ff:c2:c1:02:d0:5d:85:ca:d9: 30:2a:a0:48:58:b3:07:e6:bc:50:53:41:08:94:46: 89:b1:c2:38:46:56:7b:a6:91:fc:5d:ba:8e:8a:26: 48:f9:59:f1:dd:c1:d7:9f:97:8b:02:b6:2c:23:17: 1b:62:42:56:69:ae:d9:c4:fc:75:1d:b5:e8:37:10: 25:16:f3:38:4f:2f:1a:2c:4b:b3:09:22:9b:33:5c: 2c:53:08:24:4e:a6:d7:11:26:19:02:ad:7b:1f:5c: 6d:7a:61:17:8c:ba:95:58:3b:25:ed:4a:62:e5:d3: 8c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:B0:FA:D9:5A:4E:1F:EE:1E:A1:3B:15:47:57:72:5C:F5:3B:DF:20 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:5e:95:e7:20:c4:85:c4:83:59:23:31:6c:e2:a5:06:a7:1c: 1d:c9:de:1a:3f:03:74:b3:85:86:6f:e1:4e:5f:78:c9:d0:04: ec:05:d4:5a:97:2e:c3:a7:15:0e:c4:27:1c:a3:0b:ef:19:9a: bd:16:bf:7a:08:f2:46:4b:8b:d2:6d:90:b1:63:36:db:5f:9c: 46:4c:f1:5b:80:12:be:b7:d5:7f:57:61:86:b2:62:8c:e7:e3: 37:a4:c8:bb:bc:95:74:e9:29:e4:5e:2c:7f:a9:02:fa:1a:d7: 78:65:c6:a8:f8:d4:5c:9e:76:c9:36:2a:fe:0c:1c:eb:19:05: 7c:51:26:13:8c:45:44:85:38:58:1d:cc:cf:4a:d8:a3:ec:d0: c8:05:0c:32:e5:bd:fc:13:a8:59:6f:af:0e:5f:d3:04:bd:a3: 93:01:df:ef:33:88:65:50:c4:90:80:ef:24:e5:a7:f1:cb:26: 7e:29:1a:ed:c8:70:a8:61:ac:98:d4:08:f0:96:b4:59:0e:f9: e4:5d:34:20:a0:db:10:c9:e2:6a:bf:76:34:da:27:8c:8f:5d: fd:1c:a7:d1:e2:1d:a6:00:77:10:4e:3c:ed:b3:47:9f:8a:10: 8e:9b:8b:b1:db:3e:e9:c1:83:40:18:c3:b9:51:84:ba:fc:dd: 32:e5:44:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjQxMTIyMjI1ODIwWhcNMjQxMTI5MjI1ODIwWjAYMRYwFAYD VQQDEw02NzQxMGM4Yy05Mjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvg9NmDZkcZ3PwYYp2K7FkqGBc4S8ElOynGXABkfgA/FfkQieQxRv9ym1ZHA u3ww+GhDPvT699/5kBTMBKT/VpR8Mlt9ICkX7Nb4JjktkCrppEDcWI7uABELSum2 vq4PsWtFLoAxrk1o3BMLckt5f5AoJRPOe4f+ml6OShpL00C0w3jt4xYa31Mzorb/ wsEC0F2FytkwKqBIWLMH5rxQU0EIlEaJscI4RlZ7ppH8XbqOiiZI+Vnx3cHXn5eL ArYsIxcbYkJWaa7ZxPx1HbXoNxAlFvM4Ty8aLEuzCSKbM1wsUwgkTqbXESYZAq17 H1xtemEXjLqVWDsl7Upi5dOMCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2w+tla Th/uHqE7FUdXclz1O98gMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTE5RC9CODI4MDY2NEM3NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFK MkUwZUF1Z2dwNWFHNGVVc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdXpXnIMSFxINZIzFs4qUGpxwdyd4aPwN0s4WGb+FOX3jJ0ATsBdRa ly7DpxUOxCccowvvGZq9Fr96CPJGS4vSbZCxYzbbX5xGTPFbgBK+t9V/V2GGsmKM 5+M3pMi7vJV06SnkXix/qQL6Gtd4Zcao+NRcnnbJNir+DBzrGQV8USYTjEVEhThY HczPStij7NDIBQwy5b38E6hZb68OX9MEvaOTAd/vM4hlUMSQgO8k5afxyyZ+KRrt yHCoYayY1AjwlrRZDvnkXTQgoNsQyeJqv3Y02ieMj139HKfR4h2mAHcQTjzts0ef ihCOm4ux2z7pwYNAGMO5UYS6/N0y5USc -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org