$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft File: PKzc_ifokI3EfzPvkUrjxQi6R7M.mft (raw, json) Hash identifier: UNStWUSZgWa/xXa0n45Ywr2v8aqaaQ+ipINwJXEaxtw= Subject key identifier: 4F:7D:61:D2:5A:17:A9:44:2C:F8:92:27:4D:F8:F4:20:85:EE:20:DC Authority key identifier: 3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 Certificate issuer: /CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft Manifest number: 0107 Signing time: Sat 23 Nov 2024 03:12:33 +0000 Manifest this update: Sat 23 Nov 2024 03:12:32 +0000 Manifest next update: Sat 30 Nov 2024 03:12:32 +0000 Files and hashes: 1: PKzc_ifokI3EfzPvkUrjxQi6R7M.crl (hash: ZRTHN8bPH9oca+MGi+2Q3AX9bBlOD2IaXUHd+vlG7sg=) 2: B5CBEADC5A9911EEBACCD06BC4F9AE02.roa (hash: F4cU+r0RsJavKuaSoPZVVD+mCZCLwysM3Ho83jeaeN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B40/serialNumber=3CACDCFE27E8908DC47F33EF914AE3C508BA47B3 Validity Not Before: Nov 23 03:12:32 2024 GMT Not After : Nov 30 03:12:32 2024 GMT Subject: CN=67414821-9cd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c8:09:c4:3b:96:04:96:a7:4f:46:d3:35:88: 8e:40:ce:d5:d4:8c:ab:3a:f9:c2:b9:3c:c1:4a:36: 41:13:16:88:d0:5f:1b:04:df:5b:9c:9b:9e:ea:60: ad:0b:9b:2b:64:95:6a:88:77:8e:be:67:ab:c5:f0: ef:d5:24:64:f4:ac:01:5e:51:eb:f3:27:52:ca:da: 10:f0:5b:f5:e9:67:cd:32:78:06:87:bb:19:3e:c4: 4c:2d:f0:b0:15:fd:25:53:86:13:82:92:d7:36:d9: 93:6a:56:5a:dd:41:8f:47:22:22:49:68:fa:99:38: bf:14:13:da:d3:ed:a7:c7:92:1c:22:95:6d:52:8b: 08:33:9c:6c:6f:91:7b:45:21:6a:da:c6:bd:58:ea: 29:51:38:86:2e:a8:a2:4a:16:e7:be:6e:cb:e6:f5: 14:ab:8a:d6:8a:bf:39:dc:ff:b2:b5:91:a5:4d:0e: c1:c0:a5:df:d8:71:fb:b6:44:6e:fe:51:8e:d7:04: b7:21:98:36:e9:87:fe:a0:50:c8:7a:99:a4:20:86: 05:db:41:15:f6:a5:9a:cf:5d:c5:fd:c8:7e:1d:56: 3b:89:93:1e:79:c0:84:5d:20:f7:1d:a1:d7:58:25: a9:be:71:6b:bb:b2:cf:02:82:42:e5:c1:fa:4f:b6: 5d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:7D:61:D2:5A:17:A9:44:2C:F8:92:27:4D:F8:F4:20:85:EE:20:DC X509v3 Authority Key Identifier: keyid:3C:AC:DC:FE:27:E8:90:8D:C4:7F:33:EF:91:4A:E3:C5:08:BA:47:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PKzc_ifokI3EfzPvkUrjxQi6R7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B40/F01CA9C61B2211EEB79B1E1BC4F9AE02/PKzc_ifokI3EfzPvkUrjxQi6R7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:d4:f9:e7:f8:f3:82:65:8f:9f:16:83:84:84:d9:87:ba:68: e3:b3:c6:28:a1:f2:21:49:cd:4e:84:d7:43:5f:ef:f1:09:86: dd:5c:ea:a3:68:92:10:f6:5a:0b:6d:cb:c3:6b:e0:61:e2:9f: 5d:96:92:09:7d:37:5e:a0:36:01:91:9e:f5:36:ae:a5:42:cb: 2f:27:e6:10:93:18:35:b4:ba:53:f3:90:db:8f:0c:52:1e:bf: e7:28:4b:91:15:cd:df:80:7f:41:4e:38:5f:9d:e1:61:f8:05: 7d:ee:15:e6:b2:3d:a6:8e:a7:d1:9c:39:98:ee:b9:c0:ad:3e: d2:cf:29:53:10:69:1b:36:60:e3:fb:e1:ef:48:bc:62:0a:ee: 7f:0a:a8:8f:e7:f2:42:7e:c7:12:af:b3:7c:fb:88:26:2b:a2: ac:fe:6f:ed:f7:ad:a8:6f:1c:38:f2:30:5c:ca:ba:02:83:d1: 24:fb:d8:07:e2:3d:b8:d5:90:e3:ad:d1:db:da:8d:8e:db:78: b3:00:b7:d5:32:c5:82:58:8e:d3:bb:7e:87:1f:93:0d:38:93: 3d:2a:7e:f8:74:50:84:68:a5:50:58:ad:3a:83:d7:8d:ed:0d: 1c:bb:f0:b7:26:ff:05:ba:84:86:f6:f1:5c:60:fa:6d:84:0e: c5:ae:5a:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDAxMTAvBgNVBAUTKDNDQUNEQ0ZFMjdFODkwOERDNDdGMzNFRjkxNEFFM0M1 MDhCQTQ3QjMwHhcNMjQxMTIzMDMxMjMyWhcNMjQxMTMwMDMxMjMyWjAYMRYwFAYD VQQDEw02NzQxNDgyMS05Y2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1MgJxDuWBJanT0bTNYiOQM7V1IyrOvnCuTzBSjZBExaI0F8bBN9bnJue6mCt C5srZJVqiHeOvmerxfDv1SRk9KwBXlHr8ydSytoQ8Fv16WfNMngGh7sZPsRMLfCw Ff0lU4YTgpLXNtmTalZa3UGPRyIiSWj6mTi/FBPa0+2nx5IcIpVtUosIM5xsb5F7 RSFq2sa9WOopUTiGLqiiShbnvm7L5vUUq4rWir853P+ytZGlTQ7BwKXf2HH7tkRu /lGO1wS3IZg26Yf+oFDIepmkIIYF20EV9qWaz13F/ch+HVY7iZMeecCEXSD3HaHX WCWpvnFru7LPAoJC5cH6T7ZdDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE99YdJa F6lELPiSJ0349CCF7iDcMB8GA1UdIwQYMBaAFDys3P4n6JCNxH8z75FK48UIukez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0MC9GMDFDQTlDNjFC MjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJM0VmelB2a1VyanhRaTZS N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BLemNfaWZva0kzRWZ6UHZrVXJqeFFpNlI3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0MC9GMDFDQTlDNjFCMjIxMUVFQjc5QjFFMUJDNEY5QUUwMi9QS3pjX2lmb2tJ M0VmelB2a1VyanhRaTZSN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB01Pnn+POCZY+fFoOEhNmHumjjs8YoofIhSc1OhNdDX+/xCYbdXOqj aJIQ9loLbcvDa+Bh4p9dlpIJfTdeoDYBkZ71Nq6lQssvJ+YQkxg1tLpT85DbjwxS Hr/nKEuRFc3fgH9BTjhfneFh+AV97hXmsj2mjqfRnDmY7rnArT7SzylTEGkbNmDj ++HvSLxiCu5/CqiP5/JCfscSr7N8+4gmK6Ks/m/t962obxw48jBcyroCg9Ek+9gH 4j241ZDjrdHb2o2O23izALfVMsWCWI7Tu36HH5MNOJM9Kn74dFCEaKVQWK06g9eN 7Q0cu/C3Jv8FuoSG9vFcYPpthA7FrlqX -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org