$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft File: ZI5HI0RBcbar4W19wDDonAbwUNw.mft (raw, json) Hash identifier: HA3+OhhsYT6txVb/2FrVNMlTX2tSPLgeQ2h/xDymelE= Subject key identifier: 55:41:F9:19:76:48:63:FF:59:EB:0E:A8:3A:05:49:05:74:9C:7C:7B Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 0AB3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft Manifest number: 0AAD Signing time: Fri 22 Nov 2024 19:13:31 +0000 Manifest this update: Fri 22 Nov 2024 19:13:31 +0000 Manifest next update: Fri 29 Nov 2024 19:13:31 +0000 Files and hashes: 1: ZI5HI0RBcbar4W19wDDonAbwUNw.crl (hash: gcUGHC1opH7hTqVwhXM4w1PsRRG5+62SwY0ToP4EyIA=) 2: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (hash: J/8oDeRELdGOcwKCSIyZI2ucZRyx8ILa8bbFd/o79oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2739 (0xab3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Nov 22 19:13:31 2024 GMT Not After : Nov 29 19:13:31 2024 GMT Subject: CN=6740d7db-0fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4d:19:b9:27:aa:33:af:58:d5:0d:d9:fa:c4: 46:b5:b2:d4:a3:b6:fd:32:ea:22:0d:d3:0f:cd:56: d3:3d:c1:e7:cf:50:97:01:55:1b:84:0f:8f:33:91: 2e:c4:aa:23:35:1b:78:e3:33:c4:b7:2d:12:34:9f: 5c:7e:1c:9e:6d:14:1d:07:bb:6d:2a:8b:3f:12:93: ca:42:2b:da:f1:50:df:22:56:a8:94:10:42:a2:4a: 16:31:f3:13:9f:2a:ef:ca:63:b9:58:ba:d1:d7:9b: e1:92:2e:7d:f7:ed:65:d6:19:21:82:f4:4b:9f:39: 9f:14:97:64:2e:03:41:c1:3f:3e:98:d8:cb:7b:43: 4f:9b:5b:1a:ef:14:91:32:44:f5:d0:d5:f9:73:e0: 02:fb:20:b5:d2:f1:76:47:96:2b:ca:04:8e:9a:9b: 73:a1:e0:6f:be:51:89:01:cb:6b:ab:6e:21:db:2d: 9b:aa:8d:02:bb:66:5b:d0:f5:5e:b1:f4:f9:46:40: 8c:5b:5e:6f:85:91:3c:f3:49:2d:ce:44:7d:d2:34: 09:92:b0:fe:ec:ff:25:f6:c4:3c:07:e4:b2:2c:e0: 5b:ba:d4:1f:0d:0c:c2:7b:40:25:fa:f2:51:d3:72: 12:18:74:73:be:71:25:d8:8d:65:b3:70:87:7e:6a: 9d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:41:F9:19:76:48:63:FF:59:EB:0E:A8:3A:05:49:05:74:9C:7C:7B X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:8b:74:0f:07:f0:c0:d7:03:73:9d:98:b3:5e:d1:94:ad:7d: c9:73:ae:7d:b5:be:65:12:c1:8d:20:ad:c5:21:23:18:82:13: d4:91:e4:69:36:a7:81:ab:54:4e:6b:2f:71:ae:ea:d0:8b:34: 0c:ad:00:c9:f8:2b:af:a7:48:6a:76:6e:ae:e8:d6:8e:ff:07: 6a:83:38:23:a7:c5:11:4f:14:0a:bb:fa:96:ff:c5:ee:c2:e1: b4:66:4d:06:14:4f:b3:45:60:af:e2:e8:1e:97:d9:5c:4f:71: c0:71:66:cf:77:7b:39:60:f8:3a:69:f1:bd:91:c8:93:94:9e: d0:b7:1b:aa:f8:d6:21:16:84:b9:8e:9d:cb:1e:db:ec:b3:ab: c8:2e:49:b3:5f:78:d2:89:8e:60:47:6c:b8:ea:bb:ee:21:d4: 50:33:1a:4e:d0:b0:66:fa:2f:aa:4a:28:df:70:79:9e:14:3e: 63:7c:fd:d8:93:bd:cb:49:98:ba:00:00:7a:ff:46:00:5b:92: 2a:72:9d:67:b6:4f:c6:af:8c:1e:f4:a5:fe:49:40:3d:4c:01: de:47:06:35:75:b0:77:17:2d:97:8a:35:60:d2:3d:31:8f:a9: 0c:e3:6f:1d:74:1f:32:e4:d1:0d:36:84:37:ef:77:07:c7:64: d0:83:24:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjQxMTIyMTkxMzMxWhcNMjQxMTI5MTkxMzMxWjAYMRYwFAYD VQQDEw02NzQwZDdkYi0wZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu00ZuSeqM69Y1Q3Z+sRGtbLUo7b9MuoiDdMPzVbTPcHnz1CXAVUbhA+PM5Eu xKojNRt44zPEty0SNJ9cfhyebRQdB7ttKos/EpPKQiva8VDfIlaolBBCokoWMfMT nyrvymO5WLrR15vhki599+1l1hkhgvRLnzmfFJdkLgNBwT8+mNjLe0NPm1sa7xSR MkT10NX5c+AC+yC10vF2R5YrygSOmptzoeBvvlGJActrq24h2y2bqo0Cu2Zb0PVe sfT5RkCMW15vhZE880ktzkR90jQJkrD+7P8l9sQ8B+SyLOBbutQfDQzCe0Al+vJR 03ISGHRzvnEl2I1ls3CHfmqdrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVB+Rl2 SGP/WesOqDoFSQV0nHx7MB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDhCRS9BMkM4MjdFRTQxMEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNi YXI0VzE5d0REb25BYndVTncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhi3QPB/DA1wNznZizXtGUrX3Jc659tb5lEsGNIK3FISMYghPUkeRp NqeBq1ROay9xrurQizQMrQDJ+Cuvp0hqdm6u6NaO/wdqgzgjp8URTxQKu/qW/8Xu wuG0Zk0GFE+zRWCv4ugel9lcT3HAcWbPd3s5YPg6afG9kciTlJ7Qtxuq+NYhFoS5 jp3LHtvss6vILkmzX3jSiY5gR2y46rvuIdRQMxpO0LBm+i+qSijfcHmeFD5jfP3Y k73LSZi6AAB6/0YAW5Iqcp1ntk/Gr4we9KX+SUA9TAHeRwY1dbB3Fy2XijVg0j0x j6kM428ddB8y5NENNoQ373cHx2TQgyRP -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org