$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft File: CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft (raw, json) Hash identifier: fXMvDM0YOKEjSflVNCc9dH1XhgXzrq+Aq+EJzYYldEk= Subject key identifier: CC:8C:28:1E:47:EC:F5:A5:51:20:4F:0C:15:B7:F6:13:BB:1D:6D:FB Authority key identifier: 09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 Certificate issuer: /CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft Manifest number: 32 Signing time: Sat 23 Nov 2024 05:35:34 +0000 Manifest this update: Sat 23 Nov 2024 05:35:33 +0000 Manifest next update: Sat 30 Nov 2024 05:35:33 +0000 Files and hashes: 1: CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl (hash: LfkmqQNBLEQUFVHuCk4Qb8T6WPotMo9IGMHp8U5fCgE=) 2: 485B32A8607B11EFB27C6C5DC4F9AE02.roa (hash: g7W9G3ij02vVGRhQiw6Ym1yygIWGPWKSpCEET+ZTaHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B0A/serialNumber=099506EC987C8B19405853B08C718B5BBE4AC692 Validity Not Before: Nov 23 05:35:33 2024 GMT Not After : Nov 30 05:35:33 2024 GMT Subject: CN=674169a6-0f89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f2:0b:1d:91:a1:52:19:bf:19:ea:1d:45:74: 5a:cc:e2:5c:af:0c:46:00:80:b9:ed:db:cb:6d:ee: e6:64:94:71:20:c2:77:95:75:35:db:a8:91:e6:8d: 57:b7:f6:d8:29:58:52:94:75:50:32:71:95:80:2d: c4:21:b0:90:a5:75:5d:6d:26:84:8c:2c:f7:af:da: fa:37:44:48:5b:00:3e:8b:dc:a3:89:a9:c9:cc:71: 72:8b:3d:be:2f:82:d2:fc:7d:9f:74:aa:a3:2d:14: eb:c4:be:e7:59:2a:f1:05:0b:0b:f1:e4:a3:70:46: 73:08:57:e7:e0:f3:02:5e:4b:d0:1b:13:1f:6f:88: 99:7f:27:dc:79:b7:6b:d7:29:b1:63:62:78:11:fc: 56:df:4a:c9:dd:cb:3f:01:41:39:65:7d:1e:5f:c5: e5:ee:22:88:af:8c:b8:95:8b:47:a8:52:ca:6d:a0: 97:8e:48:20:8c:5a:12:96:9f:0c:9f:e4:8d:fb:08: c4:03:1b:93:3e:47:35:bc:35:9c:fd:aa:5b:2b:a9: 71:25:70:15:db:9b:a0:d8:5c:61:12:cb:c3:cf:d6: e7:cb:8b:a6:ba:da:74:ea:c5:b3:f5:aa:ff:16:24: 44:19:20:be:2f:12:af:9b:2e:3e:65:4f:25:ef:65: 10:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8C:28:1E:47:EC:F5:A5:51:20:4F:0C:15:B7:F6:13:BB:1D:6D:FB X509v3 Authority Key Identifier: keyid:09:95:06:EC:98:7C:8B:19:40:58:53:B0:8C:71:8B:5B:BE:4A:C6:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZUG7Jh8ixlAWFOwjHGLW75KxpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B0A/D5DB6DF6607A11EF869AA65CC4F9AE02/CZUG7Jh8ixlAWFOwjHGLW75KxpI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ac:89:68:df:8d:08:64:8b:b2:af:6c:76:d2:21:1c:60:36: 3c:9c:5c:aa:86:dc:88:a0:e6:7a:19:7a:f1:07:52:88:c4:0e: 7b:eb:0e:2b:8f:3d:a5:db:ad:92:68:b9:c7:d4:64:92:ba:75: 72:3d:18:1f:09:c8:ad:9c:01:04:29:2a:b3:a0:7f:f2:a6:93: df:d6:21:31:1a:ff:79:a1:62:d8:86:ad:b9:b0:43:de:8a:79: 43:21:4b:d2:15:27:1f:be:3e:6c:03:be:9d:db:b0:26:af:6b: 13:86:93:35:3a:4d:17:35:ec:1f:c2:e0:99:f9:34:c5:fb:57: b9:8d:02:cc:58:7e:4a:7d:09:53:80:8d:99:8a:c0:2f:22:5e: 00:a3:a8:75:46:9f:cc:c5:62:25:d0:f5:17:6b:0c:07:71:f2: 94:c6:6e:13:09:e7:26:a9:69:fc:f5:89:78:55:fb:94:ef:ad: e5:25:25:ef:1b:21:04:97:8e:ba:a1:ca:04:51:4a:a9:4e:f9: 85:ca:a2:60:12:e6:b9:6f:0c:e7:77:64:d4:6f:5e:64:46:df: c7:3e:fb:f2:57:d4:74:82:78:6f:88:d2:6c:a7:a2:cd:43:1e: 6f:61:d2:5f:54:56:f1:01:b8:99:6b:ca:67:1f:7f:29:93:be: b3:c5:05:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 M0IwQTExMC8GA1UEBRMoMDk5NTA2RUM5ODdDOEIxOTQwNTg1M0IwOEM3MThCNUJC RTRBQzY5MjAeFw0yNDExMjMwNTM1MzNaFw0yNDExMzAwNTM1MzNaMBgxFjAUBgNV BAMTDTY3NDE2OWE2LTBmODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC88gsdkaFSGb8Z6h1FdFrM4lyvDEYAgLnt28tt7uZklHEgwneVdTXbqJHmjVe3 9tgpWFKUdVAycZWALcQhsJCldV1tJoSMLPev2vo3REhbAD6L3KOJqcnMcXKLPb4v gtL8fZ90qqMtFOvEvudZKvEFCwvx5KNwRnMIV+fg8wJeS9AbEx9viJl/J9x5t2vX KbFjYngR/FbfSsndyz8BQTllfR5fxeXuIoivjLiVi0eoUsptoJeOSCCMWhKWnwyf 5I37CMQDG5M+RzW8NZz9qlsrqXElcBXbm6DYXGESy8PP1ufLi6a62nTqxbP1qv8W JEQZIL4vEq+bLj5lTyXvZRA1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzIwoHkfs 9aVRIE8MFbf2E7sdbfswHwYDVR0jBBgwFoAUCZUG7Jh8ixlAWFOwjHGLW75KxpIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQzQjBBL0Q1REI2REY2NjA3 QTExRUY4NjlBQTY1Q0M0RjlBRTAyL0NaVUc3Smg4aXhsQVdGT3dqSEdMVzc1S3hw SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1pVRzdKaDhpeGxBV0ZPd2pIR0xXNzVLeHBJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQz QjBBL0Q1REI2REY2NjA3QTExRUY4NjlBQTY1Q0M0RjlBRTAyL0NaVUc3Smg4aXhs QVdGT3dqSEdMVzc1S3hwSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFKsiWjfjQhki7KvbHbSIRxgNjycXKqG3Iig5noZevEHUojEDnvrDiuP PaXbrZJoucfUZJK6dXI9GB8JyK2cAQQpKrOgf/Kmk9/WITEa/3mhYtiGrbmwQ96K eUMhS9IVJx++PmwDvp3bsCavaxOGkzU6TRc17B/C4Jn5NMX7V7mNAsxYfkp9CVOA jZmKwC8iXgCjqHVGn8zFYiXQ9RdrDAdx8pTGbhMJ5yapafz1iXhV+5TvreUlJe8b IQSXjrqhygRRSqlO+YXKomAS5rlvDOd3ZNRvXmRG38c++/JX1HSCeG+I0mynos1D Hm9h0l9UVvEBuJlrymcffymTvrPFBQ4= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org