$ rpki-client -vvf rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft File: z64jGpiXN_YdrZV8wk0hNYWBjtw.mft (raw, json) Hash identifier: DnpOQPWgC2GA95TN8MLkOxcaLmo9dWrdPOQx/5nbIy4= Subject key identifier: 6F:1E:9A:55:3F:E6:60:44:B0:BA:3A:49:79:F1:6A:11:2F:97:BB:B2 Authority key identifier: CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC Certificate issuer: /CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft Manifest number: F7 Signing time: Sat 23 Nov 2024 03:20:26 +0000 Manifest this update: Sat 23 Nov 2024 03:20:26 +0000 Manifest next update: Sat 30 Nov 2024 03:20:26 +0000 Files and hashes: 1: z64jGpiXN_YdrZV8wk0hNYWBjtw.crl (hash: 8b3w2RzFpHDS7UwF/IS9/kyRZuB82aCxiEBQuLKLf98=) 2: 578C92D62F6611EE9CAFAA58C4F9AE02.roa (hash: Km7Ntr3HPW+9p2/xgcR3/NDs3gM06IRtzM1XksYLFiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B45F/serialNumber=CFAE231A989737F61DAD957CC24D213585818EDC Validity Not Before: Nov 23 03:20:26 2024 GMT Not After : Nov 30 03:20:26 2024 GMT Subject: CN=674149fa-516f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b3:7b:30:91:dc:71:06:7a:27:db:96:51:ac: 84:c1:86:e5:26:30:7d:f2:b7:49:be:e2:c1:7a:c3: b8:6d:53:8f:92:45:f5:75:e6:31:65:6c:bd:da:35: 89:87:e0:98:7a:9c:7d:e5:ae:0b:59:01:32:a1:c8: bf:3d:7f:b4:5d:12:96:c3:c2:03:3d:b5:9b:ca:2b: ea:3b:67:54:9c:97:84:86:96:c6:db:d8:13:d7:83: 31:8b:ba:3d:c2:ea:1e:50:c2:18:14:7b:fc:37:e8: 60:c3:58:bc:4c:f3:13:70:2b:33:9d:73:ac:7e:68: 59:83:7b:a5:76:a7:f1:64:85:46:72:df:62:ed:bd: d9:21:21:d6:4f:ca:53:aa:4e:49:7e:92:07:1a:a4: 03:f2:7b:18:a1:e6:60:45:07:a8:a1:f9:a6:17:19: 35:ba:f9:cb:96:92:8f:97:b4:a7:e6:72:0e:b3:c3: ac:74:54:a8:1e:1c:04:25:59:d2:41:72:27:c7:85: f5:62:d0:62:4b:e9:6c:e4:b1:4b:e7:7f:14:b9:bb: 34:2a:65:85:10:a6:78:1e:0f:24:19:8a:91:56:37: 04:cf:94:34:3f:29:de:0c:54:cf:9f:ce:40:71:ec: 1e:7d:75:8c:8a:fc:f5:c0:8e:67:12:e8:0a:c7:ba: 24:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:1E:9A:55:3F:E6:60:44:B0:BA:3A:49:79:F1:6A:11:2F:97:BB:B2 X509v3 Authority Key Identifier: keyid:CF:AE:23:1A:98:97:37:F6:1D:AD:95:7C:C2:4D:21:35:85:81:8E:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z64jGpiXN_YdrZV8wk0hNYWBjtw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B45F/40BB15742F6511EE95FDED56C4F9AE02/z64jGpiXN_YdrZV8wk0hNYWBjtw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:5d:1c:59:6c:e8:d8:ac:32:48:1c:37:75:d5:45:4a:0e:53: aa:93:89:19:90:ad:df:a6:4f:95:ef:24:32:31:16:a8:89:c5: af:a5:1b:51:8d:fa:ae:94:57:57:0e:f2:ba:7f:e3:80:b1:ee: 80:34:00:29:a8:6d:df:2b:87:59:cf:88:91:28:e2:64:a6:13: 92:20:88:cb:3d:7d:3b:df:bc:03:3c:44:f5:23:1d:cc:b8:6d: 09:8d:d0:32:6c:9d:47:85:d1:ce:9e:41:fa:d9:d4:f4:73:21: ef:cd:e4:77:ea:6d:8a:43:0c:5d:18:03:42:1e:9e:39:91:91: d9:b1:f5:85:6f:92:bc:de:fa:80:44:71:f4:f2:44:81:a1:6b: 82:19:af:d1:07:d7:45:13:52:5f:6f:88:9e:2a:99:fe:ca:5a: 09:26:99:9b:a1:13:c6:ac:2c:37:53:a9:00:1f:83:c4:b5:f5: 2b:6b:3f:66:f8:fe:b8:17:a8:7e:01:f4:7b:cf:c0:84:f0:08: ba:aa:8d:2f:1e:fc:11:ea:89:dd:1a:6f:18:14:16:9c:05:0d: 8a:52:a0:d2:ee:a1:05:98:24:5d:4f:e0:af:35:0a:5b:f3:87: c3:3d:1c:4a:cc:31:19:2c:8d:76:6b:be:89:60:d2:e5:96:cd: 6b:58:20:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI0NUYxMTAvBgNVBAUTKENGQUUyMzFBOTg5NzM3RjYxREFEOTU3Q0MyNEQyMTM1 ODU4MThFREMwHhcNMjQxMTIzMDMyMDI2WhcNMjQxMTMwMDMyMDI2WjAYMRYwFAYD VQQDEw02NzQxNDlmYS01MTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bN7MJHccQZ6J9uWUayEwYblJjB98rdJvuLBesO4bVOPkkX1deYxZWy92jWJ h+CYepx95a4LWQEyoci/PX+0XRKWw8IDPbWbyivqO2dUnJeEhpbG29gT14Mxi7o9 wuoeUMIYFHv8N+hgw1i8TPMTcCsznXOsfmhZg3uldqfxZIVGct9i7b3ZISHWT8pT qk5JfpIHGqQD8nsYoeZgRQeoofmmFxk1uvnLlpKPl7Sn5nIOs8OsdFSoHhwEJVnS QXInx4X1YtBiS+ls5LFL538Uubs0KmWFEKZ4Hg8kGYqRVjcEz5Q0PyneDFTPn85A cewefXWMivz1wI5nEugKx7okpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG8emlU/ 5mBEsLo6SXnxahEvl7uyMB8GA1UdIwQYMBaAFM+uIxqYlzf2Ha2VfMJNITWFgY7c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjQ1Ri80MEJCMTU3NDJG NjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5fWWRyWlY4d2swaE5ZV0Jq dHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o2NGpHcGlYTl9ZZHJaVjh3azBoTllXQmp0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjQ1Ri80MEJCMTU3NDJGNjUxMUVFOTVGREVENTZDNEY5QUUwMi96NjRqR3BpWE5f WWRyWlY4d2swaE5ZV0JqdHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpXRxZbOjYrDJIHDd11UVKDlOqk4kZkK3fpk+V7yQyMRaoicWvpRtR jfqulFdXDvK6f+OAse6ANAApqG3fK4dZz4iRKOJkphOSIIjLPX0737wDPET1Ix3M uG0JjdAybJ1HhdHOnkH62dT0cyHvzeR36m2KQwxdGANCHp45kZHZsfWFb5K83vqA RHH08kSBoWuCGa/RB9dFE1Jfb4ieKpn+yloJJpmboRPGrCw3U6kAH4PEtfUraz9m +P64F6h+AfR7z8CE8Ai6qo0vHvwR6ondGm8YFBacBQ2KUqDS7qEFmCRdT+CvNQpb 84fDPRxKzDEZLI12a76JYNLlls1rWCCg -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org