$ rpki-client -vvf rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft File: zQysDn6E4-geSHYXTiwhQIUJQmk.mft (raw, json) Hash identifier: mhAKP9IBV74RY875/Vftn972ZE7jr2828Fib2qhHwkk= Subject key identifier: 95:B0:DA:8A:CD:5E:98:CC:33:CB:B5:25:AD:2F:F6:C7:F4:0C:53:A1 Authority key identifier: CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 Certificate issuer: /CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Certificate serial: 02AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft Manifest number: 029F Signing time: Sat 23 Nov 2024 01:08:46 +0000 Manifest this update: Sat 23 Nov 2024 01:08:46 +0000 Manifest next update: Sat 30 Nov 2024 01:08:46 +0000 Files and hashes: 1: zQysDn6E4-geSHYXTiwhQIUJQmk.crl (hash: lhlVGiqODQKsLTwKrXIazgGEtt/iQNnpIf4mXvkrXXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D249/serialNumber=CD0CAC0E7E84E3E81E4876174E2C214085094269 Validity Not Before: Nov 23 01:08:46 2024 GMT Not After : Nov 30 01:08:46 2024 GMT Subject: CN=67412b1e-f7fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e4:3a:3c:94:cf:0c:a3:90:71:25:f7:21:b8: 98:61:b2:d3:55:36:78:84:c9:68:b2:0f:4d:90:d0: 1d:d2:44:64:b0:7e:9c:0f:b3:3f:cf:96:3e:d3:1d: 22:50:3d:a8:41:e2:e7:cc:37:0a:1f:0f:b8:fb:85: f5:9d:49:ee:fd:e2:a2:78:3a:e3:90:81:0c:d4:83: 07:f2:30:76:4c:8d:f3:b6:93:f6:9e:dc:b5:5e:f5: 9b:04:bf:f3:67:33:3e:8f:8c:4a:9d:6b:b9:aa:0c: 9a:62:c0:f3:e6:28:a1:02:98:c5:33:fc:c8:4b:e3: d9:c6:29:c1:a9:c7:13:6e:75:8f:ae:ef:0a:08:d4: 85:14:85:e7:b0:d3:03:d9:71:3b:b3:6f:52:00:6e: 4e:e6:e3:30:5e:c1:5f:76:88:c9:34:56:db:af:66: 15:5b:bd:22:ed:ca:00:3f:c5:cb:c8:bf:66:b2:44: 77:d5:4b:c6:84:cf:89:02:74:21:50:d9:b2:39:98: 8a:ce:09:d0:0d:8c:22:7b:ba:2a:d7:e6:63:b8:0f: f7:1b:2d:1d:16:b4:e0:77:fb:15:86:db:be:be:55: 73:ba:22:7d:7a:cc:6b:16:20:aa:f8:f9:4f:f5:c0: 85:41:a1:5e:e7:65:bc:c9:fa:22:9f:09:6c:93:73: ab:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:B0:DA:8A:CD:5E:98:CC:33:CB:B5:25:AD:2F:F6:C7:F4:0C:53:A1 X509v3 Authority Key Identifier: keyid:CD:0C:AC:0E:7E:84:E3:E8:1E:48:76:17:4E:2C:21:40:85:09:42:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zQysDn6E4-geSHYXTiwhQIUJQmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D249/76CE8456E02511ECB2FB0E27C4F9AE02/zQysDn6E4-geSHYXTiwhQIUJQmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:52:72:06:66:11:7d:68:1a:cc:e1:fb:b4:68:06:21:e8:87: e7:80:d2:42:40:31:7a:d6:07:aa:c8:35:3c:69:28:a0:07:3c: d1:d1:29:a2:b7:d1:dd:7e:1c:38:24:55:25:de:11:54:14:ca: be:b1:21:37:54:ff:a4:b2:53:c0:a9:f4:c7:bd:fc:9d:14:71: f3:94:8f:5b:ea:56:fe:00:6c:70:2d:b6:8e:d2:43:99:e4:17: 98:b0:8e:32:19:f8:7b:af:34:c9:8a:9f:1f:7c:27:56:ad:19: 4e:4b:6a:74:d9:34:05:c2:f1:3b:29:7c:72:2f:85:30:94:8b: 89:8d:08:58:6a:a2:7c:f4:d1:d1:e3:03:4c:01:82:36:85:d4: 82:49:b6:19:09:2e:ea:a7:52:d1:97:84:9a:e3:17:42:fc:3b: c6:65:7b:2d:44:bc:8a:25:be:42:cf:71:a8:ce:ad:82:ce:45: 00:a7:8a:40:cc:68:ca:a3:8b:ef:6c:9b:25:5b:47:05:60:6e: 93:bf:b7:d4:ba:0d:e3:ee:c3:32:e6:cd:a0:b6:61:97:1c:61: 54:71:a4:f6:1b:cd:34:08:10:b7:50:c3:f2:a2:d1:fa:c1:4f: c9:eb:b0:16:07:f9:86:e5:62:2c:89:01:bc:65:36:1f:00:fe: df:17:f0:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNDkxMTAvBgNVBAUTKENEMENBQzBFN0U4NEUzRTgxRTQ4NzYxNzRFMkMyMTQw ODUwOTQyNjkwHhcNMjQxMTIzMDEwODQ2WhcNMjQxMTMwMDEwODQ2WjAYMRYwFAYD VQQDEw02NzQxMmIxZS1mN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uQ6PJTPDKOQcSX3IbiYYbLTVTZ4hMlosg9NkNAd0kRksH6cD7M/z5Y+0x0i UD2oQeLnzDcKHw+4+4X1nUnu/eKieDrjkIEM1IMH8jB2TI3ztpP2nty1XvWbBL/z ZzM+j4xKnWu5qgyaYsDz5iihApjFM/zIS+PZxinBqccTbnWPru8KCNSFFIXnsNMD 2XE7s29SAG5O5uMwXsFfdojJNFbbr2YVW70i7coAP8XLyL9mskR31UvGhM+JAnQh UNmyOZiKzgnQDYwie7oq1+ZjuA/3Gy0dFrTgd/sVhtu+vlVzuiJ9esxrFiCq+PlP 9cCFQaFe52W8yfoinwlsk3OrfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWw2orN XpjMM8u1Ja0v9sf0DFOhMB8GA1UdIwQYMBaAFM0MrA5+hOPoHkh2F04sIUCFCUJp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI0OS83NkNFODQ1NkUw MjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQtZ2VTSFlYVGl3aFFJVUpR bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pReXNEbjZFNC1nZVNIWVhUaXdoUUlVSlFtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI0OS83NkNFODQ1NkUwMjUxMUVDQjJGQjBFMjdDNEY5QUUwMi96UXlzRG42RTQt Z2VTSFlYVGl3aFFJVUpRbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoUnIGZhF9aBrM4fu0aAYh6IfngNJCQDF61geqyDU8aSigBzzR0Smi t9Hdfhw4JFUl3hFUFMq+sSE3VP+kslPAqfTHvfydFHHzlI9b6lb+AGxwLbaO0kOZ 5BeYsI4yGfh7rzTJip8ffCdWrRlOS2p02TQFwvE7KXxyL4UwlIuJjQhYaqJ89NHR 4wNMAYI2hdSCSbYZCS7qp1LRl4Sa4xdC/DvGZXstRLyKJb5Cz3Gozq2CzkUAp4pA zGjKo4vvbJslW0cFYG6Tv7fUug3j7sMy5s2gtmGXHGFUcaT2G800CBC3UMPyotH6 wU/J67AWB/mG5WIsiQG8ZTYfAP7fF/BC -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org