$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft File: zuSHZKosFvdaBnJE66WGaXThztY.mft (raw, json) Hash identifier: U7GpaC75BRTM4UygXNNkl1s5GK1+MtH47tnINM9hQ2k= Subject key identifier: 29:52:49:94:15:F8:38:0F:27:73:10:93:4C:0F:73:65:A6:00:76:95 Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft Manifest number: 2A Signing time: Thu 21 Nov 2024 05:47:12 +0000 Manifest this update: Thu 21 Nov 2024 05:47:11 +0000 Manifest next update: Thu 28 Nov 2024 05:47:11 +0000 Files and hashes: 1: zuSHZKosFvdaBnJE66WGaXThztY.crl (hash: CjenAffx8gBNQ/hoGbiytnnqqY2lvNF7T8cQoupcSI8=) 2: 9B22AC1269F611EFA7665A51C4F9AE02.roa (hash: Fnj7JWgwdsaeofMVq5UcxcqhmE7c7PXdT8GOJ7pFYSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Nov 21 05:47:11 2024 GMT Not After : Nov 28 05:47:11 2024 GMT Subject: CN=673ec95f-8d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9e:d4:87:b8:1d:36:fe:fd:94:40:42:f5:fe: 34:2f:5e:b4:c9:0b:55:a9:dc:79:b9:98:ae:f2:24: 50:e4:93:a2:e9:7c:f2:81:1e:98:ca:e0:d4:b1:27: a0:ba:eb:a0:0e:23:6d:6a:60:0b:2d:d9:5a:95:01: 83:67:84:da:28:91:14:ad:77:ac:13:17:6a:03:16: d6:2a:2c:1f:12:2f:d1:fd:45:b0:6f:ee:c4:8f:96: 4f:38:1e:31:7f:44:16:91:6d:c6:b9:0a:9f:0a:0f: 6d:b6:78:a9:76:50:74:92:14:87:b6:93:a5:58:9a: 72:6c:3e:16:81:a0:41:47:80:db:15:9e:1e:0c:6e: 54:72:2f:2a:57:58:f6:7d:29:a9:b8:5e:48:cf:9d: 2c:c1:da:4d:02:42:b5:41:c6:4a:24:2d:7c:f5:06: c2:9f:89:99:36:41:8d:dc:b8:16:56:9a:37:f4:b2: 47:4c:36:00:dc:03:5a:65:89:96:81:da:4e:ab:6a: f3:38:60:99:3c:35:0c:3a:eb:7f:de:b9:ae:ac:87: f7:ec:7b:79:b9:84:d3:5a:29:62:0c:af:a9:e3:79: c4:d9:bc:4d:3c:1c:85:1e:54:f5:dd:b5:da:a6:5c: 91:5c:f2:05:a7:0f:59:91:d7:74:6b:de:9e:39:01: f6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:52:49:94:15:F8:38:0F:27:73:10:93:4C:0F:73:65:A6:00:76:95 X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:2a:a8:a2:46:d7:2b:3b:6f:e9:89:90:aa:0c:fe:6b:b0:9e: 9c:1f:c4:ea:af:b8:11:21:7a:31:99:3e:a8:78:82:45:ff:9d: 61:9c:65:f2:d3:e4:99:98:a0:4f:30:3d:92:67:7a:87:9e:99: de:8e:75:10:f2:d2:04:be:75:67:ef:87:73:a2:c7:06:fd:b5: 0c:29:82:a1:3b:04:7f:a9:9a:fb:92:61:70:16:34:63:ad:8f: e7:26:60:ba:86:08:54:31:1d:8f:32:f8:1c:fc:ac:8e:9a:79: 59:b4:3b:66:1f:18:cd:bd:a0:ff:34:df:2b:50:57:0b:a5:a2: e3:41:10:ea:82:6b:9b:a0:53:f4:cd:fe:bb:db:2b:8c:3b:f2: 14:08:c7:48:4a:28:f4:3d:4f:cc:65:2d:0b:83:e0:31:6f:c4: 49:37:01:7f:34:ef:5c:aa:39:8e:17:ea:f1:81:0b:90:c5:41: fd:5e:7c:7f:4f:e6:f4:cd:64:e4:44:b9:38:77:42:22:f8:5c: 5a:b8:3a:fc:33:e6:0b:ff:d5:fe:9b:02:4f:52:06:a4:26:3d: bb:fc:e5:9e:b4:3b:48:9f:bf:b8:6c:ea:5e:0c:a8:7e:4d:2a: 85:6d:fb:ee:33:3c:52:1e:20:31:79:48:ee:94:1d:bc:13:1a: ff:fe:07:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTRBRjExMC8GA1UEBRMoQ0VFNDg3NjRBQTJDMTZGNzVBMDY3MjQ0RUJBNTg2Njk3 NEUxQ0VENjAeFw0yNDExMjEwNTQ3MTFaFw0yNDExMjgwNTQ3MTFaMBgxFjAUBgNV BAMTDTY3M2VjOTVmLThkNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwntSHuB02/v2UQEL1/jQvXrTJC1Wp3Hm5mK7yJFDkk6LpfPKBHpjK4NSxJ6C6 66AOI21qYAst2VqVAYNnhNookRStd6wTF2oDFtYqLB8SL9H9RbBv7sSPlk84HjF/ RBaRbca5Cp8KD222eKl2UHSSFIe2k6VYmnJsPhaBoEFHgNsVnh4MblRyLypXWPZ9 Kam4XkjPnSzB2k0CQrVBxkokLXz1BsKfiZk2QY3cuBZWmjf0skdMNgDcA1pliZaB 2k6ravM4YJk8NQw663/eua6sh/fse3m5hNNaKWIMr6njecTZvE08HIUeVPXdtdqm XJFc8gWnD1mR13Rr3p45AfajAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKVJJlBX4 OA8ncxCTTA9zZaYAdpUwHwYDVR0jBBgwFoAUzuSHZKosFvdaBnJE66WGaXThztYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBNEFGLzQ2NjQ2NkNBNjlG NjExRUZCMkI4QUY1MEM0RjlBRTAyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvenVTSFpLb3NGdmRhQm5KRTY2V0dhWFRoenRZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB NEFGLzQ2NjQ2NkNBNjlGNjExRUZCMkI4QUY1MEM0RjlBRTAyL3p1U0haS29zRnZk YUJuSkU2NldHYVhUaHp0WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABkqqKJG1ys7b+mJkKoM/muwnpwfxOqvuBEhejGZPqh4gkX/nWGcZfLT 5JmYoE8wPZJneoeemd6OdRDy0gS+dWfvh3Oixwb9tQwpgqE7BH+pmvuSYXAWNGOt j+cmYLqGCFQxHY8y+Bz8rI6aeVm0O2YfGM29oP803ytQVwulouNBEOqCa5ugU/TN /rvbK4w78hQIx0hKKPQ9T8xlLQuD4DFvxEk3AX8071yqOY4X6vGBC5DFQf1efH9P 5vTNZOREuTh3QiL4XFq4Ovwz5gv/1f6bAk9SBqQmPbv85Z60O0ifv7hs6l4MqH5N KoVt++4zPFIeIDF5SO6UHbwTGv/+B6k= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org