$ rpki-client -vvf rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft File: zuSHZKosFvdaBnJE66WGaXThztY.mft (raw, json) Hash identifier: vgzciS4zv4rXGv4v9rq1vDmcDvhvUgNqaSagjQlDP6o= Subject key identifier: D4:F6:84:A6:62:7F:FB:DB:73:2E:9D:D6:45:4F:57:2C:91:D8:34:05 Authority key identifier: CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 Certificate issuer: /CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Certificate serial: 1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft Manifest number: 1B Signing time: Wed 23 Oct 2024 06:35:09 +0000 Manifest this update: Wed 23 Oct 2024 06:35:09 +0000 Manifest next update: Wed 30 Oct 2024 06:35:09 +0000 Files and hashes: 1: zuSHZKosFvdaBnJE66WGaXThztY.crl (hash: ywR20CDzix+GbnYBAo1hVRBpSYzSWzzHLXkSDV//dZc=) 2: 9B22AC1269F611EFA7665A51C4F9AE02.roa (hash: Fnj7JWgwdsaeofMVq5UcxcqhmE7c7PXdT8GOJ7pFYSI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A4AF/serialNumber=CEE48764AA2C16F75A067244EBA5866974E1CED6 Validity Not Before: Oct 23 06:35:09 2024 GMT Not After : Oct 30 06:35:09 2024 GMT Subject: CN=6718991d-7092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5e:96:51:bb:b5:e7:cb:c8:42:be:2a:2d:c2: fe:8c:12:64:1c:4f:d7:f4:6f:8e:37:a6:e9:fc:80: 9a:f1:62:eb:d9:31:a7:f7:38:0d:c7:39:61:c9:9d: 27:c3:e1:2f:ab:a7:e9:16:89:04:fa:19:9f:ac:7e: 49:fa:94:b2:93:f8:c2:cb:98:e5:cf:05:35:29:57: 35:1a:59:77:1e:d6:e2:2e:bc:5e:d5:ce:b3:4a:77: cb:ad:79:16:40:89:85:7d:6e:d7:11:2e:44:d3:94: 99:8d:e7:17:e4:b4:ef:77:12:91:95:d7:ec:78:27: 90:03:f4:13:a1:e3:e0:e0:ac:28:1f:07:5d:d2:a8: 60:53:b5:50:2b:25:17:19:c7:b2:34:ff:6a:e7:e8: 9a:b6:c0:68:eb:2d:60:1b:0a:4c:ce:58:4f:49:cc: db:b0:c4:36:52:60:f2:4e:d7:01:20:26:37:67:c6: ca:e0:0e:45:f0:f4:50:e0:e1:87:f6:97:a1:97:4b: ca:40:d5:ce:59:97:df:79:aa:47:5f:26:42:0b:f8: 5b:c9:55:a5:e1:d4:09:aa:45:cf:c5:af:3b:25:b6: 50:f6:34:d0:4a:4b:bb:20:43:d9:09:ef:90:fd:df: 96:4f:42:da:f7:4f:4c:0a:be:11:68:d0:fc:6d:84: 29:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:F6:84:A6:62:7F:FB:DB:73:2E:9D:D6:45:4F:57:2C:91:D8:34:05 X509v3 Authority Key Identifier: keyid:CE:E4:87:64:AA:2C:16:F7:5A:06:72:44:EB:A5:86:69:74:E1:CE:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zuSHZKosFvdaBnJE66WGaXThztY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A4AF/466466CA69F611EFB2B8AF50C4F9AE02/zuSHZKosFvdaBnJE66WGaXThztY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:b3:4f:ce:2e:da:ae:43:19:00:b7:38:d1:1a:cd:db:e3:6c: 9a:65:61:1c:b6:c2:dc:db:c5:4e:2b:9c:bb:36:8b:b0:88:30: e3:3a:54:6f:26:a6:de:cc:97:3a:10:17:78:0a:ea:25:cc:5f: 00:2b:7f:b1:41:ce:15:a0:c7:94:f1:eb:f6:f6:de:bb:29:0a: 8f:56:83:a6:bc:6d:4a:f1:1c:78:a4:bc:93:49:b6:1f:98:b7: 8c:16:93:ad:eb:b5:96:68:81:03:33:c1:13:04:3b:6c:e3:ca: b5:5c:54:47:74:33:94:42:47:e3:22:a9:e1:b2:69:48:14:40: 29:2e:a1:46:e0:52:b0:95:43:fe:1a:f0:fa:0e:00:00:0d:9c: 1f:e7:8e:07:76:a8:de:46:54:63:91:f9:2f:6b:c0:a9:ee:f3: 51:ea:dd:a0:25:de:2c:ed:1c:f8:90:6e:0c:e8:d0:a6:64:13: bd:a1:8b:91:db:6c:4c:4c:65:29:19:92:eb:2a:b2:f0:65:3f: bf:42:fa:d1:b8:cc:49:8a:6c:b4:0c:ae:d8:f7:47:6f:d8:62: 34:26:c7:2c:ab:60:80:aa:39:c1:b1:4a:bb:00:bd:28:cb:88: 1c:02:67:bb:9e:c1:a6:b5:c4:16:1a:3d:45:21:2c:18:ef:d9: cb:0d:c6:6c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTRBRjExMC8GA1UEBRMoQ0VFNDg3NjRBQTJDMTZGNzVBMDY3MjQ0RUJBNTg2Njk3 NEUxQ0VENjAeFw0yNDEwMjMwNjM1MDlaFw0yNDEwMzAwNjM1MDlaMBgxFjAUBgNV BAMTDTY3MTg5OTFkLTcwOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxXpZRu7Xny8hCviotwv6MEmQcT9f0b443pun8gJrxYuvZMaf3OA3HOWHJnSfD 4S+rp+kWiQT6GZ+sfkn6lLKT+MLLmOXPBTUpVzUaWXce1uIuvF7VzrNKd8uteRZA iYV9btcRLkTTlJmN5xfktO93EpGV1+x4J5AD9BOh4+DgrCgfB13SqGBTtVArJRcZ x7I0/2rn6Jq2wGjrLWAbCkzOWE9JzNuwxDZSYPJO1wEgJjdnxsrgDkXw9FDg4Yf2 l6GXS8pA1c5Zl995qkdfJkIL+FvJVaXh1AmqRc/FrzsltlD2NNBKS7sgQ9kJ75D9 35ZPQtr3T0wKvhFo0PxthCmXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1PaEpmJ/ +9tzLp3WRU9XLJHYNAUwHwYDVR0jBBgwFoAUzuSHZKosFvdaBnJE66WGaXThztYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBNEFGLzQ2NjQ2NkNBNjlG NjExRUZCMkI4QUY1MEM0RjlBRTAyL3p1U0haS29zRnZkYUJuSkU2NldHYVhUaHp0 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvenVTSFpLb3NGdmRhQm5KRTY2V0dhWFRoenRZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB NEFGLzQ2NjQ2NkNBNjlGNjExRUZCMkI4QUY1MEM0RjlBRTAyL3p1U0haS29zRnZk YUJuSkU2NldHYVhUaHp0WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGezT84u2q5DGQC3ONEazdvjbJplYRy2wtzbxU4rnLs2i7CIMOM6VG8m pt7MlzoQF3gK6iXMXwArf7FBzhWgx5Tx6/b23rspCo9Wg6a8bUrxHHikvJNJth+Y t4wWk63rtZZogQMzwRMEO2zjyrVcVEd0M5RCR+MiqeGyaUgUQCkuoUbgUrCVQ/4a 8PoOAAANnB/njgd2qN5GVGOR+S9rwKnu81Hq3aAl3iztHPiQbgzo0KZkE72hi5Hb bExMZSkZkusqsvBlP79C+tG4zEmKbLQMrtj3R2/YYjQmxyyrYICqOcGxSrsAvSjL iBwCZ7uewaa1xBYaPUUhLBjv2csNxmw= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:20 2024 by rpki-client on console-fra.rpki-client.org