$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft File: Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft (raw, json) Hash identifier: 0a+iVx+icf2xzpLcWMS3j/L30jcBgN3IvT/rb5xop+o= Subject key identifier: FE:67:5A:81:8B:FB:2F:3C:BE:43:21:DA:E7:07:90:52:69:1F:8A:AE Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1C6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft Manifest number: 3E75 Signing time: Fri 22 Nov 2024 14:28:23 +0000 Manifest this update: Fri 22 Nov 2024 14:28:22 +0000 Manifest next update: Fri 29 Nov 2024 14:28:22 +0000 Files and hashes: 1: Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl (hash: hk0MzNXj3zqvvQF/A2ixPID9HcvH/GqdQOzTIIIeWwI=) 2: 711F090E8AB411EA89D83541C4F9AE02.roa (hash: V43Il4g6nzN/Oi9NZNkfIg3qfCZBm83zni76jTMor3c=) 3: D2EF531219AE11EB8D3BC20EC4F9AE02.roa (hash: ecbq5n9i8YsI1DnV/FNeUcy7K6RyCgb2n5KgFVtlRys=) 4: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (hash: sli6IC2z9YJ/HvCCp5rnJrdg1q/2CMI1k/lxId4QY58=) 5: 671FF9F6943011EA8988B883C4F9AE02.roa (hash: Wdg4VF5GLoHlwlPyl6+HlE/ibrc1SiBo2CXSWmJGq0s=) 6: E1B073B689F011EABAEDCE2FC4F9AE02.roa (hash: 3mizSI3ttwr9fYLhX95SY8SiU7O6qd9AnRwusH6MEfo=) 7: A310F2FC8AB811EA9F89B54EC4F9AE02.roa (hash: kTpEYCAmunxJIp4Id6sV5egINJOtqBpQw2yNKgEwrR4=) 8: E206DF40E79011E699B81D0FC4F9AE02.roa (hash: 05JiHZhW4FX5F4m2ta1eoZQOXujb14zXuKofXn8V9ts=) 9: 095798588ABA11EAB5EDDE54C4F9AE02.roa (hash: lXnIjaE79MbFJFMKpPmyaG2gWaI8IDWerJKv1saa/n0=) 10: 66891B80943011EA8988B883C4F9AE02.roa (hash: e8EsUIru5I+kvcxrClJSF0og6ruHigKw4K5qZx/355g=) 11: 727C68508AB411EA89D83541C4F9AE02.roa (hash: 3/YHfMJFd4+/uHvYeznP2jrI3k3cNg88tQA8zxhGa9Q=) 12: A75964A28E4B11EA8A347A3EC4F9AE02.roa (hash: KqNlQBgDzVn6oYtQRMX2oZuYkDyyOGts1nvV6+UnhlU=) 13: 084044FC19AC11EB8759456DC4F9AE02.roa (hash: W9G6BLl6GrAu6NpuOira3w9ONwVWK7LaREYQeOaaW/o=) 14: 5D24529CAB0C11EA8D5ADE09C4F9AE02.roa (hash: jQLZJj3VvPR1niUIT7DA9sty7btEtK8rmHNsN8IaW9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7278 (0x1c6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 22 14:28:22 2024 GMT Not After : Nov 29 14:28:22 2024 GMT Subject: CN=67409506-7ec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d0:0a:27:00:a3:aa:03:f5:a7:37:a2:5d:d6: 21:bd:85:9a:72:7d:52:bc:d8:7e:b6:e6:b4:60:6b: 46:3f:94:6f:1a:a4:5b:90:e1:01:47:3c:e3:f6:57: 4a:e3:63:31:ea:e3:6c:c0:43:ca:64:a1:de:dc:03: 8b:bd:43:50:f9:35:7b:65:04:8a:a9:d9:02:fd:53: 2b:b9:59:8b:0c:d6:3c:ae:3d:1e:c4:79:f7:34:f4: 4b:0a:46:b9:50:13:8f:0c:89:47:b2:77:f0:1c:d5: d8:18:2b:c6:fc:e2:09:06:0c:4a:e5:09:91:b0:f1: cd:5e:80:32:62:79:0d:9d:eb:00:8c:0d:e8:b8:f3: d4:2c:f9:93:f6:9f:dd:88:6c:b3:3a:47:a6:00:52: 3c:b3:af:25:1e:09:b6:45:a5:b5:88:55:78:a3:b9: 73:14:24:bd:c2:8e:56:3c:17:5f:f2:c0:b2:c7:ef: 67:19:a9:27:98:6d:30:41:fe:2b:2a:e0:2c:dd:4a: 36:d6:13:d0:53:88:ec:53:8f:67:88:90:51:f3:36: 27:0a:57:fc:d5:7a:4e:f3:43:25:88:66:2c:7a:41: 2d:11:3b:24:92:cd:ab:1e:17:eb:1e:64:83:12:ac: 5e:ca:9e:33:a9:a1:6f:24:42:08:b7:cf:c4:64:7f: 5f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:67:5A:81:8B:FB:2F:3C:BE:43:21:DA:E7:07:90:52:69:1F:8A:AE X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:39:2d:a4:37:01:be:9f:05:2a:f7:af:8e:b7:d6:fc:d1:f3: f3:cd:67:1e:39:e1:4e:fa:b3:b1:84:3a:be:5b:33:5a:98:d0: 04:96:60:09:02:cf:cc:e3:28:78:5e:f8:77:fe:17:7e:b5:8c: 39:84:93:0e:ac:e5:13:44:a7:22:43:b5:6c:12:4c:ab:bf:c4: 36:ed:f0:6d:44:28:b5:d0:14:ea:ec:3e:e6:aa:27:2b:a9:de: 15:16:68:4d:c7:a0:90:12:7a:fb:a1:75:c1:98:68:f2:6e:c3: f9:93:39:3d:96:86:b2:87:01:d4:a3:b0:da:58:20:2a:c0:86: d4:9b:d8:fe:78:da:74:0e:8d:bb:fa:5a:b6:92:c8:26:11:d3: b3:cb:b9:22:22:bf:a2:6b:ee:18:1c:28:d1:29:00:83:72:1b: 3b:de:85:83:39:59:5c:12:e2:07:2c:57:81:63:b5:04:92:53: c8:1a:e7:03:56:57:d8:25:37:6c:b9:80:a4:98:93:d9:ff:c4: f2:56:b2:e8:3c:28:71:f0:7e:fd:0b:43:0e:40:01:8b:6b:b0: f3:65:97:e9:96:c8:b6:32:b8:c9:ee:d7:ea:e6:aa:e8:bf:f9: 4c:ec:3f:90:04:70:f1:f2:0b:b1:a8:4a:f9:37:3a:03:96:c1: 27:c7:90:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjQxMTIyMTQyODIyWhcNMjQxMTI5MTQyODIyWjAYMRYwFAYD VQQDEw02NzQwOTUwNi03ZWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dAKJwCjqgP1pzeiXdYhvYWacn1SvNh+tua0YGtGP5RvGqRbkOEBRzzj9ldK 42Mx6uNswEPKZKHe3AOLvUNQ+TV7ZQSKqdkC/VMruVmLDNY8rj0exHn3NPRLCka5 UBOPDIlHsnfwHNXYGCvG/OIJBgxK5QmRsPHNXoAyYnkNnesAjA3ouPPULPmT9p/d iGyzOkemAFI8s68lHgm2RaW1iFV4o7lzFCS9wo5WPBdf8sCyx+9nGaknmG0wQf4r KuAs3Uo21hPQU4jsU49niJBR8zYnClf81XpO80MliGYsekEtETskks2rHhfrHmSD Eqxeyp4zqaFvJEIIt8/EZH9fEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5nWoGL +y88vkMh2ucHkFJpH4quMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU2OC9CRDFBOTVEMjFEODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0 dlRINkFXb3RXMXVHcWJQOWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxOS2kNwG+nwUq96+Ot9b80fPzzWceOeFO+rOxhDq+WzNamNAElmAJ As/M4yh4Xvh3/hd+tYw5hJMOrOUTRKciQ7VsEkyrv8Q27fBtRCi10BTq7D7mqicr qd4VFmhNx6CQEnr7oXXBmGjybsP5kzk9loayhwHUo7DaWCAqwIbUm9j+eNp0Do27 +lq2ksgmEdOzy7kiIr+ia+4YHCjRKQCDchs73oWDOVlcEuIHLFeBY7UEklPIGucD VlfYJTdsuYCkmJPZ/8TyVrLoPChx8H79C0MOQAGLa7DzZZfplsi2MrjJ7tfq5qro v/lM7D+QBHDx8guxqEr5NzoDlsEnx5AF -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:37 2024 by rpki-client on console-fra.rpki-client.org