$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft File: zWXmdAuufrM71eU4ye5t6LM1RDE.mft (raw, json) Hash identifier: U9tm1xN7tjBJoa36/g2JqpDKuNlofyuwWDLXn0fynGs= Subject key identifier: 6D:22:FD:5E:DE:7F:BA:62:BA:26:27:68:FC:D4:97:F1:E7:CB:87:82 Authority key identifier: CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 Certificate issuer: /CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft Manifest number: C1 Signing time: Wed 20 Nov 2024 16:51:32 +0000 Manifest this update: Wed 20 Nov 2024 16:51:31 +0000 Manifest next update: Wed 27 Nov 2024 16:51:31 +0000 Files and hashes: 1: zWXmdAuufrM71eU4ye5t6LM1RDE.crl (hash: fUasOAbiJijtdKIkoKidbUAec6gFcw2cWSbysvg4bQA=) 2: 74F996F62F2511EF8D78DC62C4F9AE02.roa (hash: eJnBEPq3CmdNLCDHBUVvXs0kbXTnJ+d7CSKfSteaNso=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA49/serialNumber=CD65E6740BAE7EB33BD5E538C9EE6DE8B3354431 Validity Not Before: Nov 20 16:51:31 2024 GMT Not After : Nov 27 16:51:31 2024 GMT Subject: CN=673e1394-d974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:72:2e:a4:25:6d:31:d0:e9:7e:e0:94:b4: 73:7d:4c:ad:87:f0:a3:0c:01:fc:cc:a5:65:63:a5: d9:24:57:1a:30:2d:6c:b2:db:33:fb:6e:52:d9:14: 89:9f:97:45:f0:b3:0e:6e:6a:51:fa:3c:c6:53:29: e6:f2:aa:48:b0:54:57:c3:61:90:6f:2f:bc:8d:2e: 80:29:5d:5d:1a:2a:2b:eb:ec:83:ff:01:80:20:af: 0f:91:a2:1a:08:33:30:19:91:2d:2a:a1:8b:54:28: 16:f7:51:30:af:e3:5d:3b:09:c9:23:43:5e:45:75: 20:25:d3:8e:e6:2f:e3:2a:43:75:9e:29:9d:c7:12: 6d:48:cb:56:4b:b5:f0:79:92:89:da:ef:20:06:f7: fe:d5:44:ab:bb:d6:c7:d1:f2:aa:18:1f:f1:30:4f: 0d:3b:c1:25:16:44:d5:95:b9:35:81:fa:9f:78:fe: f0:fa:09:d9:e5:13:12:50:4f:8b:4f:de:94:af:88: 8a:dd:f7:e9:2e:c9:83:d4:20:b1:77:c8:60:5f:84: b9:f8:8c:d9:74:df:81:1a:62:fc:6d:17:40:19:37: 4b:58:e7:71:3f:26:f8:b6:59:66:0a:86:ca:92:96: 0b:73:d3:4f:4c:1a:58:e5:a1:c3:0b:3e:de:00:f3: 09:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:22:FD:5E:DE:7F:BA:62:BA:26:27:68:FC:D4:97:F1:E7:CB:87:82 X509v3 Authority Key Identifier: keyid:CD:65:E6:74:0B:AE:7E:B3:3B:D5:E5:38:C9:EE:6D:E8:B3:35:44:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zWXmdAuufrM71eU4ye5t6LM1RDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA49/A4C0CA96900911EE9E54A033C4F9AE02/zWXmdAuufrM71eU4ye5t6LM1RDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:24:2a:4a:26:31:d1:f4:59:a4:fc:66:22:02:7c:e3:5a:69: bf:e8:94:e8:a2:ad:db:f6:22:33:3e:2f:4a:05:e2:8b:5f:3b: d3:cd:92:69:f5:52:47:9a:ca:14:0c:4d:bc:0b:be:0e:0f:69: 9a:11:e2:c5:19:f3:aa:1f:c0:b9:ef:41:aa:d4:09:eb:9c:f2: e4:26:44:2d:86:1e:98:11:f1:e5:aa:cf:aa:f7:12:de:d7:dd: 64:15:7e:ca:2f:86:9f:0d:0f:ce:ff:c5:ba:2f:f0:02:09:28: b1:e3:63:9c:fb:2a:7d:a4:91:0e:02:b7:3a:58:57:cc:27:6a: 34:5a:4f:8d:6c:4b:11:9a:f7:18:a1:29:f0:ba:57:25:43:2a: bc:4e:e0:2c:09:3e:55:29:a9:87:3b:9f:82:84:fc:02:59:d9: 53:46:85:2c:da:c2:b3:5c:bb:4d:cb:c3:23:7e:24:f6:00:b5: 76:07:96:1c:18:50:fa:f2:e3:e2:3f:fd:13:99:eb:da:bf:8c: 36:7f:63:66:59:4b:69:bc:ee:99:e6:7b:be:ce:32:8d:61:df: c4:aa:cd:47:1c:74:ca:0f:d6:6e:ed:3b:48:38:91:e3:85:d2: b9:41:e7:36:d1:3b:73:d8:3b:69:68:cf:73:52:b4:fa:0b:93: c4:61:0b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNDkxMTAvBgNVBAUTKENENjVFNjc0MEJBRTdFQjMzQkQ1RTUzOEM5RUU2REU4 QjMzNTQ0MzEwHhcNMjQxMTIwMTY1MTMxWhcNMjQxMTI3MTY1MTMxWjAYMRYwFAYD VQQDEw02NzNlMTM5NC1kOTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmH5yLqQlbTHQ6X7glLRzfUyth/CjDAH8zKVlY6XZJFcaMC1sstsz+25S2RSJ n5dF8LMObmpR+jzGUynm8qpIsFRXw2GQby+8jS6AKV1dGior6+yD/wGAIK8PkaIa CDMwGZEtKqGLVCgW91Ewr+NdOwnJI0NeRXUgJdOO5i/jKkN1nimdxxJtSMtWS7Xw eZKJ2u8gBvf+1USru9bH0fKqGB/xME8NO8ElFkTVlbk1gfqfeP7w+gnZ5RMSUE+L T96Ur4iK3ffpLsmD1CCxd8hgX4S5+IzZdN+BGmL8bRdAGTdLWOdxPyb4tllmCobK kpYLc9NPTBpY5aHDCz7eAPMJBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0i/V7e f7piuiYnaPzUl/Hny4eCMB8GA1UdIwQYMBaAFM1l5nQLrn6zO9XlOMnubeizNUQx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE0OS9BNEMwQ0E5Njkw MDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZyTTcxZVU0eWU1dDZMTTFS REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pXWG1kQXV1ZnJNNzFlVTR5ZTV0NkxNMVJERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RkE0OS9BNEMwQ0E5NjkwMDkxMUVFOUU1NEEwMzNDNEY5QUUwMi96V1htZEF1dWZy TTcxZVU0eWU1dDZMTTFSREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbJCpKJjHR9Fmk/GYiAnzjWmm/6JTooq3b9iIzPi9KBeKLXzvTzZJp 9VJHmsoUDE28C74OD2maEeLFGfOqH8C570Gq1AnrnPLkJkQthh6YEfHlqs+q9xLe 191kFX7KL4afDQ/O/8W6L/ACCSix42Oc+yp9pJEOArc6WFfMJ2o0Wk+NbEsRmvcY oSnwulclQyq8TuAsCT5VKamHO5+ChPwCWdlTRoUs2sKzXLtNy8MjfiT2ALV2B5Yc GFD68uPiP/0Tmevav4w2f2NmWUtpvO6Z5nu+zjKNYd/Eqs1HHHTKD9Zu7TtIOJHj hdK5Qec20Ttz2DtpaM9zUrT6C5PEYQsq -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:59 2024 by rpki-client on console-fra.rpki-client.org