$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: pF5UT/CMsftRdd834w8prGBcOOM9qI/qbX/iSD7PPsQ= Subject key identifier: 0B:AB:05:A2:FE:01:77:2A:34:DB:C1:5C:1A:D6:C8:53:26:8A:63:EA Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 05 Signing time: Thu 21 Nov 2024 06:16:48 +0000 Manifest this update: Thu 21 Nov 2024 06:16:47 +0000 Manifest next update: Thu 28 Nov 2024 06:16:47 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: TDI7YGfQLg6DjhnkotQUsvCR/bDrLlGI+hL6lWRTRJ8=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: 9YzGJkxen0bF7ZOSO15+u2xKU2H/RKyzN947mBYbnYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Nov 21 06:16:47 2024 GMT Not After : Nov 28 06:16:47 2024 GMT Subject: CN=673ed04f-77e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5a:51:90:45:8a:70:b6:77:53:48:56:1e:d9: 76:3b:c9:4a:e1:c8:75:fb:8b:17:13:71:aa:06:a0: 20:34:eb:a3:11:0f:06:d8:83:b9:d5:ad:a8:2e:95: a9:84:84:84:95:b3:05:18:8b:a0:7e:e4:b6:50:fa: a4:76:73:ce:6e:32:4d:1e:56:43:ef:75:cf:b8:dd: 73:8f:70:8c:59:8c:92:1a:b1:50:66:79:a0:f3:54: c1:34:60:ec:4b:b7:e7:3b:46:4b:82:cb:91:8e:05: d2:86:d9:08:d0:46:60:f0:d7:c3:0e:29:1d:26:9b: f3:c0:80:b2:f9:91:10:4e:75:67:71:47:d9:53:42: 32:a4:75:43:0c:a2:a2:3e:fb:5b:46:d5:62:17:15: c1:57:d0:ae:1c:4b:00:6e:92:76:b0:d3:7d:6e:ec: a6:27:dc:6a:99:77:14:7d:50:c4:0a:a1:06:d1:13: ac:89:e4:39:69:4c:9e:c0:27:d7:c6:95:51:1b:6d: 97:6d:ca:5f:e6:f1:00:86:97:6b:20:2f:a0:66:3e: 07:9f:4f:b4:4e:b1:f3:d3:ca:d7:23:be:28:dc:2f: 28:48:25:72:93:10:57:79:95:38:2d:8c:79:92:02: e2:80:ee:64:f6:37:dc:1c:02:88:12:76:6b:b0:ea: b8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AB:05:A2:FE:01:77:2A:34:DB:C1:5C:1A:D6:C8:53:26:8A:63:EA X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c3:88:0f:6b:37:c6:ae:02:dc:37:14:e7:15:a7:41:27:8c: 1c:60:5d:6b:e9:fc:1d:cf:34:bb:dd:92:b6:67:7f:d6:eb:a2: 04:b6:8b:0d:82:6c:ae:73:f8:2b:f0:12:11:bf:b8:d4:be:fd: 6e:fe:f2:32:6e:e6:fa:02:4d:1b:7e:79:06:9f:2b:6d:18:6f: 6f:9a:08:6d:65:d7:4f:08:1d:b2:97:31:36:66:ed:f4:22:cb: 9e:e3:c5:f7:94:ef:5c:d0:1e:ce:7d:10:d7:6b:80:3c:a0:a3: 1f:3b:da:c2:48:a6:d9:4d:2f:df:76:46:f5:51:04:bc:da:7e: 54:9d:d9:95:a0:ab:64:b6:e7:04:2f:ae:b5:9a:9c:f3:59:a3: 4f:82:38:f9:f7:ba:59:90:d4:e8:b0:b6:38:b8:85:1d:9f:45: f0:ca:aa:b1:9c:14:96:80:e0:5c:68:57:61:d2:a1:d4:26:00: e0:d1:a0:3e:7f:b4:0b:80:9d:7c:78:37:e6:20:70:f1:10:ee: 0e:91:82:5a:2e:90:82:33:8c:cd:f7:16:dc:07:78:64:02:2e: 4e:5c:2d:a4:a8:1a:8f:e9:48:32:13:89:9f:d5:0d:43:69:1a: 0a:ce:99:4d:f8:6e:b1:e1:73:f5:c9:0d:f7:50:b5:1f:ec:3c: 9e:2c:1c:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUJGMDExMC8GA1UEBRMoREIzREZEODZDRUJGRUFFRDNBQUYxNURFQUVFNjk2NTIz NDc0NkEyOTAeFw0yNDExMjEwNjE2NDdaFw0yNDExMjgwNjE2NDdaMBgxFjAUBgNV BAMTDTY3M2VkMDRmLTc3ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAWlGQRYpwtndTSFYe2XY7yUrhyHX7ixcTcaoGoCA066MRDwbYg7nVragulamE hISVswUYi6B+5LZQ+qR2c85uMk0eVkPvdc+43XOPcIxZjJIasVBmeaDzVME0YOxL t+c7RkuCy5GOBdKG2QjQRmDw18MOKR0mm/PAgLL5kRBOdWdxR9lTQjKkdUMMoqI+ +1tG1WIXFcFX0K4cSwBuknaw031u7KYn3GqZdxR9UMQKoQbRE6yJ5DlpTJ7AJ9fG lVEbbZdtyl/m8QCGl2sgL6BmPgefT7ROsfPTytcjvijcLyhIJXKTEFd5lTgtjHmS AuKA7mT2N9wcAogSdmuw6rgVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC6sFov4B dyo028FcGtbIUyaKY+owHwYDVR0jBBgwFoAU2z39hs6/6u06rxXeruaWUjR0aikw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQkYwL0E3OEYxQjEyQTQx NTExRUZBMTRGQkQzRkM0RjlBRTAyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFp ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnozOWhzNl82dTA2cnhYZXJ1YVdValIwYWlrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QkYwL0E3OEYxQjEyQTQxNTExRUZBMTRGQkQzRkM0RjlBRTAyLzJ6MzloczZfNnUw NnJ4WGVydWFXVWpSMGFpay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADTDiA9rN8auAtw3FOcVp0EnjBxgXWvp/B3PNLvdkrZnf9brogS2iw2C bK5z+CvwEhG/uNS+/W7+8jJu5voCTRt+eQafK20Yb2+aCG1l108IHbKXMTZm7fQi y57jxfeU71zQHs59ENdrgDygox872sJIptlNL992RvVRBLzaflSd2ZWgq2S25wQv rrWanPNZo0+COPn3ulmQ1Oiwtji4hR2fRfDKqrGcFJaA4FxoV2HSodQmAODRoD5/ tAuAnXx4N+YgcPEQ7g6RgloukIIzjM33FtwHeGQCLk5cLaSoGo/pSDITiZ/VDUNp GgrOmU34brHhc/XJDfdQtR/sPJ4sHLQ= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org