$ rpki-client -vvf rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft File: A0ZyQIbx848yyqFygmhZGcfIu28.mft (raw, json) Hash identifier: QL28lZboFjVL4Q5GqNOBrk1994vZg6zO3+VKAhcH3bU= Subject key identifier: 1C:2D:CD:9B:60:D4:D1:DD:49:32:3A:0A:34:E3:9B:BF:53:47:D3:FD Authority key identifier: 03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F Certificate issuer: /CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Certificate serial: 0B61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft Manifest number: 0B5F Signing time: Fri 22 Nov 2024 18:51:53 +0000 Manifest this update: Fri 22 Nov 2024 18:51:53 +0000 Manifest next update: Fri 29 Nov 2024 18:51:53 +0000 Files and hashes: 1: A0ZyQIbx848yyqFygmhZGcfIu28.crl (hash: jnG/mhdvdI5yjqpiHScP9mhJU94QGBm7LYWtjiQc6p0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2913 (0xb61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173591/serialNumber=0346724086F1F38F32CAA17282685919C7C8BB6F Validity Not Before: Nov 22 18:51:53 2024 GMT Not After : Nov 29 18:51:53 2024 GMT Subject: CN=6740d2c9-f779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:7d:52:b9:c9:d4:d9:66:22:96:bd:f1:90: 02:d8:ef:22:6b:6f:e1:3a:d1:7b:ae:55:2e:f1:67: 2a:13:1c:8d:57:13:56:a5:7d:1b:6a:fd:0d:dd:af: 69:c0:c3:73:dd:c2:8b:fa:36:41:df:dc:3e:48:cb: f6:ca:1d:d9:3e:eb:0d:4e:f5:de:c4:c5:30:d2:de: ef:e5:db:18:54:e7:f5:6d:b9:df:e8:60:f6:46:7c: 83:50:07:f1:2d:ae:4a:b0:fa:45:bb:9f:a8:29:47: 5c:84:b1:62:cb:6e:ec:b3:11:07:29:57:53:f2:ed: 37:2f:47:0e:46:98:81:6e:51:8c:1f:fd:66:ed:ad: eb:c2:be:84:98:bf:fa:5e:3e:1c:53:51:ae:50:d3: 19:fd:ee:88:5c:ca:84:dc:9c:e1:11:d5:35:be:24: 85:62:fc:fc:55:7d:ea:eb:b1:7b:ef:9b:2b:3d:e4: 68:4d:07:68:28:f6:d3:ae:ba:b5:92:24:08:02:53: d4:15:8c:31:8a:e3:66:c9:a0:08:c7:cf:26:bc:dc: a6:03:71:84:51:a5:b2:3d:50:5d:54:43:17:74:4f: b9:d6:3f:98:c7:a2:9d:06:9e:12:d5:9c:79:cb:98: 59:f4:ab:0c:c1:6f:95:f0:d1:e8:5b:a3:c2:b5:5c: 86:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2D:CD:9B:60:D4:D1:DD:49:32:3A:0A:34:E3:9B:BF:53:47:D3:FD X509v3 Authority Key Identifier: keyid:03:46:72:40:86:F1:F3:8F:32:CA:A1:72:82:68:59:19:C7:C8:BB:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0ZyQIbx848yyqFygmhZGcfIu28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173591/2768FBA61D6F11EA9B56E726C4F9AE02/A0ZyQIbx848yyqFygmhZGcfIu28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a1:15:cf:64:28:90:29:16:93:0f:ed:84:81:90:4b:2b:cb: c7:1d:95:84:d9:f5:4c:56:10:34:3c:4b:54:c4:07:bc:a3:ed: 12:5e:8c:a8:d9:a3:93:85:33:05:80:ca:68:e0:cf:3d:fa:a8: ea:07:56:0e:e9:37:1f:5f:a0:66:6a:9b:aa:98:29:9c:b0:47: 19:96:45:09:c2:34:64:d8:80:6e:77:e8:a7:d0:f9:f8:1a:b6: be:7b:09:83:59:21:79:c4:81:ff:b2:de:78:39:e9:f3:af:55: 79:ab:69:7d:27:c4:9a:49:3c:37:cc:b9:70:56:fa:0e:49:50: f7:bc:0b:f5:e0:31:a5:6e:2c:8d:9d:68:1b:08:9f:d7:6b:ee: 24:55:d1:60:e9:87:05:af:9e:1f:5a:e0:2f:1f:72:41:cf:01: 94:70:6b:ea:8a:2c:7a:e4:2f:ae:d1:cc:70:3b:ff:79:18:18: 45:aa:37:dd:cd:c8:9d:38:1b:f5:e6:30:a0:55:9d:ee:87:80: 46:81:11:90:9d:fe:55:3e:34:38:a1:2b:5f:11:0e:a8:c1:5d: 6f:1d:fa:6b:3a:3a:84:eb:bb:90:63:9a:81:38:cf:f5:40:28: 02:16:ec:f6:cd:ef:77:93:f3:d6:52:5e:eb:07:0a:60:6c:21: 5a:d3:10:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1OTExMTAvBgNVBAUTKDAzNDY3MjQwODZGMUYzOEYzMkNBQTE3MjgyNjg1OTE5 QzdDOEJCNkYwHhcNMjQxMTIyMTg1MTUzWhcNMjQxMTI5MTg1MTUzWjAYMRYwFAYD VQQDEw02NzQwZDJjOS1mNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveB9UrnJ1NlmIpa98ZAC2O8ia2/hOtF7rlUu8WcqExyNVxNWpX0bav0N3a9p wMNz3cKL+jZB39w+SMv2yh3ZPusNTvXexMUw0t7v5dsYVOf1bbnf6GD2RnyDUAfx La5KsPpFu5+oKUdchLFiy27ssxEHKVdT8u03L0cORpiBblGMH/1m7a3rwr6EmL/6 Xj4cU1GuUNMZ/e6IXMqE3JzhEdU1viSFYvz8VX3q67F775srPeRoTQdoKPbTrrq1 kiQIAlPUFYwxiuNmyaAIx88mvNymA3GEUaWyPVBdVEMXdE+51j+Yx6KdBp4S1Zx5 y5hZ9KsMwW+V8NHoW6PCtVyGvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwtzZtg 1NHdSTI6CjTjm79TR9P9MB8GA1UdIwQYMBaAFANGckCG8fOPMsqhcoJoWRnHyLtv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU5MS8yNzY4RkJBNjFE NkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0OHl5cUZ5Z21oWkdjZkl1 MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwWnlRSWJ4ODQ4eXlxRnlnbWhaR2NmSXUyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU5MS8yNzY4RkJBNjFENkYxMUVBOUI1NkU3MjZDNEY5QUUwMi9BMFp5UUlieDg0 OHl5cUZ5Z21oWkdjZkl1MjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4oRXPZCiQKRaTD+2EgZBLK8vHHZWE2fVMVhA0PEtUxAe8o+0SXoyo 2aOThTMFgMpo4M89+qjqB1YO6TcfX6BmapuqmCmcsEcZlkUJwjRk2IBud+in0Pn4 Gra+ewmDWSF5xIH/st54Oenzr1V5q2l9J8SaSTw3zLlwVvoOSVD3vAv14DGlbiyN nWgbCJ/Xa+4kVdFg6YcFr54fWuAvH3JBzwGUcGvqiix65C+u0cxwO/95GBhFqjfd zcidOBv15jCgVZ3uh4BGgRGQnf5VPjQ4oStfEQ6owV1vHfprOjqE67uQY5qBOM/1 QCgCFuz2ze93k/PWUl7rBwpgbCFa0xDX -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org