$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft File: 0Z0h9lpMk802wwczAhMPTmW38Ok.mft (raw, json) Hash identifier: cphaTG/cHANyV5uZVHGleQLZ/xek336YY5Q0dcOpcmg= Subject key identifier: 72:F1:B2:EA:F4:9E:9A:94:C3:4E:09:86:05:C5:84:75:0A:3D:BD:89 Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft Manifest number: 0111 Signing time: Thu 21 Nov 2024 03:06:58 +0000 Manifest this update: Thu 21 Nov 2024 03:06:58 +0000 Manifest next update: Thu 28 Nov 2024 03:06:58 +0000 Files and hashes: 1: 0Z0h9lpMk802wwczAhMPTmW38Ok.crl (hash: RBziNJ0JDBIg3omLJO2J3JU9Qx6qHChN0W11EA5D1s0=) 2: 277E1906063111EEA8D4704BC4F9AE02.roa (hash: WsI2pZwd3SkmdptpGtk2Ve0B5b6T/qshL2o4i3jdOrk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: Nov 21 03:06:58 2024 GMT Not After : Nov 28 03:06:58 2024 GMT Subject: CN=673ea3d2-5177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:37:e2:78:48:9b:d1:73:9b:90:d7:2c:f6:91: 41:75:b1:ce:ea:d7:93:13:68:f1:45:e7:f8:29:04: cb:94:7e:80:ea:eb:ba:fe:a6:6d:02:d6:35:d2:ed: c3:6e:b3:60:f5:cb:00:1a:ea:fd:f7:48:ed:4c:01: cf:77:8d:e4:5f:b0:7d:a2:3a:3e:33:2f:70:f4:ea: f0:0e:96:62:e8:56:d0:1f:45:f5:4b:b5:cd:ba:20: 97:a1:ac:ca:da:9d:52:f4:e5:23:45:0b:7e:80:b9: 93:0c:0a:30:04:51:94:a2:ee:f3:b3:28:c2:1a:f6: 75:09:48:f8:d6:5d:c7:84:fa:9d:12:cb:69:3e:7c: b5:35:56:7b:cf:b4:ef:22:0c:dc:29:aa:34:86:de: 23:f9:e7:d5:8b:5b:c7:50:32:ea:33:e1:2a:8c:4c: 4d:79:70:a3:8b:11:6f:b2:f0:c2:ce:30:1e:8c:8d: cf:11:e3:45:35:0c:d2:5c:3b:5b:bf:32:16:8e:e0: cd:cf:98:18:34:93:15:39:ae:3f:a3:73:5c:64:8e: 23:b6:e0:77:a5:48:00:f6:ba:b5:30:9d:54:01:21: 87:92:c5:b3:ef:1d:61:33:ee:9a:79:b0:ca:d5:fa: 4f:66:59:5d:50:03:f1:e7:cc:e5:d2:bd:3f:d7:e4: a2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F1:B2:EA:F4:9E:9A:94:C3:4E:09:86:05:C5:84:75:0A:3D:BD:89 X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:53:4d:c4:a2:01:cb:70:e9:ea:6f:06:c4:ce:8a:44:c7:ff: a6:9c:d2:b9:35:d3:18:74:ab:72:23:e8:62:8f:e8:6b:88:dd: 69:e3:72:ff:5a:3c:9e:c6:f0:eb:a9:ab:79:d0:1f:56:05:c6: 50:18:8c:4b:4f:dd:83:74:7b:db:8c:d5:64:27:1c:68:4b:fa: c6:0b:06:ed:08:15:6e:cd:e7:88:2d:05:f5:b3:59:73:f5:52: 5a:ff:2c:bb:63:54:15:0d:e3:b1:b9:48:8e:e2:5c:29:c7:ef: cc:8b:67:f4:6b:e4:ec:ac:08:6a:ed:dd:2f:69:f4:a9:5b:04: bd:65:4f:2d:81:7c:86:9b:75:73:5b:cc:6f:1f:e6:a2:23:8a: 1e:8c:10:5b:07:54:5e:ee:7e:ef:3e:b4:11:08:2f:30:73:ee: 30:bd:a7:5c:ea:80:10:db:e8:82:4a:01:e7:1b:52:fc:10:1a: 45:98:5b:75:7b:b3:73:ba:81:7d:12:79:f3:81:b2:5c:b7:be: 02:f4:c2:82:10:25:ab:e9:23:2e:d8:b0:be:25:0d:be:71:f1: 0a:e7:9c:ab:2a:08:41:43:7b:1e:1a:f9:e7:7f:b4:76:88:2b: b9:e3:82:79:60:83:6e:80:01:ce:e0:10:9d:37:05:a9:8f:2c: f3:01:a9:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjQxMTIxMDMwNjU4WhcNMjQxMTI4MDMwNjU4WjAYMRYwFAYD VQQDEw02NzNlYTNkMi01MTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzfieEib0XObkNcs9pFBdbHO6teTE2jxRef4KQTLlH6A6uu6/qZtAtY10u3D brNg9csAGur990jtTAHPd43kX7B9ojo+My9w9OrwDpZi6FbQH0X1S7XNuiCXoazK 2p1S9OUjRQt+gLmTDAowBFGUou7zsyjCGvZ1CUj41l3HhPqdEstpPny1NVZ7z7Tv IgzcKao0ht4j+efVi1vHUDLqM+EqjExNeXCjixFvsvDCzjAejI3PEeNFNQzSXDtb vzIWjuDNz5gYNJMVOa4/o3NcZI4jtuB3pUgA9rq1MJ1UASGHksWz7x1hM+6aebDK 1fpPZlldUAPx58zl0r0/1+SiewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHLxsur0 npqUw04JhgXFhHUKPb2JMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjVDQi82OTU1MTVFMDA2MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4 MDJ3d2N6QWhNUFRtVzM4T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABU03EogHLcOnqbwbEzopEx/+mnNK5NdMYdKtyI+hij+hriN1p43L/ WjyexvDrqat50B9WBcZQGIxLT92DdHvbjNVkJxxoS/rGCwbtCBVuzeeILQX1s1lz 9VJa/yy7Y1QVDeOxuUiO4lwpx+/Mi2f0a+TsrAhq7d0vafSpWwS9ZU8tgXyGm3Vz W8xvH+aiI4oejBBbB1Re7n7vPrQRCC8wc+4wvadc6oAQ2+iCSgHnG1L8EBpFmFt1 e7NzuoF9EnnzgbJct74C9MKCECWr6SMu2LC+JQ2+cfEK55yrKghBQ3seGvnnf7R2 iCu544J5YINugAHO4BCdNwWpjyzzAakZ -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:58 2024 by rpki-client on console-fra.rpki-client.org