$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft File: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft (raw, json) Hash identifier: xZ/h55rdMWAREr0IrOZ67Ztp6+c4OUFLNqUjeG9dYyE= Subject key identifier: 48:0B:E6:C8:A5:3D:6A:23:EC:16:DC:30:67:5F:E0:1A:9B:0B:D9:87 Authority key identifier: D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 Certificate issuer: /CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Certificate serial: 0617 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft Manifest number: 060E Signing time: Fri 22 Nov 2024 22:18:31 +0000 Manifest this update: Fri 22 Nov 2024 22:18:30 +0000 Manifest next update: Fri 29 Nov 2024 22:18:30 +0000 Files and hashes: 1: 2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl (hash: QAfpaLLsviRc9LXhaxreHCruwh0esoeBLKWXCfGRlY0=) 2: 0BEE202087BA11EBBBA56067C4F9AE02.roa (hash: RcqGn4DlzkrU8iX9c04+ABUEIkZSxXOe2ZYW/HJVZ60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1559 (0x617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA/serialNumber=D95CE5FB36915C3D8CDB10DB864A4C71933CDA41 Validity Not Before: Nov 22 22:18:30 2024 GMT Not After : Nov 29 22:18:30 2024 GMT Subject: CN=67410337-19df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:aa:1c:73:9f:38:eb:a4:65:05:4f:e3:85:b5: 2f:c5:dc:c5:d5:c2:5d:27:6b:52:2c:14:78:89:6f: ad:d9:53:b4:94:f0:33:e4:cc:2e:f9:64:4e:25:63: c6:f6:8d:48:a4:92:8a:fc:93:0e:d5:f4:5e:2e:19: 1e:fa:b8:94:d7:f7:e2:90:d0:23:15:b3:5c:26:3e: 72:e9:c3:f9:18:89:88:a9:7c:e3:d7:9d:27:e3:96: 30:ed:60:c8:f5:b3:65:db:60:1a:8e:d4:bb:9a:d5: a6:3f:e9:f7:68:03:fc:8f:bb:8e:b0:e2:a6:01:c1: 99:82:7b:8b:d2:ab:a8:c9:0f:99:44:f1:37:c5:7b: f2:63:c6:cf:0c:ba:c2:7e:27:41:1c:b7:d3:a8:78: e9:50:fe:b6:3a:21:05:4e:e4:63:ae:40:fe:97:6e: e7:c2:c8:9c:8a:67:91:06:80:28:b3:b8:4c:8b:75: 30:1a:bd:2f:3e:12:bf:8c:8b:32:9d:54:ca:1d:fa: a1:60:1d:a7:a7:ee:29:c6:32:2a:2e:6f:92:37:eb: 50:3a:6a:cd:9c:b0:64:40:b9:2e:1b:15:4c:bd:a4: b4:7e:81:de:d1:c5:81:e6:0c:cd:f5:c4:4d:3e:9b: 66:d1:f9:da:cd:8e:36:f5:eb:6c:f4:42:76:9e:8c: 65:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0B:E6:C8:A5:3D:6A:23:EC:16:DC:30:67:5F:E0:1A:9B:0B:D9:87 X509v3 Authority Key Identifier: keyid:D9:5C:E5:FB:36:91:5C:3D:8C:DB:10:DB:86:4A:4C:71:93:3C:DA:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Vzl-zaRXD2M2xDbhkpMcZM82kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/F3643B10830511EB97189B39C4F9AE02/2Vzl-zaRXD2M2xDbhkpMcZM82kE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:b6:3e:30:3b:34:ee:b9:dd:19:0e:3b:0b:2c:66:f6:0b:48: 39:4e:01:51:d6:96:b3:f5:de:87:0a:45:30:8c:18:aa:d3:f1: 86:65:b6:17:f1:54:79:2b:e3:a3:34:1f:52:98:4c:6a:05:30: 76:f7:10:8e:2f:72:bd:da:94:60:a3:ea:d8:69:04:b0:0b:b7: 4e:d5:d1:6c:0b:41:27:e6:81:f9:72:74:22:5f:8d:23:44:37: e8:de:85:83:49:79:92:7d:f9:7c:ce:a3:a7:5f:b2:14:ef:e1: 0c:ad:7f:c9:5c:b9:d8:fe:6e:d2:0c:e7:57:bc:ba:b4:d7:26: b8:57:a0:2d:84:1e:32:0d:56:10:76:fe:03:52:48:9e:17:44: 37:44:17:b7:0e:ad:32:3d:8d:8b:ad:d5:61:03:c0:0d:92:37: 2a:01:db:0e:ee:e1:67:36:c6:80:4d:3f:7f:39:87:c9:8f:5e: d6:61:f4:48:c1:5c:1c:6b:90:75:57:e2:c8:24:36:f6:f5:e6: d5:24:73:0a:ef:69:50:fe:0f:22:54:a1:23:c8:d6:ee:6d:97: ec:9d:d0:15:e0:be:07:e4:a8:90:4b:e6:be:6c:ff:a7:b2:4b: 28:8f:be:be:26:18:81:59:d7:42:16:34:c2:4d:64:10:54:83: d2:da:ee:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKEQ5NUNFNUZCMzY5MTVDM0Q4Q0RCMTBEQjg2NEE0Qzcx OTMzQ0RBNDEwHhcNMjQxMTIyMjIxODMwWhcNMjQxMTI5MjIxODMwWjAYMRYwFAYD VQQDEw02NzQxMDMzNy0xOWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6occ58466RlBU/jhbUvxdzF1cJdJ2tSLBR4iW+t2VO0lPAz5Mwu+WROJWPG 9o1IpJKK/JMO1fReLhke+riU1/fikNAjFbNcJj5y6cP5GImIqXzj150n45Yw7WDI 9bNl22AajtS7mtWmP+n3aAP8j7uOsOKmAcGZgnuL0quoyQ+ZRPE3xXvyY8bPDLrC fidBHLfTqHjpUP62OiEFTuRjrkD+l27nwsicimeRBoAos7hMi3UwGr0vPhK/jIsy nVTKHfqhYB2np+4pxjIqLm+SN+tQOmrNnLBkQLkuGxVMvaS0foHe0cWB5gzN9cRN Pptm0fnazY429ets9EJ2noxlkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgL5sil PWoj7BbcMGdf4BqbC9mHMB8GA1UdIwQYMBaAFNlc5fs2kVw9jNsQ24ZKTHGTPNpB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS9GMzY0M0IxMDgz MDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhEMk0yeERiaGtwTWNaTTgy a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWemwtemFSWEQyTTJ4RGJoa3BNY1pNODJrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS9GMzY0M0IxMDgzMDUxMUVCOTcxODlCMzlDNEY5QUUwMi8yVnpsLXphUlhE Mk0yeERiaGtwTWNaTTgya0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBztj4wOzTuud0ZDjsLLGb2C0g5TgFR1paz9d6HCkUwjBiq0/GGZbYX 8VR5K+OjNB9SmExqBTB29xCOL3K92pRgo+rYaQSwC7dO1dFsC0En5oH5cnQiX40j RDfo3oWDSXmSffl8zqOnX7IU7+EMrX/JXLnY/m7SDOdXvLq01ya4V6AthB4yDVYQ dv4DUkieF0Q3RBe3Dq0yPY2LrdVhA8ANkjcqAdsO7uFnNsaATT9/OYfJj17WYfRI wVwca5B1V+LIJDb29ebVJHMK72lQ/g8iVKEjyNbubZfsndAV4L4H5KiQS+a+bP+n sksoj76+JhiBWddCFjTCTWQQVIPS2u7n -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org