$ rpki-client -vvf rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft File: ZUCRhgKOxUzUW1g0_77K9LePGcI.mft (raw, json) Hash identifier: LpfbmmLTze99+ELR+NxIQRtfGyfOxMLPyKAMMtMIXPw= Subject key identifier: A1:7F:65:A1:FB:41:5C:96:F1:45:2E:05:29:4C:24:37:7D:94:B0:26 Authority key identifier: 65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 Certificate issuer: /CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Certificate serial: 0BF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft Manifest number: 0BD8 Signing time: Fri 22 Nov 2024 18:35:16 +0000 Manifest this update: Fri 22 Nov 2024 18:35:15 +0000 Manifest next update: Fri 29 Nov 2024 18:35:15 +0000 Files and hashes: 1: ZUCRhgKOxUzUW1g0_77K9LePGcI.crl (hash: 3ZCKQRt6mHFB31WXtBHKC9UDQ/UTrMb2D3iTXbseyVI=) 2: 7136F65A37A811EE94E32169C4F9AE02.roa (hash: k8QKeKvOcm3atVDcEJg6MmKWLZSx6mGrjHPmscLBCDI=) 3: 1B54858065B711EE93D6ED6DC4F9AE02.roa (hash: 2MxCJYfvpN2/WDss7B4Jv4sIh2MvUP8VKJ1MtNugmSc=) 4: FF4F13D4448711ECA80CFC34C4F9AE02.roa (hash: Lum2cofSNoPumFBaR2DxKDAktprJD0nZPj1gi1bjrYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3058 (0xbf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BBF1/serialNumber=65409186028EC54CD45B5834FFBECAF4B78F19C2 Validity Not Before: Nov 22 18:35:15 2024 GMT Not After : Nov 29 18:35:15 2024 GMT Subject: CN=6740cee3-887c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9b:dc:66:6f:a0:6c:81:be:bd:d2:f5:96:17: 3f:56:e8:e8:8b:59:bf:eb:5d:9e:54:41:18:6e:4e: 2b:ff:aa:2e:01:c2:e6:00:1e:0f:ef:8a:5b:fe:ba: 24:39:d0:15:69:12:ca:07:e9:49:36:5e:ac:dd:1f: f9:92:f2:88:14:ee:fa:7d:19:48:6e:9f:95:ac:5f: 8e:24:a2:36:c3:90:c2:25:59:ca:0c:f9:0b:f6:7d: 11:4a:d5:7c:26:47:7a:26:ab:7f:e1:7e:85:91:66: 31:23:32:25:57:77:1b:f7:e6:b8:95:74:de:34:19: 14:11:2e:57:67:1a:4d:97:68:e1:d3:9f:a5:3b:37: 38:7d:0e:03:65:41:a6:3f:dd:d7:68:3c:8d:18:fb: 0e:0a:cd:e0:a1:5b:d8:c9:2f:25:18:78:7e:0a:6d: dc:a7:af:d3:85:6f:ab:68:50:0c:7e:d3:f7:25:72: aa:ae:fb:ba:0a:c1:12:13:04:be:22:6f:87:d1:d9: e8:5c:d8:7f:eb:20:67:3d:3f:04:89:1e:cc:9a:27: 1e:c6:40:78:9b:a2:c6:0f:1c:80:a8:00:da:27:52: 8d:f3:8b:ee:cb:95:af:0b:c8:ad:55:53:aa:57:ae: 1a:58:e1:40:64:1e:ba:1b:a4:77:1a:f2:12:5a:61: aa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:7F:65:A1:FB:41:5C:96:F1:45:2E:05:29:4C:24:37:7D:94:B0:26 X509v3 Authority Key Identifier: keyid:65:40:91:86:02:8E:C5:4C:D4:5B:58:34:FF:BE:CA:F4:B7:8F:19:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUCRhgKOxUzUW1g0_77K9LePGcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BBF1/245DC5CA0AF711EAA85A5D1AC4F9AE02/ZUCRhgKOxUzUW1g0_77K9LePGcI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b3:e4:7c:a7:05:5f:08:32:22:88:19:a1:bf:8c:c3:0a:49: 30:28:8b:97:43:be:e1:a2:dc:0e:40:8a:e5:46:b0:e8:a3:d3: 9e:3a:8e:38:26:b6:c1:cd:86:b3:02:94:6e:e0:4e:61:cd:7e: db:1e:eb:8c:66:33:08:f9:ec:d9:e9:f8:09:6a:fd:68:7e:ca: 5a:a6:6c:cc:2a:b9:d3:f3:67:32:89:42:21:81:c2:eb:7c:39: de:78:7e:5c:5e:e8:85:8e:fa:04:3b:eb:58:57:07:f1:9b:65: 75:c3:85:d6:50:2e:d5:3f:ee:4d:e7:44:56:7e:09:b6:fa:81: 26:32:ce:a2:2b:73:cf:9b:1e:31:22:10:c0:ba:e6:a4:44:fd: 70:68:81:88:4c:29:6a:cf:d3:56:25:ff:e7:ee:68:b5:b4:e4: c0:25:24:81:79:1b:a8:d3:54:57:fa:d0:d3:51:ed:76:2a:da: 38:03:e8:a4:35:bb:31:9f:ed:2f:87:29:35:cc:b1:60:33:11: d0:a8:97:e1:89:9f:5f:8a:e8:86:3d:b0:c4:2c:13:31:ec:8b: ce:3d:e9:b5:61:37:88:3c:43:64:85:34:45:0b:ae:de:d3:36: 0e:2d:1e:d9:75:39:48:9d:70:b1:de:a1:ae:bb:da:c4:73:09: 6c:98:e6:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCRjExMTAvBgNVBAUTKDY1NDA5MTg2MDI4RUM1NENENDVCNTgzNEZGQkVDQUY0 Qjc4RjE5QzIwHhcNMjQxMTIyMTgzNTE1WhcNMjQxMTI5MTgzNTE1WjAYMRYwFAYD VQQDEw02NzQwY2VlMy04ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJvcZm+gbIG+vdL1lhc/Vujoi1m/612eVEEYbk4r/6ouAcLmAB4P74pb/rok OdAVaRLKB+lJNl6s3R/5kvKIFO76fRlIbp+VrF+OJKI2w5DCJVnKDPkL9n0RStV8 Jkd6Jqt/4X6FkWYxIzIlV3cb9+a4lXTeNBkUES5XZxpNl2jh05+lOzc4fQ4DZUGm P93XaDyNGPsOCs3goVvYyS8lGHh+Cm3cp6/ThW+raFAMftP3JXKqrvu6CsESEwS+ Im+H0dnoXNh/6yBnPT8EiR7MmicexkB4m6LGDxyAqADaJ1KN84vuy5WvC8itVVOq V64aWOFAZB66G6R3GvISWmGqvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKF/ZaH7 QVyW8UUuBSlMJDd9lLAmMB8GA1UdIwQYMBaAFGVAkYYCjsVM1FtYNP++yvS3jxnC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkJGMS8yNDVEQzVDQTBB RjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hVelVXMWcwXzc3SzlMZVBH Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pVQ1JoZ0tPeFV6VVcxZzBfNzdLOUxlUEdjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkJGMS8yNDVEQzVDQTBBRjcxMUVBQTg1QTVEMUFDNEY5QUUwMi9aVUNSaGdLT3hV elVXMWcwXzc3SzlMZVBHY0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWs+R8pwVfCDIiiBmhv4zDCkkwKIuXQ77hotwOQIrlRrDoo9OeOo44 JrbBzYazApRu4E5hzX7bHuuMZjMI+ezZ6fgJav1ofspapmzMKrnT82cyiUIhgcLr fDneeH5cXuiFjvoEO+tYVwfxm2V1w4XWUC7VP+5N50RWfgm2+oEmMs6iK3PPmx4x IhDAuuakRP1waIGITClqz9NWJf/n7mi1tOTAJSSBeRuo01RX+tDTUe12Kto4A+ik Nbsxn+0vhyk1zLFgMxHQqJfhiZ9fiuiGPbDELBMx7IvOPem1YTeIPENkhTRFC67e 0zYOLR7ZdTlInXCx3qGuu9rEcwlsmOb/ -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org