$ rpki-client -vvf rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft File: ZuoPg73TYyv_GUALOhum_t_8VYc.mft (raw, json) Hash identifier: cu2iF9LQbzHYQ6XN3PVk1hyZBEtXzjEVVhTj/nIOlQM= Subject key identifier: 75:85:EC:7D:91:A6:00:EF:CD:2A:EF:1F:E1:53:E5:85:8B:ED:D5:C8 Authority key identifier: 66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 Certificate issuer: /CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Certificate serial: 343C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft Manifest number: 3431 Signing time: Fri 22 Nov 2024 15:15:48 +0000 Manifest this update: Fri 22 Nov 2024 15:15:48 +0000 Manifest next update: Fri 29 Nov 2024 15:15:48 +0000 Files and hashes: 1: ZuoPg73TYyv_GUALOhum_t_8VYc.crl (hash: JSEMU487Q+yFJHmeOF94XYyIpxUAxLrcxDp6QNH+TIE=) 2: 1190361AAF1B11E7B89F3883C4F9AE02.roa (hash: 2r/WkcrEUZXWVN/lqD4AS0KrozHazrd6MKeH3nsay0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:15:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13372 (0x343c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CB63/serialNumber=66EA0F83BDD3632BFF19400B3A1BA6FEDFFC5587 Validity Not Before: Nov 22 15:15:48 2024 GMT Not After : Nov 29 15:15:48 2024 GMT Subject: CN=6740a024-826e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:73:8e:3a:30:33:98:ff:b1:66:b6:60:9c:c0: 1a:26:c8:24:3f:86:95:bf:d8:eb:0b:40:08:45:f2: 26:fc:30:bd:d9:18:40:8b:f0:34:49:17:ef:02:9a: 24:c1:1b:8f:75:89:23:cd:93:15:ec:ab:2c:95:a0: 46:78:88:ac:64:62:9a:62:1a:f0:08:6b:29:12:4e: 40:5d:5b:d1:80:8e:73:08:f1:e9:e7:7a:e0:4e:a3: ae:b8:a9:53:1d:b5:6f:a3:7e:01:46:fd:e2:c0:d9: b0:4e:8a:55:43:5f:04:42:38:aa:95:c0:1e:bc:66: ce:1c:1c:66:1a:61:e5:42:70:d2:a3:53:e9:96:a0: 88:a8:a4:3c:af:e6:58:3b:0f:cf:6c:58:e1:d8:db: 02:e1:d9:a0:21:df:3e:63:2b:e7:af:49:0a:53:b3: 85:f0:a1:16:30:cd:d0:54:1e:e5:e5:37:1b:d5:19: 9d:1c:c4:8e:2c:7e:19:60:ae:7e:b9:ae:3c:cb:75: d0:6c:79:06:c1:3f:b3:a3:3d:5c:a9:79:63:05:c7: d3:c7:4b:fc:82:ae:20:eb:a6:82:5a:0e:22:e5:15: 98:3b:af:a8:0b:78:3e:07:c0:98:18:41:89:be:a2: ce:c5:ca:84:9b:3b:47:94:89:39:7f:9f:ff:ca:be: 7d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:85:EC:7D:91:A6:00:EF:CD:2A:EF:1F:E1:53:E5:85:8B:ED:D5:C8 X509v3 Authority Key Identifier: keyid:66:EA:0F:83:BD:D3:63:2B:FF:19:40:0B:3A:1B:A6:FE:DF:FC:55:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuoPg73TYyv_GUALOhum_t_8VYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CB63/E1B054FC1DA711E2B688EBA108B02CD2/ZuoPg73TYyv_GUALOhum_t_8VYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:47:8a:ae:16:94:46:4e:dd:55:b6:7a:c2:5c:5b:d2:30:37: ff:0d:f4:42:0b:d7:1f:d3:2d:f4:6d:29:45:c5:1c:dd:3d:c9: 2d:3d:cd:a1:d2:e1:eb:a2:3d:8e:9d:b9:79:f6:f7:f0:3e:a2: 65:55:75:72:3f:98:dc:d0:54:fc:07:02:9b:68:d4:3b:1d:71: 8a:e9:78:d0:9b:2a:8f:91:59:5b:49:c5:1b:38:0e:75:eb:5d: d0:73:7a:93:b1:74:de:98:2d:5b:d4:99:87:47:56:73:31:10: ca:37:8d:2d:c3:03:b2:60:5d:98:da:6b:b0:71:66:0b:b7:7d: f5:11:aa:80:60:f9:e9:90:bc:bf:8d:1a:53:76:55:e6:dd:d9: 71:2c:b2:44:55:58:82:e4:1f:0a:5c:41:e7:7e:51:09:77:3f: 79:d0:e5:fe:19:1f:b3:0e:69:30:58:5e:96:19:57:49:48:87: 3b:e3:8e:e8:4e:57:c6:1e:d8:77:ba:81:69:5d:d4:d5:f3:57: 42:b3:5b:23:0f:7c:52:35:ff:88:11:dc:cb:ad:c0:8e:cc:fb: ed:c9:4d:bd:bb:bd:2a:79:18:5e:f2:74:d9:80:a3:88:bc:17: 82:9c:62:76:4b:6f:35:5e:3c:5e:04:68:3c:31:81:6b:da:1e: f0:9b:c4:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NCNjMxMTAvBgNVBAUTKDY2RUEwRjgzQkREMzYzMkJGRjE5NDAwQjNBMUJBNkZF REZGQzU1ODcwHhcNMjQxMTIyMTUxNTQ4WhcNMjQxMTI5MTUxNTQ4WjAYMRYwFAYD VQQDEw02NzQwYTAyNC04MjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XOOOjAzmP+xZrZgnMAaJsgkP4aVv9jrC0AIRfIm/DC92RhAi/A0SRfvApok wRuPdYkjzZMV7KsslaBGeIisZGKaYhrwCGspEk5AXVvRgI5zCPHp53rgTqOuuKlT HbVvo34BRv3iwNmwTopVQ18EQjiqlcAevGbOHBxmGmHlQnDSo1PplqCIqKQ8r+ZY Ow/PbFjh2NsC4dmgId8+Yyvnr0kKU7OF8KEWMM3QVB7l5Tcb1RmdHMSOLH4ZYK5+ ua48y3XQbHkGwT+zoz1cqXljBcfTx0v8gq4g66aCWg4i5RWYO6+oC3g+B8CYGEGJ vqLOxcqEmztHlIk5f5//yr59OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWF7H2R pgDvzSrvH+FT5YWL7dXIMB8GA1UdIwQYMBaAFGbqD4O902Mr/xlACzobpv7f/FWH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0I2My9FMUIwNTRGQzFE QTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5dl9HVUFMT2h1bV90XzhW WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1b1BnNzNUWXl2X0dVQUxPaHVtX3RfOFZZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0I2My9FMUIwNTRGQzFEQTcxMUUyQjY4OEVCQTEwOEIwMkNEMi9adW9QZzczVFl5 dl9HVUFMT2h1bV90XzhWWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/R4quFpRGTt1VtnrCXFvSMDf/DfRCC9cf0y30bSlFxRzdPcktPc2h 0uHroj2Onbl59vfwPqJlVXVyP5jc0FT8BwKbaNQ7HXGK6XjQmyqPkVlbScUbOA51 613Qc3qTsXTemC1b1JmHR1ZzMRDKN40twwOyYF2Y2muwcWYLt331EaqAYPnpkLy/ jRpTdlXm3dlxLLJEVViC5B8KXEHnflEJdz950OX+GR+zDmkwWF6WGVdJSIc7447o TlfGHth3uoFpXdTV81dCs1sjD3xSNf+IEdzLrcCOzPvtyU29u70qeRhe8nTZgKOI vBeCnGJ2S281XjxeBGg8MYFr2h7wm8S0 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org