$ rpki-client -vvf rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft File: ZpvKCpDeWAORqO5km-TvvjbOhBg.mft (raw, json) Hash identifier: X4JHgWxNs8OJ3+SDUb+vhTA4sNnCECwfHoer8uudkBA= Subject key identifier: D3:00:87:F7:54:1D:64:01:F0:D9:18:3B:8D:94:A8:CD:13:75:0F:3C Authority key identifier: 66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 Certificate issuer: /CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft Manifest number: 3E Signing time: Sat 23 Nov 2024 05:25:27 +0000 Manifest this update: Sat 23 Nov 2024 05:25:26 +0000 Manifest next update: Sat 30 Nov 2024 05:25:26 +0000 Files and hashes: 1: ZpvKCpDeWAORqO5km-TvvjbOhBg.crl (hash: aMgubVzJzU/CWPFkP2oZsvNaMzFgSvxTj4FzfFDzXHc=) 2: 314597D64EEF11EF8BACFA30C4F9AE02.roa (hash: NfFMnt+VEyqSWVwOi+J918td9eREww3K9CdjnLDT82w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918031D/serialNumber=669BCA0A90DE580391A8EE649BE4EFBE36CE8418 Validity Not Before: Nov 23 05:25:26 2024 GMT Not After : Nov 30 05:25:26 2024 GMT Subject: CN=67416747-bf47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f9:32:2e:b5:7c:fe:d9:ce:b8:e6:62:d6:43: 4c:71:c0:2e:1d:45:14:03:35:e1:e0:21:79:eb:c8: e5:5c:64:b0:9c:08:8f:03:22:d4:cf:25:59:49:9e: 6f:87:a4:38:3d:f4:08:1a:45:cc:01:ff:d0:0f:c7: e4:06:c9:e1:87:14:11:2f:d2:fe:df:1a:a9:5c:22: 1b:fc:22:3a:28:0c:2e:0a:b6:7c:96:71:d3:2f:92: 58:38:f6:67:43:73:c5:ca:67:c5:c4:78:e6:92:64: 63:e5:46:74:8b:8e:bd:14:ab:a4:55:af:d2:3b:8e: b4:f4:70:43:7b:90:e6:fc:a1:09:8b:6d:5e:77:ff: bc:89:5b:9c:6b:2f:22:15:4e:ab:33:8b:86:02:5d: ff:78:35:52:72:af:e9:4d:62:a5:23:ef:81:93:91: e1:16:ae:cc:6a:87:b4:6c:1e:9d:1b:22:b9:04:ee: 75:90:a8:11:bd:92:34:49:9f:fa:3c:89:d4:0d:32: df:d2:b4:ce:24:90:1e:31:8c:dd:af:62:88:da:ef: 57:d6:ea:3d:9c:6d:6d:27:a4:34:51:18:46:1b:5f: 72:3f:7b:54:0d:43:de:f7:ff:70:10:eb:d9:7d:91: a9:86:eb:be:ba:00:93:40:b2:37:07:21:58:29:cc: 06:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:00:87:F7:54:1D:64:01:F0:D9:18:3B:8D:94:A8:CD:13:75:0F:3C X509v3 Authority Key Identifier: keyid:66:9B:CA:0A:90:DE:58:03:91:A8:EE:64:9B:E4:EF:BE:36:CE:84:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZpvKCpDeWAORqO5km-TvvjbOhBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918031D/ED463BC64EEE11EFB1D33030C4F9AE02/ZpvKCpDeWAORqO5km-TvvjbOhBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:d3:a5:a4:d1:ac:b2:c8:c0:bd:80:02:e3:d8:ae:47:d8:ca: 4f:9a:31:4a:9b:71:cb:9e:b9:43:67:ff:48:90:2e:fd:b3:46: b9:7a:91:56:7b:90:6d:c1:20:5b:4c:66:5b:82:5d:44:dc:9a: 71:3a:9b:91:61:97:f2:bb:f6:df:d5:be:1a:cd:fc:5f:56:15: 6c:11:82:20:24:78:f3:86:03:51:8d:95:a0:cd:4c:44:71:14: 05:96:2d:66:71:5b:81:57:90:0f:79:09:c6:98:d4:3b:f0:a0: 76:e5:49:b6:35:23:7f:5b:ad:b5:f9:76:e6:1c:89:81:5b:e5: a4:b2:d5:97:df:b8:39:c8:60:42:5f:6d:45:5c:fc:2a:b1:e8: f6:cf:ea:39:be:33:16:f6:5d:f8:e2:94:44:ce:df:8f:48:7a: 32:08:f8:92:58:b5:02:6c:92:ea:61:21:af:7b:58:03:68:89: 37:b7:b5:36:01:7b:9f:af:a7:93:fe:fa:e3:a9:0c:78:3b:55: c6:55:c2:37:d2:18:c1:6e:4d:bf:1f:14:a4:26:5c:4b:d9:51: 27:b6:40:89:df:8a:bb:db:8f:41:28:c2:af:2a:ae:c5:fc:86: 45:6c:f6:3b:d5:ab:6a:ac:df:3c:01:33:39:2a:8b:ce:83:4a: 22:e2:cb:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDMxRDExMC8GA1UEBRMoNjY5QkNBMEE5MERFNTgwMzkxQThFRTY0OUJFNEVGQkUz NkNFODQxODAeFw0yNDExMjMwNTI1MjZaFw0yNDExMzAwNTI1MjZaMBgxFjAUBgNV BAMTDTY3NDE2NzQ3LWJmNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF+TIutXz+2c645mLWQ0xxwC4dRRQDNeHgIXnryOVcZLCcCI8DItTPJVlJnm+H pDg99AgaRcwB/9APx+QGyeGHFBEv0v7fGqlcIhv8IjooDC4KtnyWcdMvklg49mdD c8XKZ8XEeOaSZGPlRnSLjr0Uq6RVr9I7jrT0cEN7kOb8oQmLbV53/7yJW5xrLyIV Tqszi4YCXf94NVJyr+lNYqUj74GTkeEWrsxqh7RsHp0bIrkE7nWQqBG9kjRJn/o8 idQNMt/StM4kkB4xjN2vYoja71fW6j2cbW0npDRRGEYbX3I/e1QNQ973/3AQ69l9 kamG6766AJNAsjcHIVgpzAbXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0wCH91Qd ZAHw2Rg7jZSozRN1DzwwHwYDVR0jBBgwFoAUZpvKCpDeWAORqO5km+TvvjbOhBgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwMzFEL0VENDYzQkM2NEVF RTExRUZCMUQzMzAzMEM0RjlBRTAyL1pwdktDcERlV0FPUnFPNWttLVR2dmpiT2hC Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnB2S0NwRGVXQU9ScU81a20tVHZ2amJPaEJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw MzFEL0VENDYzQkM2NEVFRTExRUZCMUQzMzAzMEM0RjlBRTAyL1pwdktDcERlV0FP UnFPNWttLVR2dmpiT2hCZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK3TpaTRrLLIwL2AAuPYrkfYyk+aMUqbccueuUNn/0iQLv2zRrl6kVZ7 kG3BIFtMZluCXUTcmnE6m5Fhl/K79t/VvhrN/F9WFWwRgiAkePOGA1GNlaDNTERx FAWWLWZxW4FXkA95CcaY1DvwoHblSbY1I39brbX5duYciYFb5aSy1ZffuDnIYEJf bUVc/Cqx6PbP6jm+Mxb2XfjilETO349IejII+JJYtQJskuphIa97WANoiTe3tTYB e5+vp5P++uOpDHg7VcZVwjfSGMFuTb8fFKQmXEvZUSe2QInfirvbj0Eowq8qrsX8 hkVs9jvVq2qs3zwBMzkqi86DSiLiy6Q= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org