$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft File: 2p0fnE_Zonx12sp94imVaDgMCFk.mft (raw, json) Hash identifier: 3wxy94fwsQyJcPcr1rCESGifaqJ1Ji3VVFcpOyGHl+o= Subject key identifier: D6:4C:21:9F:06:48:47:49:1C:8C:DB:E4:5A:08:48:60:81:66:E6:97 Authority key identifier: DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 Certificate issuer: /CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Certificate serial: 096B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft Manifest number: 095C Signing time: Fri 22 Nov 2024 19:56:58 +0000 Manifest this update: Fri 22 Nov 2024 19:56:58 +0000 Manifest next update: Fri 29 Nov 2024 19:56:58 +0000 Files and hashes: 1: 2p0fnE_Zonx12sp94imVaDgMCFk.crl (hash: RT4riBv5SWE2rhxmDJdJL7Xy5vsJwpWoQUACXWLRQpw=) 2: 6322249E033E11EDA7401850C4F9AE02.roa (hash: cX5jruIutxzq0VvAFSmdLDYS4hJPXEWjAR7XYKB1s2o=) 3: E9EDE9AAF05A11ECBD921381C4F9AE02.roa (hash: HboE+xy7piKC3zUkYtpAMfNbbtMEPRumlNey38Milh0=) 4: 55892E84839011EAB5B82263C4F9AE02.roa (hash: rn9WF0fvz3rSau/NSjCzGQFLyqGPaM5bqudbfPMMbLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2411 (0x96b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9/serialNumber=DA9D1F9C4FD9A27C75DACA7DE2299568380C0859 Validity Not Before: Nov 22 19:56:58 2024 GMT Not After : Nov 29 19:56:58 2024 GMT Subject: CN=6740e20a-e17d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:67:63:5e:18:12:b7:4f:26:9d:ed:ee:84:8a: 67:ce:46:8a:e5:be:09:58:41:5c:37:40:a6:d2:ce: e4:e4:b9:ec:d0:06:c9:ca:d0:88:01:f0:72:c5:74: fd:1d:73:b8:db:ae:41:56:18:50:4d:80:a2:4b:0d: d9:55:ac:69:b4:94:6f:7c:36:fb:63:cf:27:69:ed: f3:46:3a:ca:25:92:6a:73:36:6f:c9:b8:f8:4b:e8: ad:f0:bf:e7:f8:56:76:d4:eb:65:44:3a:04:22:6f: a4:36:42:9c:3a:23:03:8a:ef:37:96:4e:34:3e:75: 89:91:e4:0e:4a:6d:c2:21:f0:db:eb:bc:99:0d:1e: f9:95:b4:4e:7e:83:6f:d7:56:8d:e4:2e:04:4e:83: 92:5d:65:62:ad:63:1a:26:1a:69:67:61:72:4a:ac: 5d:fd:88:ea:e3:87:9e:dd:c3:86:56:eb:6e:d0:8f: fd:e4:8a:f9:13:51:8a:a3:ab:c9:35:83:a7:ad:0e: 1b:67:fd:53:42:5f:29:59:f0:57:76:de:fb:59:f7: de:79:fb:83:9d:11:61:be:71:97:da:a6:45:17:d9: 30:60:ab:0f:a0:20:92:e1:1b:f9:50:8b:3c:f9:53: f8:27:be:cc:9c:96:a0:2e:05:74:7a:27:10:16:a0: 8a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4C:21:9F:06:48:47:49:1C:8C:DB:E4:5A:08:48:60:81:66:E6:97 X509v3 Authority Key Identifier: keyid:DA:9D:1F:9C:4F:D9:A2:7C:75:DA:CA:7D:E2:29:95:68:38:0C:08:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2p0fnE_Zonx12sp94imVaDgMCFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/DF7A7F14838E11EA8CEA0960C4F9AE02/2p0fnE_Zonx12sp94imVaDgMCFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f6:4c:66:c0:b4:3b:a1:d1:02:fd:73:ef:54:78:49:a7:d5: 9b:da:e9:8e:a0:36:b8:7c:e7:b9:b9:39:5e:9d:ba:86:5c:2f: 40:d5:5b:00:84:ed:4e:64:93:db:be:0a:57:14:2b:cf:92:28: 8b:52:f8:51:73:22:1c:60:e4:2a:89:a8:9f:77:63:61:5d:e2: eb:ee:ae:47:27:4c:48:a0:c1:cc:2f:78:10:c3:63:eb:33:74: e9:43:f9:83:8b:5e:5f:42:1b:48:dd:e5:8b:55:04:64:1f:8c: 1d:27:e5:e7:88:25:0f:a9:5b:44:ce:b0:17:b2:1d:7e:33:0f: 85:81:3b:04:3b:85:c4:8e:5c:6a:0c:ba:48:b6:ee:e4:09:6b: 5b:a3:08:3d:61:e4:ea:15:aa:ae:4f:eb:dd:72:3a:f7:b0:07: 69:54:ef:26:d2:3c:ec:ad:4c:f4:42:d3:e3:73:7e:e7:bf:e6: 69:75:f1:55:90:3e:8e:bf:71:e6:62:24:15:0a:a2:cf:56:2e: 18:2a:50:06:15:de:48:1e:1b:b5:3f:77:18:56:92:3b:8a:a7: b1:27:84:07:6d:74:d5:e6:8e:af:62:c3:22:fa:24:9e:88:16: 24:ff:72:0f:97:2f:16:14:6c:2e:8e:aa:bc:59:37:a5:be:f4: 29:ca:84:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKERBOUQxRjlDNEZEOUEyN0M3NURBQ0E3REUyMjk5NTY4 MzgwQzA4NTkwHhcNMjQxMTIyMTk1NjU4WhcNMjQxMTI5MTk1NjU4WjAYMRYwFAYD VQQDEw02NzQwZTIwYS1lMTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2djXhgSt08mne3uhIpnzkaK5b4JWEFcN0Cm0s7k5Lns0AbJytCIAfByxXT9 HXO4265BVhhQTYCiSw3ZVaxptJRvfDb7Y88nae3zRjrKJZJqczZvybj4S+it8L/n +FZ21OtlRDoEIm+kNkKcOiMDiu83lk40PnWJkeQOSm3CIfDb67yZDR75lbROfoNv 11aN5C4EToOSXWVirWMaJhppZ2FySqxd/Yjq44ee3cOGVutu0I/95Ir5E1GKo6vJ NYOnrQ4bZ/1TQl8pWfBXdt77WffeefuDnRFhvnGX2qZFF9kwYKsPoCCS4Rv5UIs8 +VP4J77MnJagLgV0eicQFqCKrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZMIZ8G SEdJHIzb5FoISGCBZuaXMB8GA1UdIwQYMBaAFNqdH5xP2aJ8ddrKfeIplWg4DAhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9ERjdBN0YxNDgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9ueDEyc3A5NGltVmFEZ01D RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJwMGZuRV9ab254MTJzcDk0aW1WYURnTUNGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9ERjdBN0YxNDgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi8ycDBmbkVfWm9u eDEyc3A5NGltVmFEZ01DRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB09kxmwLQ7odEC/XPvVHhJp9Wb2umOoDa4fOe5uTlenbqGXC9A1VsA hO1OZJPbvgpXFCvPkiiLUvhRcyIcYOQqiaifd2NhXeLr7q5HJ0xIoMHML3gQw2Pr M3TpQ/mDi15fQhtI3eWLVQRkH4wdJ+XniCUPqVtEzrAXsh1+Mw+FgTsEO4XEjlxq DLpItu7kCWtbowg9YeTqFaquT+vdcjr3sAdpVO8m0jzsrUz0QtPjc37nv+ZpdfFV kD6Ov3HmYiQVCqLPVi4YKlAGFd5IHhu1P3cYVpI7iqexJ4QHbXTV5o6vYsMi+iSe iBYk/3IPly8WFGwujqq8WTelvvQpyoQH -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org