$ rpki-client -vvf rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft File: MZsxRPBqjysw1BIHH-EhB3T-huc.mft (raw, json) Hash identifier: f3AI1K5t0iZEK7SV3wdV+DWpF0nDBp+JpRMo5rnTTyE= Subject key identifier: 3E:F2:A3:CB:7F:F4:4D:C7:14:E7:32:51:AB:77:D5:11:EA:1B:E1:ED Authority key identifier: 31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 Certificate issuer: /CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Certificate serial: 061A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft Manifest number: 0615 Signing time: Fri 22 Nov 2024 15:14:38 +0000 Manifest this update: Fri 22 Nov 2024 15:14:38 +0000 Manifest next update: Fri 29 Nov 2024 15:14:38 +0000 Files and hashes: 1: MZsxRPBqjysw1BIHH-EhB3T-huc.crl (hash: 877wJoGPKmUAzoFo8FHPaps5z5S5b3nBl+CjdM/mkzo=) 2: 27C29E5EF94411EDB4C6E91CC4F9AE02.roa (hash: qiqkWwHqRRJzS1+kLrMRORcyejq5wX+sQ/09xLL4Yok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91971CB/serialNumber=319B3144F06A8F2B30D412071FE1210774FE86E7 Validity Not Before: Nov 22 15:14:38 2024 GMT Not After : Nov 29 15:14:38 2024 GMT Subject: CN=67409fde-742e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5b:9b:fd:a0:f4:ba:b3:9c:a9:53:4d:7d:a1: 53:22:81:db:a7:f4:3c:ff:99:5e:41:96:8e:84:50: f1:f7:38:a6:19:26:83:28:ef:1e:65:dc:61:af:f4: 9c:fa:16:25:79:71:ba:79:0a:ee:d6:e4:6f:5e:47: 0b:d9:3f:4f:bc:90:84:33:cf:6d:2b:89:ce:5b:8e: ad:78:e0:bc:b5:f5:65:a9:06:28:0f:6d:35:3c:62: dd:37:5b:40:8a:13:eb:3e:fa:92:df:6b:a4:4c:f5: e0:35:30:e0:5f:31:e0:12:3f:78:bc:6d:22:6c:87: 1d:82:33:64:09:5c:d6:40:87:b9:85:2f:c3:43:1e: 5c:ab:a5:46:b7:07:de:10:8b:d3:31:6b:c0:23:cd: e2:c1:7c:18:66:54:c9:41:86:64:ba:8f:1f:f2:b4: af:66:b4:15:4a:46:d9:55:3b:e9:c3:4c:0a:7e:d2: 19:2f:92:ee:ea:6c:fc:58:a4:3a:de:bb:bd:3a:77: 4c:a6:17:cc:89:a9:fb:0b:b3:cc:1a:6e:69:7a:e8: ac:67:5a:25:34:4c:a7:a7:d0:35:60:3d:48:2e:8a: dd:22:7e:d5:6f:e8:72:7c:06:d7:b4:3b:44:2a:f2: 8f:00:70:ac:dd:17:98:8e:da:77:72:74:93:16:8f: e1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F2:A3:CB:7F:F4:4D:C7:14:E7:32:51:AB:77:D5:11:EA:1B:E1:ED X509v3 Authority Key Identifier: keyid:31:9B:31:44:F0:6A:8F:2B:30:D4:12:07:1F:E1:21:07:74:FE:86:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/MZsxRPBqjysw1BIHH-EhB3T-huc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91971CB/010EB288808911EB8B505F20C4F9AE02/MZsxRPBqjysw1BIHH-EhB3T-huc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:09:7c:ef:e3:06:cb:3c:4a:d1:57:42:5b:e8:21:a9:d6:ba: fa:d3:c8:13:92:d7:18:20:20:33:b2:4a:2f:db:80:40:c5:28: 15:d5:00:a6:4f:45:8f:5d:d1:e9:ea:48:c4:fb:ea:93:dc:94: fc:0e:78:72:4d:6f:d5:d9:1e:1c:65:2d:aa:70:b4:2b:31:e1: e8:89:6b:e7:77:dd:81:2b:c1:a0:f9:84:eb:51:ee:f3:d4:f9: 52:b4:f3:f3:67:04:0b:21:47:a9:30:49:c1:80:27:b4:79:30: c1:7a:2e:54:92:a0:a5:93:24:9a:21:e8:5f:57:56:93:71:32: 49:dd:a5:8b:3c:5a:1d:90:b0:e8:0d:6b:86:ee:3e:08:88:f2: 48:f8:a3:27:d2:07:af:59:63:29:2d:da:94:9e:a2:58:26:4c: 51:77:7f:16:8d:e0:be:e2:c3:1e:ad:1b:63:0a:fe:f5:d9:aa: 0b:b2:9a:16:e9:f7:a5:5a:e4:67:8f:70:e0:29:ef:82:ed:ec: 56:14:be:5c:c6:0d:5c:0b:5e:c8:f5:23:a4:92:53:90:4d:8c: ec:3d:5e:e3:fe:d8:56:7a:3b:48:87:20:30:18:a1:ba:e5:0b: fb:49:f8:c8:5c:82:bf:57:b2:48:5e:5d:aa:89:cc:a0:63:3c: 52:77:b5:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcxQ0IxMTAvBgNVBAUTKDMxOUIzMTQ0RjA2QThGMkIzMEQ0MTIwNzFGRTEyMTA3 NzRGRTg2RTcwHhcNMjQxMTIyMTUxNDM4WhcNMjQxMTI5MTUxNDM4WjAYMRYwFAYD VQQDEw02NzQwOWZkZS03NDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Fub/aD0urOcqVNNfaFTIoHbp/Q8/5leQZaOhFDx9zimGSaDKO8eZdxhr/Sc +hYleXG6eQru1uRvXkcL2T9PvJCEM89tK4nOW46teOC8tfVlqQYoD201PGLdN1tA ihPrPvqS32ukTPXgNTDgXzHgEj94vG0ibIcdgjNkCVzWQIe5hS/DQx5cq6VGtwfe EIvTMWvAI83iwXwYZlTJQYZkuo8f8rSvZrQVSkbZVTvpw0wKftIZL5Lu6mz8WKQ6 3ru9OndMphfMian7C7PMGm5peuisZ1olNEynp9A1YD1ILordIn7Vb+hyfAbXtDtE KvKPAHCs3ReYjtp3cnSTFo/hKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7yo8t/ 9E3HFOcyUat31RHqG+HtMB8GA1UdIwQYMBaAFDGbMUTwao8rMNQSBx/hIQd0/obn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzFDQi8wMTBFQjI4ODgw ODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5c3cxQklISC1FaEIzVC1o dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL01ac3hSUEJxanlzdzFCSUhILUVoQjNULWh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzFDQi8wMTBFQjI4ODgwODkxMUVCOEI1MDVGMjBDNEY5QUUwMi9NWnN4UlBCcWp5 c3cxQklISC1FaEIzVC1odWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpCXzv4wbLPErRV0Jb6CGp1rr608gTktcYICAzskov24BAxSgV1QCm T0WPXdHp6kjE++qT3JT8DnhyTW/V2R4cZS2qcLQrMeHoiWvnd92BK8Gg+YTrUe7z 1PlStPPzZwQLIUepMEnBgCe0eTDBei5UkqClkySaIehfV1aTcTJJ3aWLPFodkLDo DWuG7j4IiPJI+KMn0gevWWMpLdqUnqJYJkxRd38WjeC+4sMerRtjCv712aoLspoW 6felWuRnj3DgKe+C7exWFL5cxg1cC17I9SOkklOQTYzsPV7j/thWejtIhyAwGKG6 5Qv7SfjIXIK/V7JIXl2qicygYzxSd7Ue -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org