$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: Lcob95PGQK5Gr32prZCctd2rqws+8lPq3CUNavaZwYY= Subject key identifier: D8:8B:08:8A:73:79:1B:EF:78:27:6A:1E:F0:20:67:6F:8A:EC:74:CC Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: DD Signing time: Sat 23 Nov 2024 03:38:46 +0000 Manifest this update: Sat 23 Nov 2024 03:38:45 +0000 Manifest next update: Sat 30 Nov 2024 03:38:45 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: XNIp53eNmPcdyLmQ+UH/wcqrqXdUzmZeEEUZws65Ags=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: mrCI6LJh7OXLK/YxqWyr5RsSDyzUYdmyvE3b/k2wgVw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Nov 23 03:38:45 2024 GMT Not After : Nov 30 03:38:45 2024 GMT Subject: CN=67414e46-ea73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:34:47:89:5e:54:ba:fa:7b:18:ac:cc:e9:60: 81:3f:ae:1b:d9:c6:57:23:b9:57:9a:8c:5c:97:a8: 4c:6f:a2:64:b1:14:c7:08:78:21:fd:4a:84:46:69: d1:e0:bc:7b:64:02:57:8a:5e:c4:71:21:4e:4d:0d: d0:13:03:1a:5f:e8:1c:06:bc:13:a7:63:3d:6c:0d: df:94:ca:a1:cf:15:92:8a:d7:e9:c9:fc:53:3a:4f: db:34:c2:8d:a9:0f:61:2f:82:88:c6:4c:67:2a:c5: 92:3e:ee:5c:6c:0e:77:c4:72:a4:72:ec:7c:53:f4: ff:de:fc:8d:7e:d0:9b:e9:c1:e6:84:10:38:79:29: d7:dd:d8:1a:20:75:db:ad:57:86:f5:7f:09:db:c6: 30:ba:fd:8f:aa:6d:ac:9b:a4:51:a6:a1:ae:cd:34: 3e:5b:70:78:54:fb:4a:f3:65:51:cc:75:1d:eb:50: 76:a5:88:5d:76:af:01:63:58:1b:73:c5:41:65:20: ff:19:37:d6:aa:e0:77:25:48:15:c0:da:a4:98:bd: 1c:9b:65:7d:e2:ec:c8:21:80:de:f2:ae:58:4b:0f: 83:67:d8:73:3a:94:d2:4b:9c:40:5d:50:e9:1b:91: 34:fa:df:82:54:b5:99:cc:bf:58:f8:75:74:2a:32: 58:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:8B:08:8A:73:79:1B:EF:78:27:6A:1E:F0:20:67:6F:8A:EC:74:CC X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:2a:e0:52:0a:7f:33:9f:0e:1f:d8:13:8f:d5:28:7b:97:f4: 7f:6b:d5:b4:5d:42:3e:2b:d3:27:fa:3e:c8:a9:e2:98:f5:64: 31:3b:82:d1:14:9b:d2:f8:ba:da:cc:aa:32:44:1c:67:14:dd: 19:e9:10:28:18:73:90:af:eb:5f:1f:6a:5b:4a:50:f1:e5:7a: a6:a9:25:2f:8c:7b:fc:89:a7:70:36:00:a3:29:9c:1a:06:e3: de:52:00:9a:63:ab:a0:47:93:3d:42:9e:8a:8f:14:19:33:d5: f4:4e:8e:13:41:71:68:3e:25:f4:21:8a:ad:5a:cd:45:e1:5e: 0a:22:00:e5:29:f4:ec:22:55:7c:4e:d2:6a:a0:63:f3:a4:34: 24:77:b6:8f:50:91:81:95:89:6f:35:9c:a9:d4:19:26:39:15: 7c:5d:c3:3d:f3:37:7f:1f:9e:f7:cc:64:98:34:13:66:a1:c0: 3e:38:9b:01:54:da:c2:88:5e:b1:3b:e8:14:41:79:8d:03:6b: 3c:91:30:30:6a:29:26:84:55:2c:57:0e:0f:5d:26:01:49:de: b0:37:72:4d:45:9e:c9:6c:55:b4:e8:22:39:0c:f9:f2:12:ba: 54:bf:c2:12:5b:ad:82:c9:c0:09:da:95:0f:2c:82:f2:07:e3: 47:67:81:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjQxMTIzMDMzODQ1WhcNMjQxMTMwMDMzODQ1WjAYMRYwFAYD VQQDEw02NzQxNGU0Ni1lYTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjRHiV5Uuvp7GKzM6WCBP64b2cZXI7lXmoxcl6hMb6JksRTHCHgh/UqERmnR 4Lx7ZAJXil7EcSFOTQ3QEwMaX+gcBrwTp2M9bA3flMqhzxWSitfpyfxTOk/bNMKN qQ9hL4KIxkxnKsWSPu5cbA53xHKkcux8U/T/3vyNftCb6cHmhBA4eSnX3dgaIHXb rVeG9X8J28Ywuv2Pqm2sm6RRpqGuzTQ+W3B4VPtK82VRzHUd61B2pYhddq8BY1gb c8VBZSD/GTfWquB3JUgVwNqkmL0cm2V94uzIIYDe8q5YSw+DZ9hzOpTSS5xAXVDp G5E0+t+CVLWZzL9Y+HV0KjJYcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiLCIpz eRvveCdqHvAgZ2+K7HTMMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIKuBSCn8znw4f2BOP1Sh7l/R/a9W0XUI+K9Mn+j7IqeKY9WQxO4LR FJvS+LrazKoyRBxnFN0Z6RAoGHOQr+tfH2pbSlDx5XqmqSUvjHv8iadwNgCjKZwa BuPeUgCaY6ugR5M9Qp6KjxQZM9X0To4TQXFoPiX0IYqtWs1F4V4KIgDlKfTsIlV8 TtJqoGPzpDQkd7aPUJGBlYlvNZyp1BkmORV8XcM98zd/H573zGSYNBNmocA+OJsB VNrCiF6xO+gUQXmNA2s8kTAwaikmhFUsVw4PXSYBSd6wN3JNRZ7JbFW06CI5DPny ErpUv8ISW62CycAJ2pUPLILyB+NHZ4Gj -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org