$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft File: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft (raw, json) Hash identifier: LeQTtny76KkLNjtKF+l2kO6Wxp/PhVnv+iWJEkpRjTU= Subject key identifier: AD:8B:D5:40:F5:3D:C7:DF:C9:AB:88:A1:D1:25:14:3C:57:C1:28:47 Authority key identifier: CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 Certificate issuer: /CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Certificate serial: 1DB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft Manifest number: 1DA5 Signing time: Fri 22 Nov 2024 16:06:55 +0000 Manifest this update: Fri 22 Nov 2024 16:06:55 +0000 Manifest next update: Fri 29 Nov 2024 16:06:55 +0000 Files and hashes: 1: zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl (hash: LEFpXJSv+0wdaRxWUjNph6RlCvwfaEpXQqUUfRBFnso=) 2: 4A6679EC14DF11EEAB46A86DC4F9AE02.roa (hash: ephK7A4JNPWeKDKMs+nHQPIJnX05hx7QwVHerCqN4Jg=) 3: 4B52A44814DF11EEAB46A86DC4F9AE02.roa (hash: YcuxRz8K9RLj5bAsbMtgJ7Ztwmm6/Dt53hn8CfH7/1o=) 4: 1DBC9D405DB411EEA017251AC4F9AE02.roa (hash: qO7QJpamN0YCO67eAk0dIWWMjbYS5UTc/e5iCxrMsTI=) 5: 4CE75372B9DE11EEBC5B0D21C4F9AE02.roa (hash: HQq8TqfKAhLWQ+QIZgUuXW1pTNsorhgqbcOP+SCp6Vw=) 6: 4999305414DF11EEAB46A86DC4F9AE02.roa (hash: 1ZwfcibXXD78qIDpt5glI/3vJDHrAKkJdTFVoYFKI0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7601 (0x1db1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A/serialNumber=CE114680FF6F4D9BC3F1880D610D6AEEEAEBF0D4 Validity Not Before: Nov 22 16:06:55 2024 GMT Not After : Nov 29 16:06:55 2024 GMT Subject: CN=6740ac1f-e6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c2:53:fd:e7:44:cb:65:55:bc:f0:f6:03:9a: 25:cd:63:79:a0:99:18:13:2d:36:c7:ee:4b:c0:22: bd:f7:8b:ae:24:d7:a5:14:c4:9d:69:55:50:78:11: 81:ff:d7:13:38:b4:97:41:d5:38:ad:9c:9a:24:18: 30:2a:20:e9:d4:c5:33:0d:a0:52:24:10:cd:36:c8: 33:1b:25:20:e5:4c:77:bf:69:5c:24:ae:4a:2e:02: 74:3a:ac:0e:26:1e:ec:2f:44:f2:0e:86:71:f3:15: 88:11:06:70:62:43:6c:c1:1c:97:c3:2d:32:60:3b: ec:f0:d7:f7:31:f0:77:9d:df:17:75:46:e8:99:73: e8:69:55:9b:8e:72:5a:69:99:2d:30:6d:b9:e8:57: b2:f8:87:c8:a3:36:24:c5:e0:a1:36:0c:42:ba:c0: 27:cb:bd:bf:4e:38:33:57:c1:85:bf:79:d9:86:f7: 40:33:a2:fd:b9:04:6f:a1:33:6e:79:12:86:e5:9f: 96:cb:e0:96:b5:31:36:9e:4d:c5:8f:b5:22:bd:0d: 23:6f:4d:2f:42:35:ec:9d:5d:c4:b6:74:f5:56:9d: a9:ab:e4:26:61:00:4e:eb:76:cd:cc:0d:f3:86:7c: 08:6a:94:9b:2a:11:c1:17:7f:30:92:0c:7a:5f:bd: c5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8B:D5:40:F5:3D:C7:DF:C9:AB:88:A1:D1:25:14:3C:57:C1:28:47 X509v3 Authority Key Identifier: keyid:CE:11:46:80:FF:6F:4D:9B:C3:F1:88:0D:61:0D:6A:EE:EA:EB:F0:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/5DD48AB689F211E69E5F6339C4F9AE02/zhFGgP9vTZvD8YgNYQ1q7urr8NQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:3b:e1:71:b5:24:de:30:23:1a:97:59:63:ba:b8:58:3d:2e: d4:25:d3:3b:7d:cc:08:dc:2b:ce:47:6b:5c:13:44:17:74:5b: d1:20:82:a2:54:fb:7e:88:e7:c9:50:e1:25:58:4b:52:aa:f0: 56:4a:84:21:7c:14:89:6a:8d:9d:e2:d8:18:6c:6f:d3:b7:14: af:87:9d:6a:e8:ad:08:0b:c2:b1:85:d2:28:9f:d9:c5:12:fc: f3:3d:54:99:09:90:a3:f1:a3:74:2c:5b:c3:f1:62:3d:54:55: 4d:59:7b:11:b4:d7:7a:40:34:67:8b:c4:95:e7:d3:b4:51:de: 84:76:e1:02:9d:97:20:1f:2c:c7:31:57:1b:60:ce:98:40:13: a2:30:70:f3:bc:99:52:8a:7a:b6:d2:fe:37:dc:e2:8c:82:75: 4e:be:43:e5:84:28:ae:f1:3c:eb:20:70:4e:21:27:85:a1:a1: 8c:49:c8:e6:12:9b:b3:cd:88:9a:bd:83:83:53:62:ef:be:c9: 99:06:c9:7a:88:0f:73:10:62:4c:69:c8:99:92:41:80:0e:35: f9:13:99:56:0c:56:a7:2d:74:49:2f:6a:cd:9f:35:60:ce:fa: da:a5:33:26:7f:19:45:12:74:98:64:16:15:7e:f5:b0:f3:8a: 31:0e:d9:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKENFMTE0NjgwRkY2RjREOUJDM0YxODgwRDYxMEQ2QUVF RUFFQkYwRDQwHhcNMjQxMTIyMTYwNjU1WhcNMjQxMTI5MTYwNjU1WjAYMRYwFAYD VQQDEw02NzQwYWMxZi1lNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8JT/edEy2VVvPD2A5olzWN5oJkYEy02x+5LwCK994uuJNelFMSdaVVQeBGB /9cTOLSXQdU4rZyaJBgwKiDp1MUzDaBSJBDNNsgzGyUg5Ux3v2lcJK5KLgJ0OqwO Jh7sL0TyDoZx8xWIEQZwYkNswRyXwy0yYDvs8Nf3MfB3nd8XdUbomXPoaVWbjnJa aZktMG256Fey+IfIozYkxeChNgxCusAny72/TjgzV8GFv3nZhvdAM6L9uQRvoTNu eRKG5Z+Wy+CWtTE2nk3Fj7UivQ0jb00vQjXsnV3EtnT1Vp2pq+QmYQBO63bNzA3z hnwIapSbKhHBF38wkgx6X73FEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2L1UD1 PcffyauIodElFDxXwShHMB8GA1UdIwQYMBaAFM4RRoD/b02bw/GIDWENau7q6/DU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS81REQ0OEFCNjg5 RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRadkQ4WWdOWVExcTd1cnI4 TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3poRkdnUDl2VFp2RDhZZ05ZUTFxN3VycjhOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS81REQ0OEFCNjg5RjIxMUU2OUU1RjYzMzlDNEY5QUUwMi96aEZHZ1A5dlRa dkQ4WWdOWVExcTd1cnI4TlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYO+FxtSTeMCMal1ljurhYPS7UJdM7fcwI3CvOR2tcE0QXdFvRIIKi VPt+iOfJUOElWEtSqvBWSoQhfBSJao2d4tgYbG/TtxSvh51q6K0IC8KxhdIon9nF EvzzPVSZCZCj8aN0LFvD8WI9VFVNWXsRtNd6QDRni8SV59O0Ud6EduECnZcgHyzH MVcbYM6YQBOiMHDzvJlSinq20v433OKMgnVOvkPlhCiu8TzrIHBOISeFoaGMScjm EpuzzYiavYODU2LvvsmZBsl6iA9zEGJMaciZkkGADjX5E5lWDFanLXRJL2rNnzVg zvrapTMmfxlFEnSYZBYVfvWw84oxDtmP -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org