$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft File: zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft (raw, json) Hash identifier: RRvYsso5OUJbyb2Gk9oM8t0ffAfqqht6eAtzyuhgHhg= Subject key identifier: 10:B0:CF:87:EA:EE:14:49:D4:46:A7:F6:2E:1C:1D:F7:6A:69:A3:C4 Authority key identifier: CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 Certificate issuer: /CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft Manifest number: 0139 Signing time: Sat 23 Nov 2024 02:43:19 +0000 Manifest this update: Sat 23 Nov 2024 02:43:19 +0000 Manifest next update: Sat 30 Nov 2024 02:43:19 +0000 Files and hashes: 1: zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl (hash: Qo36puzAkghj0Dq4QECrvlWdJXaE8TBxoPufs86tMg0=) 2: 5DCF3814CA0E11ED9251861DC4F9AE02.roa (hash: vOf7Hf6UBW10mc1F+PJXd3/VFuhi+q06hNtpKe+h4bQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAE63/serialNumber=CC7C5F2780A80D3C666B2BF69153F20484BEEE71 Validity Not Before: Nov 23 02:43:19 2024 GMT Not After : Nov 30 02:43:19 2024 GMT Subject: CN=67414147-e60a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:76:f4:92:47:40:87:4c:79:1f:2a:96:15: 9a:4f:2f:2d:88:d4:a9:b8:d0:cc:03:25:18:2e:c1: e7:6a:1c:e4:b5:3d:5e:3a:47:7c:be:58:24:c2:e6: af:5a:4a:29:17:2a:2b:0a:5b:20:22:02:81:85:49: 5c:cb:75:46:49:9b:2d:59:bc:f8:fc:fe:08:6a:16: 2e:bd:90:6c:d6:2a:48:0d:f3:fb:e0:0b:a5:ba:3e: bc:64:ba:f3:47:69:2b:c0:1c:f1:df:00:8a:03:26: 67:b3:9a:99:c1:0f:cb:ce:49:b1:9c:66:ae:fe:e7: 18:63:6e:12:16:79:1c:97:94:cd:9b:59:2e:d9:24: 2d:01:9c:1c:f6:c2:6a:9c:9a:df:a4:e0:ed:d4:df: 08:01:02:57:8c:ac:0a:d4:98:92:85:0b:5a:93:64: ea:74:b9:41:4e:61:76:ad:80:d3:67:20:38:4c:6a: 2b:9e:e9:d2:9a:cd:22:a1:10:2d:53:6c:e6:ee:c6: 65:58:e5:c8:53:91:82:29:5d:b4:d4:0d:13:dd:a2: f7:3f:bb:59:bb:2e:4e:92:fa:a5:b1:47:7c:d6:a0: 34:cd:73:20:29:50:4c:9a:40:de:0f:c0:91:70:6c: d8:9b:1a:f5:a4:12:b6:b3:fb:4d:2e:61:96:38:7f: 14:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B0:CF:87:EA:EE:14:49:D4:46:A7:F6:2E:1C:1D:F7:6A:69:A3:C4 X509v3 Authority Key Identifier: keyid:CC:7C:5F:27:80:A8:0D:3C:66:6B:2B:F6:91:53:F2:04:84:BE:EE:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zHxfJ4CoDTxmayv2kVPyBIS-7nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAE63/5E966394CA0911ED81B6F63CC4F9AE02/zHxfJ4CoDTxmayv2kVPyBIS-7nE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:b1:29:89:ed:13:df:ba:3b:83:f8:c9:77:f1:12:ec:c1:e9: 5a:9c:36:47:6f:27:56:e1:6f:57:00:d9:bc:c3:8d:8b:2f:56: 51:3d:d8:f7:03:9d:e1:63:5a:cf:ed:36:57:04:23:a7:1a:94: 94:54:3b:1b:d7:30:88:e9:67:20:48:0e:64:72:11:32:48:f9: 44:2c:d9:66:f3:4f:d9:f7:d0:6f:19:9e:2e:76:b3:41:9a:03: ee:e1:cb:9e:01:b2:f2:e7:83:42:e3:2e:b1:68:6d:44:d4:72: f1:54:e7:72:c6:c0:e2:14:99:cf:eb:31:93:7b:c8:e3:ea:74: 55:81:e1:b3:e0:54:18:81:ae:e2:8c:7f:85:bc:d6:d8:97:3d: 58:d9:c8:37:30:99:6e:85:72:ff:f6:03:e4:9d:d8:79:c6:73: 46:03:64:74:bb:c2:35:02:03:e0:d6:bf:82:f9:58:96:10:41: 25:55:f7:b4:78:23:a7:37:22:42:85:77:8f:26:73:ef:c4:88: 8d:4b:b0:c4:b9:9b:1a:2d:02:88:46:45:88:a3:d7:09:d5:6d: b0:93:54:8e:68:7b:cb:b1:b2:e9:48:20:53:75:50:39:00:bc: a9:a1:a5:0a:93:19:c0:0e:ac:5a:28:60:d0:71:1a:d7:09:20: 10:2a:4a:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFNjMxMTAvBgNVBAUTKENDN0M1RjI3ODBBODBEM0M2NjZCMkJGNjkxNTNGMjA0 ODRCRUVFNzEwHhcNMjQxMTIzMDI0MzE5WhcNMjQxMTMwMDI0MzE5WjAYMRYwFAYD VQQDEw02NzQxNDE0Ny1lNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOt29JJHQIdMeR8qlhWaTy8tiNSpuNDMAyUYLsHnahzktT1eOkd8vlgkwuav WkopFyorClsgIgKBhUlcy3VGSZstWbz4/P4IahYuvZBs1ipIDfP74Auluj68ZLrz R2krwBzx3wCKAyZns5qZwQ/LzkmxnGau/ucYY24SFnkcl5TNm1ku2SQtAZwc9sJq nJrfpODt1N8IAQJXjKwK1JiShQtak2TqdLlBTmF2rYDTZyA4TGornunSms0ioRAt U2zm7sZlWOXIU5GCKV201A0T3aL3P7tZuy5OkvqlsUd81qA0zXMgKVBMmkDeD8CR cGzYmxr1pBK2s/tNLmGWOH8UuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCwz4fq 7hRJ1Ean9i4cHfdqaaPEMB8GA1UdIwQYMBaAFMx8XyeAqA08Zmsr9pFT8gSEvu5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUU2My81RTk2NjM5NENB MDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RUeG1heXYya1ZQeUJJUy03 bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pIeGZKNENvRFR4bWF5djJrVlB5QklTLTduRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUU2My81RTk2NjM5NENBMDkxMUVEODFCNkY2M0NDNEY5QUUwMi96SHhmSjRDb0RU eG1heXYya1ZQeUJJUy03bkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZsSmJ7RPfujuD+Ml38RLswelanDZHbydW4W9XANm8w42LL1ZRPdj3 A53hY1rP7TZXBCOnGpSUVDsb1zCI6WcgSA5kchEySPlELNlm80/Z99BvGZ4udrNB mgPu4cueAbLy54NC4y6xaG1E1HLxVOdyxsDiFJnP6zGTe8jj6nRVgeGz4FQYga7i jH+FvNbYlz1Y2cg3MJluhXL/9gPkndh5xnNGA2R0u8I1AgPg1r+C+ViWEEElVfe0 eCOnNyJChXePJnPvxIiNS7DEuZsaLQKIRkWIo9cJ1W2wk1SOaHvLsbLpSCBTdVA5 ALypoaUKkxnADqxaKGDQcRrXCSAQKkq6 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:47 2024 by rpki-client on console-ams.rpki-client.org