$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: eGivMbhOd5wMXb3CyGeGcLa8yIDMnfR3L53T17CCsvg= Subject key identifier: 09:72:3A:F8:9E:BC:24:48:09:4B:A4:EE:7F:6B:BD:A6:9F:35:13:02 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: 41 Signing time: Thu 21 Nov 2024 05:28:36 +0000 Manifest this update: Thu 21 Nov 2024 05:28:36 +0000 Manifest next update: Thu 28 Nov 2024 05:28:36 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: rBILdkAvUkP2S4O1J7wyrDdDCVIfenAcA1ZRWUjLVZU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Nov 21 05:28:36 2024 GMT Not After : Nov 28 05:28:36 2024 GMT Subject: CN=673ec504-d442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:99:22:97:69:b2:20:9a:c4:75:8a:f4:26: 0e:2b:fd:aa:5e:47:61:00:d0:30:fc:fb:03:23:31: 9f:a7:03:cb:fe:d6:b5:31:e0:0a:a4:23:70:7a:53: 41:b5:fb:9a:d2:b4:8a:55:04:9b:ca:c5:b6:46:bd: 9d:9e:07:c2:ad:62:4b:75:25:bf:35:ed:f7:95:20: f8:73:7e:65:f5:b4:59:70:2c:a3:e7:d9:41:47:33: 40:d4:7d:15:8d:96:97:84:21:b4:8f:cf:a7:c0:8f: b1:29:a4:1f:0c:e8:72:7c:dd:fd:64:38:a6:7e:07: 7c:d5:14:68:66:93:40:f7:6a:21:43:55:6f:09:c5: 50:b8:40:f6:c7:c0:78:67:05:02:bd:a7:bb:23:5a: 55:f1:e3:fb:22:f6:ac:a0:ee:6b:49:0d:90:fe:ca: 38:4e:db:d6:1f:43:5f:2b:cc:d3:8c:72:3f:e6:fa: ab:01:d8:94:28:e2:5f:45:18:10:c2:ab:03:d4:d3: 00:4e:38:1b:c5:60:30:37:4d:3f:e6:7d:7a:ff:3a: e9:77:2d:8c:d1:a5:a1:d6:a1:99:72:73:30:36:d6: 6c:2f:36:62:df:df:42:c0:f3:d3:c2:9f:5c:a1:9a: 34:08:97:41:bf:d8:1c:11:c4:39:3a:4b:52:22:9d: 10:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:72:3A:F8:9E:BC:24:48:09:4B:A4:EE:7F:6B:BD:A6:9F:35:13:02 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9e:37:6f:15:05:af:f7:16:92:21:f4:12:1c:ec:6a:f3:87: 5b:0d:49:a2:54:34:02:a5:20:ed:3c:1f:7a:95:76:d9:a5:10: 9d:e1:82:22:00:59:77:6e:93:6a:9a:b8:ea:b3:77:ca:8a:b5: d6:c9:4f:07:de:01:a7:db:97:62:cf:15:a8:5c:22:e5:c5:55: 71:2c:80:83:ef:3a:9d:82:48:95:c3:ad:dd:be:bf:de:75:74: d2:d0:98:64:53:6e:1c:89:eb:fc:a6:ed:a6:a1:b4:5a:eb:d5: a2:68:fa:e6:ec:34:c0:e3:8e:15:2c:a4:cd:b4:c2:48:d2:01: 4a:68:bb:26:87:7d:d9:31:0d:93:d9:05:07:04:cc:32:3a:de: 44:c9:6a:06:83:00:f9:06:1a:3b:b3:f8:9f:a4:45:b8:9d:7c: 26:d1:69:5f:b2:38:40:14:bc:85:8f:f3:d6:2f:0e:57:bb:d8: ef:5c:43:5a:38:c0:29:5a:68:d5:fa:62:d7:6c:84:04:1f:39: 76:b5:e1:0c:fd:c1:42:f4:d4:df:70:91:bd:6e:25:3b:61:40: 13:1e:fd:b1:58:0b:e6:97:c6:cf:ad:09:d6:62:b2:d6:2f:3d: cf:44:ff:9f:17:ae:c5:d6:28:af:89:16:1a:d0:09:79:0f:3c: 6a:1b:4e:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzkxRjExMC8GA1UEBRMoNjZGNkI4NDRBOUY4MDlBRTMwN0IxQjlDRUU0QkZENDdD M0M3NzcxQjAeFw0yNDExMjEwNTI4MzZaFw0yNDExMjgwNTI4MzZaMBgxFjAUBgNV BAMTDTY3M2VjNTA0LWQ0NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQXpkil2myIJrEdYr0Jg4r/apeR2EA0DD8+wMjMZ+nA8v+1rUx4AqkI3B6U0G1 +5rStIpVBJvKxbZGvZ2eB8KtYkt1Jb817feVIPhzfmX1tFlwLKPn2UFHM0DUfRWN lpeEIbSPz6fAj7EppB8M6HJ83f1kOKZ+B3zVFGhmk0D3aiFDVW8JxVC4QPbHwHhn BQK9p7sjWlXx4/si9qyg7mtJDZD+yjhO29YfQ18rzNOMcj/m+qsB2JQo4l9FGBDC qwPU0wBOOBvFYDA3TT/mfXr/Oul3LYzRpaHWoZlyczA21mwvNmLf30LA89PCn1yh mjQIl0G/2BwRxDk6S1IinRD7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCXI6+J68 JEgJS6Tuf2u9pp81EwIwHwYDVR0jBBgwFoAUZva4RKn4Ca4wexuc7kv9R8PHdxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzOTFGLzU4REI4N0YyNDU3 MDExRUY5QzhCOEU3MUM0RjlBRTAyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnZhNFJLbjRDYTR3ZXh1YzdrdjlSOFBIZHhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz OTFGLzU4REI4N0YyNDU3MDExRUY5QzhCOEU3MUM0RjlBRTAyL1p2YTRSS240Q2E0 d2V4dWM3a3Y5UjhQSGR4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD2eN28VBa/3FpIh9BIc7Grzh1sNSaJUNAKlIO08H3qVdtmlEJ3hgiIA WXduk2qauOqzd8qKtdbJTwfeAafbl2LPFahcIuXFVXEsgIPvOp2CSJXDrd2+v951 dNLQmGRTbhyJ6/ym7aahtFrr1aJo+ubsNMDjjhUspM20wkjSAUpouyaHfdkxDZPZ BQcEzDI63kTJagaDAPkGGjuz+J+kRbidfCbRaV+yOEAUvIWP89YvDle72O9cQ1o4 wClaaNX6YtdshAQfOXa14Qz9wUL01N9wkb1uJTthQBMe/bFYC+aXxs+tCdZistYv Pc9E/58XrsXWKK+JFhrQCXkPPGobTkY= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:48 2024 by rpki-client on console-fra.rpki-client.org