$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: hQPo/4YT93Oi7KeGFtnPwIW56ZyxvpcCiShFPSuUgS8= Subject key identifier: 46:15:59:1E:4F:B2:66:4E:D0:A5:1F:BF:CA:5D:67:E6:F3:E5:9F:7A Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: 3F Signing time: Sat 23 Nov 2024 05:24:21 +0000 Manifest this update: Sat 23 Nov 2024 05:24:20 +0000 Manifest next update: Sat 30 Nov 2024 05:24:20 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: pmfMQy/a89BOJO/cdOzbdXZYgrdqodtfcnSxb4R3BEg=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: /6WOvZOOXGezOoUokpji3QyAbuhKhRWRYfUp9II55xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Nov 23 05:24:20 2024 GMT Not After : Nov 30 05:24:20 2024 GMT Subject: CN=67416704-82ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:2d:29:df:b0:73:d1:d2:5c:dd:95:ea:5c: a8:29:2d:c1:31:b5:b7:e7:cc:64:6d:16:55:c1:8a: d6:9c:ed:6d:9f:46:35:18:08:06:c5:42:d7:09:18: 54:0c:b9:6b:3c:fb:40:57:9e:44:41:f0:88:f2:51: 91:55:0d:06:c3:22:fc:63:ba:c8:bb:e9:cf:ae:9f: e6:04:5b:d5:d7:d3:4e:81:5d:47:ca:71:ef:f0:57: 10:9f:9b:ff:ca:0b:4e:7a:6d:50:7c:2d:84:80:9f: 73:12:33:2a:55:bf:a1:ca:51:e4:db:51:16:02:bd: 79:eb:02:5b:f9:bf:b6:6f:2f:45:14:89:f2:c2:7a: 79:7b:23:45:e9:c5:9a:43:8a:0d:de:85:08:52:48: c3:ed:af:4e:4e:96:a5:5f:b7:cd:62:8d:26:a2:8e: 8e:b5:e3:a7:b7:20:e6:a2:cd:0d:f3:2a:f9:76:39: e7:a4:54:d2:c6:92:46:b3:ee:c0:64:c4:b8:b7:70: ec:79:2c:08:6a:50:59:5f:ec:81:45:94:aa:9b:2c: d1:05:8d:31:f2:be:94:2e:6a:c0:2e:30:f0:19:25: 88:a8:2b:f4:00:41:37:55:ec:6a:06:d6:f1:7c:f2: 87:95:e9:53:64:95:ad:6c:69:fb:bd:47:c8:81:58: bf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:15:59:1E:4F:B2:66:4E:D0:A5:1F:BF:CA:5D:67:E6:F3:E5:9F:7A X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:6d:0a:6f:25:db:ba:28:c9:9a:0c:44:07:4a:15:bb:73:58: f6:2e:14:33:a4:f6:ff:e0:ba:95:36:e4:10:98:26:b4:49:4a: e2:64:48:87:a2:e6:23:f8:6c:c2:b0:a5:65:75:88:c4:88:94: bc:e3:53:64:7d:6f:02:ee:1f:d9:ca:1b:5e:0d:d5:c7:f6:15: 34:d9:25:08:b6:55:37:54:50:d5:bf:86:54:95:cf:ee:58:ef: ee:fe:63:a3:3b:c9:0f:ae:de:dc:51:d6:5b:c9:a8:80:11:f9: 93:d7:d4:54:17:04:aa:37:b4:f3:d2:7f:46:9d:f4:7d:53:e0: 34:3f:7b:5f:90:40:4f:e9:f6:3f:da:94:e2:95:09:33:36:1d: 22:cb:45:98:df:d0:85:c0:30:5e:ac:c1:93:39:ae:82:7d:8f: fa:21:94:e4:44:d8:3a:07:91:68:84:83:8e:3b:8c:ad:75:d6: 80:07:2c:97:6a:87:70:2f:d4:c3:85:0f:5d:42:62:02:22:cd: 51:2d:f4:4f:05:51:47:65:7e:1a:f7:e0:e0:23:ef:06:c0:11: 04:fc:2e:c4:84:f6:f8:ab:1e:a8:fc:5b:cf:8e:26:1d:81:04: 85:01:db:a2:a8:b3:e7:fd:29:e8:95:bc:e4:32:c3:c1:d6:17: 14:22:84:c6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjIzRjExMC8GA1UEBRMoQ0NEQ0ZGMjEyQTZCNjk5QTU3MEI0QTlEMTc1RjE2MjM3 MTgzMkNBNTAeFw0yNDExMjMwNTI0MjBaFw0yNDExMzAwNTI0MjBaMBgxFjAUBgNV BAMTDTY3NDE2NzA0LTgyYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIZy0p37Bz0dJc3ZXqXKgpLcExtbfnzGRtFlXBitac7W2fRjUYCAbFQtcJGFQM uWs8+0BXnkRB8IjyUZFVDQbDIvxjusi76c+un+YEW9XX006BXUfKce/wVxCfm//K C056bVB8LYSAn3MSMypVv6HKUeTbURYCvXnrAlv5v7ZvL0UUifLCenl7I0XpxZpD ig3ehQhSSMPtr05OlqVft81ijSaijo6146e3IOaizQ3zKvl2OeekVNLGkkaz7sBk xLi3cOx5LAhqUFlf7IFFlKqbLNEFjTHyvpQuasAuMPAZJYioK/QAQTdV7GoG1vF8 8oeV6VNkla1safu9R8iBWL91AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURhVZHk+y Zk7QpR+/yl1n5vPln3owHwYDVR0jBBgwFoAUzNz/ISpraZpXC0qdF18WI3GDLKUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMjNGLzMzOEIyRjQ4NEEy RjExRUZBRTk2QzkxNUM0RjlBRTAyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExL VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek56X0lTcHJhWnBYQzBxZEYxOFdJM0dETEtVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG MjNGLzMzOEIyRjQ4NEEyRjExRUZBRTk2QzkxNUM0RjlBRTAyL3pOel9JU3ByYVpw WEMwcWRGMThXSTNHRExLVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ5tCm8l27ooyZoMRAdKFbtzWPYuFDOk9v/gupU25BCYJrRJSuJkSIei 5iP4bMKwpWV1iMSIlLzjU2R9bwLuH9nKG14N1cf2FTTZJQi2VTdUUNW/hlSVz+5Y 7+7+Y6M7yQ+u3txR1lvJqIAR+ZPX1FQXBKo3tPPSf0ad9H1T4DQ/e1+QQE/p9j/a lOKVCTM2HSLLRZjf0IXAMF6swZM5roJ9j/ohlORE2DoHkWiEg447jK111oAHLJdq h3Av1MOFD11CYgIizVEt9E8FUUdlfhr34OAj7wbAEQT8LsSE9virHqj8W8+OJh2B BIUB26Kos+f9KeiVvOQyw8HWFxQihMY= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org