$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft File: zNz_ISpraZpXC0qdF18WI3GDLKU.mft (raw, json) Hash identifier: iYkMCYV0vkqcFD+4G2qnvwjBePDrxCLbmE33Zsd1F+8= Subject key identifier: 7F:9C:53:72:E0:9D:0A:C7:2C:2C:72:F1:32:F4:25:3E:08:C5:88:1E Authority key identifier: CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 Certificate issuer: /CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft Manifest number: 1C Signing time: Sun 15 Sep 2024 10:24:15 +0000 Manifest this update: Sun 15 Sep 2024 10:24:14 +0000 Manifest next update: Sun 22 Sep 2024 10:24:14 +0000 Files and hashes: 1: zNz_ISpraZpXC0qdF18WI3GDLKU.crl (hash: XPFFfCU4J8WnkyXYgfBIcXGD+s0tLCLC4EdjeoQx7Z0=) 2: 00606C184A3011EFBC542C18C4F9AE02.roa (hash: /6WOvZOOXGezOoUokpji3QyAbuhKhRWRYfUp9II55xg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF23F/serialNumber=CCDCFF212A6B699A570B4A9D175F162371832CA5 Validity Not Before: Sep 15 10:24:14 2024 GMT Not After : Sep 22 10:24:14 2024 GMT Subject: CN=66e6b5cf-d5e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ab:46:fe:4e:e7:a1:c2:35:d0:28:70:d8:ea: 4d:30:79:0b:a9:09:9a:77:5a:f3:a9:40:62:39:fe: 81:88:44:3f:f7:b7:d2:06:0f:d8:4d:ad:a7:ec:ae: 4d:65:7a:24:7c:7b:83:db:e2:2d:2f:23:a8:60:09: 21:ee:dc:be:27:11:e5:b1:8b:d7:bd:e9:be:dc:a4: 0f:ca:bc:07:56:ae:65:0e:05:70:b4:db:08:6d:3d: 35:b6:6b:3a:34:fc:ef:96:1d:d0:e7:25:19:e6:3f: 1e:6b:02:63:86:c3:d5:36:0f:45:95:dc:85:fc:43: fc:44:02:c9:5a:ad:63:ee:ca:08:aa:12:6f:60:2e: 1f:38:27:3e:14:f0:04:da:c9:d8:e0:4b:40:e6:44: c8:61:88:bd:7e:82:59:96:ed:d8:c5:dc:5a:25:a9: cb:02:2f:04:91:50:19:d4:f3:49:fd:12:44:c1:37: 1a:c0:8e:2c:b2:b0:13:9e:d5:21:37:c5:2a:83:1d: 40:8f:b2:fb:dd:d9:2e:04:75:50:d2:f4:9c:7e:6b: 57:00:80:b7:8c:b0:da:db:5f:0a:1f:ba:f3:5d:b7: 40:34:6b:30:1b:b0:4a:eb:30:14:ba:47:99:a4:8a: bf:4f:c8:5b:34:92:8f:49:90:3b:24:8c:c8:53:37: 1b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9C:53:72:E0:9D:0A:C7:2C:2C:72:F1:32:F4:25:3E:08:C5:88:1E X509v3 Authority Key Identifier: keyid:CC:DC:FF:21:2A:6B:69:9A:57:0B:4A:9D:17:5F:16:23:71:83:2C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNz_ISpraZpXC0qdF18WI3GDLKU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF23F/338B2F484A2F11EFAE96C915C4F9AE02/zNz_ISpraZpXC0qdF18WI3GDLKU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:df:73:0b:59:6c:5c:d3:ce:70:c8:fd:81:01:bb:68:03:c5: 3a:38:20:a7:d1:48:ce:26:3f:dd:8c:2e:b0:c9:21:51:6a:43: da:d7:0d:2b:ec:cb:e9:71:1e:f5:d8:13:7c:bc:50:c8:d6:73: 81:0b:cd:32:32:c6:a9:a5:8b:b7:a7:ac:eb:2b:87:98:de:cc: 67:fd:ef:0a:53:91:a4:79:94:98:61:fc:2b:8b:ee:c4:ac:a6: 72:f4:57:13:07:ba:20:88:a5:3b:93:61:27:c1:04:de:d9:5b: 37:40:17:1a:fd:98:2d:d5:d7:0c:4e:df:0a:ea:9b:f9:c6:e4: 3b:16:fc:fe:4b:17:3b:63:7e:cc:f0:68:41:75:f8:06:2b:d4: 9c:35:af:ef:15:4e:9a:3c:cd:b5:7f:41:42:e9:b7:27:0c:21: 9e:dd:12:6f:45:19:7d:0a:62:1c:a5:10:df:71:27:0c:78:5b: 99:e4:20:b8:6b:b2:7a:5e:25:d1:a8:12:4a:d4:ba:23:06:9e: a5:40:ac:b1:89:a8:00:53:1a:81:7e:79:d7:a4:13:0d:17:35: 90:80:70:1a:e6:25:6d:d5:cf:69:da:1e:cc:8f:e0:0a:25:9c: d7:5d:d8:0c:76:da:b7:0d:82:12:3c:b8:e9:f7:88:fa:0a:29: 3e:28:0e:13 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjIzRjExMC8GA1UEBRMoQ0NEQ0ZGMjEyQTZCNjk5QTU3MEI0QTlEMTc1RjE2MjM3 MTgzMkNBNTAeFw0yNDA5MTUxMDI0MTRaFw0yNDA5MjIxMDI0MTRaMBgxFjAUBgNV BAMTDTY2ZTZiNWNmLWQ1ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGq0b+TuehwjXQKHDY6k0weQupCZp3WvOpQGI5/oGIRD/3t9IGD9hNrafsrk1l eiR8e4Pb4i0vI6hgCSHu3L4nEeWxi9e96b7cpA/KvAdWrmUOBXC02whtPTW2azo0 /O+WHdDnJRnmPx5rAmOGw9U2D0WV3IX8Q/xEAslarWPuygiqEm9gLh84Jz4U8ATa ydjgS0DmRMhhiL1+glmW7djF3FolqcsCLwSRUBnU80n9EkTBNxrAjiyysBOe1SE3 xSqDHUCPsvvd2S4EdVDS9Jx+a1cAgLeMsNrbXwofuvNdt0A0azAbsErrMBS6R5mk ir9PyFs0ko9JkDskjMhTNxtFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf5xTcuCd CscsLHLxMvQlPgjFiB4wHwYDVR0jBBgwFoAUzNz/ISpraZpXC0qdF18WI3GDLKUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMjNGLzMzOEIyRjQ4NEEy RjExRUZBRTk2QzkxNUM0RjlBRTAyL3pOel9JU3ByYVpwWEMwcWRGMThXSTNHRExL VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvek56X0lTcHJhWnBYQzBxZEYxOFdJM0dETEtVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJG MjNGLzMzOEIyRjQ4NEEyRjExRUZBRTk2QzkxNUM0RjlBRTAyL3pOel9JU3ByYVpw WEMwcWRGMThXSTNHRExLVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACDfcwtZbFzTznDI/YEBu2gDxTo4IKfRSM4mP92MLrDJIVFqQ9rXDSvs y+lxHvXYE3y8UMjWc4ELzTIyxqmli7enrOsrh5jezGf97wpTkaR5lJhh/CuL7sSs pnL0VxMHuiCIpTuTYSfBBN7ZWzdAFxr9mC3V1wxO3wrqm/nG5DsW/P5LFztjfszw aEF1+AYr1Jw1r+8VTpo8zbV/QULptycMIZ7dEm9FGX0KYhylEN9xJwx4W5nkILhr snpeJdGoEkrUuiMGnqVArLGJqABTGoF+edekEw0XNZCAcBrmJW3Vz2naHsyP4Aol nNdd2Ax22rcNghI8uOn3iPoKKT4oDhM= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:36 2024 by rpki-client on console-ams.rpki-client.org