$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft File: ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft (raw, json) Hash identifier: 6nDj/f0UYFENogc6r3f5Kuyk/JR53RjmaAHZ1WA3ZPM= Subject key identifier: CA:85:43:D0:D7:29:19:86:D7:F6:A5:9C:5C:A4:EA:13:88:02:A1:E3 Authority key identifier: 65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 Certificate issuer: /CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Certificate serial: 0B75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft Manifest number: 0B69 Signing time: Fri 22 Nov 2024 18:53:19 +0000 Manifest this update: Fri 22 Nov 2024 18:53:18 +0000 Manifest next update: Fri 29 Nov 2024 18:53:18 +0000 Files and hashes: 1: ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl (hash: CRCbsC4jGq0euRm2uhZOWUj+46GfWaz20fs6wKqjdXI=) 2: 9D8E0AF4E18C11ECB1697F55C4F9AE02.roa (hash: 5w244W1bD1whgankX2pR9uug+6BH9EUGNcEqCnlbObE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2933 (0xb75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3869/serialNumber=650597C37C6D4D476F4995440B3604A671BBFDB0 Validity Not Before: Nov 22 18:53:18 2024 GMT Not After : Nov 29 18:53:18 2024 GMT Subject: CN=6740d31e-29f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:15:2f:1c:87:0d:06:39:4e:d3:ec:5b:2f:64: 46:3b:22:df:f1:97:90:f4:99:a1:dc:df:75:64:68: 4e:76:8f:4e:20:17:fd:71:cd:25:b3:f1:80:4a:2b: ba:1a:87:d8:77:e7:83:9f:99:2e:40:11:eb:61:f3: bc:61:dd:71:04:7b:f0:08:dd:29:c3:bb:4f:dc:5b: 5f:5d:17:10:e8:8e:c0:1a:f1:13:51:d4:c4:12:4d: 43:8f:08:27:2d:29:af:b0:c2:ca:6a:7d:47:5f:d5: de:c1:7c:40:85:d2:2e:14:35:f5:83:a0:b4:ba:b1: 78:eb:46:68:6c:4b:3b:f5:53:c4:1f:9b:f0:d6:80: 7b:50:ac:66:37:e4:95:f1:16:83:87:f7:37:59:da: 48:7c:9b:27:8f:f3:13:f7:71:2d:08:3e:1b:38:41: cb:32:d4:93:8f:25:59:ec:18:ec:43:8b:ae:c7:ee: c1:96:20:28:e4:7d:99:5a:28:f5:fd:cb:4c:c9:a8: a5:ba:c3:02:dd:02:db:57:78:48:84:99:b0:c1:04: 62:0e:59:41:24:74:dd:83:cf:e7:be:8f:15:4c:bb: 3a:ee:e7:81:c2:52:1e:2a:4e:40:89:16:3d:3c:bb: b4:00:3e:28:ac:ed:2c:dd:34:0f:10:97:ee:c1:f8: 5e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:85:43:D0:D7:29:19:86:D7:F6:A5:9C:5C:A4:EA:13:88:02:A1:E3 X509v3 Authority Key Identifier: keyid:65:05:97:C3:7C:6D:4D:47:6F:49:95:44:0B:36:04:A6:71:BB:FD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZQWXw3xtTUdvSZVECzYEpnG7_bA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3869/75DA447C1F4D11EA90505762C4F9AE02/ZQWXw3xtTUdvSZVECzYEpnG7_bA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:87:42:fe:08:28:d9:1f:86:16:b4:55:be:2e:2e:df:c9:f0: aa:42:36:55:38:6b:32:34:b3:a7:b5:d1:0a:90:c0:94:de:1b: 1b:dc:f5:e2:53:ea:e8:76:4a:9f:c4:b9:5b:b8:e3:76:34:70: 14:59:59:80:1e:e6:6a:e0:60:26:2a:74:a6:dd:7a:e5:a0:a5: 32:c7:fe:a3:4e:2f:16:43:e4:82:d0:d8:30:17:ce:db:34:4c: 12:be:d4:41:7f:e2:71:c4:fc:4f:65:86:50:51:16:f1:fc:26: 53:da:c4:69:c8:84:15:2b:6a:65:03:8d:dc:28:5e:b0:6d:de: 4a:f4:c7:98:c0:21:00:d8:91:cc:11:ef:ef:b0:76:9e:c5:5f: df:fe:73:40:99:4b:27:78:ce:29:2f:68:e8:13:bf:72:74:fa: 24:df:b4:31:38:74:6e:74:44:b1:d7:08:01:7d:42:2a:60:62: 76:98:e6:c1:ac:f0:2a:e8:4c:a7:43:8a:0c:ed:fd:e5:69:42: d3:91:19:67:55:18:77:5f:3e:3f:a9:7d:e6:43:a2:14:a0:8a: f1:4b:68:48:6d:0b:b4:c0:79:c2:7e:a7:6d:46:03:0f:35:b5: a6:13:f9:d9:02:43:a7:88:09:83:87:18:2e:d0:e0:be:bd:74: 05:7e:e1:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM4NjkxMTAvBgNVBAUTKDY1MDU5N0MzN0M2RDRENDc2RjQ5OTU0NDBCMzYwNEE2 NzFCQkZEQjAwHhcNMjQxMTIyMTg1MzE4WhcNMjQxMTI5MTg1MzE4WjAYMRYwFAYD VQQDEw02NzQwZDMxZS0yOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhUvHIcNBjlO0+xbL2RGOyLf8ZeQ9Jmh3N91ZGhOdo9OIBf9cc0ls/GASiu6 GofYd+eDn5kuQBHrYfO8Yd1xBHvwCN0pw7tP3FtfXRcQ6I7AGvETUdTEEk1Djwgn LSmvsMLKan1HX9XewXxAhdIuFDX1g6C0urF460ZobEs79VPEH5vw1oB7UKxmN+SV 8RaDh/c3WdpIfJsnj/MT93EtCD4bOEHLMtSTjyVZ7BjsQ4uux+7BliAo5H2ZWij1 /ctMyailusMC3QLbV3hIhJmwwQRiDllBJHTdg8/nvo8VTLs67ueBwlIeKk5AiRY9 PLu0AD4orO0s3TQPEJfuwfhekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqFQ9DX KRmG1/alnFyk6hOIAqHjMB8GA1UdIwQYMBaAFGUFl8N8bU1Hb0mVRAs2BKZxu/2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzg2OS83NURBNDQ3QzFG NEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRVZHZTWlZFQ3pZRXBuRzdf YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pRV1h3M3h0VFVkdlNaVkVDellFcG5HN19iQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mzg2OS83NURBNDQ3QzFGNEQxMUVBOTA1MDU3NjJDNEY5QUUwMi9aUVdYdzN4dFRV ZHZTWlZFQ3pZRXBuRzdfYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuh0L+CCjZH4YWtFW+Li7fyfCqQjZVOGsyNLOntdEKkMCU3hsb3PXi U+rodkqfxLlbuON2NHAUWVmAHuZq4GAmKnSm3XrloKUyx/6jTi8WQ+SC0NgwF87b NEwSvtRBf+JxxPxPZYZQURbx/CZT2sRpyIQVK2plA43cKF6wbd5K9MeYwCEA2JHM Ee/vsHaexV/f/nNAmUsneM4pL2joE79ydPok37QxOHRudESx1wgBfUIqYGJ2mObB rPAq6EynQ4oM7f3laULTkRlnVRh3Xz4/qX3mQ6IUoIrxS2hIbQu0wHnCfqdtRgMP NbWmE/nZAkOniAmDhxgu0OC+vXQFfuHW -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org