$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft File: ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft (raw, json) Hash identifier: v1wcSHEsCk542aK3qhQaQCTQlOCcIVkxFR7nY8sdQAU= Subject key identifier: 39:FF:78:72:FA:7C:20:F6:39:92:B1:AD:24:6D:6E:05:AC:B5:85:25 Authority key identifier: 67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D Certificate issuer: /CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Certificate serial: 12D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft Manifest number: 1983 Signing time: Fri 22 Nov 2024 17:03:43 +0000 Manifest this update: Fri 22 Nov 2024 17:03:42 +0000 Manifest next update: Fri 29 Nov 2024 17:03:42 +0000 Files and hashes: 1: ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl (hash: lZgIMlZA9LHSxb6M196kDZXau1JddVVewoFg6/86dFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4818 (0x12d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E/serialNumber=672124F633C8919CA5D766D89E9CCFF0B21F0C8D Validity Not Before: Nov 22 17:03:42 2024 GMT Not After : Nov 29 17:03:42 2024 GMT Subject: CN=6740b96f-5489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:5f:d2:0e:c3:86:c0:fe:5e:a1:0b:f8:39: dd:1d:93:8f:fe:26:c9:58:1e:72:8d:92:53:88:e7: 81:10:60:d7:ab:00:f3:b4:09:64:51:e6:67:e4:38: 2d:7c:17:18:53:ea:a7:90:30:a8:f5:d9:a0:b7:76: 2d:1e:a8:b2:44:ec:aa:a6:81:5e:2c:fa:9f:4f:95: fb:06:01:05:d3:f2:86:5b:18:14:0d:8f:36:e9:11: 4d:77:2a:7b:02:6a:56:0e:99:d5:a9:b2:0f:15:7e: 9d:83:64:ff:2f:e7:a4:00:38:6c:3d:4b:24:58:ac: a0:87:31:57:00:4b:19:19:ae:31:6c:ce:05:8d:ae: 17:04:7c:1a:97:aa:e4:bb:c9:64:5c:63:f8:ab:74: 0d:d3:9f:4b:c7:39:eb:61:06:81:45:ce:17:e0:6d: 63:00:7c:56:b6:94:7d:7c:fa:32:fc:e4:cc:18:42: 57:c5:84:74:b8:5d:d1:f5:47:56:8f:78:2b:cb:fe: 1e:6c:e3:91:e5:a0:cc:52:90:af:9e:f3:2e:26:87: ae:da:04:c7:c4:0d:ff:ef:85:7c:c2:8a:14:ab:8a: 57:65:45:da:af:2f:2e:38:40:89:d5:f5:e6:40:dc: 95:4b:0a:52:6d:0b:dc:76:97:ea:39:c7:92:73:49: dd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FF:78:72:FA:7C:20:F6:39:92:B1:AD:24:6D:6E:05:AC:B5:85:25 X509v3 Authority Key Identifier: keyid:67:21:24:F6:33:C8:91:9C:A5:D7:66:D8:9E:9C:CF:F0:B2:1F:0C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyEk9jPIkZyl12bYnpzP8LIfDI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/ZyEk9jPIkZyl12bYnpzP8LIfDI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:03:83:37:c7:71:a6:75:04:e3:28:44:af:b1:93:fe:0c:c0: a4:71:f2:51:1e:f2:e1:23:30:25:11:d7:2a:b7:da:47:40:2e: 67:d2:dc:26:ca:00:a8:a3:16:8c:d2:c8:f5:c9:5d:26:52:d5: 59:6b:a9:9a:00:fd:0c:8d:04:09:68:6c:b8:aa:d2:98:f3:68: 90:5f:9c:04:60:d4:80:af:00:82:ba:14:cf:59:77:f5:b8:36: 10:02:88:ab:46:76:ef:c2:e7:24:c5:7b:ba:1d:6d:d9:40:87: 86:a7:8b:7b:6e:df:c8:13:44:2a:70:ca:ad:fd:c2:79:9d:eb: 6b:aa:7d:dc:87:09:7d:05:f0:c2:30:c4:8f:b3:ef:44:9e:79: a4:ce:25:fa:bd:7f:bd:a2:8e:db:84:ef:c9:b4:a6:51:03:79: 41:fd:a8:e6:c0:dd:f4:b7:2f:9f:ec:de:30:56:cc:aa:34:f3: e1:82:2e:52:58:08:51:67:28:86:b4:92:00:94:8f:23:8b:5b: 41:d4:0f:15:ea:45:68:af:4d:7e:83:d3:e2:e6:be:83:8b:f7: a8:ec:82:99:4a:e8:53:76:d9:87:45:7a:10:cc:14:4f:1c:23: b5:92:36:79:64:ea:f8:db:6b:f1:83:70:23:41:77:8b:48:bd: 03:43:73:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDY3MjEyNEY2MzNDODkxOUNBNUQ3NjZEODlFOUNDRkYw QjIxRjBDOEQwHhcNMjQxMTIyMTcwMzQyWhcNMjQxMTI5MTcwMzQyWjAYMRYwFAYD VQQDEw02NzQwYjk2Zi01NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc9f0g7DhsD+XqEL+DndHZOP/ibJWB5yjZJTiOeBEGDXqwDztAlkUeZn5Dgt fBcYU+qnkDCo9dmgt3YtHqiyROyqpoFeLPqfT5X7BgEF0/KGWxgUDY826RFNdyp7 AmpWDpnVqbIPFX6dg2T/L+ekADhsPUskWKyghzFXAEsZGa4xbM4Fja4XBHwal6rk u8lkXGP4q3QN059LxznrYQaBRc4X4G1jAHxWtpR9fPoy/OTMGEJXxYR0uF3R9UdW j3gry/4ebOOR5aDMUpCvnvMuJoeu2gTHxA3/74V8wooUq4pXZUXary8uOECJ1fXm QNyVSwpSbQvcdpfqOceSc0ndvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDn/eHL6 fCD2OZKxrSRtbgWstYUlMB8GA1UdIwQYMBaAFGchJPYzyJGcpddm2J6cz/CyHwyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWtaeWwxMmJZbnB6UDhMSWZE STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p5RWs5alBJa1p5bDEyYllucHpQOExJZkRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUE0RS81NUU5Nzk1QUE5NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9aeUVrOWpQSWta eWwxMmJZbnB6UDhMSWZESTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnA4M3x3GmdQTjKESvsZP+DMCkcfJRHvLhIzAlEdcqt9pHQC5n0twm ygCooxaM0sj1yV0mUtVZa6maAP0MjQQJaGy4qtKY82iQX5wEYNSArwCCuhTPWXf1 uDYQAoirRnbvwuckxXu6HW3ZQIeGp4t7bt/IE0QqcMqt/cJ5netrqn3chwl9BfDC MMSPs+9EnnmkziX6vX+9oo7bhO/JtKZRA3lB/ajmwN30ty+f7N4wVsyqNPPhgi5S WAhRZyiGtJIAlI8ji1tB1A8V6kVor01+g9Pi5r6Di/eo7IKZSuhTdtmHRXoQzBRP HCO1kjZ5ZOr422vxg3AjQXeLSL0DQ3O9 -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org