$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft File: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft (raw, json) Hash identifier: o6KzkgssQ8qOhiqxNC4aC7NSa+gOvxE7FwgRp5LECyE= Subject key identifier: B2:39:A9:C6:E4:C6:DC:B1:8E:CB:6F:5A:7F:74:ED:8C:53:8C:95:A9 Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 Certificate issuer: /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Certificate serial: 074B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft Manifest number: 0743 Signing time: Wed 20 Nov 2024 21:10:07 +0000 Manifest this update: Wed 20 Nov 2024 21:10:06 +0000 Manifest next update: Wed 27 Nov 2024 21:10:06 +0000 Files and hashes: 1: Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl (hash: eMOEum+2bKoUGgqcAkRk8qbvo02NIVJSuBojEaIhJp4=) 2: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (hash: HoL2YghFB7YWFU4WTrloNVMNxIJl1VYwbkYTUbUT8RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Validity Not Before: Nov 20 21:10:06 2024 GMT Not After : Nov 27 21:10:06 2024 GMT Subject: CN=673e502f-8a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5a:ae:31:42:ae:50:ab:ec:18:7e:18:43:35: 1d:e0:e6:81:43:19:c8:f5:47:34:32:af:3c:f3:7a: ff:8b:32:92:fa:19:30:6d:7b:bf:9f:d8:30:77:17: d6:e2:2a:d0:7b:0c:7f:63:2b:92:4d:1e:99:9b:37: f5:b1:f8:8a:61:c3:40:c5:f8:fe:f4:92:fe:12:f3: 77:87:82:20:ce:fa:f6:51:5b:74:3c:98:92:bf:53: c3:e2:1f:12:4a:81:ac:b0:50:f1:b6:88:5a:46:53: 89:78:fe:4b:b4:36:56:cf:a2:bd:1f:d8:65:18:bd: e3:d0:fb:dc:25:64:b1:32:fc:cb:ee:88:8c:a0:83: 87:2b:85:22:88:88:ec:68:ca:91:13:23:a0:60:80: 20:22:b7:f2:2a:08:e0:94:27:27:89:ae:76:00:b3: d9:0c:0c:15:4e:20:91:f9:1e:82:14:cd:8d:54:76: 1f:fb:b0:e2:94:1f:9b:52:81:34:d6:7a:ef:4c:6b: 69:8d:4c:bf:12:be:c6:0e:15:f9:1e:4f:65:14:4c: 7c:d8:72:1d:ad:61:b3:a4:6e:ae:0c:e2:ee:86:c8: 80:b6:8a:5c:b3:aa:33:6a:40:8c:f2:75:11:dc:7e: 03:c4:f8:23:99:d7:23:e8:32:4a:ee:14:48:05:bd: 6f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:39:A9:C6:E4:C6:DC:B1:8E:CB:6F:5A:7F:74:ED:8C:53:8C:95:A9 X509v3 Authority Key Identifier: keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:98:4c:4a:aa:fc:da:23:4a:d0:21:13:8f:0e:83:11:b7:da: c1:0f:c1:7e:49:e5:d6:f1:44:9f:b2:ab:18:a5:5c:cd:8e:30: fe:6c:f1:13:5f:d2:33:32:c0:83:10:1a:ad:a2:9b:c9:1d:c5: 23:a6:4d:1f:7f:d6:f2:4b:bb:58:85:65:bb:25:2d:0a:36:94: 99:da:77:dc:73:35:9c:36:9d:c3:5a:14:1d:07:a2:5a:81:79: 0f:28:41:a2:7a:72:d5:bc:3e:ea:27:44:e5:b7:af:78:bd:8a: 12:e9:03:c3:e1:fd:d1:6a:35:c3:df:55:61:9e:5c:ab:a2:32: 97:90:46:4e:3c:38:db:2e:cb:34:2d:69:76:28:f5:d8:d5:3d: ff:a4:63:08:ef:80:4b:5d:1d:e0:6c:2c:ce:8e:a6:e6:17:5d: 0c:45:b5:ad:da:0c:ae:75:2c:06:51:bf:50:9c:f3:af:64:2d: 8d:30:86:4e:33:c5:71:a9:e8:03:11:c6:76:bb:aa:93:1c:10: 39:df:80:f8:50:d6:03:a6:2b:d6:75:fc:6c:e9:d5:ea:fe:8a: d7:ef:01:f1:02:08:4c:5e:ae:cc:50:03:08:0b:59:c5:b1:cc: 92:43:31:f3:af:64:3d:ee:c6:76:d3:bf:9b:e6:74:f3:ea:8e: 31:3f:49:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKDY3RjNCOUZBQUExMEQyMENCMDE3RjA3RkNDOUExNTRE ODhCNjYzQTAwHhcNMjQxMTIwMjExMDA2WhcNMjQxMTI3MjExMDA2WjAYMRYwFAYD VQQDEw02NzNlNTAyZi04YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lquMUKuUKvsGH4YQzUd4OaBQxnI9Uc0Mq8883r/izKS+hkwbXu/n9gwdxfW 4irQewx/YyuSTR6Zmzf1sfiKYcNAxfj+9JL+EvN3h4Igzvr2UVt0PJiSv1PD4h8S SoGssFDxtohaRlOJeP5LtDZWz6K9H9hlGL3j0PvcJWSxMvzL7oiMoIOHK4UiiIjs aMqREyOgYIAgIrfyKgjglCcnia52ALPZDAwVTiCR+R6CFM2NVHYf+7DilB+bUoE0 1nrvTGtpjUy/Er7GDhX5Hk9lFEx82HIdrWGzpG6uDOLuhsiAtopcs6ozakCM8nUR 3H4DxPgjmdcj6DJK7hRIBb1vuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI5qcbk xtyxjstvWn907YxTjJWpMB8GA1UdIwQYMBaAFGfzufqqENIMsBfwf8yaFU2ItmOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS80RTg1MzFDQTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBneXdGX0JfekpvVlRZaTJZ NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pfTzUtcW9RMGd5d0ZfQl96Sm9WVFlpMlk2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEzRS80RTg1MzFDQTA2QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBn eXdGX0JfekpvVlRZaTJZNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7mExKqvzaI0rQIROPDoMRt9rBD8F+SeXW8USfsqsYpVzNjjD+bPET X9IzMsCDEBqtopvJHcUjpk0ff9byS7tYhWW7JS0KNpSZ2nfcczWcNp3DWhQdB6Ja gXkPKEGienLVvD7qJ0Tlt694vYoS6QPD4f3RajXD31VhnlyrojKXkEZOPDjbLss0 LWl2KPXY1T3/pGMI74BLXR3gbCzOjqbmF10MRbWt2gyudSwGUb9QnPOvZC2NMIZO M8VxqegDEcZ2u6qTHBA534D4UNYDpivWdfxs6dXq/orX7wHxAghMXq7MUAMIC1nF scySQzHzr2Q97sZ207+b5nTz6o4xP0ly -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:47 2024 by rpki-client on console-fra.rpki-client.org