$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft File: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft (raw, json) Hash identifier: 6QHGX943gy5Vnz6V5HMTBDjZ1t9cTBtlHHERIX90Fes= Subject key identifier: 57:49:72:4C:3F:78:56:B4:C5:94:D4:6F:50:B1:4A:E7:0E:EA:09:6C Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0C27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft Manifest number: 0C21 Signing time: Fri 22 Nov 2024 18:15:16 +0000 Manifest this update: Fri 22 Nov 2024 18:15:16 +0000 Manifest next update: Fri 29 Nov 2024 18:15:16 +0000 Files and hashes: 1: zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl (hash: VrMnwOoqMC2ACjdkSCRUfNStnoLs/Y5oyIOIZSf0Ad8=) 2: F690CAECF87D11E9A746D05BC4F9AE02.roa (hash: tPAGXaSYisbjEXVlWGxE30ABgdsZwLOrekyu2J6vfbg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:15:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Nov 22 18:15:16 2024 GMT Not After : Nov 29 18:15:16 2024 GMT Subject: CN=6740ca34-6a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:36:a9:68:5e:e1:03:c2:44:7a:fe:48:d8:70: 5d:3d:43:fe:57:95:ec:c3:dd:21:cc:4c:73:82:1d: a2:84:07:ae:c0:e4:5b:de:b6:da:6b:ef:86:09:25: b1:28:4e:c0:ae:e8:e0:dd:6d:b9:1c:91:3f:68:bc: 93:57:e1:3b:c1:7f:16:e4:93:d5:f4:a6:dd:bc:d3: 32:0e:32:1c:b5:23:4a:9e:66:3a:c4:3c:12:b5:2b: b9:20:a3:de:3e:fc:1d:4e:00:19:4f:9c:c7:2d:18: 20:18:57:26:21:9d:f0:53:b9:5a:bd:14:e4:9d:96: 8c:6f:15:52:d7:2e:40:a9:b6:05:0b:2f:e2:41:13: f4:9d:34:0f:e2:60:b6:58:e2:54:7e:0f:9e:98:a2: aa:3f:de:7c:00:00:2d:6b:a9:bc:3f:d5:59:43:10: 8f:61:9b:a0:97:a6:df:c8:c1:26:bc:ad:96:d8:03: 07:d6:ea:e8:d2:6e:94:f1:d5:3c:95:73:5e:f1:0e: 55:94:20:13:f5:f3:52:2c:55:ad:9b:a0:7a:81:0b: 38:61:88:dd:36:a8:a2:ca:5d:65:d9:d2:06:92:4f: 49:9d:61:a0:ca:5f:5f:d3:60:70:bd:2a:18:7f:81: 58:0b:2e:28:42:6a:f3:41:f5:8b:ed:a2:ab:75:08: d1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:49:72:4C:3F:78:56:B4:C5:94:D4:6F:50:B1:4A:E7:0E:EA:09:6C X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:01:99:03:c9:17:a1:cb:5b:af:8a:ea:53:3d:cf:27:7a:e0: 32:5f:64:49:0e:10:6f:91:4e:1e:91:a2:5c:55:9a:02:f7:16: 88:13:3d:62:f3:17:44:bc:ad:36:28:fd:ed:74:70:8b:bd:89: 7d:65:d5:ae:74:11:0e:2f:e8:ec:4e:f3:9a:98:1f:11:2c:b6: 27:7c:1a:f1:8a:68:21:3f:78:3e:ec:20:de:12:f8:27:fc:e4: ef:c9:17:cb:88:71:49:66:1d:b6:7c:e0:6e:b1:7a:be:fd:da: df:fa:12:f8:44:9f:3c:03:18:9d:16:7a:59:19:59:84:ec:cf: da:8c:74:5f:f9:8d:72:ea:ea:2a:c5:f7:d2:a8:c8:94:23:cd: 91:81:c7:30:ee:c4:3a:4e:93:10:fc:3c:0c:92:c9:37:10:0f: 4e:86:27:79:87:98:e5:e8:d9:0c:c8:83:d3:31:42:3a:4d:98: 76:42:41:8f:cb:8d:b5:9c:ba:e6:35:09:34:b5:50:46:5c:24: 83:fe:ee:51:08:69:42:cf:74:3f:79:bd:2f:f5:b2:8f:a3:3f: 05:49:16:ab:5b:97:fd:93:1b:75:08:fe:c8:c4:14:9a:07:7c: 53:da:e3:69:d5:da:96:5a:31:a4:eb:27:ff:8e:d6:1c:01:18: 3a:89:df:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjQxMTIyMTgxNTE2WhcNMjQxMTI5MTgxNTE2WjAYMRYwFAYD VQQDEw02NzQwY2EzNC02YTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDapaF7hA8JEev5I2HBdPUP+V5Xsw90hzExzgh2ihAeuwORb3rbaa++GCSWx KE7Arujg3W25HJE/aLyTV+E7wX8W5JPV9KbdvNMyDjIctSNKnmY6xDwStSu5IKPe PvwdTgAZT5zHLRggGFcmIZ3wU7lavRTknZaMbxVS1y5AqbYFCy/iQRP0nTQP4mC2 WOJUfg+emKKqP958AAAta6m8P9VZQxCPYZugl6bfyMEmvK2W2AMH1uro0m6U8dU8 lXNe8Q5VlCAT9fNSLFWtm6B6gQs4YYjdNqiiyl1l2dIGkk9JnWGgyl9f02BwvSoY f4FYCy4oQmrzQfWL7aKrdQjRfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdJckw/ eFa0xZTUb1CxSucO6glsMB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZCMC9BM0FCNDNCMkY4N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9v M2RhX0xUMkV4N3dMSzZQOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3AZkDyRehy1uviupTPc8neuAyX2RJDhBvkU4ekaJcVZoC9xaIEz1i 8xdEvK02KP3tdHCLvYl9ZdWudBEOL+jsTvOamB8RLLYnfBrximghP3g+7CDeEvgn /OTvyRfLiHFJZh22fOBusXq+/drf+hL4RJ88AxidFnpZGVmE7M/ajHRf+Y1y6uoq xffSqMiUI82Rgccw7sQ6TpMQ/DwMksk3EA9Ohid5h5jl6NkMyIPTMUI6TZh2QkGP y421nLrmNQk0tVBGXCSD/u5RCGlCz3Q/eb0v9bKPoz8FSRarW5f9kxt1CP7IxBSa B3xT2uNp1dqWWjGk6yf/jtYcARg6id8R -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org