$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft File: zFkhdtiMQj-IWbUYtq0zT_92dAk.mft (raw, json) Hash identifier: ZWY+uFgZs5P0OrYsXiVd0dQbFadAlu3ss6w83KqIE0o= Subject key identifier: D1:36:8B:6C:1F:AA:34:22:18:6A:A0:59:4F:4C:AE:4E:06:7D:A8:16 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 10E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft Manifest number: 10C8 Signing time: Wed 20 Nov 2024 17:15:56 +0000 Manifest this update: Wed 20 Nov 2024 17:15:55 +0000 Manifest next update: Wed 27 Nov 2024 17:15:55 +0000 Files and hashes: 1: zFkhdtiMQj-IWbUYtq0zT_92dAk.crl (hash: KKTQjmTZp/EjOEln/Q/aL3DrAV8DrWBp3TJ6nZJ2u5Y=) 2: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (hash: f1Axpq+Y9qp0ZeZKbPlrZpgSxrjbARoaWRKQTgoHG74=) 3: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (hash: Es9AKZiU8brb3GnSF7C7yqjk6OwYTW61+uidALQGL7g=) 4: 53BDA2F60F1A11E9B3F2A713C4F9AE02.roa (hash: MeknSXi6oQaKYDd3WwvfqyiM9CHRmo26fLY2uU/axvE=) 5: 552292460F1A11E9B3F2A713C4F9AE02.roa (hash: nlVHEDuSU/mAswQSloG1200oxpfI5TuHaS9wuRrpi9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4323 (0x10e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 20 17:15:55 2024 GMT Not After : Nov 27 17:15:55 2024 GMT Subject: CN=673e194b-164b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c4:74:4c:ea:6d:45:4f:3e:10:11:d8:ce:79: 63:40:7a:5b:92:5c:34:b9:14:e5:67:01:0c:87:05: 93:71:a9:45:75:37:52:3e:75:3b:df:35:b5:0e:fe: a4:06:37:96:a0:d5:9d:4e:8c:3c:7e:4c:54:cc:94: 11:f5:88:aa:cc:de:e5:8a:6b:da:ae:49:8e:cb:8d: 98:f3:84:5a:12:db:42:92:a6:db:25:4b:5d:7b:5c: 9c:4f:b7:16:49:f3:a9:36:a8:42:7d:c2:25:a8:6c: 37:25:40:1e:51:bd:c4:c2:7b:ac:29:31:13:46:b7: 1c:b8:3d:60:c0:34:01:02:5f:a7:f8:67:d2:3e:ee: cb:ce:45:cd:05:18:65:0f:de:7c:57:a0:3d:6c:65: 00:0e:fb:be:b8:54:1c:8f:61:8a:d1:eb:c2:b3:fa: 5e:f2:c1:58:fe:1a:e2:8f:23:7b:6d:88:bc:2b:fa: b4:cd:bf:38:8a:cd:b5:65:4a:b5:4b:65:07:b9:ed: 5e:38:97:8f:c3:3d:0f:35:8f:08:0d:73:84:d3:06: 33:af:52:ea:39:dd:dd:9c:3f:49:f9:88:72:52:ce: b4:17:d9:22:74:15:fd:ac:bb:26:b9:11:20:7e:e2: 76:b3:bb:14:b5:a6:26:fa:1b:05:61:db:c5:f1:0f: 79:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:36:8B:6C:1F:AA:34:22:18:6A:A0:59:4F:4C:AE:4E:06:7D:A8:16 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:2c:3e:66:ef:37:d2:24:46:04:da:75:03:ea:ce:7b:81:d2: f7:a1:2d:2c:58:67:2e:2f:20:e7:2f:58:03:a9:6a:36:e3:14: f8:85:5c:d5:82:2e:3f:1e:77:62:ba:5c:75:4e:9d:36:a1:f1: 72:4f:a5:5c:04:85:2f:3c:b4:c6:be:43:a1:c1:90:44:6d:0b: 78:31:08:31:29:f1:2b:d5:ef:4f:f5:fb:a3:ac:2b:73:da:08: 37:ec:81:cc:54:2a:18:7f:f5:43:93:07:c7:a2:c5:9d:f5:79: 75:bb:b6:af:e1:31:49:56:63:17:07:fa:e6:b8:b9:4c:db:8b: 98:f4:cf:ff:e7:43:41:6f:68:a0:1e:0c:02:18:39:9f:e2:1a: f9:5a:99:4a:c5:0b:e6:f6:cd:17:01:3a:d3:1e:e4:be:3e:19: 5e:c3:63:87:14:f1:36:73:69:87:c0:4f:12:f9:3f:9c:23:a6: 72:d9:54:79:c5:f0:7b:d0:07:28:83:ef:4f:9e:01:1f:53:c3: db:34:ba:f3:82:0d:b0:e3:57:b5:37:bb:a2:05:20:15:01:0b: 77:a6:89:55:c3:cb:c8:59:80:12:ae:f8:45:64:ca:bc:d8:e3: dd:3f:de:78:71:01:1c:99:00:8c:53:cf:ba:19:04:c3:11:5b: 17:a7:e9:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjQxMTIwMTcxNTU1WhcNMjQxMTI3MTcxNTU1WjAYMRYwFAYD VQQDEw02NzNlMTk0Yi0xNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MR0TOptRU8+EBHYznljQHpbklw0uRTlZwEMhwWTcalFdTdSPnU73zW1Dv6k BjeWoNWdTow8fkxUzJQR9YiqzN7limvarkmOy42Y84RaEttCkqbbJUtde1ycT7cW SfOpNqhCfcIlqGw3JUAeUb3EwnusKTETRrccuD1gwDQBAl+n+GfSPu7LzkXNBRhl D958V6A9bGUADvu+uFQcj2GK0evCs/pe8sFY/hrijyN7bYi8K/q0zb84is21ZUq1 S2UHue1eOJePwz0PNY8IDXOE0wYzr1LqOd3dnD9J+YhyUs60F9kidBX9rLsmuREg fuJ2s7sUtaYm+hsFYdvF8Q95MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNE2i2wf qjQiGGqgWU9Mrk4GfagWMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjdCQi9CREZCRjE4NjBFM0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFq LUlXYlVZdHEwelRfOTJkQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGLD5m7zfSJEYE2nUD6s57gdL3oS0sWGcuLyDnL1gDqWo24xT4hVzV gi4/Hndiulx1Tp02ofFyT6VcBIUvPLTGvkOhwZBEbQt4MQgxKfEr1e9P9fujrCtz 2gg37IHMVCoYf/VDkwfHosWd9Xl1u7av4TFJVmMXB/rmuLlM24uY9M//50NBb2ig HgwCGDmf4hr5WplKxQvm9s0XATrTHuS+Phlew2OHFPE2c2mHwE8S+T+cI6Zy2VR5 xfB70Acog+9PngEfU8PbNLrzgg2w41e1N7uiBSAVAQt3polVw8vIWYASrvhFZMq8 2OPdP954cQEcmQCMU8+6GQTDEVsXp+lb -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:08 2024 by rpki-client on console-fra.rpki-client.org