$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft File: zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft (raw, json) Hash identifier: GMxPsqJII8/lZktkKbRmknhyim4ZsxMum5oz6Tp2QpU= Subject key identifier: 35:A6:9A:70:E9:5B:AD:68:C8:88:EA:97:1A:CB:D4:0A:C9:9B:E8:1A Authority key identifier: CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 Certificate issuer: /CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Certificate serial: 16B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft Manifest number: 16B0 Signing time: Fri 22 Nov 2024 16:40:29 +0000 Manifest this update: Fri 22 Nov 2024 16:40:28 +0000 Manifest next update: Fri 29 Nov 2024 16:40:28 +0000 Files and hashes: 1: zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl (hash: HhyDy2s8eFEDlDDB7yZDfbaCV2TmSwTO6zlySW8wbg4=) 2: 4A81F344C34111EB855D7C84C4F9AE02.roa (hash: cm5FFI1og7YjMZfdAhw+hJ+S9AdxrNduOS+XXipWxWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5817 (0x16b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA729/serialNumber=CE8E0F2BA499C5E587B015E1044F098CE62CA758 Validity Not Before: Nov 22 16:40:28 2024 GMT Not After : Nov 29 16:40:28 2024 GMT Subject: CN=6740b3fc-b32d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:2b:93:e3:e2:85:2e:08:63:b2:7b:2b:6a:de: c0:ba:62:b7:0b:97:71:fa:33:47:4a:f9:ba:14:01: a6:1c:77:f9:c6:fc:ee:bc:59:f1:97:71:ce:79:93: c5:d3:0b:b0:0c:75:90:c1:7d:08:84:5a:c6:ec:31: 34:dc:b2:61:af:6e:20:e7:3b:cd:bb:e2:76:ac:3c: 16:ff:d4:ad:56:6e:af:6b:f9:97:dd:4b:26:65:21: 10:30:ce:56:33:18:0a:b0:94:5a:b3:e6:e0:78:e2: ab:5e:2f:b1:18:56:dd:a0:9e:17:7f:b0:50:c7:b0: 4b:9b:3d:ce:82:fd:72:d2:88:5f:65:0c:69:7b:9b: a8:5b:9e:7c:da:73:12:3e:b2:3d:87:86:ad:9c:76: 98:2b:db:67:06:7e:6b:86:d7:be:85:fc:2d:a9:47: c2:59:53:0d:e3:09:62:34:22:95:6f:14:0c:97:68: 88:35:e3:2c:93:e7:0d:66:a1:b6:2d:2f:b3:2d:55: ae:69:17:b6:18:ee:9b:28:67:d2:43:ca:01:6c:68: 77:57:d6:f2:0c:ef:5a:2c:5e:b5:32:86:a5:c6:f5: 45:33:e9:d5:4e:92:1a:10:34:ed:56:fa:b6:c8:b5: 14:e4:a1:61:22:f0:36:88:23:a4:e4:74:72:3d:f8: b7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A6:9A:70:E9:5B:AD:68:C8:88:EA:97:1A:CB:D4:0A:C9:9B:E8:1A X509v3 Authority Key Identifier: keyid:CE:8E:0F:2B:A4:99:C5:E5:87:B0:15:E1:04:4F:09:8C:E6:2C:A7:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zo4PK6SZxeWHsBXhBE8JjOYsp1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA729/28B9D01CE5F811E79A7D8433C4F9AE02/zo4PK6SZxeWHsBXhBE8JjOYsp1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:58:78:70:bc:a7:20:ad:bc:69:37:80:b9:73:54:ab:8c:5e: 7f:61:b9:89:ea:5b:83:7d:5f:5e:b6:5d:01:13:9f:0c:e5:ab: 6b:ac:05:c9:e0:c3:b2:c9:d2:6c:07:44:24:64:e9:cf:16:04: f0:94:d5:41:86:ba:44:fa:06:e8:53:da:10:47:58:12:d7:73: 10:e1:e7:f8:31:77:3d:ba:09:5b:31:16:9c:55:8d:54:85:74: 3e:6d:7d:b8:b0:c3:e5:84:a2:62:ea:44:a1:7f:21:cd:41:38: 8e:30:c3:f7:b2:79:f2:71:b7:25:96:ba:70:20:ee:8d:23:bb: e1:21:70:29:3c:c4:9f:17:f5:b6:23:0d:91:ad:59:68:09:ac: e9:bf:2d:aa:4d:80:6e:86:f5:ac:d0:9d:5a:92:63:21:34:0e: 53:1c:21:a2:2c:f5:8a:d1:37:56:64:2e:4e:2d:be:82:11:0b: d0:c6:56:96:b3:98:0a:24:65:68:30:6e:0a:74:8f:27:76:7a: c7:bf:6d:5b:5c:89:fd:fc:c5:f8:43:34:bf:e7:d6:46:f8:f2: d6:9e:12:20:87:22:13:d2:2c:40:59:8d:a8:32:27:ee:43:7d: 7e:6c:f9:de:82:d2:2d:44:ce:88:10:8b:9a:e0:dd:d4:3f:16: 19:e2:49:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE3MjkxMTAvBgNVBAUTKENFOEUwRjJCQTQ5OUM1RTU4N0IwMTVFMTA0NEYwOThD RTYyQ0E3NTgwHhcNMjQxMTIyMTY0MDI4WhcNMjQxMTI5MTY0MDI4WjAYMRYwFAYD VQQDEw02NzQwYjNmYy1iMzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCuT4+KFLghjsnsrat7AumK3C5dx+jNHSvm6FAGmHHf5xvzuvFnxl3HOeZPF 0wuwDHWQwX0IhFrG7DE03LJhr24g5zvNu+J2rDwW/9StVm6va/mX3UsmZSEQMM5W MxgKsJRas+bgeOKrXi+xGFbdoJ4Xf7BQx7BLmz3Ogv1y0ohfZQxpe5uoW5582nMS PrI9h4atnHaYK9tnBn5rhte+hfwtqUfCWVMN4wliNCKVbxQMl2iINeMsk+cNZqG2 LS+zLVWuaRe2GO6bKGfSQ8oBbGh3V9byDO9aLF61MoalxvVFM+nVTpIaEDTtVvq2 yLUU5KFhIvA2iCOk5HRyPfi35wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWmmnDp W61oyIjqlxrL1ArJm+gaMB8GA1UdIwQYMBaAFM6ODyukmcXlh7AV4QRPCYzmLKdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTcyOS8yOEI5RDAxQ0U1 RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhlV0hzQlhoQkU4SmpPWXNw MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pvNFBLNlNaeGVXSHNCWGhCRThKak9Zc3AxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTcyOS8yOEI5RDAxQ0U1RjgxMUU3OUE3RDg0MzNDNEY5QUUwMi96bzRQSzZTWnhl V0hzQlhoQkU4SmpPWXNwMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHWHhwvKcgrbxpN4C5c1SrjF5/YbmJ6luDfV9etl0BE58M5atrrAXJ 4MOyydJsB0QkZOnPFgTwlNVBhrpE+gboU9oQR1gS13MQ4ef4MXc9uglbMRacVY1U hXQ+bX24sMPlhKJi6kShfyHNQTiOMMP3snnycbcllrpwIO6NI7vhIXApPMSfF/W2 Iw2RrVloCazpvy2qTYBuhvWs0J1akmMhNA5THCGiLPWK0TdWZC5OLb6CEQvQxlaW s5gKJGVoMG4KdI8ndnrHv21bXIn9/MX4QzS/59ZG+PLWnhIghyIT0ixAWY2oMifu Q31+bPnegtItRM6IEIua4N3UPxYZ4klX -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org