$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft File: AO-zr_90_WIfS42RFpt6HEOzlBc.mft (raw, json) Hash identifier: Q/FzvXkYN8Qq8Vmk53kW/x325n0CEesA1INWygpDUtI= Subject key identifier: C2:7D:39:1F:8B:0D:19:B0:A6:6D:C7:A2:AE:CD:A7:61:72:48:0E:4F Authority key identifier: 00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 Certificate issuer: /CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft Manifest number: E7 Signing time: Sat 23 Nov 2024 03:36:36 +0000 Manifest this update: Sat 23 Nov 2024 03:36:35 +0000 Manifest next update: Sat 30 Nov 2024 03:36:35 +0000 Files and hashes: 1: AO-zr_90_WIfS42RFpt6HEOzlBc.crl (hash: BdVfDJ8LF+pm5eqw+Bd7R/pS0H8CXhADaVvu9MU9oNM=) 2: A80498FABAAB11EEBA024655C4F9AE02.roa (hash: Ys1bWxUU1Q27MLi9PA78rftLXNvIC29MFW+JEu4ijfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8FA/serialNumber=00EFB3AFFF74FD621F4B8D91169B7A1C43B39417 Validity Not Before: Nov 23 03:36:35 2024 GMT Not After : Nov 30 03:36:35 2024 GMT Subject: CN=67414dc3-0265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:44:05:6f:a5:41:ec:4a:3f:c6:0b:ee:6c:55: d1:33:67:0f:db:06:09:50:47:48:b5:41:34:73:92: 59:ce:90:9a:60:f4:f3:15:98:ee:84:22:ff:ba:e9: 04:77:16:4d:4f:6c:f7:79:1c:bb:51:a5:da:dc:25: c9:89:fc:74:a8:0d:6c:9b:de:a6:32:fa:ae:dd:28: 43:7c:08:fb:d6:68:ed:31:d2:fb:fd:a2:88:f6:82: ff:c1:5b:7e:93:b2:01:30:cf:08:23:39:30:bb:2d: ef:91:c2:5a:2a:5e:6c:16:9f:c1:33:24:6d:a9:65: 09:5b:d5:26:27:64:76:6f:6f:27:0e:a9:b2:27:e0: 29:1d:4f:00:b1:f0:9b:5e:e7:22:1c:f6:84:9e:15: 8e:7b:ab:ed:1a:93:4d:77:82:12:05:e8:2c:04:f6: 06:8a:d3:bc:8b:d5:d2:98:ac:9d:04:41:a6:3a:b8: 48:85:b7:94:11:79:39:11:b6:31:5f:9f:e0:88:b9: 25:45:43:c5:c1:a2:6f:ad:d8:5f:78:b3:3a:12:bd: 5f:98:cc:93:19:04:b8:17:32:b5:fd:a4:dd:62:b5: 1f:04:42:a9:45:15:44:6b:7a:50:bb:41:81:3b:77: 20:e5:92:07:05:4e:33:61:fb:3a:f9:71:e7:5d:5c: 49:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:7D:39:1F:8B:0D:19:B0:A6:6D:C7:A2:AE:CD:A7:61:72:48:0E:4F X509v3 Authority Key Identifier: keyid:00:EF:B3:AF:FF:74:FD:62:1F:4B:8D:91:16:9B:7A:1C:43:B3:94:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AO-zr_90_WIfS42RFpt6HEOzlBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8FA/4003F93054A311EEB75F4686C4F9AE02/AO-zr_90_WIfS42RFpt6HEOzlBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:93:8a:d1:d5:03:f8:f0:26:df:50:67:69:83:2e:c9:8e:2f: 88:69:97:a8:be:1d:26:fc:0f:c0:e6:47:2f:5e:d7:01:04:fc: 0b:ee:f5:89:a1:61:93:04:d1:49:51:17:1e:49:4e:41:ed:87: 8f:15:79:13:b5:f0:7c:d5:cf:d0:f9:3a:46:b6:b6:83:2a:45: 9d:1b:45:32:1e:3d:ab:44:0a:9b:c0:f9:83:2e:2c:38:27:89: 56:a5:8f:2b:7f:62:70:a1:98:bf:45:1e:ca:ef:ba:f5:3e:8c: 6a:82:ae:f5:01:30:e9:a6:ef:bb:66:49:19:01:67:4e:be:55: c3:5e:28:2e:62:1c:02:dd:c8:cf:2b:b7:2d:7c:8f:4a:ac:1f: fa:ef:e8:5d:d6:63:da:ad:f9:aa:b7:cc:24:48:37:3a:d1:d8: b6:d4:a5:05:ea:6a:2f:52:95:6d:ae:d1:c9:89:5d:92:b1:9b: 5a:78:d2:cb:b0:7c:76:16:78:25:3a:9e:fa:a1:a0:18:b6:d4: e4:4a:99:62:de:2b:58:a9:09:33:cd:30:6e:22:77:5a:b5:0e: e3:e7:2a:a8:6c:c3:8e:1a:ef:e3:23:14:42:79:0d:a5:64:06: 4a:36:72:58:bc:00:fd:86:99:78:02:05:c0:36:d2:df:45:e7: 61:1c:03:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4RkExMTAvBgNVBAUTKDAwRUZCM0FGRkY3NEZENjIxRjRCOEQ5MTE2OUI3QTFD NDNCMzk0MTcwHhcNMjQxMTIzMDMzNjM1WhcNMjQxMTMwMDMzNjM1WjAYMRYwFAYD VQQDEw02NzQxNGRjMy0wMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUQFb6VB7Eo/xgvubFXRM2cP2wYJUEdItUE0c5JZzpCaYPTzFZjuhCL/uukE dxZNT2z3eRy7UaXa3CXJifx0qA1sm96mMvqu3ShDfAj71mjtMdL7/aKI9oL/wVt+ k7IBMM8IIzkwuy3vkcJaKl5sFp/BMyRtqWUJW9UmJ2R2b28nDqmyJ+ApHU8AsfCb XuciHPaEnhWOe6vtGpNNd4ISBegsBPYGitO8i9XSmKydBEGmOrhIhbeUEXk5EbYx X5/giLklRUPFwaJvrdhfeLM6Er1fmMyTGQS4FzK1/aTdYrUfBEKpRRVEa3pQu0GB O3cg5ZIHBU4zYfs6+XHnXVxJCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJ9OR+L DRmwpm3Hoq7Np2FySA5PMB8GA1UdIwQYMBaAFADvs6//dP1iH0uNkRabehxDs5QX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhGQS80MDAzRjkzMDU0 QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9XSWZTNDJSRnB0NkhFT3ps QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPLXpyXzkwX1dJZlM0MlJGcHQ2SEVPemxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhGQS80MDAzRjkzMDU0QTMxMUVFQjc1RjQ2ODZDNEY5QUUwMi9BTy16cl85MF9X SWZTNDJSRnB0NkhFT3psQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrk4rR1QP48CbfUGdpgy7Jji+IaZeovh0m/A/A5kcvXtcBBPwL7vWJ oWGTBNFJURceSU5B7YePFXkTtfB81c/Q+TpGtraDKkWdG0UyHj2rRAqbwPmDLiw4 J4lWpY8rf2JwoZi/RR7K77r1Poxqgq71ATDppu+7ZkkZAWdOvlXDXiguYhwC3cjP K7ctfI9KrB/67+hd1mParfmqt8wkSDc60di21KUF6movUpVtrtHJiV2SsZtaeNLL sHx2FnglOp76oaAYttTkSpli3itYqQkzzTBuIndatQ7j5yqobMOOGu/jIxRCeQ2l ZAZKNnJYvAD9hpl4AgXANtLfRedhHAPC -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org