$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft File: z3nGX0tVAQ-yXObEW4yRnbCToy0.mft (raw, json) Hash identifier: IGpYk/m4a47H0xT7+jKRhPQkqu/hw/xjMqzt7hAbCpo= Subject key identifier: B4:E3:EF:2F:F6:98:31:74:E3:A9:89:84:1B:BA:F8:4F:01:58:9D:08 Authority key identifier: CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D Certificate issuer: /CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft Manifest number: 07 Signing time: Sat 23 Nov 2024 06:06:36 +0000 Manifest this update: Sat 23 Nov 2024 06:06:36 +0000 Manifest next update: Sat 30 Nov 2024 06:06:36 +0000 Files and hashes: 1: z3nGX0tVAQ-yXObEW4yRnbCToy0.crl (hash: KNnSK4Z3GDR2MmrF27vlToiFxoO15e2J0SUeOsEetAA=) 2: 86D0A2C4A1D111EFAF9D5F7CC4F9AE02.roa (hash: XMip5SJGTadiOXmnq8Z0RljYN/+pYdk5oYt/xNDel4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E/serialNumber=CF79C65F4B55010FB25CE6C45B8C919DB093A32D Validity Not Before: Nov 23 06:06:36 2024 GMT Not After : Nov 30 06:06:36 2024 GMT Subject: CN=674170ec-208e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ff:55:f5:9d:a8:93:26:a0:41:ba:f6:51:62: bd:81:ab:f3:20:71:d1:00:94:ac:0e:37:8f:6e:c6: 2f:05:a9:4d:79:cf:67:ab:a3:44:71:8a:7c:10:ff: f8:86:aa:f7:a6:cb:80:82:a4:46:90:4d:e3:63:c4: 66:f2:00:41:8f:2d:65:7d:fa:78:68:46:e7:d8:b4: a9:14:7a:d4:71:17:00:e2:fe:f4:51:9d:af:a0:37: f0:00:4c:7f:7d:14:c3:d1:4b:f2:0d:69:82:78:af: 6b:46:5f:85:11:ba:3d:7e:15:1a:57:89:8d:8d:a5: 4c:15:b8:1c:44:5d:72:08:a1:8e:4b:a0:1c:75:88: d2:fc:ab:f7:dc:ef:08:5b:b4:dd:21:20:17:5a:cd: 63:33:27:8b:1a:02:59:c0:3a:fc:fd:47:e8:72:bb: 51:de:ca:21:52:45:cc:14:32:fe:17:99:5f:9b:d9: 2a:59:6f:30:4e:d3:d1:ac:b6:45:f9:85:de:aa:70: 44:c0:58:9e:9e:d3:5e:79:b1:14:da:ec:c5:e4:37: 57:d3:6b:20:c8:b7:24:5b:d2:c5:03:3f:3b:c7:21: 4e:ed:4e:a8:01:7a:71:96:37:eb:20:21:2d:16:b6: 8f:35:0a:98:07:e4:f8:49:0b:eb:75:f3:05:65:20: 31:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E3:EF:2F:F6:98:31:74:E3:A9:89:84:1B:BA:F8:4F:01:58:9D:08 X509v3 Authority Key Identifier: keyid:CF:79:C6:5F:4B:55:01:0F:B2:5C:E6:C4:5B:8C:91:9D:B0:93:A3:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3nGX0tVAQ-yXObEW4yRnbCToy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/8428B9E6A1CF11EF878E6061C4F9AE02/z3nGX0tVAQ-yXObEW4yRnbCToy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:a7:e7:d5:51:21:31:0a:e0:81:7b:c7:de:37:d4:d1:6e:04: 42:c8:a9:2d:8e:0e:d8:a8:df:e9:cf:09:6e:5b:b6:b1:f9:ac: 24:ba:39:9d:07:b2:54:d5:1b:6b:51:03:04:80:02:74:43:30: 72:c1:f2:90:d0:a6:96:08:2c:ac:83:85:e4:40:a3:8e:df:e7: 1f:3f:ca:a6:dc:0f:08:c0:38:0c:f3:40:43:32:2a:8a:89:a9: 83:24:2b:b7:87:2a:3e:de:12:f0:51:5a:e4:a8:84:43:1d:e6: 78:9a:d7:69:7c:a6:b2:ba:d2:19:e2:5a:93:57:36:53:3a:3f: c8:4c:3e:1e:85:ac:93:d8:8f:e5:cf:a7:03:a8:cc:6e:78:ac: d4:82:c0:82:a8:d8:c2:77:48:bb:4e:33:b9:75:31:35:b1:a0: 0d:1a:12:80:27:83:a5:a1:73:c1:de:ad:bb:3c:bf:46:ab:14: b6:83:59:e6:8b:9e:ba:e9:27:73:40:ae:6a:1b:70:cf:d9:68: 3d:bf:20:fe:87:d1:44:c1:53:69:eb:4b:8f:db:eb:fd:30:a9: 32:87:32:73:53:f2:f2:b0:14:a5:7a:ca:c4:20:04:8c:03:bd: 82:9f:ca:05:d3:9a:e9:10:27:5e:16:b4:da:c9:a0:fc:c9:1f: e8:33:01:5f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTg3RTExMC8GA1UEBRMoQ0Y3OUM2NUY0QjU1MDEwRkIyNUNFNkM0NUI4QzkxOURC MDkzQTMyRDAeFw0yNDExMjMwNjA2MzZaFw0yNDExMzAwNjA2MzZaMBgxFjAUBgNV BAMTDTY3NDE3MGVjLTIwOGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq/1X1naiTJqBBuvZRYr2Bq/MgcdEAlKwON49uxi8FqU15z2ero0RxinwQ//iG qvemy4CCpEaQTeNjxGbyAEGPLWV9+nhoRufYtKkUetRxFwDi/vRRna+gN/AATH99 FMPRS/INaYJ4r2tGX4URuj1+FRpXiY2NpUwVuBxEXXIIoY5LoBx1iNL8q/fc7whb tN0hIBdazWMzJ4saAlnAOvz9R+hyu1HeyiFSRcwUMv4XmV+b2SpZbzBO09GstkX5 hd6qcETAWJ6e0155sRTa7MXkN1fTayDItyRb0sUDPzvHIU7tTqgBenGWN+sgIS0W to81CpgH5PhJC+t18wVlIDGxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtOPvL/aY MXTjqYmEG7r4TwFYnQgwHwYDVR0jBBgwFoAUz3nGX0tVAQ+yXObEW4yRnbCToy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFODdFLzg0MjhCOUU2QTFD RjExRUY4NzhFNjA2MUM0RjlBRTAyL3ozbkdYMHRWQVEteVhPYkVXNHlSbmJDVG95 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejNuR1gwdFZBUS15WE9iRVc0eVJuYkNUb3kwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF ODdFLzg0MjhCOUU2QTFDRjExRUY4NzhFNjA2MUM0RjlBRTAyL3ozbkdYMHRWQVEt eVhPYkVXNHlSbmJDVG95MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKSn59VRITEK4IF7x9431NFuBELIqS2ODtio3+nPCW5btrH5rCS6OZ0H slTVG2tRAwSAAnRDMHLB8pDQppYILKyDheRAo47f5x8/yqbcDwjAOAzzQEMyKoqJ qYMkK7eHKj7eEvBRWuSohEMd5nia12l8prK60hniWpNXNlM6P8hMPh6FrJPYj+XP pwOozG54rNSCwIKo2MJ3SLtOM7l1MTWxoA0aEoAng6Whc8Herbs8v0arFLaDWeaL nrrpJ3NArmobcM/ZaD2/IP6H0UTBU2nrS4/b6/0wqTKHMnNT8vKwFKV6ysQgBIwD vYKfygXTmukQJ14WtNrJoPzJH+gzAV8= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org