$ rpki-client -vvf rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft File: cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft (raw, json) Hash identifier: 2BNZX1t5R/W4TgAQEVE22AkApnQIy/Pl4xIVMmVtyl8= Subject key identifier: EE:83:D3:6F:E8:26:87:21:4C:6D:1A:FC:1A:03:72:F4:9A:D3:2E:2A Authority key identifier: 71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 Certificate issuer: /CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft Manifest number: 3B3F Signing time: Fri 22 Nov 2024 15:23:24 +0000 Manifest this update: Fri 22 Nov 2024 15:23:24 +0000 Manifest next update: Fri 29 Nov 2024 15:23:24 +0000 Files and hashes: 1: cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl (hash: Lizn6KRNWBWMIdJRsdxdIA45tDuWzYuM7K2j0CvgfxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A759F/serialNumber=71ACECF1A1AD97085655DBD344C3EBBBD56FE474 Validity Not Before: Nov 22 15:23:24 2024 GMT Not After : Nov 29 15:23:24 2024 GMT Subject: CN=6740a1ec-350f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5b:47:83:37:5d:e3:69:ee:cb:b1:ed:39:dd: 9e:66:f9:25:18:93:ea:25:90:85:58:91:db:53:db: ad:06:57:12:ff:d1:07:77:31:f6:86:bc:f6:17:ed: 02:3e:97:b8:8a:ad:ae:65:06:7d:8a:62:30:b7:65: 12:85:de:1e:a0:ea:76:ab:ca:17:c1:97:d2:6c:48: 1d:9d:2a:e3:8b:eb:4f:8f:70:ec:3f:7e:26:de:7b: 4f:ac:82:fe:fc:45:59:4d:37:78:b5:c0:50:7f:ec: a7:8c:b2:32:2a:93:80:25:48:ec:96:57:c8:2d:65: 86:45:08:cc:b8:b0:2a:c2:e5:3c:24:1d:c0:59:7a: 94:cf:49:8e:f2:18:56:b6:69:2a:59:1a:6d:33:1c: c2:74:0f:d0:d9:6d:ba:a4:b3:e2:cc:2f:68:e7:14: 8c:91:a9:29:4b:ab:12:f3:1a:d1:0e:6f:24:19:05: 13:98:b4:f6:d7:c9:14:20:95:2c:43:6f:3d:13:df: 33:ce:d0:f3:3d:d5:53:33:08:fc:12:d3:2e:a2:b5: 82:01:95:af:ea:a2:ac:5a:e6:53:43:aa:c6:f7:6b: 16:6e:bc:fe:32:85:97:11:aa:37:63:f9:d7:09:5e: 7c:6e:6b:4a:48:16:be:0a:ad:8d:32:34:6c:8a:de: 40:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:83:D3:6F:E8:26:87:21:4C:6D:1A:FC:1A:03:72:F4:9A:D3:2E:2A X509v3 Authority Key Identifier: keyid:71:AC:EC:F1:A1:AD:97:08:56:55:DB:D3:44:C3:EB:BB:D5:6F:E4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cazs8aGtlwhWVdvTRMPru9Vv5HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A759F/0A6F263469C511E2859002452979BB20/cazs8aGtlwhWVdvTRMPru9Vv5HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:bd:f1:b6:b0:17:09:cb:81:a5:16:79:97:38:3a:23:8b:49: a3:39:61:57:98:76:e8:2c:6e:87:86:10:9c:09:68:c4:a7:05: ec:04:e3:cb:bb:ba:ec:c1:37:7d:f2:01:15:ec:26:f8:7d:ac: 50:a5:e7:e8:61:85:1d:f6:60:4d:dd:70:62:a7:b0:92:67:77: 43:62:f1:47:9c:9e:d7:6a:47:5b:ea:53:c0:17:25:7f:b0:7b: bd:ce:d8:c1:9a:4b:fc:00:f7:fd:0a:c3:2d:17:ec:10:81:e2: 68:1e:3f:ec:c1:2e:9f:5d:c1:b6:9c:60:4f:3f:9d:1d:d0:04: ba:06:e9:8e:48:b4:19:84:c9:3a:62:c4:54:5c:62:79:8f:92: 22:82:c4:d8:00:fd:89:63:a4:07:db:4f:be:5b:54:51:4c:cf: fe:e2:8b:a3:e6:2b:08:67:92:37:6b:2e:fa:33:f6:20:77:e7: bd:02:a3:32:21:04:ce:eb:1b:51:23:de:34:82:9a:c9:d6:a2: 74:8c:c8:94:f8:79:3c:f4:2f:6c:51:46:de:e4:fa:be:69:a7: d5:a0:fe:78:cc:09:3c:8e:a3:7c:f3:9f:ed:a7:d6:3d:8f:95: ef:41:f7:cd:d3:fe:5a:75:60:60:0e:e8:6d:bf:c4:c6:9d:a6: 00:44:4a:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc1OUYxMTAvBgNVBAUTKDcxQUNFQ0YxQTFBRDk3MDg1NjU1REJEMzQ0QzNFQkJC RDU2RkU0NzQwHhcNMjQxMTIyMTUyMzI0WhcNMjQxMTI5MTUyMzI0WjAYMRYwFAYD VQQDEw02NzQwYTFlYy0zNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFtHgzdd42nuy7HtOd2eZvklGJPqJZCFWJHbU9utBlcS/9EHdzH2hrz2F+0C Ppe4iq2uZQZ9imIwt2UShd4eoOp2q8oXwZfSbEgdnSrji+tPj3DsP34m3ntPrIL+ /EVZTTd4tcBQf+ynjLIyKpOAJUjsllfILWWGRQjMuLAqwuU8JB3AWXqUz0mO8hhW tmkqWRptMxzCdA/Q2W26pLPizC9o5xSMkakpS6sS8xrRDm8kGQUTmLT218kUIJUs Q289E98zztDzPdVTMwj8EtMuorWCAZWv6qKsWuZTQ6rG92sWbrz+MoWXEao3Y/nX CV58bmtKSBa+Cq2NMjRsit5AHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO6D02/o JochTG0a/BoDcvSa0y4qMB8GA1UdIwQYMBaAFHGs7PGhrZcIVlXb00TD67vVb+R0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzU5Ri8wQTZGMjYzNDY5 QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3aFdWZHZUUk1QcnU5VnY1 SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhenM4YUd0bHdoV1ZkdlRSTVBydTlWdjVIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzU5Ri8wQTZGMjYzNDY5QzUxMUUyODU5MDAyNDUyOTc5QkIyMC9jYXpzOGFHdGx3 aFdWZHZUUk1QcnU5VnY1SFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUvfG2sBcJy4GlFnmXODoji0mjOWFXmHboLG6HhhCcCWjEpwXsBOPL u7rswTd98gEV7Cb4faxQpefoYYUd9mBN3XBip7CSZ3dDYvFHnJ7Xakdb6lPAFyV/ sHu9ztjBmkv8APf9CsMtF+wQgeJoHj/swS6fXcG2nGBPP50d0AS6BumOSLQZhMk6 YsRUXGJ5j5IigsTYAP2JY6QH20++W1RRTM/+4ouj5isIZ5I3ay76M/Ygd+e9AqMy IQTO6xtRI940gprJ1qJ0jMiU+Hk89C9sUUbe5Pq+aafVoP54zAk8jqN885/tp9Y9 j5XvQffN0/5adWBgDuhtv8TGnaYARErK -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:02 2024 by rpki-client on console-ams.rpki-client.org