$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft File: jzFgL06-RV4JnABJu3sAZlWLnYk.mft (raw, json) Hash identifier: bPwYfGjGCxvTVwMIZkNBQxjadW5Q0q9gK13/5G3mb1s= Subject key identifier: D2:4A:FB:8D:A5:1B:C9:8A:91:71:BB:46:65:CD:59:FD:D3:0E:B8:1D Authority key identifier: 8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 Certificate issuer: /CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Certificate serial: 3445 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft Manifest number: 3433 Signing time: Fri 22 Nov 2024 14:37:48 +0000 Manifest this update: Fri 22 Nov 2024 14:37:47 +0000 Manifest next update: Fri 29 Nov 2024 14:37:47 +0000 Files and hashes: 1: jzFgL06-RV4JnABJu3sAZlWLnYk.crl (hash: exh2JveAxyLd/UPoo6JkVjRcVYGNTRpt7PYKNMc0ZOw=) 2: 12C0FA5EA8E811EB8801993BC4F9AE02.roa (hash: BhE/Jm0W953o6GqpVqGr68PRcM13aAwM+4wkckGBTTk=) 3: DC50B57AE84511EB87AD6B49C4F9AE02.roa (hash: agsLtp5kqnZauUNHWHhsf5K29FDtzFJsgxVV1mP2HEI=) 4: DD5C8412E84511EB87AD6B49C4F9AE02.roa (hash: lP5NMv3I1CJOsA7UOND+xbg0rBaa2Avz8htJs1Lu9+0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13381 (0x3445) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196E6C/serialNumber=8F31602F4EBE455E099C0049BB7B0066558B9D89 Validity Not Before: Nov 22 14:37:47 2024 GMT Not After : Nov 29 14:37:47 2024 GMT Subject: CN=6740973b-8788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f3:ae:11:17:26:da:c3:b4:fc:02:d1:ba:fd: b6:3c:5e:c7:14:13:19:36:6f:90:15:77:19:e8:e4: eb:f0:47:57:68:cb:aa:30:02:a3:94:84:cf:81:63: 87:fe:43:7b:88:2d:10:9b:c9:ed:3e:f1:fe:78:f0: c9:f5:01:7b:bd:42:ac:ec:84:35:65:97:89:06:e5: c5:3b:6a:12:11:bf:9c:89:e8:a1:f7:4b:cf:66:dd: b5:d6:92:51:54:fd:42:c1:b7:d5:01:e3:d6:34:09: 36:70:ce:a0:d0:cb:88:0b:db:98:6a:bc:bf:aa:b9: b4:bf:d1:aa:6a:12:68:2d:3d:e7:13:6b:26:75:3a: b5:91:30:9d:9c:34:c5:13:ae:2a:8f:ae:4e:8c:c0: e0:d2:23:ed:6b:7d:b9:06:bb:9f:f4:74:49:7c:a3: 03:df:79:bc:d8:96:94:f6:b9:16:c6:4e:a6:78:40: ec:10:cc:92:b1:29:c7:d5:f0:4d:68:2f:90:69:95: 15:61:fb:fd:ea:d6:49:79:b0:eb:bb:92:67:60:ea: dc:a6:30:d0:98:33:6e:d6:a7:c6:2c:32:83:15:a3: c2:49:b9:73:38:89:06:38:58:e2:fa:4a:f3:2a:d1: 40:9c:b4:3e:7d:21:af:25:6b:ce:b4:8f:97:ee:02: ac:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4A:FB:8D:A5:1B:C9:8A:91:71:BB:46:65:CD:59:FD:D3:0E:B8:1D X509v3 Authority Key Identifier: keyid:8F:31:60:2F:4E:BE:45:5E:09:9C:00:49:BB:7B:00:66:55:8B:9D:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jzFgL06-RV4JnABJu3sAZlWLnYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E6C/426E3DBA1D8D11E293C4DAEA08B02CD2/jzFgL06-RV4JnABJu3sAZlWLnYk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:ef:90:b7:dc:73:6f:c3:bb:5e:4a:a7:f2:34:f0:cd:ac:cc: 01:40:f2:f4:f8:aa:70:6b:83:b3:da:66:6f:5e:24:e5:fe:c4: 63:ab:44:10:9e:c0:c3:33:60:08:f8:f1:0d:96:6e:1a:93:69: ee:48:ca:f5:94:8f:ea:93:13:a5:a9:50:c0:33:f8:cd:b8:94: a4:13:cf:ab:c5:de:be:1f:ed:52:92:06:67:50:60:8a:16:72: 40:70:1a:6d:f3:89:ce:89:f9:39:b5:79:30:5f:5b:e2:57:19: 12:4f:08:86:9b:7c:05:95:33:e6:54:86:07:62:89:6d:02:8f: 0c:64:2b:8e:b7:a7:bf:5a:14:55:70:2d:d7:e8:fe:e0:4b:42: 5e:68:32:4f:f5:86:8e:e2:75:e3:54:70:78:59:23:7a:36:94: 9f:7a:65:c3:09:e3:a0:5e:a3:cd:15:f0:40:88:49:69:2f:59: 9f:eb:96:99:6c:07:02:23:fb:4f:d4:54:a2:59:00:d0:da:fa: 0a:d2:eb:27:04:71:c6:5e:7b:58:14:58:8d:4c:b2:4a:9a:39: 8a:b6:e0:8c:9b:f8:44:60:30:26:cb:47:38:5a:5a:e8:ff:b7: b2:cd:ba:57:8c:0a:76:df:4c:51:cb:d7:77:e4:8d:6b:ff:68: c5:d6:99:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZFNkMxMTAvBgNVBAUTKDhGMzE2MDJGNEVCRTQ1NUUwOTlDMDA0OUJCN0IwMDY2 NTU4QjlEODkwHhcNMjQxMTIyMTQzNzQ3WhcNMjQxMTI5MTQzNzQ3WjAYMRYwFAYD VQQDEw02NzQwOTczYi04Nzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fOuERcm2sO0/ALRuv22PF7HFBMZNm+QFXcZ6OTr8EdXaMuqMAKjlITPgWOH /kN7iC0Qm8ntPvH+ePDJ9QF7vUKs7IQ1ZZeJBuXFO2oSEb+cieih90vPZt211pJR VP1CwbfVAePWNAk2cM6g0MuIC9uYary/qrm0v9GqahJoLT3nE2smdTq1kTCdnDTF E64qj65OjMDg0iPta325Bruf9HRJfKMD33m82JaU9rkWxk6meEDsEMySsSnH1fBN aC+QaZUVYfv96tZJebDru5JnYOrcpjDQmDNu1qfGLDKDFaPCSblzOIkGOFji+krz KtFAnLQ+fSGvJWvOtI+X7gKsXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJK+42l G8mKkXG7RmXNWf3TDrgdMB8GA1UdIwQYMBaAFI8xYC9OvkVeCZwASbt7AGZVi52J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkU2Qy80MjZFM0RCQTFE OEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJWNEpuQUJKdTNzQVpsV0xu WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p6RmdMMDYtUlY0Sm5BQkp1M3NBWmxXTG5Zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkU2Qy80MjZFM0RCQTFEOEQxMUUyOTNDNERBRUEwOEIwMkNEMi9qekZnTDA2LVJW NEpuQUJKdTNzQVpsV0xuWWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD75C33HNvw7teSqfyNPDNrMwBQPL0+Kpwa4Oz2mZvXiTl/sRjq0QQ nsDDM2AI+PENlm4ak2nuSMr1lI/qkxOlqVDAM/jNuJSkE8+rxd6+H+1SkgZnUGCK FnJAcBpt84nOifk5tXkwX1viVxkSTwiGm3wFlTPmVIYHYoltAo8MZCuOt6e/WhRV cC3X6P7gS0JeaDJP9YaO4nXjVHB4WSN6NpSfemXDCeOgXqPNFfBAiElpL1mf65aZ bAcCI/tP1FSiWQDQ2voK0usnBHHGXntYFFiNTLJKmjmKtuCMm/hEYDAmy0c4Wlro /7eyzbpXjAp230xRy9d35I1r/2jF1pmm -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:57 2024 by rpki-client on console-ams.rpki-client.org