$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: sOinG8SJSZnkmiiT+D4Lf0jgxD2MOtbilV79ITqn2SA= Subject key identifier: D0:EB:A1:29:09:49:A2:3A:06:37:20:FB:9B:F2:07:F4:D2:CD:5C:B1 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 1A Signing time: Wed 23 Oct 2024 06:36:39 +0000 Manifest this update: Wed 23 Oct 2024 06:36:38 +0000 Manifest next update: Wed 30 Oct 2024 06:36:38 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: 8mgDbHoEGRGee1xxnGbg8/kNEo5QeTd8qRG25txFDGU=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: Mb/JnRkZoctaPV3WHu0XOAV8U5+c9ZbVehfTb/x4GMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Oct 23 06:36:38 2024 GMT Not After : Oct 30 06:36:38 2024 GMT Subject: CN=67189977-d7c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f9:45:03:1c:e9:d9:eb:6a:cc:51:f5:eb:54: 4b:ea:21:fa:70:09:94:a7:71:03:31:74:10:63:1b: 2f:ee:41:fb:a8:01:d3:9d:56:d6:6f:f1:d4:53:84: 2b:fe:f1:a3:95:f9:b7:69:42:8c:1a:be:d2:55:31: 18:8f:96:33:4f:c8:8b:74:5a:ac:7b:e1:a6:e5:a1: ec:0d:34:d3:7f:fa:52:97:17:25:27:b3:62:a3:20: 4f:c4:0d:31:ab:ff:b3:b9:6c:e4:e8:2e:2b:35:cc: a1:fd:eb:b7:bb:a6:18:27:87:31:5b:a5:6f:05:7f: 3f:55:7c:86:3a:c4:74:ef:49:fa:a7:08:cb:db:c1: 57:3b:ab:08:da:45:02:36:d9:16:ec:eb:ff:a0:32: bd:58:5c:cd:f7:17:14:b0:1b:3f:02:ee:c9:f2:ba: 41:bf:d8:b6:17:54:30:36:26:b4:8d:cd:c9:ac:86: 94:83:f2:02:50:61:97:1b:b4:60:79:f5:c2:0b:34: ed:2e:62:2f:c9:4a:93:a5:be:dc:96:af:5f:02:05: 10:05:e9:93:27:76:d6:07:c4:aa:42:f8:df:85:24: 60:86:8c:b0:49:d6:24:89:0a:37:d9:f3:35:13:a3: e6:57:75:14:22:bc:a8:8e:91:eb:c9:b5:86:b5:c5: ca:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EB:A1:29:09:49:A2:3A:06:37:20:FB:9B:F2:07:F4:D2:CD:5C:B1 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:2e:de:f9:6a:b3:2b:84:ef:85:8c:9d:d9:51:0c:73:83:19: 6f:39:13:66:1c:fe:e3:3f:a1:e3:aa:79:c1:13:ce:cb:dc:40: 96:f0:b4:13:c1:94:4b:fc:44:56:0c:92:96:14:69:10:44:e5: 94:0f:e5:a6:1a:6c:33:f2:79:e3:e7:fe:40:d7:36:18:5f:82: 20:d3:c8:f9:48:26:31:49:24:20:9d:64:a9:c2:2a:11:82:eb: 09:de:cd:82:c7:af:f7:97:71:59:e0:aa:39:21:94:a3:6e:6f: 86:52:6b:b1:29:dc:4f:c9:0d:b0:4b:b3:b4:0f:21:87:e2:d7: 70:09:f6:92:79:c0:23:d0:78:1e:b1:b9:08:4f:ba:f4:54:9b: 13:28:c9:76:f5:ab:1c:e9:99:55:ff:11:38:94:52:2a:1d:a6: bd:f2:9b:b4:4f:45:96:b9:81:9e:b0:da:2a:8a:91:43:e3:b7: b4:f3:86:93:bd:0e:49:a0:23:69:1b:d1:d4:45:94:ea:a2:1d: 0b:b6:d1:29:65:94:7d:f1:6d:b4:25:9d:b2:2d:d8:47:dd:63: 9e:29:b6:31:7d:bf:04:50:07:d2:25:e3:f0:e0:4f:14:08:99: 15:b3:34:e9:66:9b:b6:ac:11:37:6d:64:63:2b:4c:65:28:6d: 41:39:9a:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoQ0ZDMDgwNERBQzRGRkY3QTIyQTQwNEUxMEU5ODY0QTcx MURFMTlDOTAeFw0yNDEwMjMwNjM2MzhaFw0yNDEwMzAwNjM2MzhaMBgxFjAUBgNV BAMTDTY3MTg5OTc3LWQ3YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd+UUDHOnZ62rMUfXrVEvqIfpwCZSncQMxdBBjGy/uQfuoAdOdVtZv8dRThCv+ 8aOV+bdpQowavtJVMRiPljNPyIt0Wqx74abloewNNNN/+lKXFyUns2KjIE/EDTGr /7O5bOToLis1zKH967e7phgnhzFbpW8Ffz9VfIY6xHTvSfqnCMvbwVc7qwjaRQI2 2Rbs6/+gMr1YXM33FxSwGz8C7snyukG/2LYXVDA2JrSNzcmshpSD8gJQYZcbtGB5 9cILNO0uYi/JSpOlvtyWr18CBRAF6ZMndtYHxKpC+N+FJGCGjLBJ1iSJCjfZ8zUT o+ZXdRQivKiOkevJtYa1xcoHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0OuhKQlJ ojoGNyD7m/IH9NLNXLEwHwYDVR0jBBgwFoAUz8CATaxP/3oipAThDphkpxHeGckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0YzMTlFREMyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvejhDQVRheFBfM29pcEFUaERwaGtweEhlR2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MkM0L0YzMTlFREMyNkMxNzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNv aXBBVGhEcGhrcHhIZUdjay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGIu3vlqsyuE74WMndlRDHODGW85E2Yc/uM/oeOqecETzsvcQJbwtBPB lEv8RFYMkpYUaRBE5ZQP5aYabDPyeePn/kDXNhhfgiDTyPlIJjFJJCCdZKnCKhGC 6wnezYLHr/eXcVngqjkhlKNub4ZSa7Ep3E/JDbBLs7QPIYfi13AJ9pJ5wCPQeB6x uQhPuvRUmxMoyXb1qxzpmVX/ETiUUiodpr3ym7RPRZa5gZ6w2iqKkUPjt7TzhpO9 DkmgI2kb0dRFlOqiHQu20SlllH3xbbQlnbIt2EfdY54ptjF9vwRQB9Il4/DgTxQI mRWzNOlmm7asETdtZGMrTGUobUE5mts= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:58 2024 by rpki-client on console-ams.rpki-client.org