$ rpki-client -vvf rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft File: z8CATaxP_3oipAThDphkpxHeGck.mft (raw, json) Hash identifier: Da2jztKkMcL9BJ5/ORoIqiK4kHYGvzeztSrTHKT7DFQ= Subject key identifier: F5:EA:84:E2:C7:C0:0F:4C:4B:13:8B:27:AD:7C:C8:C3:F9:EA:9E:05 Authority key identifier: CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 Certificate issuer: /CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft Manifest number: 29 Signing time: Thu 21 Nov 2024 05:48:35 +0000 Manifest this update: Thu 21 Nov 2024 05:48:35 +0000 Manifest next update: Thu 28 Nov 2024 05:48:35 +0000 Files and hashes: 1: z8CATaxP_3oipAThDphkpxHeGck.crl (hash: iVCWWU3miPtF400JY1jjvD0Ppvchp6mqcFEsPxLJsvU=) 2: BCA395126C1811EFAFBE6B0FC4F9AE02.roa (hash: Mb/JnRkZoctaPV3WHu0XOAV8U5+c9ZbVehfTb/x4GMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A12C4/serialNumber=CFC0804DAC4FFF7A22A404E10E9864A711DE19C9 Validity Not Before: Nov 21 05:48:35 2024 GMT Not After : Nov 28 05:48:35 2024 GMT Subject: CN=673ec9b3-2cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:15:a1:a9:91:0f:d9:6a:1e:fb:b9:d2:10:86: 74:c5:2d:57:00:46:5a:92:48:03:a7:a4:1a:38:6e: cb:b7:0c:6f:51:0e:ad:8e:c3:57:90:1e:8d:ac:e9: a7:f8:6f:76:9f:dd:63:6e:ba:91:49:ae:58:a6:43: 15:a5:b8:1a:46:de:e5:ab:e8:7b:b2:db:2c:26:ae: 39:43:9c:18:10:14:45:d6:91:a1:48:6f:fe:cc:6c: 34:46:ac:1e:d9:8c:6b:41:0d:5f:7e:e1:36:6f:76: fe:c7:90:bc:69:73:ea:55:70:bb:4a:99:da:4a:3b: e0:e9:51:2c:12:26:d0:92:60:77:40:af:de:df:c9: fd:23:97:ad:e9:b4:f5:2b:e4:88:1c:af:df:0a:b4: e9:8f:c2:dc:be:5e:8d:6c:34:43:36:9e:3c:93:c9: e9:6c:36:02:f8:db:17:d4:2b:6a:57:56:9f:c9:e5: 08:fe:aa:a5:dd:0c:09:fd:e7:22:03:fb:09:12:89: 97:a3:2e:d8:ac:ee:bd:65:57:c9:5b:eb:bc:e5:db: 8a:b9:0e:20:a9:66:4b:cf:d2:c0:c9:54:b3:0b:12: bc:6d:ec:3b:95:a4:0f:5f:a0:47:c3:a3:d3:b0:2c: 7a:86:e5:ae:e3:94:68:ca:65:84:08:a5:d7:b9:7a: 62:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:EA:84:E2:C7:C0:0F:4C:4B:13:8B:27:AD:7C:C8:C3:F9:EA:9E:05 X509v3 Authority Key Identifier: keyid:CF:C0:80:4D:AC:4F:FF:7A:22:A4:04:E1:0E:98:64:A7:11:DE:19:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/z8CATaxP_3oipAThDphkpxHeGck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A12C4/F319EDC26C1711EFBDBFD50BC4F9AE02/z8CATaxP_3oipAThDphkpxHeGck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:61:53:94:c2:bb:ab:55:0c:b8:e7:ed:89:9a:0f:21:02:64: 96:38:cc:43:ca:73:8b:af:d1:5b:a8:d1:55:2e:ce:d7:26:23: 74:c3:a5:7c:ae:1f:4b:bd:3d:c5:9c:d3:56:ab:7b:be:d4:5d: 5a:c6:d6:e8:3b:4c:1a:03:ba:30:be:de:c3:36:df:53:4b:1b: 7d:c1:bb:30:98:48:af:0b:05:a1:f4:76:82:39:ea:f0:5f:be: ee:d7:ca:44:0f:a5:37:24:09:2b:1c:34:35:58:d2:51:b4:cd: d1:04:04:7f:04:d5:94:6c:fb:13:3a:7f:90:23:94:d5:02:6e: f0:51:eb:51:5d:f9:8e:50:06:e3:f9:dc:20:16:4b:d3:18:5f: ca:48:c5:3b:ff:5c:00:09:28:04:2c:0d:c4:82:23:99:2d:0c: 53:f4:68:32:fe:5d:be:3a:95:f0:88:4f:03:ef:30:06:29:6d: 5a:2d:2b:72:18:c9:22:a9:60:cf:be:06:db:f2:93:4a:f6:ad: 26:22:13:38:31:86:70:75:c2:8b:4f:67:8c:73:a9:61:f6:80: 46:09:6b:2f:27:3c:bd:d6:18:b5:15:d3:08:b2:99:00:a4:0c: e3:e9:28:3a:f5:22:7b:9e:d8:a8:be:38:bf:04:23:f1:90:d8: 05:d5:fe:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTJDNDExMC8GA1UEBRMoQ0ZDMDgwNERBQzRGRkY3QTIyQTQwNEUxMEU5ODY0QTcx MURFMTlDOTAeFw0yNDExMjEwNTQ4MzVaFw0yNDExMjgwNTQ4MzVaMBgxFjAUBgNV BAMTDTY3M2VjOWIzLTJjZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtFaGpkQ/Zah77udIQhnTFLVcARlqSSAOnpBo4bsu3DG9RDq2Ow1eQHo2s6af4 b3af3WNuupFJrlimQxWluBpG3uWr6Huy2ywmrjlDnBgQFEXWkaFIb/7MbDRGrB7Z jGtBDV9+4TZvdv7HkLxpc+pVcLtKmdpKO+DpUSwSJtCSYHdAr97fyf0jl63ptPUr 5Igcr98KtOmPwty+Xo1sNEM2njyTyelsNgL42xfUK2pXVp/J5Qj+qqXdDAn95yID +wkSiZejLtis7r1lV8lb67zl24q5DiCpZkvP0sDJVLMLErxt7DuVpA9foEfDo9Ow LHqG5a7jlGjKZYQIpde5emKlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9eqE4sfA D0xLE4snrXzIw/nqngUwHwYDVR0jBBgwFoAUz8CATaxP/3oipAThDphkpxHeGckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMkM0L0YzMTlFREMyNkMx NzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNvaXBBVGhEcGhrcHhIZUdj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvejhDQVRheFBfM29pcEFUaERwaGtweEhlR2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx MkM0L0YzMTlFREMyNkMxNzExRUZCREJGRDUwQkM0RjlBRTAyL3o4Q0FUYXhQXzNv aXBBVGhEcGhrcHhIZUdjay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIFhU5TCu6tVDLjn7YmaDyECZJY4zEPKc4uv0Vuo0VUuztcmI3TDpXyu H0u9PcWc01are77UXVrG1ug7TBoDujC+3sM231NLG33BuzCYSK8LBaH0doI56vBf vu7XykQPpTckCSscNDVY0lG0zdEEBH8E1ZRs+xM6f5AjlNUCbvBR61Fd+Y5QBuP5 3CAWS9MYX8pIxTv/XAAJKAQsDcSCI5ktDFP0aDL+Xb46lfCITwPvMAYpbVotK3IY ySKpYM++Btvyk0r2rSYiEzgxhnB1wotPZ4xzqWH2gEYJay8nPL3WGLUV0wiymQCk DOPpKDr1Inue2Ki+OL8EI/GQ2AXV/tI= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:36 2024 by rpki-client on console-ams.rpki-client.org