$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: 2rbhk5LhqyAihnHcZz/QcwMZLcsa6/lOTylLwfXiOzs= Subject key identifier: 8B:5F:7C:8C:6A:96:C7:07:E4:21:C6:57:07:25:A2:71:AA:33:D2:0A Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 0333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 032F Signing time: Thu 21 Nov 2024 00:41:06 +0000 Manifest this update: Thu 21 Nov 2024 00:41:05 +0000 Manifest next update: Thu 28 Nov 2024 00:41:05 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: WPTQHuhS12SO1VbOAn19vAoKTFwf2Sk5wNc+g5UjiSk=) 2: 4D7F18D69F8911EC8270CE39C4F9AE02.roa (hash: DvvVhTWHCUbaFBHxMQ8UUW6nZ5VH6Qlov4BUrN8E2sA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: Nov 21 00:41:05 2024 GMT Not After : Nov 28 00:41:05 2024 GMT Subject: CN=673e81a2-090d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:81:cd:72:ec:a1:38:45:b0:3e:23:83:9d:70: 58:02:d3:5b:cf:e3:cd:d9:43:a7:15:4e:3d:0a:22: 4b:be:94:6c:25:47:f8:0d:c6:d7:f6:94:56:cb:06: 34:8e:12:55:89:bb:d1:44:45:b9:ad:e1:6e:c1:65: 3a:b9:41:76:b9:c7:0a:fb:03:21:a6:27:43:20:70: 25:cc:51:44:f6:aa:77:d4:8c:18:79:51:fe:1c:d4: a0:1e:5a:14:da:01:07:c9:ec:9d:cc:f2:e3:e4:11: 12:50:d3:bd:80:36:5a:ba:e7:f2:9d:7f:2d:7e:57: b2:d3:47:68:97:b9:91:fb:5f:b8:e1:23:99:b3:50: 5e:b6:b2:0f:44:60:bb:bf:09:0d:af:fa:32:0a:3a: c7:4a:c8:95:f5:9b:e9:64:27:7f:bb:16:35:e1:57: 14:6b:3f:5f:ac:af:31:43:b8:03:3e:d7:6c:a7:05: ff:4b:cd:bf:f8:66:3e:1e:38:01:d3:be:b4:83:3b: a9:04:e3:0a:8f:9e:d7:b4:d3:e4:c2:68:1f:88:7a: 9c:75:63:10:62:70:43:26:6c:07:65:42:47:fb:c1: e9:f5:71:66:2e:34:27:7d:eb:9b:c8:6a:1a:e0:3c: 2f:02:96:54:4c:8b:6f:1e:58:ae:40:7a:31:3b:76: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5F:7C:8C:6A:96:C7:07:E4:21:C6:57:07:25:A2:71:AA:33:D2:0A X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:be:2a:70:ca:d6:9f:91:c6:eb:78:a3:74:49:c2:09:c6:f2: 64:9c:22:0b:44:4b:45:c6:3d:9c:da:94:ec:19:ef:7f:1a:b8: 66:86:63:ae:a0:c2:70:13:74:82:ff:37:68:b9:f8:cc:e3:bb: f1:b7:85:a6:2f:22:33:7b:7d:b2:9e:1f:03:f4:ac:95:f9:de: 03:0e:8a:54:32:dc:23:49:d6:df:93:08:f8:e6:98:de:4d:12: 62:75:54:c7:9b:f1:bd:13:d9:b0:0b:6b:ec:71:1c:c5:d4:e8: 34:73:d0:7f:5d:22:7a:1c:b4:ab:3d:a3:c4:89:bd:b1:2a:23: 09:1e:2b:5f:4f:ab:b4:0b:17:3f:f4:f2:c2:d8:8a:57:0d:e9: e8:42:04:a7:b2:8b:7d:16:e0:b0:9c:3a:61:e3:7d:a5:16:4b: 6b:0c:9b:2f:ec:36:dd:41:3e:18:f8:6f:55:0b:56:ae:7f:7e: 53:14:2d:ef:c5:28:dc:8e:79:2b:08:92:a5:b3:7e:88:2d:21: 8c:a3:0b:38:ff:ae:27:cf:43:fc:4d:92:93:c8:1b:72:59:e4: a1:8d:3f:59:a5:e3:85:ed:14:ba:c3:54:5d:50:aa:51:53:30: f8:0b:ed:78:7c:06:db:b1:bc:3b:a9:ea:1e:20:d5:29:7c:6e: 6f:f0:b9:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjQxMTIxMDA0MTA1WhcNMjQxMTI4MDA0MTA1WjAYMRYwFAYD VQQDEw02NzNlODFhMi0wOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoHNcuyhOEWwPiODnXBYAtNbz+PN2UOnFU49CiJLvpRsJUf4DcbX9pRWywY0 jhJVibvRREW5reFuwWU6uUF2uccK+wMhpidDIHAlzFFE9qp31IwYeVH+HNSgHloU 2gEHyeydzPLj5BESUNO9gDZauufynX8tfley00dol7mR+1+44SOZs1BetrIPRGC7 vwkNr/oyCjrHSsiV9ZvpZCd/uxY14VcUaz9frK8xQ7gDPtdspwX/S82/+GY+HjgB 0760gzupBOMKj57XtNPkwmgfiHqcdWMQYnBDJmwHZUJH+8Hp9XFmLjQnfeubyGoa 4DwvApZUTItvHliuQHoxO3adJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItffIxq lscH5CHGVwclonGqM9IKMB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBivipwytafkcbreKN0ScIJxvJknCILREtFxj2c2pTsGe9/GrhmhmOu oMJwE3SC/zdoufjM47vxt4WmLyIze32ynh8D9KyV+d4DDopUMtwjSdbfkwj45pje TRJidVTHm/G9E9mwC2vscRzF1Og0c9B/XSJ6HLSrPaPEib2xKiMJHitfT6u0Cxc/ 9PLC2IpXDenoQgSnsot9FuCwnDph432lFktrDJsv7DbdQT4Y+G9VC1auf35TFC3v xSjcjnkrCJKls36ILSGMows4/64nz0P8TZKTyBtyWeShjT9ZpeOF7RS6w1RdUKpR UzD4C+14fAbbsbw7qeoeINUpfG5v8Lln -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:49 2024 by rpki-client on console-ams.rpki-client.org