$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft File: zIQ-FAouPvvguUneDtgDg5BgVB0.mft (raw, json) Hash identifier: eEjLC9emVo/UKt/YSRSfIRoxhPxYiyiAngh8wEuNGPw= Subject key identifier: 5A:EE:40:40:6C:84:74:B2:70:AD:E0:58:C8:CB:B8:D1:4F:4B:24:4F Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 304A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft Manifest number: 3032 Signing time: Fri 22 Nov 2024 15:28:31 +0000 Manifest this update: Fri 22 Nov 2024 15:28:31 +0000 Manifest next update: Fri 29 Nov 2024 15:28:31 +0000 Files and hashes: 1: zIQ-FAouPvvguUneDtgDg5BgVB0.crl (hash: dBoXt4tEQH8UBIbAMkE99VrMcbO9jnfVTjwNh3GSN/U=) 2: C3F53A0654F011E7BE4A6431C4F9AE02.roa (hash: RIHl6Xkp1XZPPxS+HyPNCc+Pc796rHw6pr2rD1+TdCA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12362 (0x304a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: Nov 22 15:28:31 2024 GMT Not After : Nov 29 15:28:31 2024 GMT Subject: CN=6740a31f-e271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:46:91:5e:ee:ea:77:e1:2d:5e:41:71:ae:05: d6:59:c4:10:64:ac:d7:0b:c3:82:24:9a:a6:f7:25: 62:4f:fb:48:02:5a:a7:52:a7:59:16:50:f0:17:26: 11:f5:43:54:34:6c:c9:56:bd:22:14:8d:9d:47:9f: 04:24:04:92:4d:f9:68:49:ac:d1:b4:8e:16:ad:58: 9a:b4:64:24:8c:7c:d2:53:4e:d5:97:0c:7c:90:27: f0:c2:54:e1:4a:53:4c:cc:73:1d:cc:f7:7f:e3:69: cc:57:22:22:b2:f3:b5:19:04:65:d4:46:83:69:35: d0:c9:90:72:1f:1b:5d:a6:57:c1:57:44:6f:26:ce: 7f:cd:99:a2:1d:34:e3:02:6a:b0:6a:98:d5:78:c7: 91:8c:5d:bb:13:51:65:29:6c:cb:69:ed:1b:42:40: 20:44:12:30:b1:33:88:32:51:e9:6c:7e:e2:44:0a: d2:60:15:6c:7b:e2:c5:4a:a7:b7:cd:73:90:75:97: 3d:ae:bc:20:11:c2:b9:e4:bd:dc:9f:75:49:25:5c: 8e:33:34:81:60:5f:5b:a4:3d:f7:26:23:0d:34:9d: ba:40:1d:bd:4d:66:df:8f:7b:ba:e8:6f:3c:01:d3: 6c:62:f3:96:c8:f9:8c:f5:36:4d:b3:36:51:79:b9: 5e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:EE:40:40:6C:84:74:B2:70:AD:E0:58:C8:CB:B8:D1:4F:4B:24:4F X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:8a:5a:37:a9:54:5e:89:2f:57:11:e2:00:67:12:bf:90:20: ae:3e:94:4e:68:73:76:ed:32:dc:90:52:39:c2:9b:b0:5d:66: d2:12:92:89:1b:e1:41:9a:7f:69:a0:e3:1b:c3:d3:f9:3c:57: a8:83:4f:f9:7f:90:c2:cf:68:75:c1:ad:98:d3:a8:5e:56:f2: 43:ae:3a:0a:2d:27:31:a2:99:93:5a:43:70:85:f9:8e:b1:6c: 74:4b:77:31:5c:9b:c9:df:9b:6b:01:7c:e8:0c:05:03:4a:ee: cd:cc:ca:e4:e4:dc:7b:29:ec:fd:cf:ba:9d:40:f2:4d:31:94: 55:7c:7a:7e:23:0b:bc:ab:e6:5e:46:68:63:c3:9b:f9:8e:cf: ce:dd:d6:7f:26:cc:e2:45:28:c1:a1:b5:40:c7:dd:97:ff:c2: 06:2b:53:16:99:e2:20:01:32:5d:a3:07:54:72:07:9c:ba:72: cb:af:9a:59:0b:44:c5:9f:b8:0c:2d:db:78:d0:b9:b9:f0:1e: 12:a6:42:b8:8e:40:06:68:00:0e:fa:0a:94:33:b6:10:de:a4: 29:33:82:29:4e:47:20:be:75:06:87:82:fd:25:3b:ee:2f:05: 03:32:1a:98:06:24:68:99:05:a7:80:bd:c0:d3:21:4c:44:42: 30:7b:03:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjQxMTIyMTUyODMxWhcNMjQxMTI5MTUyODMxWjAYMRYwFAYD VQQDEw02NzQwYTMxZi1lMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+EaRXu7qd+EtXkFxrgXWWcQQZKzXC8OCJJqm9yViT/tIAlqnUqdZFlDwFyYR 9UNUNGzJVr0iFI2dR58EJASSTfloSazRtI4WrViatGQkjHzSU07Vlwx8kCfwwlTh SlNMzHMdzPd/42nMVyIisvO1GQRl1EaDaTXQyZByHxtdplfBV0RvJs5/zZmiHTTj AmqwapjVeMeRjF27E1FlKWzLae0bQkAgRBIwsTOIMlHpbH7iRArSYBVse+LFSqe3 zXOQdZc9rrwgEcK55L3cn3VJJVyOMzSBYF9bpD33JiMNNJ26QB29TWbfj3u66G88 AdNsYvOWyPmM9TZNszZReble/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFruQEBs hHSycK3gWMjLuNFPSyRPMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUEzNy82ODY4RTAyOEU3RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2 dmd1VW5lRHRnRGc1QmdWQjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLilo3qVReiS9XEeIAZxK/kCCuPpROaHN27TLckFI5wpuwXWbSEpKJ G+FBmn9poOMbw9P5PFeog0/5f5DCz2h1wa2Y06heVvJDrjoKLScxopmTWkNwhfmO sWx0S3cxXJvJ35trAXzoDAUDSu7NzMrk5Nx7Kez9z7qdQPJNMZRVfHp+Iwu8q+Ze Rmhjw5v5js/O3dZ/JsziRSjBobVAx92X/8IGK1MWmeIgATJdowdUcgecunLLr5pZ C0TFn7gMLdt40Lm58B4SpkK4jkAGaAAO+gqUM7YQ3qQpM4IpTkcgvnUGh4L9JTvu LwUDMhqYBiRomQWngL3A0yFMREIwewPq -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org