$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: WCogt30Pxp8xmvUvqYbZ1xGcgnbo60RnQOrn4wpTtpU= Subject key identifier: D6:EC:2E:AB:28:CB:01:E8:6E:CD:B5:FC:2A:12:E2:86:43:8A:96:D6 Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 07B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 07B4 Signing time: Wed 20 Nov 2024 20:43:16 +0000 Manifest this update: Wed 20 Nov 2024 20:43:15 +0000 Manifest next update: Wed 27 Nov 2024 20:43:15 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: bpO8afoz12P9YnbAN439JY7cDSUZqLzfC21l6ASEuX0=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: Us9s+8uAx54lSxxT1nylNk+h4ZNXtM/yR2j35EIok8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: Nov 20 20:43:15 2024 GMT Not After : Nov 27 20:43:15 2024 GMT Subject: CN=673e49e3-a6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c7:76:ea:6e:25:4a:2b:98:d4:18:f3:0e:0f: eb:79:30:91:f8:43:bd:7a:81:a5:ab:b1:94:3f:d1: fc:e9:df:73:24:6d:d4:6d:6e:e2:30:91:a7:72:9e: 7d:f8:e8:8e:16:ff:a7:c1:f1:29:ab:81:f4:5c:4b: 9c:c5:e1:16:fc:43:4e:af:62:63:1a:de:7f:4f:58: ee:9a:e8:b6:87:bb:93:48:42:4d:b5:19:c5:d4:6d: e9:3d:6a:a9:71:96:df:9c:47:7a:9e:ca:ae:11:20: e5:b8:7c:c4:02:be:8a:ae:7d:bb:e3:2b:3f:cb:6a: e8:39:1d:1b:91:ef:1f:82:31:34:be:5f:72:bc:e2: a3:25:d2:ef:ff:53:32:65:17:21:1c:28:32:86:d6: 1f:66:e1:a7:f8:8b:3f:5a:e7:ab:db:fd:60:50:b4: 8b:12:6a:45:87:12:6a:47:3d:f0:2d:15:0d:a1:82: c6:f0:92:c8:fd:c2:23:b2:e6:4b:bf:3a:29:a9:49: 69:51:99:91:b8:b0:c6:43:85:c4:f9:0f:bc:47:55: 79:6c:bd:3c:1b:e5:36:bc:d6:95:b2:c7:94:06:77: e7:e6:77:18:35:68:02:db:19:3c:36:35:10:b7:17: 63:54:3c:e0:89:12:7c:d7:b5:17:75:72:16:c8:73: e6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:EC:2E:AB:28:CB:01:E8:6E:CD:B5:FC:2A:12:E2:86:43:8A:96:D6 X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:72:bb:83:88:07:bf:4d:d2:fe:b2:74:d1:aa:79:01:86:d0: 75:42:e7:5b:e5:b2:fd:f8:4e:1a:a4:00:b0:8f:c4:07:d0:98: 07:19:83:fa:53:f4:d2:d5:1d:49:25:4c:1a:96:78:38:cf:c5: 00:8b:6b:be:3f:a9:ed:30:1d:3d:15:94:8f:86:d6:a4:70:2d: a8:f1:ce:53:2d:82:18:90:cd:71:95:98:ad:7e:e1:18:ee:98: df:d6:1a:6b:b9:d7:9b:fd:e3:44:ff:61:5f:87:f1:fa:65:66: 12:90:7e:b1:b3:40:bc:84:45:6c:2c:d0:00:ed:96:c1:04:57: 47:ec:8c:f8:f7:60:ec:bc:69:bd:7c:1f:f9:19:f5:e4:43:0a: 45:1c:ec:62:ed:23:ef:67:12:bd:8d:5c:a6:9d:23:91:9e:57: c5:23:aa:16:2d:30:41:d5:a8:86:0b:06:8e:b6:d1:30:9e:e0: 5e:3e:8b:2f:d4:6b:11:e0:63:fd:2e:76:76:d4:d7:2e:a9:81: b9:ea:12:04:e3:8a:e1:5c:21:68:e8:51:85:83:4c:6f:c7:c0: 2f:e6:60:db:3c:3f:f8:94:de:bb:82:b3:02:ca:e5:9e:b6:c9: 23:09:31:4d:a4:8a:83:c2:d8:f5:4f:c2:5a:3e:ac:eb:61:da: 0c:b8:1f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjQxMTIwMjA0MzE1WhcNMjQxMTI3MjA0MzE1WjAYMRYwFAYD VQQDEw02NzNlNDllMy1hNmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMd26m4lSiuY1BjzDg/reTCR+EO9eoGlq7GUP9H86d9zJG3UbW7iMJGncp59 +OiOFv+nwfEpq4H0XEucxeEW/ENOr2JjGt5/T1jumui2h7uTSEJNtRnF1G3pPWqp cZbfnEd6nsquESDluHzEAr6Krn274ys/y2roOR0bke8fgjE0vl9yvOKjJdLv/1My ZRchHCgyhtYfZuGn+Is/Wuer2/1gULSLEmpFhxJqRz3wLRUNoYLG8JLI/cIjsuZL vzopqUlpUZmRuLDGQ4XE+Q+8R1V5bL08G+U2vNaVsseUBnfn5ncYNWgC2xk8NjUQ txdjVDzgiRJ817UXdXIWyHPmOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbsLqso ywHobs21/CoS4oZDipbWMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5cruDiAe/TdL+snTRqnkBhtB1Qudb5bL9+E4apACwj8QH0JgHGYP6 U/TS1R1JJUwalng4z8UAi2u+P6ntMB09FZSPhtakcC2o8c5TLYIYkM1xlZitfuEY 7pjf1hprudeb/eNE/2Ffh/H6ZWYSkH6xs0C8hEVsLNAA7ZbBBFdH7Iz492DsvGm9 fB/5GfXkQwpFHOxi7SPvZxK9jVymnSORnlfFI6oWLTBB1aiGCwaOttEwnuBePosv 1GsR4GP9LnZ21NcuqYG56hIE44rhXCFo6FGFg0xvx8Av5mDbPD/4lN67grMCyuWe tskjCTFNpIqDwtj1T8JaPqzrYdoMuB+0 -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:53 2024 by rpki-client on console-ams.rpki-client.org