$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft File: RZTy7BffVsPQZUDzZtKvEYsxfx4.mft (raw, json) Hash identifier: Ldg8rgl8Cm95bPs831dWIrMZJr2H5c9gSI3Ao0ID4LA= Subject key identifier: D3:A5:FE:A5:C9:BD:4D:42:8E:14:1D:5D:E4:81:45:B6:A0:D7:79:71 Authority key identifier: 45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E Certificate issuer: /CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft Manifest number: A1 Signing time: Wed 20 Nov 2024 14:52:42 +0000 Manifest this update: Wed 20 Nov 2024 14:52:41 +0000 Manifest next update: Wed 27 Nov 2024 14:52:41 +0000 Files and hashes: 1: RZTy7BffVsPQZUDzZtKvEYsxfx4.crl (hash: 7iAwm2q+7RzlsI3wXgCO8ZZ/uNDuAsEHSsNriM46o+k=) 2: 30EAE110B9AD11EE83063243C4F9AE02.roa (hash: 5N+f2t+l19je3pcCt5hEaTL3vroVIGjp7rNbmODsUvM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978/serialNumber=4594F2EC17DF56C3D06540F366D2AF118B317F1E Validity Not Before: Nov 20 14:52:41 2024 GMT Not After : Nov 27 14:52:41 2024 GMT Subject: CN=673df7b9-3f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f7:1e:07:8c:a6:04:7e:af:68:3e:d8:29:be: f0:ad:b2:fe:79:e4:ac:b5:9a:57:94:f3:eb:89:2a: f7:49:8a:3c:12:8f:1c:e8:36:71:dc:59:12:b8:2b: 71:5a:74:b9:8e:b9:ff:8f:e8:42:67:ef:cd:0f:b4: e6:8f:9b:7a:2b:14:1d:3f:85:22:03:66:13:10:f7: 81:0a:66:1b:9f:e2:46:d1:f7:d9:45:74:c5:be:3f: a3:66:15:ff:6a:9f:7e:f5:af:60:d6:cc:08:19:23: 65:f9:56:34:90:aa:7c:2c:02:6a:b4:d7:20:d6:44: f4:18:1c:cd:cb:2c:f1:be:19:97:ee:84:6f:a5:0a: a4:64:a7:5f:b5:fa:f0:d7:09:18:9e:38:67:9d:9f: 73:5b:fd:5e:13:d9:38:da:db:2a:4b:c8:ca:76:47: 7b:89:9b:b8:da:d0:12:7b:50:4b:1c:7f:e8:0f:41: e7:d1:4b:5c:b1:66:e0:0f:df:4d:a9:6c:42:9f:96: 4d:12:13:5a:d5:e8:13:4b:69:74:2b:9a:4a:6f:49: fd:63:1d:0c:bc:1f:73:d9:ec:d1:10:99:4c:00:61: 1e:67:79:61:e4:30:42:ab:d2:69:38:34:fb:00:7c: 83:33:e0:20:d6:c7:14:5b:38:be:12:77:8b:26:4a: 13:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A5:FE:A5:C9:BD:4D:42:8E:14:1D:5D:E4:81:45:B6:A0:D7:79:71 X509v3 Authority Key Identifier: keyid:45:94:F2:EC:17:DF:56:C3:D0:65:40:F3:66:D2:AF:11:8B:31:7F:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RZTy7BffVsPQZUDzZtKvEYsxfx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/5DB555AAB8DA11EEBC4BEC2DC4F9AE02/RZTy7BffVsPQZUDzZtKvEYsxfx4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b6:fc:9e:6a:fd:11:0b:0e:12:7d:d4:78:61:73:5c:f2:6b: 41:04:93:58:b7:d5:ae:b5:78:36:7d:59:bf:88:44:0f:c1:6b: 9c:f7:0a:75:fb:b9:cd:5f:53:ff:8a:4e:8e:60:7d:d2:75:27: 1a:5d:33:67:f2:d7:70:2c:29:a0:44:20:68:28:14:80:24:18: f8:83:74:a4:5f:2c:3a:55:2f:89:d1:8d:7d:be:07:95:50:eb: 77:fe:3b:c7:89:11:b3:d7:bb:9f:2f:82:72:e2:b3:3a:d7:f0: e2:80:0b:b7:15:4f:a5:44:df:a0:7a:ad:44:3c:b0:2d:b8:63: 52:2f:fc:d4:2a:39:60:7e:c8:04:a7:b5:2b:40:e6:07:7c:c6: 32:a7:d4:b7:38:af:cc:25:bf:aa:fb:f8:9f:1b:32:76:5d:2a: dc:b5:82:0d:5d:3b:97:75:cb:73:b7:4b:db:2c:65:35:9b:7b: 5f:b4:93:ca:12:88:34:14:c5:39:e4:00:f9:0a:8e:a8:9c:a9: fa:0b:bf:e5:51:7b:74:a3:36:3b:43:63:98:4c:eb:a1:74:fe: 58:f3:20:cf:bc:eb:8c:45:af:3d:df:56:76:c9:46:80:32:97: da:d4:96:66:f2:1a:2f:fa:02:5a:40:12:5e:2f:b9:f5:5e:b6: ec:18:f5:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDQ1OTRGMkVDMTdERjU2QzNEMDY1NDBGMzY2RDJBRjEx OEIzMTdGMUUwHhcNMjQxMTIwMTQ1MjQxWhcNMjQxMTI3MTQ1MjQxWjAYMRYwFAYD VQQDEw02NzNkZjdiOS0zZjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfceB4ymBH6vaD7YKb7wrbL+eeSstZpXlPPriSr3SYo8Eo8c6DZx3FkSuCtx WnS5jrn/j+hCZ+/ND7Tmj5t6KxQdP4UiA2YTEPeBCmYbn+JG0ffZRXTFvj+jZhX/ ap9+9a9g1swIGSNl+VY0kKp8LAJqtNcg1kT0GBzNyyzxvhmX7oRvpQqkZKdftfrw 1wkYnjhnnZ9zW/1eE9k42tsqS8jKdkd7iZu42tASe1BLHH/oD0Hn0UtcsWbgD99N qWxCn5ZNEhNa1egTS2l0K5pKb0n9Yx0MvB9z2ezREJlMAGEeZ3lh5DBCq9JpODT7 AHyDM+Ag1scUWzi+EneLJkoTKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNOl/qXJ vU1CjhQdXeSBRbag13lxMB8GA1UdIwQYMBaAFEWU8uwX31bD0GVA82bSrxGLMX8e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC81REI1NTVBQUI4 REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZzUFFaVUR6WnRLdkVZc3hm eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JaVHk3QmZmVnNQUVpVRHpadEt2RVlzeGZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC81REI1NTVBQUI4REExMUVFQkM0QkVDMkRDNEY5QUUwMi9SWlR5N0JmZlZz UFFaVUR6WnRLdkVZc3hmeDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPtvyeav0RCw4SfdR4YXNc8mtBBJNYt9WutXg2fVm/iEQPwWuc9wp1 +7nNX1P/ik6OYH3SdScaXTNn8tdwLCmgRCBoKBSAJBj4g3SkXyw6VS+J0Y19vgeV UOt3/jvHiRGz17ufL4Jy4rM61/DigAu3FU+lRN+geq1EPLAtuGNSL/zUKjlgfsgE p7UrQOYHfMYyp9S3OK/MJb+q+/ifGzJ2XSrctYINXTuXdctzt0vbLGU1m3tftJPK Eog0FMU55AD5Co6onKn6C7/lUXt0ozY7Q2OYTOuhdP5Y8yDPvOuMRa8931Z2yUaA Mpfa1JZm8hov+gJaQBJeL7n1XrbsGPWl -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:18 2024 by rpki-client on console-ams.rpki-client.org