$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: dSyVlxyjBaqYkZ+cCgk3lHR0iXN7QYQI4fAZAeQKU3c= Subject key identifier: 27:4F:03:28:DF:3C:D6:B4:25:88:CA:C2:1C:D1:6E:9E:AE:7E:3A:C3 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 095F Signing time: Sat 18 May 2024 21:02:35 +0000 Manifest this update: Sat 18 May 2024 21:02:34 +0000 Manifest next update: Sat 25 May 2024 21:02:34 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: zXSIShilfNyv8ZfiBsHevZM1OQUquyeV7YvIkMj2LRU=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: asIJPd7ycQgmyjnwr6+3XbmDuWfL8nZVojE1+b6iXHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: May 18 21:02:34 2024 GMT Not After : May 25 21:02:34 2024 GMT Subject: CN=6649176a-0f25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:62:7e:7f:64:b4:ad:6d:f7:31:b4:b7:04:1a: 49:28:fa:bf:f8:22:8e:03:92:47:f2:06:de:74:b5: d1:c7:0d:3f:e6:16:e1:c3:7a:55:ba:c8:12:70:95: d7:f5:be:2b:e1:2a:4f:e4:e9:65:41:bd:f3:e9:81: 83:18:20:c0:04:3b:95:82:6b:42:bb:09:ec:a6:5c: b0:95:d8:78:58:1b:a8:67:08:82:20:79:ef:19:62: a9:f4:95:46:2c:05:6a:39:8d:a8:df:95:7f:f7:4e: 77:1d:56:56:dd:d7:d5:9a:a9:b5:c3:ff:68:c9:2c: 2f:1d:7f:8e:63:37:b1:cf:44:d3:40:c1:28:01:e2: 76:3c:30:29:e4:ab:3a:cf:8a:e3:d9:eb:b3:c4:90: 87:96:2f:7f:69:8f:de:9d:d3:f2:58:fe:58:b4:02: c7:cd:10:f8:f8:1c:35:a1:c8:01:6e:d8:81:97:08: 87:80:95:fa:6f:fe:bc:d9:d1:32:75:a6:cb:24:8e: 48:9d:1a:ed:1a:16:d4:de:82:d5:b1:11:ca:0b:4a: ac:fb:71:1e:f9:4e:56:00:76:de:d5:01:fe:a6:c6: e1:22:11:da:6c:0e:b9:d0:16:25:cc:57:4b:c6:ec: 18:82:3f:23:8a:ac:cf:ee:02:be:6f:3a:27:ab:a4: ee:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:4F:03:28:DF:3C:D6:B4:25:88:CA:C2:1C:D1:6E:9E:AE:7E:3A:C3 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:31:00:b6:8e:8d:aa:94:00:b7:29:77:6e:fd:fb:9a:46:46: 61:8d:e3:da:a1:ea:63:e8:0f:88:6d:cf:43:1e:17:7c:6d:aa: d3:76:2b:51:be:7a:f0:71:70:e6:cf:cb:cd:40:cc:3b:f1:f9: 28:01:4a:9f:92:4d:32:46:6a:10:63:00:36:86:9e:f8:43:60: c5:2d:fa:90:49:e2:21:d5:45:b3:2d:96:88:5b:da:c9:22:ed: 1d:d7:b3:7d:94:39:ad:d2:34:07:dd:ac:bd:2a:68:ac:12:c2: ab:0b:76:17:cb:cc:40:4f:c0:53:86:e4:b4:f2:37:56:88:46: 89:8e:b9:fa:63:6b:80:45:60:14:33:68:0c:9b:5a:18:c9:8d: 24:d7:0f:31:57:59:8e:f0:7c:ba:70:26:ca:fa:22:80:3e:09: 55:0a:de:15:f7:bc:fa:d2:bf:80:3d:2b:4d:a1:b8:a1:6c:4d: f6:50:cd:ca:4d:36:90:dd:a4:8e:b3:3a:5c:06:b7:c4:1c:12: b6:83:80:8c:14:f2:2f:f2:25:93:ed:68:ba:17:58:61:ee:d3: f2:52:5f:5c:00:19:c9:ad:de:0f:ed:06:20:76:c1:42:ce:ef: f6:8c:1f:17:73:06:e9:1c:86:bd:cc:8f:9c:20:73:6e:d2:69: 5a:46:cd:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjQwNTE4MjEwMjM0WhcNMjQwNTI1MjEwMjM0WjAYMRYwFAYD VQQDEw02NjQ5MTc2YS0wZjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2J+f2S0rW33MbS3BBpJKPq/+CKOA5JH8gbedLXRxw0/5hbhw3pVusgScJXX 9b4r4SpP5OllQb3z6YGDGCDABDuVgmtCuwnsplywldh4WBuoZwiCIHnvGWKp9JVG LAVqOY2o35V/9053HVZW3dfVmqm1w/9oySwvHX+OYzexz0TTQMEoAeJ2PDAp5Ks6 z4rj2euzxJCHli9/aY/endPyWP5YtALHzRD4+Bw1ocgBbtiBlwiHgJX6b/682dEy dabLJI5InRrtGhbU3oLVsRHKC0qs+3Ee+U5WAHbe1QH+psbhIhHabA650BYlzFdL xuwYgj8jiqzP7gK+bzonq6Tu+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCdPAyjf PNa0JYjKwhzRbp6ufjrDMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuMQC2jo2qlAC3KXdu/fuaRkZhjePaoepj6A+Ibc9DHhd8barTditR vnrwcXDmz8vNQMw78fkoAUqfkk0yRmoQYwA2hp74Q2DFLfqQSeIh1UWzLZaIW9rJ Iu0d17N9lDmt0jQH3ay9KmisEsKrC3YXy8xAT8BThuS08jdWiEaJjrn6Y2uARWAU M2gMm1oYyY0k1w8xV1mO8Hy6cCbK+iKAPglVCt4V97z60r+APStNobihbE32UM3K TTaQ3aSOszpcBrfEHBK2g4CMFPIv8iWT7Wi6F1hh7tPyUl9cABnJrd4P7QYgdsFC zu/2jB8XcwbpHIa9zI+cIHNu0mlaRs3W -----END CERTIFICATE-----Generated at Sat May 18 22:14:02 2024 by rpki-client on console-fra.rpki-client.org