$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft File: TQJNfuk78G548gwtl4XADK7tbkQ.mft (raw, json) Hash identifier: MluAQOp4DFeAxtH8U9Lwuk5MMOr6Pcm7HXaKX45NScg= Subject key identifier: C0:1C:74:A2:0B:6A:E2:BC:03:B4:7D:F0:39:46:A3:F8:E3:9A:C4:E0 Authority key identifier: 4D:02:4D:7E:E9:3B:F0:6E:78:F2:0C:2D:97:85:C0:0C:AE:ED:6E:44 Certificate issuer: /CN=A9134B88/serialNumber=4D024D7EE93BF06E78F20C2D9785C00CAEED6E44 Certificate serial: 06F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TQJNfuk78G548gwtl4XADK7tbkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft Manifest number: 06F5 Signing time: Fri 22 Nov 2024 21:29:05 +0000 Manifest this update: Fri 22 Nov 2024 21:29:05 +0000 Manifest next update: Fri 29 Nov 2024 21:29:05 +0000 Files and hashes: 1: TQJNfuk78G548gwtl4XADK7tbkQ.crl (hash: U5B3/QT1w8TxXGNM3L/YdVOvDLOmVi+1GLCwXuARwkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.crl rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TQJNfuk78G548gwtl4XADK7tbkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B88/serialNumber=4D024D7EE93BF06E78F20C2D9785C00CAEED6E44 Validity Not Before: Nov 22 21:29:05 2024 GMT Not After : Nov 29 21:29:05 2024 GMT Subject: CN=6740f7a1-447c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3d:ac:71:dc:ee:7a:9f:08:7f:eb:af:9c:54: d9:e3:05:31:77:56:7f:91:81:30:17:5e:27:80:7e: 28:f6:d8:c0:00:35:a8:90:b1:ad:15:21:ac:51:d0: 16:64:c1:6f:3a:35:65:b9:93:53:ee:5e:36:89:63: 9f:d8:0a:04:ae:3f:98:26:8e:ba:51:cb:7a:f6:9e: b9:4a:97:c7:59:b8:bd:86:f9:a0:84:f9:43:bf:d7: 82:a6:be:05:ab:22:ab:0e:0c:f1:fd:d8:5b:96:0c: 56:8e:29:d7:55:4f:8a:ed:d2:20:7e:93:88:06:a3: 1f:8f:c2:fe:1c:58:db:16:f1:79:fe:fc:50:b1:47: 6e:ae:d7:31:42:8b:7d:48:90:3f:e2:5a:18:96:2d: 5d:ba:f3:69:04:3b:e7:9f:90:cd:e3:22:78:42:b8: 81:dd:33:a2:51:26:ba:8e:be:28:d3:3b:dd:60:e7: 01:90:5c:97:87:63:89:fd:a7:89:56:69:0b:e4:3d: 40:c2:10:3d:4f:5e:7e:4b:26:df:09:4d:de:c6:a2: a0:e3:4d:11:fa:c3:18:1b:e5:ae:12:e8:e3:a5:04: 59:52:f0:74:fc:aa:19:7a:87:cc:98:c1:2c:51:b5: 9e:c6:ad:a8:d4:1b:15:78:43:4c:4f:8d:5e:c7:c3: 62:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1C:74:A2:0B:6A:E2:BC:03:B4:7D:F0:39:46:A3:F8:E3:9A:C4:E0 X509v3 Authority Key Identifier: keyid:4D:02:4D:7E:E9:3B:F0:6E:78:F2:0C:2D:97:85:C0:0C:AE:ED:6E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TQJNfuk78G548gwtl4XADK7tbkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B88/2E33F8B01FE311EB9878EC64C4F9AE02/TQJNfuk78G548gwtl4XADK7tbkQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:33:f2:f6:9b:38:b0:47:39:eb:26:60:27:65:dd:16:ed:88: a2:df:94:35:92:fe:00:b8:d4:e4:06:32:06:63:16:66:37:2c: 65:b9:4e:29:9e:fb:ea:b1:9d:82:51:52:34:26:e9:0c:5c:1f: 43:2f:33:3f:77:60:5e:f2:d6:b8:b8:4a:90:15:21:aa:68:52: 16:de:96:89:b0:1e:e7:4e:70:3a:7b:54:b7:42:4a:54:c3:7b: e2:5b:91:1e:56:1c:61:15:4e:b8:1a:35:90:2b:d3:8b:77:fa: af:0f:6d:c8:53:8e:38:83:ed:c8:83:20:70:04:11:5f:07:54: 30:bf:58:ee:51:9c:fe:0f:fd:64:6e:ac:1e:dd:67:66:da:e5: 2e:00:f6:aa:77:58:03:16:fb:45:96:43:79:c4:e1:85:6e:79: 13:11:fa:11:cb:a5:0d:64:85:7a:0f:1f:43:b9:44:d7:8d:42: 2d:d2:41:36:63:c0:d6:35:4f:8f:7a:0d:75:14:fa:31:63:fc: 8d:99:05:c4:39:0c:d3:ad:0f:53:9d:95:c1:d5:d2:57:0d:3c: 9e:41:1c:fe:43:ad:fe:be:bd:85:86:dc:1d:77:64:40:0e:4b: 45:4f:b9:77:a1:0e:c7:18:ee:00:e6:db:f4:78:cc:c4:f3:52: b2:cc:f3:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCODgxMTAvBgNVBAUTKDREMDI0RDdFRTkzQkYwNkU3OEYyMEMyRDk3ODVDMDBD QUVFRDZFNDQwHhcNMjQxMTIyMjEyOTA1WhcNMjQxMTI5MjEyOTA1WjAYMRYwFAYD VQQDEw02NzQwZjdhMS00NDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzz2scdzuep8If+uvnFTZ4wUxd1Z/kYEwF14ngH4o9tjAADWokLGtFSGsUdAW ZMFvOjVluZNT7l42iWOf2AoErj+YJo66Uct69p65SpfHWbi9hvmghPlDv9eCpr4F qyKrDgzx/dhblgxWjinXVU+K7dIgfpOIBqMfj8L+HFjbFvF5/vxQsUdurtcxQot9 SJA/4loYli1duvNpBDvnn5DN4yJ4QriB3TOiUSa6jr4o0zvdYOcBkFyXh2OJ/aeJ VmkL5D1AwhA9T15+SybfCU3exqKg400R+sMYG+WuEujjpQRZUvB0/KoZeofMmMEs UbWexq2o1BsVeENMT41ex8Ni3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAcdKIL auK8A7R98DlGo/jjmsTgMB8GA1UdIwQYMBaAFE0CTX7pO/BuePIMLZeFwAyu7W5E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI4OC8yRTMzRjhCMDFG RTMxMUVCOTg3OEVDNjRDNEY5QUUwMi9UUUpOZnVrNzhHNTQ4Z3d0bDRYQURLN3Ri a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RRSk5mdWs3OEc1NDhnd3RsNFhBREs3dGJrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI4OC8yRTMzRjhCMDFGRTMxMUVCOTg3OEVDNjRDNEY5QUUwMi9UUUpOZnVrNzhH NTQ4Z3d0bDRYQURLN3Ria1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8M/L2mziwRznrJmAnZd0W7Yii35Q1kv4AuNTkBjIGYxZmNyxluU4p nvvqsZ2CUVI0JukMXB9DLzM/d2Be8ta4uEqQFSGqaFIW3paJsB7nTnA6e1S3QkpU w3viW5EeVhxhFU64GjWQK9OLd/qvD23IU444g+3IgyBwBBFfB1Qwv1juUZz+D/1k bqwe3Wdm2uUuAPaqd1gDFvtFlkN5xOGFbnkTEfoRy6UNZIV6Dx9DuUTXjUIt0kE2 Y8DWNU+Peg11FPoxY/yNmQXEOQzTrQ9TnZXB1dJXDTyeQRz+Q63+vr2Fhtwdd2RA DktFT7l3oQ7HGO4A5tv0eMzE81KyzPPC -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org