$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: 1vSyomHlc1KZ4u0tELBRAuxyM2vN1O4lc48y4KZwdUc= Subject key identifier: 75:77:CD:99:F4:2B:05:61:8F:4D:CE:30:93:2D:E6:01:B9:80:2E:DD Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: 66 Signing time: Sat 23 Nov 2024 04:56:36 +0000 Manifest this update: Sat 23 Nov 2024 04:56:35 +0000 Manifest next update: Sat 30 Nov 2024 04:56:35 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: kLbqUTV3T0eBafbX83n6iJ3RNTdr+l/wfLXnT9q0RfM=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: nDgnRwgmZ7bsNv+cYxklBGsN8gkMFm1vGl/SBkHHb6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Nov 23 04:56:35 2024 GMT Not After : Nov 30 04:56:35 2024 GMT Subject: CN=67416083-b98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d7:a1:8f:ec:ba:71:07:1a:9f:cf:ae:4a:35: 79:63:d7:27:88:1b:03:10:59:14:6d:12:46:3e:82: dc:59:9a:55:9a:75:97:5d:ef:b9:05:6e:ad:bb:88: 02:ab:14:4c:50:35:16:a4:b7:6a:47:d9:49:03:12: 55:38:8a:41:d3:2b:ad:df:f3:4d:24:55:3a:df:1e: 7d:83:5f:d9:12:27:e6:34:f5:32:e4:c8:20:bd:fe: 0e:c7:9e:5e:b4:67:ab:aa:f7:7f:43:2e:12:e1:0c: e3:ca:43:a1:f1:7b:8e:d1:18:e3:1f:25:17:40:41: 2c:93:a2:84:d0:7d:66:67:11:e9:3b:3f:d6:b9:12: 59:d7:b1:a6:e0:ca:47:ce:77:bb:51:b2:fd:74:1f: f5:eb:7f:52:2a:3d:a4:ac:3e:0b:34:71:a6:72:fe: 71:17:50:62:22:d2:ed:85:89:63:f5:e7:1a:9d:a6: d1:1e:8e:71:00:36:14:23:71:df:5e:36:9a:9a:e0: cf:d9:7d:cb:41:06:b7:09:9a:05:80:60:11:28:c1: 82:56:a1:d2:86:e3:af:1f:b6:b6:78:b4:0e:6b:ea: f6:3f:c5:b4:67:97:ce:79:ea:cc:ba:30:c6:04:c5: 37:d3:9f:a2:e3:40:f5:5d:ad:bd:c5:e4:0f:31:23: 84:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:77:CD:99:F4:2B:05:61:8F:4D:CE:30:93:2D:E6:01:B9:80:2E:DD X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:13:61:39:56:a0:9c:6e:89:b2:f6:cf:50:9a:79:d7:b1:4a: 81:64:5c:c3:32:95:ee:ee:f5:48:56:ec:d6:be:f9:75:36:19: 2d:84:b0:b7:a7:5a:a7:0a:ff:b8:65:82:a6:bb:52:87:ee:f2: 4f:b5:3b:b5:6f:f1:8b:17:60:b2:9d:20:31:93:39:5c:dd:fe: 22:a6:7c:66:2b:76:d2:4c:4f:8c:66:59:6c:31:de:67:b0:55: d1:eb:d4:b5:c0:d7:08:46:eb:59:b3:bf:07:2d:38:b7:69:ab: 2f:44:3f:36:2e:00:e6:24:c9:62:ec:d5:71:84:ef:28:c6:d0: fc:ac:0b:b0:9a:be:68:dc:d4:ef:28:de:90:2a:bf:f4:1b:cf: 48:e3:47:51:41:90:40:af:3c:6f:ad:63:c3:27:27:43:1f:fe: ac:ae:b6:a9:47:71:25:79:a0:c3:a1:73:11:11:a5:a6:bb:f0: 78:12:a9:67:57:04:e5:fa:66:ad:2f:24:44:5d:52:4b:ef:43: c7:da:d2:02:16:08:5c:5f:69:af:3e:1d:73:be:50:cc:cc:5d: 1c:13:5b:0e:57:dc:1a:49:a0:77:fe:2a:68:97:7c:d4:cb:09: a4:5c:da:aa:34:fe:11:97:18:85:ad:fa:bd:f7:08:56:12:64: 65:0d:ad:e5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTJCMjExMC8GA1UEBRMoQjcwREVBNkM3N0I5RThFQ0NFNTgzOTEzMjgxOUVGOTEz NzNGQzUyNzAeFw0yNDExMjMwNDU2MzVaFw0yNDExMzAwNDU2MzVaMBgxFjAUBgNV BAMTDTY3NDE2MDgzLWI5OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC516GP7LpxBxqfz65KNXlj1yeIGwMQWRRtEkY+gtxZmlWadZdd77kFbq27iAKr FExQNRakt2pH2UkDElU4ikHTK63f800kVTrfHn2DX9kSJ+Y09TLkyCC9/g7Hnl60 Z6uq939DLhLhDOPKQ6Hxe47RGOMfJRdAQSyTooTQfWZnEek7P9a5ElnXsabgykfO d7tRsv10H/Xrf1IqPaSsPgs0caZy/nEXUGIi0u2FiWP15xqdptEejnEANhQjcd9e Npqa4M/ZfctBBrcJmgWAYBEowYJWodKG468ftrZ4tA5r6vY/xbRnl8556sy6MMYE xTfTn6LjQPVdrb3F5A8xI4RBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdXfNmfQr BWGPTc4wky3mAbmALt0wHwYDVR0jBBgwFoAUtw3qbHe56OzOWDkTKBnvkTc/xScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMkIyLzJCNDZFQTU4MERF MzExRUY4MDNGNkYwRUM0RjlBRTAyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdHczcWJIZTU2T3pPV0RrVEtCbnZrVGNfeFNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MkIyLzJCNDZFQTU4MERFMzExRUY4MDNGNkYwRUM0RjlBRTAyL3R3M3FiSGU1Nk96 T1dEa1RLQm52a1RjX3hTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABsTYTlWoJxuibL2z1CaedexSoFkXMMyle7u9UhW7Na++XU2GS2EsLen WqcK/7hlgqa7Uofu8k+1O7Vv8YsXYLKdIDGTOVzd/iKmfGYrdtJMT4xmWWwx3mew VdHr1LXA1whG61mzvwctOLdpqy9EPzYuAOYkyWLs1XGE7yjG0PysC7Cavmjc1O8o 3pAqv/Qbz0jjR1FBkECvPG+tY8MnJ0Mf/qyutqlHcSV5oMOhcxERpaa78HgSqWdX BOX6Zq0vJERdUkvvQ8fa0gIWCFxfaa8+HXO+UMzMXRwTWw5X3BpJoHf+KmiXfNTL CaRc2qo0/hGXGIWt+r33CFYSZGUNreU= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org