$ rpki-client -vvf rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft File: TSkgNoEWBfjziJgBUhslcnoc12U.mft (raw, json) Hash identifier: TJqeIBam9JgryzNnKKVH8x7Hc1OX2Fz2ywsmlWVaWKk= Subject key identifier: 7B:BE:42:50:51:9B:54:75:D9:6D:3A:79:69:4D:F9:56:AD:E5:85:F1 Authority key identifier: 4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 Certificate issuer: /CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Certificate serial: 02A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft Manifest number: 02A6 Signing time: Wed 27 Nov 2024 01:05:46 +0000 Manifest this update: Wed 27 Nov 2024 01:05:45 +0000 Manifest next update: Wed 04 Dec 2024 01:05:45 +0000 Files and hashes: 1: TSkgNoEWBfjziJgBUhslcnoc12U.crl (hash: kVOJL9xZOUg+RWeceUo7fFy7wCeUb5/sh+Wux5ghKZs=) 2: EB4F77B8D5E411ECB31AC843C4F9AE02.roa (hash: Ndv96M8Ng8Yhc+hqMCZXKR8WR+dlXaccNTf0miARuPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 01:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154DE2/serialNumber=4D292036811605F8F3889801521B25727A1CD765 Validity Not Before: Nov 27 01:05:45 2024 GMT Not After : Dec 4 01:05:45 2024 GMT Subject: CN=6746706a-2874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:57:b4:ad:d3:6d:99:70:df:45:d8:31:d7:53: 84:07:f3:ff:54:39:2e:1a:30:a1:9b:44:56:9a:d5: 40:a9:e1:b0:1f:8d:54:f5:2c:16:c1:52:63:ed:2b: df:74:e6:4b:ab:b7:f5:63:2d:ad:71:71:bf:ce:f2: 0b:a6:17:23:5f:4a:cd:f7:f8:1f:fe:df:75:43:ad: 9a:98:75:ed:f2:95:94:6f:97:ea:a4:b8:cd:0d:e8: 11:62:9d:82:30:d6:4f:bf:75:eb:ed:09:98:38:3c: 26:6d:3b:7e:fa:39:5f:d8:fe:47:b7:88:00:4a:11: 89:aa:ff:fa:3c:a1:3d:f7:0c:59:32:76:3b:d7:9b: 38:50:58:3c:2b:5f:0b:7a:cf:36:af:8a:38:cb:39: 4e:1e:9a:63:7c:1a:12:e1:78:28:cb:cc:5f:ea:a8: 1e:eb:53:ce:c0:f7:9a:98:62:51:3d:ae:09:be:4b: c4:da:45:22:59:da:b0:36:ad:cd:59:c4:c2:20:8f: 9c:d7:0b:96:07:4a:8b:cd:8e:33:82:68:07:73:b8: 14:c2:27:16:4f:cb:c2:3d:78:c2:cf:b3:eb:d8:25: af:bc:be:06:30:7e:bf:92:07:02:76:23:ad:26:ec: 18:50:c0:05:3a:73:1e:f9:67:0f:4d:64:1e:5e:48: f1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BE:42:50:51:9B:54:75:D9:6D:3A:79:69:4D:F9:56:AD:E5:85:F1 X509v3 Authority Key Identifier: keyid:4D:29:20:36:81:16:05:F8:F3:88:98:01:52:1B:25:72:7A:1C:D7:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TSkgNoEWBfjziJgBUhslcnoc12U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154DE2/1C5422D0D5DD11ECA14CC623C4F9AE02/TSkgNoEWBfjziJgBUhslcnoc12U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:f0:de:34:6a:8c:48:03:44:3c:a0:d7:40:8b:6d:60:00:e0: 16:ff:22:60:8c:80:5f:19:67:35:19:2a:ff:06:07:54:02:f0: 2c:4d:d1:e7:bc:af:10:2e:55:da:e4:55:d7:d9:7b:fa:15:b0: 14:ee:53:b0:15:df:3f:80:76:be:a0:48:cc:04:52:8e:e3:10: d6:9d:5a:97:85:cd:8a:cf:07:83:45:ac:d3:db:c8:a8:79:6f: b3:28:55:66:c8:f6:98:48:92:e1:40:8c:23:fc:84:67:de:f7: 06:66:49:25:eb:52:f1:0c:03:39:5a:e7:e1:ac:c3:f5:44:0d: af:d9:17:c2:f9:cb:e5:41:d5:60:d0:c2:44:3c:e9:fb:d7:78: fd:a3:e8:3f:b7:8e:73:05:6c:e3:19:2b:5c:c8:b2:8d:88:81: fd:7d:c4:24:e4:bd:09:3d:96:cc:c9:e5:8d:a7:30:4c:a4:26: 73:35:ce:d6:a6:5f:ea:6a:e3:48:a3:0a:95:a8:08:3b:77:d7: cb:04:df:bb:cf:a3:8f:2f:f6:87:ac:60:f1:de:5e:f7:c1:24: cc:29:a5:97:2b:60:c4:14:37:b2:9f:1f:51:27:b7:cd:cb:24: 82:4b:f3:47:09:93:fb:f8:f4:82:fc:4a:2d:fa:98:fb:7e:1f: 2c:b8:b9:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRERTIxMTAvBgNVBAUTKDREMjkyMDM2ODExNjA1RjhGMzg4OTgwMTUyMUIyNTcy N0ExQ0Q3NjUwHhcNMjQxMTI3MDEwNTQ1WhcNMjQxMjA0MDEwNTQ1WjAYMRYwFAYD VQQDEw02NzQ2NzA2YS0yODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ve0rdNtmXDfRdgx11OEB/P/VDkuGjChm0RWmtVAqeGwH41U9SwWwVJj7Svf dOZLq7f1Yy2tcXG/zvILphcjX0rN9/gf/t91Q62amHXt8pWUb5fqpLjNDegRYp2C MNZPv3Xr7QmYODwmbTt++jlf2P5Ht4gAShGJqv/6PKE99wxZMnY715s4UFg8K18L es82r4o4yzlOHppjfBoS4Xgoy8xf6qge61POwPeamGJRPa4JvkvE2kUiWdqwNq3N WcTCII+c1wuWB0qLzY4zgmgHc7gUwicWT8vCPXjCz7Pr2CWvvL4GMH6/kgcCdiOt JuwYUMAFOnMe+WcPTWQeXkjxWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHu+QlBR m1R12W06eWlN+Vat5YXxMB8GA1UdIwQYMBaAFE0pIDaBFgX484iYAVIbJXJ6HNdl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NERFMi8xQzU0MjJEMEQ1 REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0JmanppSmdCVWhzbGNub2Mx MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RTa2dOb0VXQmZqemlKZ0JVaHNsY25vYzEyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NERFMi8xQzU0MjJEMEQ1REQxMUVDQTE0Q0M2MjNDNEY5QUUwMi9UU2tnTm9FV0Jm anppSmdCVWhzbGNub2MxMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw8N40aoxIA0Q8oNdAi21gAOAW/yJgjIBfGWc1GSr/BgdUAvAsTdHn vK8QLlXa5FXX2Xv6FbAU7lOwFd8/gHa+oEjMBFKO4xDWnVqXhc2KzweDRazT28io eW+zKFVmyPaYSJLhQIwj/IRn3vcGZkkl61LxDAM5WufhrMP1RA2v2RfC+cvlQdVg 0MJEPOn713j9o+g/t45zBWzjGStcyLKNiIH9fcQk5L0JPZbMyeWNpzBMpCZzNc7W pl/qauNIowqVqAg7d9fLBN+7z6OPL/aHrGDx3l73wSTMKaWXK2DEFDeynx9RJ7fN yySCS/NHCZP7+PSC/Eot+pj7fh8suLm8 -----END CERTIFICATE-----Generated at Wed Nov 27 02:21:01 2024 by rpki-client on console-fra.rpki-client.org