$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: 3xUc+ZyANwT1iMcN36Thl67zd1yggsYIm3iDqVGjxy8= Subject key identifier: 54:95:42:B5:20:13:5E:A0:C5:1B:59:20:CE:46:30:C5:3A:FC:83:D3 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 3432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 342B Signing time: Fri 22 Nov 2024 15:21:13 +0000 Manifest this update: Fri 22 Nov 2024 15:21:13 +0000 Manifest next update: Fri 29 Nov 2024 15:21:13 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: N/f4ZC9HlosmHdzfXvV16vNxwrlTWGNKfDMCfcCXXy0=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: 1r2fILVlnPF9g9/RvWkB32IMvkecllavKDmXeDe08HY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13362 (0x3432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Nov 22 15:21:13 2024 GMT Not After : Nov 29 15:21:13 2024 GMT Subject: CN=6740a169-0a11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e1:fa:11:51:84:1d:a3:7b:ed:15:db:89:a1: af:c7:b5:7a:44:e4:42:1b:6a:6f:05:6a:90:23:cd: 2b:f0:d5:df:2c:45:85:cf:3c:9e:82:08:da:ca:24: 45:ca:b4:83:7d:17:60:24:7f:39:88:ee:b2:06:ea: f3:8c:b1:68:be:c1:02:1e:d3:0c:73:0f:22:61:47: 10:d6:73:c2:22:ed:ac:2e:e2:af:f8:7e:b9:7f:57: 06:4a:58:03:cd:d3:00:53:33:e3:a9:d1:73:b9:f1: 7a:fe:9d:59:5c:a1:c9:9e:54:b2:c8:fc:ff:47:c2: 5d:8b:1f:d4:56:ab:45:9c:bc:5b:f0:fd:84:5f:19: 2c:ad:6f:78:59:c6:aa:23:5d:5f:69:f1:9f:13:5c: ce:d4:0e:28:9b:d8:82:ab:35:6d:2b:aa:4a:69:61: bc:1e:d2:f3:ab:b2:33:a1:2f:28:16:cf:a8:7d:d4: 1c:c2:04:d4:77:c0:92:b3:2c:48:02:4a:3c:49:37: 24:76:9d:cf:ba:bd:f4:b5:52:25:be:ca:77:22:17: 2e:60:f6:76:18:c2:02:53:53:1a:52:96:c0:c4:1a: bb:e0:86:94:39:4d:09:26:17:d7:cd:1c:f1:6f:71: 99:ce:b2:4e:f1:20:fa:8b:de:c8:60:0f:84:53:e0: 1c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:95:42:B5:20:13:5E:A0:C5:1B:59:20:CE:46:30:C5:3A:FC:83:D3 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:5e:90:89:cd:53:06:0c:77:62:87:78:94:eb:79:ff:34:a0: 94:1e:b2:14:8f:55:af:8d:9a:48:6b:56:06:b6:00:85:48:7b: b3:65:43:2b:7e:69:ba:1a:bf:6f:44:3b:20:3f:60:d4:d0:9a: 0d:90:a1:11:c7:1c:ed:7f:88:3a:cd:21:e2:7d:cf:d9:04:a1: 1e:45:ab:59:02:56:79:b5:0e:22:56:ab:b6:9a:f1:9e:7f:54: 16:a4:91:19:94:b0:d0:a7:57:0a:2c:e5:86:96:39:24:32:e8: 27:2e:47:51:0c:9a:f7:2e:16:64:3a:e5:40:d0:1d:7f:a3:f9: a2:e4:5a:45:d6:8e:df:e0:d5:7f:22:f5:ef:d7:d6:44:fe:53: e8:60:f8:35:23:70:4c:b3:c5:b4:e7:55:57:2e:02:ff:6b:ba: 9f:6c:11:f1:cd:e4:71:1a:79:f9:5a:0f:99:78:10:b5:bc:8c: af:f1:17:32:72:93:ca:de:0a:f7:d1:a7:8d:06:a0:49:ae:eb: 8b:60:ee:b7:dd:8e:8a:21:32:1f:6c:de:3d:7b:4b:3c:35:43: 3d:a5:1e:68:e7:7e:2c:e1:7f:2b:55:2f:38:f1:62:19:96:4d: c3:f5:eb:28:61:5f:b4:7f:ab:ae:47:e4:16:79:ed:dd:00:df: 6a:7f:1e:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjQxMTIyMTUyMTEzWhcNMjQxMTI5MTUyMTEzWjAYMRYwFAYD VQQDEw02NzQwYTE2OS0wYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+H6EVGEHaN77RXbiaGvx7V6RORCG2pvBWqQI80r8NXfLEWFzzyeggjayiRF yrSDfRdgJH85iO6yBurzjLFovsECHtMMcw8iYUcQ1nPCIu2sLuKv+H65f1cGSlgD zdMAUzPjqdFzufF6/p1ZXKHJnlSyyPz/R8Jdix/UVqtFnLxb8P2EXxksrW94Wcaq I11fafGfE1zO1A4om9iCqzVtK6pKaWG8HtLzq7IzoS8oFs+ofdQcwgTUd8CSsyxI Ako8STckdp3Pur30tVIlvsp3IhcuYPZ2GMICU1MaUpbAxBq74IaUOU0JJhfXzRzx b3GZzrJO8SD6i97IYA+EU+Ac/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSVQrUg E16gxRtZIM5GMMU6/IPTMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgXpCJzVMGDHdih3iU63n/NKCUHrIUj1WvjZpIa1YGtgCFSHuzZUMr fmm6Gr9vRDsgP2DU0JoNkKERxxztf4g6zSHifc/ZBKEeRatZAlZ5tQ4iVqu2mvGe f1QWpJEZlLDQp1cKLOWGljkkMugnLkdRDJr3LhZkOuVA0B1/o/mi5FpF1o7f4NV/ IvXv19ZE/lPoYPg1I3BMs8W051VXLgL/a7qfbBHxzeRxGnn5Wg+ZeBC1vIyv8Rcy cpPK3gr30aeNBqBJruuLYO633Y6KITIfbN49e0s8NUM9pR5o534s4X8rVS848WIZ lk3D9esoYV+0f6uuR+QWee3dAN9qfx74 -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org