$ rpki-client -vvf rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft File: TC5icWMgr9SgFwBna-i_kmT0XkI.mft (raw, json) Hash identifier: /KGFvojBjTe/J72ey+XBDKSGxwUnK5gS0gmNrz+YTJU= Subject key identifier: A5:6B:D4:E3:2C:39:58:53:A0:04:2C:30:36:7A:86:3A:74:05:A7:0D Authority key identifier: 4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42 Certificate issuer: /CN=A91A10E4/serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42 Certificate serial: 17A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft Manifest number: 1798 Signing time: Fri 22 Nov 2024 16:34:44 +0000 Manifest this update: Fri 22 Nov 2024 16:34:43 +0000 Manifest next update: Fri 29 Nov 2024 16:34:43 +0000 Files and hashes: 1: TC5icWMgr9SgFwBna-i_kmT0XkI.crl (hash: 4tEaLHilmOpGpKVUeXHg6luiXalZ7LfQk4dGpirD3l8=) 2: 221560BEAF3711E98F7FF448C4F9AE02.roa (hash: FsaFu6MkjeuiES2KGNl0DOyMgemSFW94x8yOeCJ7jiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.crl rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6048 (0x17a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A10E4/serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42 Validity Not Before: Nov 22 16:34:43 2024 GMT Not After : Nov 29 16:34:43 2024 GMT Subject: CN=6740b2a4-5b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:b8:5a:8f:b3:96:9b:3a:42:d4:9c:96:e1: 76:50:55:f5:93:2f:32:83:6f:94:ac:10:5a:86:84: a0:4c:a2:45:6d:5b:f2:d8:93:e7:1e:ca:71:8b:86: 2a:db:ff:c9:74:6b:0f:10:f9:53:bb:c8:a4:76:12: 37:72:50:44:ff:a5:06:8a:97:96:e5:1b:91:c9:b7: eb:76:74:ae:4a:15:d9:a2:14:12:96:47:76:0c:c5: fd:55:d8:74:60:69:0a:ec:f4:9b:ac:eb:b6:c9:91: f0:f0:15:29:f1:1c:cf:8d:6d:c8:a6:42:2e:25:ab: 7b:64:3b:50:8e:73:3a:38:9f:5c:17:06:a9:f3:bf: a8:a1:ba:56:94:82:d4:21:8c:54:b3:2f:86:7d:4e: 28:6c:1a:e4:af:5b:4a:ef:a3:1b:2d:18:52:34:64: 5d:e8:87:5d:93:12:47:03:6c:f0:8c:43:02:16:1f: 98:ef:19:79:9a:9c:ca:f3:bc:59:01:b5:e5:ab:51: b5:15:f1:1f:c8:c4:94:16:cf:80:41:b3:a9:24:dd: 0e:7f:fd:ab:a2:ca:b8:b1:be:74:a0:18:f4:a8:33: 87:2d:ef:35:57:a6:d8:77:a9:8b:0f:45:82:7a:a1: 8f:51:d4:f3:e2:84:4f:12:f0:33:39:c1:b8:17:2a: e1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6B:D4:E3:2C:39:58:53:A0:04:2C:30:36:7A:86:3A:74:05:A7:0D X509v3 Authority Key Identifier: keyid:4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:39:22:13:b4:b2:f6:2d:f1:e6:6d:de:67:a0:e1:6b:23:51: f3:a0:2d:25:93:cf:47:d7:c2:6e:3f:b4:fd:38:da:3a:e1:5f: 51:25:be:b7:92:fc:11:f8:b7:66:50:b5:c0:59:c2:8e:36:0e: 7e:eb:96:88:13:81:57:dc:ac:f2:e3:c6:30:f5:0e:2d:97:ec: 1c:1e:6f:1e:38:78:f4:fd:4d:91:0c:97:b8:dc:e1:ce:6d:d6: b7:36:07:d1:2e:be:b0:07:08:c2:69:5c:f9:24:03:d6:3c:52: ed:11:ec:8a:d6:a4:dc:bd:c8:a9:f3:7f:8a:f6:e9:f7:a0:39: 66:99:0c:21:d6:04:8e:77:c9:c6:4a:88:b2:f0:e6:e0:9d:d3: 17:24:65:a4:db:99:41:22:2f:44:be:d9:45:bf:2f:6d:b4:2a: a1:01:b8:5a:92:98:c7:58:c3:43:b7:f1:37:09:45:38:dd:d3: d2:57:d3:24:aa:06:4d:10:d6:43:77:0e:cd:5f:f7:ae:c4:c2: 94:cd:bb:00:9c:34:bd:68:61:25:f6:09:34:30:04:41:0a:34: 17:d6:b6:67:ab:34:81:2f:89:19:0b:44:26:8f:9f:27:4d:73: 97:13:12:8a:f2:4d:d1:12:c6:3f:c4:7c:85:ea:72:a8:48:0f: fd:eb:82:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF6AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEwRTQxMTAvBgNVBAUTKDRDMkU2MjcxNjMyMEFGRDRBMDE3MDA2NzZCRThCRjky NjRGNDVFNDIwHhcNMjQxMTIyMTYzNDQzWhcNMjQxMTI5MTYzNDQzWjAYMRYwFAYD VQQDEw02NzQwYjJhNC01Yjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttm4Wo+zlps6QtScluF2UFX1ky8yg2+UrBBahoSgTKJFbVvy2JPnHspxi4Yq 2//JdGsPEPlTu8ikdhI3clBE/6UGipeW5RuRybfrdnSuShXZohQSlkd2DMX9Vdh0 YGkK7PSbrOu2yZHw8BUp8RzPjW3IpkIuJat7ZDtQjnM6OJ9cFwap87+oobpWlILU IYxUsy+GfU4obBrkr1tK76MbLRhSNGRd6IddkxJHA2zwjEMCFh+Y7xl5mpzK87xZ AbXlq1G1FfEfyMSUFs+AQbOpJN0Of/2rosq4sb50oBj0qDOHLe81V6bYd6mLD0WC eqGPUdTz4oRPEvAzOcG4FyrhgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVr1OMs OVhToAQsMDZ6hjp0BacNMB8GA1UdIwQYMBaAFEwuYnFjIK/UoBcAZ2vov5Jk9F5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTBFNC80NDk4NjhGQ0I4 ODUxMUU3QTQ4Mjg5MUFDNEY5QUUwMi9UQzVpY1dNZ3I5U2dGd0JuYS1pX2ttVDBY a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDNWljV01ncjlTZ0Z3Qm5hLWlfa21UMFhrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTBFNC80NDk4NjhGQ0I4ODUxMUU3QTQ4Mjg5MUFDNEY5QUUwMi9UQzVpY1dNZ3I5 U2dGd0JuYS1pX2ttVDBYa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoOSITtLL2LfHmbd5noOFrI1HzoC0lk89H18JuP7T9ONo64V9RJb63 kvwR+LdmULXAWcKONg5+65aIE4FX3Kzy48Yw9Q4tl+wcHm8eOHj0/U2RDJe43OHO bda3NgfRLr6wBwjCaVz5JAPWPFLtEeyK1qTcvcip83+K9un3oDlmmQwh1gSOd8nG Soiy8ObgndMXJGWk25lBIi9EvtlFvy9ttCqhAbhakpjHWMNDt/E3CUU43dPSV9Mk qgZNENZDdw7NX/euxMKUzbsAnDS9aGEl9gk0MARBCjQX1rZnqzSBL4kZC0Qmj58n TXOXExKK8k3REsY/xHyF6nKoSA/964Im -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org