$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft File: tksRCOmO7If7awwovgFkXHCLSsU.mft (raw, json) Hash identifier: cfzrx8YVJUcOBlofTM0iOoJ34wtkQv0oryr9/bXKhFQ= Subject key identifier: 97:0A:C5:F0:0A:92:F3:08:00:4F:53:4D:B5:48:29:33:FE:2B:7E:5D Authority key identifier: B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 Certificate issuer: /CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Certificate serial: 28F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft Manifest number: 28E1 Signing time: Fri 22 Nov 2024 15:37:35 +0000 Manifest this update: Fri 22 Nov 2024 15:37:34 +0000 Manifest next update: Fri 29 Nov 2024 15:37:34 +0000 Files and hashes: 1: tksRCOmO7If7awwovgFkXHCLSsU.crl (hash: isfqOPPMzGjWHtkSRoDcWx/1elUtYN40zD9LYSXR+nE=) 2: 98845C5C54EC11E791C3F825C4F9AE02.roa (hash: MSi3NqfJZvJeYbKlVl8T9Ife50w6CCOupwfF4p/lupg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10485 (0x28f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE17/serialNumber=B64B1108E98EEC87FB6B0C28BE01645C708B4AC5 Validity Not Before: Nov 22 15:37:34 2024 GMT Not After : Nov 29 15:37:34 2024 GMT Subject: CN=6740a53e-171d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a4:9a:4d:8b:4c:2d:e2:88:36:e6:7e:fc:09: 15:ef:82:8c:e2:e1:0c:8e:cb:86:2b:a7:00:1b:c5: f0:57:e7:d7:0d:60:15:08:ef:df:0d:bd:ab:59:8c: 6d:f3:b3:84:a1:5c:b4:08:ad:52:f2:72:92:c6:07: 2a:59:f1:af:ac:37:30:97:18:ec:c6:65:b0:38:7b: 1d:11:bf:cb:78:73:d2:60:97:e8:3a:80:11:17:b4: ed:b5:b6:c9:bb:7c:ad:12:17:e7:bc:ab:23:4e:f5: c5:80:1d:94:ba:b2:45:f7:97:a1:60:d4:2e:9b:df: 63:6b:6e:96:53:94:1b:15:a4:e7:3e:26:a5:ab:01: cd:e4:98:81:57:2c:fe:c1:26:e1:86:f2:ca:3a:e0: ea:d0:0a:28:36:92:03:5d:f1:d2:bb:a2:63:f9:4a: 6b:66:f0:09:26:46:33:05:4b:65:1a:92:ad:6b:91: 9b:7f:29:15:8b:b7:95:c6:04:d3:b1:d5:e7:d8:da: 4c:74:56:5e:64:6c:c8:34:84:3b:eb:1d:4a:2b:58: 64:fd:5c:12:de:c6:e8:50:19:f5:d5:e3:ce:6f:cf: 05:98:e6:43:0d:9b:1c:42:3c:0e:1d:e7:42:31:a2: 03:5b:75:fd:3d:38:c2:4f:bd:c4:40:cc:72:df:16: 0a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0A:C5:F0:0A:92:F3:08:00:4F:53:4D:B5:48:29:33:FE:2B:7E:5D X509v3 Authority Key Identifier: keyid:B6:4B:11:08:E9:8E:EC:87:FB:6B:0C:28:BE:01:64:5C:70:8B:4A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tksRCOmO7If7awwovgFkXHCLSsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE17/445EE09458BD11E49383AB76C4F9AE02/tksRCOmO7If7awwovgFkXHCLSsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:aa:ca:73:bd:2d:57:68:ed:b7:f9:2f:45:be:b2:ed:3a:28: e1:da:7e:d2:dc:5f:b4:62:f5:4b:5e:a0:c3:f7:45:cd:18:80: c8:68:ef:30:a6:e0:0e:87:c4:60:94:c6:2b:4c:1b:68:de:93: 07:27:ab:ae:6d:f3:d6:a9:97:d2:84:11:57:a5:53:4f:35:02: ce:75:cb:92:a3:e6:ce:3f:aa:ac:c1:20:79:27:ca:18:85:43: 10:82:ab:7b:1f:69:e3:3c:a6:91:51:1b:bb:03:cd:cd:7c:f8: d9:fe:3b:1d:61:a9:40:84:9e:46:8e:34:ce:fe:ae:50:04:1d: d0:77:8b:90:92:0e:da:3a:32:57:e8:e5:77:b3:fa:8c:a7:d7: f8:4f:4a:2b:5f:73:10:82:e0:4b:07:7c:c5:1f:c2:b6:0e:9d: a2:f9:a0:78:1d:1b:82:d2:54:aa:bc:d9:9b:0f:d9:ba:86:5f: c1:5b:5f:2f:97:33:69:06:2a:f7:69:88:c3:ca:a8:58:b8:b2: b6:30:a1:db:86:72:6e:93:bf:b2:2a:83:53:44:e7:77:b5:2f: 86:75:ab:b9:07:94:dd:9e:30:ac:6e:b0:96:43:a4:d4:43:10: 2c:43:25:73:f9:a6:e4:65:c3:7c:8e:50:51:56:1a:7c:99:6b: 7b:b7:28:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMTcxMTAvBgNVBAUTKEI2NEIxMTA4RTk4RUVDODdGQjZCMEMyOEJFMDE2NDVD NzA4QjRBQzUwHhcNMjQxMTIyMTUzNzM0WhcNMjQxMTI5MTUzNzM0WjAYMRYwFAYD VQQDEw02NzQwYTUzZS0xNzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6SaTYtMLeKINuZ+/AkV74KM4uEMjsuGK6cAG8XwV+fXDWAVCO/fDb2rWYxt 87OEoVy0CK1S8nKSxgcqWfGvrDcwlxjsxmWwOHsdEb/LeHPSYJfoOoARF7TttbbJ u3ytEhfnvKsjTvXFgB2UurJF95ehYNQum99ja26WU5QbFaTnPialqwHN5JiBVyz+ wSbhhvLKOuDq0AooNpIDXfHSu6Jj+UprZvAJJkYzBUtlGpKta5GbfykVi7eVxgTT sdXn2NpMdFZeZGzINIQ76x1KK1hk/VwS3sboUBn11ePOb88FmOZDDZscQjwOHedC MaIDW3X9PTjCT73EQMxy3xYKXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcKxfAK kvMIAE9TTbVIKTP+K35dMB8GA1UdIwQYMBaAFLZLEQjpjuyH+2sMKL4BZFxwi0rF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUxNy80NDVFRTA5NDU4 QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJZjdhd3dvdmdGa1hIQ0xT c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rrc1JDT21PN0lmN2F3d292Z0ZrWEhDTFNzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUUxNy80NDVFRTA5NDU4QkQxMUU0OTM4M0FCNzZDNEY5QUUwMi90a3NSQ09tTzdJ Zjdhd3dvdmdGa1hIQ0xTc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOqspzvS1XaO23+S9FvrLtOijh2n7S3F+0YvVLXqDD90XNGIDIaO8w puAOh8RglMYrTBto3pMHJ6uubfPWqZfShBFXpVNPNQLOdcuSo+bOP6qswSB5J8oY hUMQgqt7H2njPKaRURu7A83NfPjZ/jsdYalAhJ5GjjTO/q5QBB3Qd4uQkg7aOjJX 6OV3s/qMp9f4T0orX3MQguBLB3zFH8K2Dp2i+aB4HRuC0lSqvNmbD9m6hl/BW18v lzNpBir3aYjDyqhYuLK2MKHbhnJuk7+yKoNTROd3tS+Gdau5B5TdnjCsbrCWQ6TU QxAsQyVz+abkZcN8jlBRVhp8mWt7tyju -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org