$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft File: tnJ-39N9HiwXXBCBGh04qirGyJw.mft (raw, json) Hash identifier: 1cbQB5yhx9ndBpLVF8ERRRcbbRWihSsdAWK4fRfk3LM= Subject key identifier: 89:BC:74:26:51:0B:E1:FF:0B:81:9C:B0:59:76:FE:5A:F8:20:0A:A2 Authority key identifier: B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C Certificate issuer: /CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft Manifest number: 0100 Signing time: Sat 23 Nov 2024 03:19:29 +0000 Manifest this update: Sat 23 Nov 2024 03:19:28 +0000 Manifest next update: Sat 30 Nov 2024 03:19:28 +0000 Files and hashes: 1: tnJ-39N9HiwXXBCBGh04qirGyJw.crl (hash: tLC8KVgQOrluSuAD/WggMwXFz486DT4vV3ojfz3xLP0=) 2: 862D5B3A2C8611EEB04B7B66C4F9AE02.roa (hash: jrfajkzWNlsvAr6jtiSvKXf4OLBkBX1A+geXt7uM8x0=) 3: 207C8A52AC7611EEB465AF75C4F9AE02.roa (hash: +GUMZ5o/lvCUeZO5ZgqvBFTkw2qo7eiNgyfsBcjsr/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD3D2/serialNumber=B6727EDFD37D1E2C175C10811A1D38AA2AC6C89C Validity Not Before: Nov 23 03:19:28 2024 GMT Not After : Nov 30 03:19:28 2024 GMT Subject: CN=674149c0-657a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2a:e2:de:40:87:2a:ce:c4:94:5b:17:f8:80: 85:8f:2e:71:13:25:ca:76:16:e8:36:3b:9f:f1:47: e1:79:ee:7a:28:8f:ad:92:19:5d:ad:c5:d6:ea:4e: d9:bd:0b:37:6a:74:2d:17:e3:30:cf:d3:df:d2:fc: 86:d4:15:f2:ef:53:b8:e0:76:68:1d:56:06:26:9d: 2b:cb:de:04:e6:b9:97:40:9e:f7:7c:e2:b8:56:fa: ba:ec:53:37:77:0a:62:9a:bb:c9:76:8f:65:9a:23: 7a:70:b3:01:a1:0b:17:95:38:b7:4f:59:94:a3:58: 8e:d0:cc:c0:25:50:b9:83:af:12:67:67:64:34:43: e7:a8:d8:36:57:3b:ed:f1:67:04:71:45:e1:56:7f: 26:bf:a6:f1:d4:86:40:f7:af:35:df:1e:96:22:cf: d0:9c:75:25:14:4d:48:04:f8:b7:22:e2:15:25:8e: 37:c4:bf:0d:f3:12:85:be:87:24:49:43:dc:8f:d6: fe:78:44:9f:c0:68:8d:ab:60:82:3a:21:5a:56:30: c0:fe:42:7a:28:a3:ce:c3:f0:56:f9:70:5f:55:e7: 95:c9:26:8b:f4:82:49:be:e9:83:e6:ef:db:84:ed: 4c:0f:84:d4:7f:d7:32:7b:de:ac:8f:db:5a:04:4d: 49:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BC:74:26:51:0B:E1:FF:0B:81:9C:B0:59:76:FE:5A:F8:20:0A:A2 X509v3 Authority Key Identifier: keyid:B6:72:7E:DF:D3:7D:1E:2C:17:5C:10:81:1A:1D:38:AA:2A:C6:C8:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnJ-39N9HiwXXBCBGh04qirGyJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD3D2/42C1D8F82C8611EEA9B74F43C4F9AE02/tnJ-39N9HiwXXBCBGh04qirGyJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:08:5b:ad:00:08:7b:1c:4c:42:bb:50:b9:04:55:bb:72:bc: 1f:2d:b4:4e:0e:60:c8:a2:99:17:9b:fe:1c:05:80:78:73:63: 72:70:22:3a:3d:14:69:c4:3f:d9:ef:18:cc:fd:76:d4:31:15: 02:0f:f3:9c:6c:72:51:e7:d4:87:4e:ef:a7:5f:9c:91:0a:93: 0a:1e:62:16:74:f9:a0:ed:25:7b:d6:d1:2b:52:c4:88:a0:a4: b0:f5:5e:d8:d7:2b:dd:a3:48:22:bd:79:75:95:0d:0e:2f:b5: 4b:c1:c2:6f:af:0c:c6:65:be:80:d2:7f:e6:01:d6:20:3f:91: a2:8b:3d:c1:5c:6e:b9:e5:10:09:93:68:ae:67:07:3f:c2:55: 8d:f2:e4:db:37:4e:42:df:7c:1d:98:d8:84:8f:0e:8b:4a:8f: d3:bd:7e:42:f7:08:c9:88:e2:ae:f9:5b:f0:87:67:13:eb:93: 8e:69:03:90:6b:80:58:a6:6c:e6:d8:9a:fe:ac:35:b8:fb:63: 8d:e8:fd:d3:e8:14:25:c6:f0:61:65:d7:36:f0:2d:70:f9:3c: 2d:a7:99:49:a9:c4:f1:e5:59:70:86:cf:79:38:0f:5b:b1:87: 0a:a3:57:59:5a:ef:1e:81:f8:4e:27:9d:ae:55:30:f9:01:41: e3:09:d2:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQzRDIxMTAvBgNVBAUTKEI2NzI3RURGRDM3RDFFMkMxNzVDMTA4MTFBMUQzOEFB MkFDNkM4OUMwHhcNMjQxMTIzMDMxOTI4WhcNMjQxMTMwMDMxOTI4WjAYMRYwFAYD VQQDEw02NzQxNDljMC02NTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviri3kCHKs7ElFsX+ICFjy5xEyXKdhboNjuf8Ufhee56KI+tkhldrcXW6k7Z vQs3anQtF+Mwz9Pf0vyG1BXy71O44HZoHVYGJp0ry94E5rmXQJ73fOK4Vvq67FM3 dwpimrvJdo9lmiN6cLMBoQsXlTi3T1mUo1iO0MzAJVC5g68SZ2dkNEPnqNg2Vzvt 8WcEcUXhVn8mv6bx1IZA96813x6WIs/QnHUlFE1IBPi3IuIVJY43xL8N8xKFvock SUPcj9b+eESfwGiNq2CCOiFaVjDA/kJ6KKPOw/BW+XBfVeeVySaL9IJJvumD5u/b hO1MD4TUf9cye96sj9taBE1JoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm8dCZR C+H/C4GcsFl2/lr4IAqiMB8GA1UdIwQYMBaAFLZyft/TfR4sF1wQgRodOKoqxsic MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDNEMi80MkMxRDhGODJD ODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhpd1hYQkNCR2gwNHFpckd5 SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RuSi0zOU45SGl3WFhCQ0JHaDA0cWlyR3lKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDNEMi80MkMxRDhGODJDODYxMUVFQTlCNzRGNDNDNEY5QUUwMi90bkotMzlOOUhp d1hYQkNCR2gwNHFpckd5SncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVCFutAAh7HExCu1C5BFW7crwfLbRODmDIopkXm/4cBYB4c2NycCI6 PRRpxD/Z7xjM/XbUMRUCD/OcbHJR59SHTu+nX5yRCpMKHmIWdPmg7SV71tErUsSI oKSw9V7Y1yvdo0givXl1lQ0OL7VLwcJvrwzGZb6A0n/mAdYgP5Giiz3BXG655RAJ k2iuZwc/wlWN8uTbN05C33wdmNiEjw6LSo/TvX5C9wjJiOKu+Vvwh2cT65OOaQOQ a4BYpmzm2Jr+rDW4+2ON6P3T6BQlxvBhZdc28C1w+Twtp5lJqcTx5Vlwhs95OA9b sYcKo1dZWu8egfhOJ52uVTD5AUHjCdJ1 -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:21 2024 by rpki-client on console-ams.rpki-client.org