$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft File: 73683CF31A4147336D82C5218D7389B5D741DE1B.mft (raw, json) Hash identifier: eaLEAcO1ZQrqOfUOaqK0rXDRt28IcbI5ZerXImvLB9E= Subject key identifier: 7B:FC:7C:5A:A0:21:2C:1B:28:29:06:3B:1A:29:23:B1:C7:F6:B8:36 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 5FA72798623B6CF0DEA31DD8231DB7027B881A6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft Manifest number: 05F4 Signing time: Sun 19 May 2024 15:13:38 +0000 Manifest this update: Sun 19 May 2024 15:08:38 +0000 Manifest next update: Mon 20 May 2024 17:18:38 +0000 Files and hashes: 1: 3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa (hash: y9aOMeE0hTe5z5Ks0JRIBgoWSzULCU0wQSowRvNwERI=) 2: 3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa (hash: CZnX1QmIvehC0rwPmPmw8X50WQ3tVV/JN3IC4Q32Fuw=) 3: 34352e3132352e302e302f32322d3234203d3e2039333132.roa (hash: jLXKsGG8VQZyOSjlauKKXuqYMPMvcJ8wzlt4IsbTgOM=) 4: 3130332e35362e35332e302f32342d3234203d3e2038383838.roa (hash: Cu6uC4XIQ/nc2t5YSaCpf9dEiwqNHQJJUIl1xAKBDHw=) 5: 3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa (hash: UaHMNF2pmLdBArMzocZxMV/mbZRNujlu+4BAM4H8DeQ=) 6: 3130332e35362e35352e302f32342d3234203d3e2034373835.roa (hash: GH8khGqY9L0+LH7niUi6DXdvQANYzayy9lXEnU+N+BU=) 7: 34352e3131362e31332e302f32342d3234203d3e2034373835.roa (hash: PISjy53T43OPrPVdVIrSrCKAjIktOP5kaTdGpkev9G0=) 8: 3135372e3131392e3130302e302f32322d3234203d3e2039333132.roa (hash: 8Flif2nx+ipPus6EjLwmvv0mPjTf0cG/OAZcyLzrFAM=) 9: 3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa (hash: ozpow74s9/vkyRYoUy+95bprf8wXf4BD410ve+r0GnE=) 10: 3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa (hash: ImREtJmI9Py+3tSryDA/tvEACO9jXKusfJ0vZUKw0YU=) 11: 3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa (hash: Lw3S7PTchYPYJZr/k8u6PLmtg+S85T3OmOxCNmhG4Wc=) 12: 3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa (hash: 40jz3AEKo3c3bJ5OXVkbdCZfLDPOEfoKqABsamzBSKo=) 13: 34352e3131362e31342e302f32342d3234203d3e2034373835.roa (hash: 3DVUN8hsuCa5M/5YawEU5ZNZ6+YF4DINIe7b4/ww5aU=) 14: 3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa (hash: adj2riG7gB+K6iWEOJrOJ/QkP4tFp6jIN7r40OZVmrw=) 15: 3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa (hash: jqJFG1Fw5C48XP/CIB5c/CizVSrPmt6xrc3ti/ecvBk=) 16: 3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa (hash: VCer1FC3ET4+hNfmEPOX+gJkqb65wt2p0FPfU+geXHc=) 17: 323430333a326338303a3a2f33312d3438203d3e2039333132.roa (hash: dq/S35/9gJN156qGdq3sHgd3c6kS54iBI0wR9FySm00=) 18: 73683CF31A4147336D82C5218D7389B5D741DE1B.crl (hash: o2sibh23X+caw0EXlybTarMz75VxGhDG+1y9NMCBY5M=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 17:18:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a7:27:98:62:3b:6c:f0:de:a3:1d:d8:23:1d:b7:02:7b:88:1a:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: May 19 15:08:38 2024 GMT Not After : May 20 17:18:38 2024 GMT Subject: CN=7BFC7C5AA0212C1B2829063B1A2923B1C7F6B836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b0:b2:ae:df:9b:7a:2a:c4:f4:ee:96:8f:09: 8f:e4:5e:16:43:f7:be:b7:37:65:74:f9:d4:fe:a5: 43:41:b4:c6:d5:cd:d3:7e:ff:b6:16:f1:de:a3:07: 6c:8c:9c:d7:74:54:49:d5:e9:e9:c6:22:0f:d9:9b: 2d:4e:c4:e6:71:f2:7d:b0:e9:86:09:c0:b4:ca:32: 6f:d0:e8:52:56:e8:72:3d:e0:e4:64:60:11:e5:03: e2:8b:27:01:98:93:b1:f2:9c:21:84:bc:26:e3:f1: 9a:a6:9c:41:49:24:af:70:4b:e1:d3:09:e2:98:d5: bb:64:87:3c:e9:35:28:8d:ef:95:9a:d9:1b:bc:cf: 75:fb:3a:a6:ef:bf:a2:7e:73:95:92:50:38:a4:f5: 09:d3:2f:7e:23:2f:f8:fb:27:a5:e2:0a:8a:25:21: 62:2a:9f:9e:d3:8a:f7:bb:d0:8a:44:1b:ba:5e:47: d8:53:cd:99:e1:ff:50:ee:b3:02:77:76:2f:f0:db: e2:2b:94:9c:b4:05:65:4f:cf:a2:e3:98:37:9c:0d: 71:c7:cb:6b:05:cf:ab:49:7a:92:72:3e:d2:0f:4d: 63:7b:da:72:6a:e7:88:1d:e9:a6:8b:ea:31:60:6d: 3d:4e:8c:1e:d0:6a:6b:2d:ec:58:36:64:c0:49:42: 8b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:FC:7C:5A:A0:21:2C:1B:28:29:06:3B:1A:29:23:B1:C7:F6:B8:36 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:cf:13:7f:d9:2e:f1:c7:94:8c:b5:db:0e:73:a8:7a:ef:85: a4:c7:09:ed:84:1e:d0:cf:6e:30:34:6e:53:fa:e5:d0:1a:13: dd:ce:0f:6b:95:2c:bb:7a:06:85:7b:93:74:dc:99:d6:fc:24: 73:c8:ae:b6:4c:fe:83:a1:54:93:14:10:53:e5:80:74:da:d9: 54:a0:36:99:07:2f:21:25:64:11:8f:fb:11:f0:c3:cf:83:ab: c5:86:f3:18:9b:91:bc:9a:b9:22:34:6b:de:d1:00:c0:d2:2e: 47:16:49:dc:9b:05:19:1b:97:bb:bb:bd:94:0e:f0:34:9a:25: a4:2a:20:e5:f3:1d:10:f7:05:fc:cf:1e:20:a6:68:3d:7b:d3: 84:2d:59:39:46:75:04:ea:1c:3e:ea:84:7e:c2:fa:88:e2:a4: d0:d0:34:77:11:e4:60:63:a4:cd:ea:7c:ba:ff:51:f3:e0:68: 28:b7:e1:93:7e:fb:19:58:46:ad:f2:af:8a:f4:48:d5:d5:85: 81:9a:4a:22:50:f1:00:bf:c6:04:9a:a5:a8:b2:7d:e5:6d:9d: d6:48:6d:c7:8c:6f:9f:56:c0:cf:0d:ba:ed:69:f6:80:78:ef: 3c:ce:2a:8e:86:c4:55:ea:93:90:8c:a7:54:64:cb:7f:30:b8: 57:e9:69:34 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUX6cnmGI7bPDeox3YIx23AnuIGmwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDUxOTE1MDgzOFoX DTI0MDUyMDE3MTgzOFowMzExMC8GA1UEAxMoN0JGQzdDNUFBMDIxMkMxQjI4Mjkw NjNCMUEyOTIzQjFDN0Y2QjgzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWwsq7fm3oqxPTulo8Jj+ReFkP3vrc3ZXT51P6lQ0G0xtXN037/thbx3qMH bIyc13RUSdXp6cYiD9mbLU7E5nHyfbDphgnAtMoyb9DoUlbocj3g5GRgEeUD4osn AZiTsfKcIYS8JuPxmqacQUkkr3BL4dMJ4pjVu2SHPOk1KI3vlZrZG7zPdfs6pu+/ on5zlZJQOKT1CdMvfiMv+PsnpeIKiiUhYiqfntOK97vQikQbul5H2FPNmeH/UO6z And2L/Db4iuUnLQFZU/PouOYN5wNccfLawXPq0l6knI+0g9NY3vacmrniB3ppovq MWBtPU6MHtBqay3sWDZkwElCi3UCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBR7/Hxa oCEsGygpBjsaKSOxx/a4NjAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvNzM2ODNDRjMxQTQxNDczMzZEODJDNTIxOEQ3Mzg5 QjVENzQxREUxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIDPE3/ZLvHHlIy12w5zqHrvhaTHCe2EHtDP bjA0blP65dAaE93OD2uVLLt6BoV7k3Tcmdb8JHPIrrZM/oOhVJMUEFPlgHTa2VSg NpkHLyElZBGP+xHww8+Dq8WG8xibkbyauSI0a97RAMDSLkcWSdybBRkbl7u7vZQO 8DSaJaQqIOXzHRD3BfzPHiCmaD1704QtWTlGdQTqHD7qhH7C+ojipNDQNHcR5GBj pM3qfLr/UfPgaCi34ZN++xlYRq3yr4r0SNXVhYGaSiJQ8QC/xgSapaiyfeVtndZI bceMb59WwM8Nuu1p9oB47zzOKo6GxFXqk5CMp1Rky38wuFfpaTQ= -----END CERTIFICATE-----Generated at Sun May 19 17:37:01 2024 by rpki-client on console-ams.rpki-client.org