$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft File: tnwkXksr7q0jwfBd0w_5B32HuOY.mft (raw, json) Hash identifier: KR39OKiiPxX+dWU2szc6F7lR97wG2AWsPyQrlRnn6ow= Subject key identifier: A8:44:31:8A:64:A3:B3:1D:0A:C3:A5:AD:EE:85:C5:CD:77:13:F8:C0 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 123A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft Manifest number: 1233 Signing time: Fri 22 Nov 2024 17:07:37 +0000 Manifest this update: Fri 22 Nov 2024 17:07:36 +0000 Manifest next update: Fri 29 Nov 2024 17:07:36 +0000 Files and hashes: 1: tnwkXksr7q0jwfBd0w_5B32HuOY.crl (hash: 0F684pTmUWmLMpf2E6su4L/c83hCgopHV8fmHx/nRko=) 2: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (hash: n2FBgQHuh988fwkOcnAooQ/jXQmiLgbdWeucP9Cz7sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4666 (0x123a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Nov 22 17:07:36 2024 GMT Not After : Nov 29 17:07:36 2024 GMT Subject: CN=6740ba58-753e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a6:2f:79:96:91:41:36:5b:5d:65:82:7a:c6: 5f:f7:95:de:f0:24:b3:a9:e0:d0:13:57:9f:ff:69: f3:5b:e4:f4:22:93:de:97:f0:8c:22:83:60:7a:71: fd:c5:20:f8:a4:36:8b:e8:f9:d0:61:8f:38:37:18: d7:ee:fb:8f:3f:97:d0:05:f4:c8:1d:62:87:a5:41: 98:de:b4:25:01:71:17:56:1b:bf:b4:5c:83:70:29: 6c:c4:88:24:bc:95:eb:86:d8:5e:04:35:e0:9d:9c: 75:70:ed:5b:78:03:a0:1c:6d:ee:bd:ee:70:ed:2e: 2e:28:e8:85:cf:9c:dd:c4:7a:b4:15:e3:f9:ff:89: 69:4e:05:9d:38:e4:83:1b:95:34:5e:ee:01:bc:33: 6b:df:24:ae:15:58:f5:17:4a:fd:d7:e2:c0:60:9b: c0:a2:20:65:79:a0:cc:45:50:08:6a:9f:a7:53:7c: b5:7a:d9:15:3f:93:aa:47:c2:37:28:40:77:3b:0a: f3:44:d7:de:b8:73:92:c9:4a:17:bb:67:3e:23:7e: 48:3d:c3:ec:51:53:04:c4:9f:54:7c:e3:d6:df:2e: bb:4f:55:41:94:39:a4:0e:55:5c:b8:50:7b:29:28: fd:3d:88:62:9f:c2:94:01:9b:15:e4:70:da:e5:69: 6f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:44:31:8A:64:A3:B3:1D:0A:C3:A5:AD:EE:85:C5:CD:77:13:F8:C0 X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:13:7d:6f:ee:ab:2c:0e:fd:19:c1:18:79:35:09:52:3a:c0: bb:0d:90:7e:8c:6b:ec:d4:72:6d:db:a4:56:10:2f:ef:09:f1: da:6e:cf:0f:89:41:a2:8d:d8:25:a7:47:bf:cd:29:ea:bf:f9: c5:1c:36:90:9c:c9:a3:7b:c6:68:de:19:7e:ee:f8:3f:ab:dd: 42:38:df:e8:44:d0:ca:56:c0:cb:e2:07:62:3b:6b:dd:24:59: c9:52:fe:e4:76:8a:17:12:58:7c:43:a9:be:e9:b8:14:5f:f1: 39:dd:e0:a9:a4:e5:9c:e6:57:ad:53:44:6b:46:1b:c2:26:54: 24:16:e2:b0:95:04:9d:fa:24:73:80:7e:35:dc:58:33:3f:7e: e8:5d:bd:c0:9d:db:f5:bc:69:40:13:f3:77:d7:99:c9:7b:5d: 12:a0:3e:f3:28:ed:28:3a:05:05:30:53:f0:e9:a0:8a:3b:4d: e3:78:b5:fe:f6:c8:82:ed:eb:fc:8f:61:47:72:52:56:44:9d: 79:1e:13:d2:c3:66:77:b4:ae:f0:d2:bd:a0:7b:9d:b3:7f:4a: 90:24:11:f1:7f:e8:a5:0c:e5:32:16:57:5b:53:7b:ea:3a:88: 00:90:fb:88:03:15:a4:dd:34:e7:6f:a0:67:fe:a5:ce:69:67: 54:3a:83:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjQxMTIyMTcwNzM2WhcNMjQxMTI5MTcwNzM2WjAYMRYwFAYD VQQDEw02NzQwYmE1OC03NTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6YveZaRQTZbXWWCesZf95Xe8CSzqeDQE1ef/2nzW+T0IpPel/CMIoNgenH9 xSD4pDaL6PnQYY84NxjX7vuPP5fQBfTIHWKHpUGY3rQlAXEXVhu/tFyDcClsxIgk vJXrhtheBDXgnZx1cO1beAOgHG3uve5w7S4uKOiFz5zdxHq0FeP5/4lpTgWdOOSD G5U0Xu4BvDNr3ySuFVj1F0r91+LAYJvAoiBleaDMRVAIap+nU3y1etkVP5OqR8I3 KEB3OwrzRNfeuHOSyUoXu2c+I35IPcPsUVMExJ9UfOPW3y67T1VBlDmkDlVcuFB7 KSj9PYhin8KUAZsV5HDa5WlvxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKhEMYpk o7MdCsOlre6Fxc13E/jAMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTZDNy9DODU2RDZDNEM2QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdx MGp3ZkJkMHdfNUIzMkh1T1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXE31v7qssDv0ZwRh5NQlSOsC7DZB+jGvs1HJt26RWEC/vCfHabs8P iUGijdglp0e/zSnqv/nFHDaQnMmje8Zo3hl+7vg/q91CON/oRNDKVsDL4gdiO2vd JFnJUv7kdooXElh8Q6m+6bgUX/E53eCppOWc5letU0RrRhvCJlQkFuKwlQSd+iRz gH413FgzP37oXb3Andv1vGlAE/N315nJe10SoD7zKO0oOgUFMFPw6aCKO03jeLX+ 9siC7ev8j2FHclJWRJ15HhPSw2Z3tK7w0r2ge52zf0qQJBHxf+ilDOUyFldbU3vq OogAkPuIAxWk3TTnb6Bn/qXOaWdUOoOt -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:55 2024 by rpki-client on console-ams.rpki-client.org