$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: wr0LpZcUCL/6G/MFoStqm/J2gJzjSFgWg+naeW4jb1k= Subject key identifier: F4:45:DC:4C:7D:48:09:AE:93:09:06:E8:A2:F1:5D:5A:A5:53:A6:EE Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 096D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 0967 Signing time: Sun 02 Jun 2024 21:22:30 +0000 Manifest this update: Sun 02 Jun 2024 21:22:30 +0000 Manifest next update: Sun 09 Jun 2024 21:22:30 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: veMDRBcg9VVwijRF63XmITWhd3cTzxbDa/KRsqATugQ=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: asIJPd7ycQgmyjnwr6+3XbmDuWfL8nZVojE1+b6iXHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 21:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2413 (0x96d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Jun 2 21:22:30 2024 GMT Not After : Jun 9 21:22:30 2024 GMT Subject: CN=665ce296-8631 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7c:f7:9b:a4:ca:54:56:4f:9c:98:bf:fc:c3: 13:a1:16:19:21:06:19:58:eb:28:e1:19:8c:dd:cc: a8:75:36:0f:8a:87:b3:6d:1c:4e:fd:ef:52:a3:61: 5e:98:40:78:84:b0:e8:c2:f8:32:7a:f3:f1:a2:2e: cf:dd:8f:58:1d:3e:28:36:7a:d3:ea:ac:63:71:a6: 62:24:f2:f4:5f:3e:c4:03:26:1d:0c:f4:b8:e3:0e: 93:0c:dd:42:79:31:42:c5:4e:ad:10:65:7f:61:24: 50:6e:07:00:7e:aa:0e:7e:08:de:43:e0:24:9d:61: 07:7b:40:93:10:e7:6f:b8:84:c6:56:23:e3:1c:f1: 7e:6e:61:00:90:a4:ff:11:ae:c7:5c:0a:d1:97:9e: 36:ce:a9:b6:a5:de:0c:ed:3d:b5:12:a6:15:05:7d: 55:b3:05:c8:1f:3a:4a:a1:c2:fd:da:69:b3:35:f3: 92:1b:8f:06:1a:8b:7d:a5:a5:8d:02:1b:1b:02:fe: 82:c3:13:1b:15:f1:fc:32:78:29:73:9b:1c:bf:1f: 33:9b:aa:53:93:76:53:13:57:97:9e:8c:33:d1:13: 2a:73:de:0b:93:f3:f9:04:3d:db:1b:09:83:36:91: ed:ec:69:83:99:f5:3a:37:43:b7:e4:38:3c:64:a4: 43:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:45:DC:4C:7D:48:09:AE:93:09:06:E8:A2:F1:5D:5A:A5:53:A6:EE X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:d2:95:ff:95:75:99:96:ab:8d:ce:85:61:f8:4f:c0:58:9e: 33:72:49:7f:b0:60:5e:5b:a9:59:f9:d0:a2:cd:61:a9:4f:d9: cc:4d:f0:ee:79:02:a6:a9:36:6f:5c:14:66:05:25:f7:67:e3: b9:a1:73:67:ae:3b:94:60:ad:57:06:bd:68:7e:10:51:1d:6b: 2b:0e:7d:67:b3:bc:ee:3c:dd:97:b6:6b:b5:37:17:2c:15:f6: 76:38:46:fa:1f:3f:34:f8:d5:67:c9:40:98:df:c1:96:75:5a: a4:cf:78:c3:60:c7:08:78:ee:a3:f6:19:45:85:f6:42:22:07: 03:17:6d:a4:e5:97:56:91:9f:9f:44:83:81:9c:42:15:ec:04: 5e:04:e2:42:38:68:8e:b9:8f:c8:85:ba:84:22:1a:09:bc:43: 80:45:04:b2:32:6c:72:58:32:48:8d:e1:4e:4e:d4:3d:24:25: a0:db:31:88:0b:b7:81:4c:41:07:8b:63:35:b3:e9:f5:28:ec: 1a:ec:a2:06:ff:de:0a:ee:65:3c:4c:69:d2:2c:ae:d3:fc:6f: 35:7e:7c:a5:1e:0e:19:d0:c5:ce:a7:a4:5b:68:88:6b:be:09: a8:f4:ea:84:fe:54:a3:14:b2:9f:f7:0e:32:30:1b:38:61:67: ae:12:63:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjQwNjAyMjEyMjMwWhcNMjQwNjA5MjEyMjMwWjAYMRYwFAYD VQQDEw02NjVjZTI5Ni04NjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03z3m6TKVFZPnJi//MMToRYZIQYZWOso4RmM3cyodTYPioezbRxO/e9So2Fe mEB4hLDowvgyevPxoi7P3Y9YHT4oNnrT6qxjcaZiJPL0Xz7EAyYdDPS44w6TDN1C eTFCxU6tEGV/YSRQbgcAfqoOfgjeQ+AknWEHe0CTEOdvuITGViPjHPF+bmEAkKT/ Ea7HXArRl542zqm2pd4M7T21EqYVBX1VswXIHzpKocL92mmzNfOSG48GGot9paWN AhsbAv6CwxMbFfH8Mngpc5scvx8zm6pTk3ZTE1eXnowz0RMqc94Lk/P5BD3bGwmD NpHt7GmDmfU6N0O35Dg8ZKRDKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPRF3Ex9 SAmukwkG6KLxXVqlU6buMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt0pX/lXWZlquNzoVh+E/AWJ4zckl/sGBeW6lZ+dCizWGpT9nMTfDu eQKmqTZvXBRmBSX3Z+O5oXNnrjuUYK1XBr1ofhBRHWsrDn1ns7zuPN2Xtmu1Nxcs FfZ2OEb6Hz80+NVnyUCY38GWdVqkz3jDYMcIeO6j9hlFhfZCIgcDF22k5ZdWkZ+f RIOBnEIV7AReBOJCOGiOuY/IhbqEIhoJvEOARQSyMmxyWDJIjeFOTtQ9JCWg2zGI C7eBTEEHi2M1s+n1KOwa7KIG/94K7mU8TGnSLK7T/G81fnylHg4Z0MXOp6RbaIhr vgmo9OqE/lSjFLKf9w4yMBs4YWeuEmP4 -----END CERTIFICATE-----Generated at Sun Jun 2 22:26:06 2024 by rpki-client on console-fra.rpki-client.org