$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: QbUn7xgXp3by0BCAYBkeyMSySGHBz0ELmLtfoZHc5As= Subject key identifier: 32:C2:89:7A:92:D2:31:7D:75:B9:EB:ED:27:67:F9:35:31:89:CE:A5 Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 16AA Signing time: Fri 22 Nov 2024 17:39:22 +0000 Manifest this update: Fri 22 Nov 2024 17:39:22 +0000 Manifest next update: Fri 29 Nov 2024 17:39:22 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: 9ll6LAdIs1fElPbu8fhK3fZzefuALMi+OpEh9jFwzrc=) 2: 9A6F15D6624311EFA06D813FC4F9AE02.roa (hash: cvyJpDKtEjYd0NNvfJQS1R5prVmYd7uPbRa+BmYqEmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Nov 22 17:39:22 2024 GMT Not After : Nov 29 17:39:22 2024 GMT Subject: CN=6740c1ca-e69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:1f:93:a3:4f:e9:fe:e1:19:e8:59:4c:88:08: c4:75:71:30:e0:cc:a8:c4:9a:62:03:82:0b:5d:0e: 3c:7a:cf:81:ea:cf:d0:97:a0:72:a2:d9:71:9c:0e: 0f:d5:01:84:6d:7e:14:e0:c2:a2:75:0e:ff:4c:a1: 54:d2:1c:82:3a:2f:b5:d5:79:e9:86:67:c3:9b:5b: 86:fa:96:06:99:0b:a9:c6:7c:51:37:2d:78:01:30: fe:a1:1e:7a:4e:07:44:d6:bb:b1:ff:66:fa:e3:c5: 2b:2c:85:c2:a3:64:e2:4c:c4:01:9a:6a:c2:6a:97: 8b:04:8c:36:0f:85:af:9c:92:17:df:92:f4:df:1f: 92:7c:6c:f8:ff:44:2a:4e:13:06:f1:62:7d:f1:6e: 71:1d:92:6f:fc:cb:24:2f:34:84:d0:dc:5c:5a:bc: 4d:04:f5:d7:73:35:2a:c3:da:2a:03:a0:11:b6:9e: 80:2c:56:ec:4f:e0:00:8e:8b:51:06:0a:c3:f1:59: 7f:ec:a2:c2:98:7c:e5:e8:d4:7b:f0:bb:fe:0e:44: ad:e7:f1:78:d4:f3:e3:e6:b8:42:98:84:41:b2:ec: c4:e0:73:c2:77:c3:e9:14:21:ce:84:b4:6b:85:85: 7b:27:7d:d9:38:73:62:73:e9:d5:82:67:92:54:13: d5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C2:89:7A:92:D2:31:7D:75:B9:EB:ED:27:67:F9:35:31:89:CE:A5 X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:b9:9c:93:91:12:e8:75:d6:47:85:bc:31:60:42:86:be:f0: e2:1d:f7:fb:67:92:ff:1c:df:11:18:31:c5:a4:71:5d:b3:36: de:1c:12:e9:21:33:c1:c0:f5:53:6d:60:11:80:75:63:54:76: a3:3b:05:0c:e5:80:4f:61:3a:b4:04:8a:e1:0b:ef:0f:70:26: 99:a3:f4:23:e3:e4:ad:84:cd:7c:76:4e:30:d8:34:59:5c:79: 4f:a6:52:09:93:e3:63:52:a2:0e:33:20:58:3b:6d:e4:a4:52: e7:ca:80:03:00:b0:c5:09:ae:49:e9:c9:2a:c2:d1:41:73:b0: 34:bc:f8:1d:5c:f7:ae:c1:d5:31:b2:68:16:2c:6d:ad:3c:8a: 0b:eb:e6:7c:c8:7a:78:34:8f:42:b5:c7:4f:81:08:68:d6:34: 37:d3:88:a6:7a:ca:ef:f5:ca:73:d0:1d:8b:14:42:df:f9:95: c9:12:ef:38:f5:ba:9d:63:f2:be:fe:00:08:b2:70:56:38:c3: 76:af:86:29:ac:21:55:72:c1:c1:03:27:ea:55:c2:4b:c2:d9: 55:43:98:e9:7e:24:af:87:2f:fc:41:e5:50:37:7f:2c:96:ed: 49:77:52:61:96:bb:c8:ef:62:eb:f0:6c:0d:e8:fc:98:24:1a: 59:f2:74:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUJGNDExMC8GA1UEBRMoNjkzQzhCNENCQTI2QjA2RDJDRkFCQTBGOUJFNEQzN0RG MERERkYzRDAeFw0yNDExMjIxNzM5MjJaFw0yNDExMjkxNzM5MjJaMBgxFjAUBgNV BAMTDTY3NDBjMWNhLWU2OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyH5OjT+n+4RnoWUyICMR1cTDgzKjEmmIDggtdDjx6z4Hqz9CXoHKi2XGcDg/V AYRtfhTgwqJ1Dv9MoVTSHII6L7XVeemGZ8ObW4b6lgaZC6nGfFE3LXgBMP6hHnpO B0TWu7H/ZvrjxSsshcKjZOJMxAGaasJql4sEjDYPha+ckhffkvTfH5J8bPj/RCpO EwbxYn3xbnEdkm/8yyQvNITQ3FxavE0E9ddzNSrD2ioDoBG2noAsVuxP4ACOi1EG CsPxWX/sosKYfOXo1Hvwu/4ORK3n8XjU8+PmuEKYhEGy7MTgc8J3w+kUIc6EtGuF hXsnfdk4c2Jz6dWCZ5JUE9U9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMsKJepLS MX11uevtJ2f5NTGJzqUwHwYDVR0jBBgwFoAUaTyLTLomsG0s+roPm+TTffDd/z0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQkY0L0VBODcxODVDNzIx QjExRTlCQjc0ODE1MEM0RjlBRTAyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVR5TFRMb21zRzBzLXJvUG0tVFRmZkRkX3owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFB QkY0L0VBODcxODVDNzIxQjExRTlCQjc0ODE1MEM0RjlBRTAyL2FUeUxUTG9tc0cw cy1yb1BtLVRUZmZEZF96MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD65nJOREuh11keFvDFgQoa+8OId9/tnkv8c3xEYMcWkcV2zNt4cEukh M8HA9VNtYBGAdWNUdqM7BQzlgE9hOrQEiuEL7w9wJpmj9CPj5K2EzXx2TjDYNFlc eU+mUgmT42NSog4zIFg7beSkUufKgAMAsMUJrknpySrC0UFzsDS8+B1c967B1TGy aBYsba08igvr5nzIeng0j0K1x0+BCGjWNDfTiKZ6yu/1ynPQHYsUQt/5lckS7zj1 up1j8r7+AAiycFY4w3avhimsIVVywcEDJ+pVwkvC2VVDmOl+JK+HL/xB5VA3fyyW 7Ul3UmGWu8jvYuvwbA3o/JgkGlnydCA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:55 2024 by rpki-client on console-fra.rpki-client.org