$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft File: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft (raw, json) Hash identifier: 0Fq9nhP7f2BuGgtoh7MAV0kWo/S6XWf1RAS6+zgAoV4= Subject key identifier: 17:69:46:97:CC:E7:01:09:A4:10:DA:0D:AC:63:1F:E7:61:95:40:A4 Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0B85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft Manifest number: 0B71 Signing time: Fri 22 Nov 2024 18:49:22 +0000 Manifest this update: Fri 22 Nov 2024 18:49:21 +0000 Manifest next update: Fri 29 Nov 2024 18:49:21 +0000 Files and hashes: 1: 7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl (hash: zyMwQN2NrL8dTi+rYhiFfUOs0ffm3ph1f3ezK8dEOYQ=) 2: 61EE7C6C281211EA881CC32DC4F9AE02.roa (hash: HvkNMYRpxj5Pjk2b6IdbHOGMu5kf16FTiNfirlOJwkA=) 3: 57A5ACF20FE911EBB5AE5524C4F9AE02.roa (hash: db0uZkZWuJQaQM8R/3bIEhp6I+FLcCb/1k0tn5JacmM=) 4: 627B1438281211EA881CC32DC4F9AE02.roa (hash: g8z7pfsZjZXsZNzC0de4NUY66eo2G1FWTU8PNhYjoTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2949 (0xb85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Validity Not Before: Nov 22 18:49:21 2024 GMT Not After : Nov 29 18:49:21 2024 GMT Subject: CN=6740d232-c684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:03:48:9c:9b:8e:ba:bd:66:e5:94:08:0f: 67:53:39:0a:d0:63:f7:2b:bc:7b:20:aa:67:75:51: 31:c9:b8:22:c0:fd:f4:d0:ff:37:e0:26:b3:3b:4a: 22:ff:a8:82:67:df:96:dc:9d:dc:4c:b2:4c:4a:d6: 3b:5b:a1:95:83:94:83:25:21:75:22:d8:a2:8e:e6: 96:52:a9:79:47:a5:d1:fe:60:59:2e:88:37:ae:04: fa:9b:0c:b4:e5:69:6f:05:1d:a9:a9:3c:68:57:b1: cd:d7:76:04:9c:43:b6:ad:60:68:50:77:6f:1f:f8: b0:42:90:c4:cd:9c:97:12:1e:4b:cc:56:70:2b:9d: 2f:0b:dc:0e:64:0c:6b:bd:0b:43:e2:0e:c6:a7:4c: 83:c3:a0:e2:8b:b3:46:cc:06:64:36:8c:73:c1:10: ab:a1:45:d6:cc:90:4a:39:e9:38:ea:04:0a:9b:3d: bc:26:68:18:50:f7:07:e1:e4:b9:ef:3c:c3:d8:c7: fa:09:df:68:b3:e2:2b:c8:34:f3:ae:e8:04:c8:12: 8e:b6:3b:a1:9d:57:55:cf:61:8d:13:88:89:11:29: 93:5d:c2:c9:03:3f:8d:1d:9e:64:e2:27:2f:29:a3: a4:38:52:3c:10:31:d5:ac:90:0e:fa:14:69:50:72: b2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:69:46:97:CC:E7:01:09:A4:10:DA:0D:AC:63:1F:E7:61:95:40:A4 X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:ab:a6:ab:d2:f8:ae:3b:b0:43:24:4f:d8:4e:82:cf:81:6c: 3b:c3:dd:3b:74:4e:ab:aa:f3:55:d4:64:7a:bf:d3:99:85:0f: b2:b4:ba:35:18:e3:c3:d4:0b:30:1d:16:dd:8c:33:7e:b4:a9: d4:5a:c8:1c:b1:f9:35:38:32:b2:76:0e:fb:0c:53:72:8f:10: bf:fa:5c:e5:b2:94:48:3d:59:19:fb:70:fb:08:e0:f5:bb:f7: 8f:2f:3a:7b:0f:e7:e5:25:54:9b:43:30:ca:0e:8b:c0:bc:38: 9e:4b:df:f9:cc:aa:f4:40:76:91:c3:9d:f1:71:32:ef:87:61: 98:cf:90:96:62:d9:60:0b:f2:5f:86:ef:e5:eb:88:99:11:89: 09:77:08:dd:ec:4c:37:df:50:dd:a3:9d:87:6c:0b:a0:ad:bb: 51:26:58:b0:a4:5a:00:59:bd:4a:e0:12:5f:02:00:cf:74:b3: b0:69:de:5f:2f:74:42:ef:08:bb:f8:69:fb:c4:89:08:00:78: 62:be:d2:ff:e5:dc:40:b1:e7:dd:12:c9:e6:c4:88:18:ac:b4: 63:64:7b:a4:27:5f:1d:00:dc:2f:aa:4c:7f:8e:ba:ac:39:c9: e2:b1:0f:61:e2:dc:dc:4f:72:ba:75:c4:64:56:ee:86:2c:3d: 6e:07:d3:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjQxMTIyMTg0OTIxWhcNMjQxMTI5MTg0OTIxWjAYMRYwFAYD VQQDEw02NzQwZDIzMi1jNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAro0DSJybjrq9ZuWUCA9nUzkK0GP3K7x7IKpndVExybgiwP300P834CazO0oi /6iCZ9+W3J3cTLJMStY7W6GVg5SDJSF1ItiijuaWUql5R6XR/mBZLog3rgT6mwy0 5WlvBR2pqTxoV7HN13YEnEO2rWBoUHdvH/iwQpDEzZyXEh5LzFZwK50vC9wOZAxr vQtD4g7Gp0yDw6Dii7NGzAZkNoxzwRCroUXWzJBKOek46gQKmz28JmgYUPcH4eS5 7zzD2Mf6Cd9os+IryDTzrugEyBKOtjuhnVdVz2GNE4iJESmTXcLJAz+NHZ5k4icv KaOkOFI8EDHVrJAO+hRpUHKyjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdpRpfM 5wEJpBDaDaxjH+dhlUCkMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDcwQS80MUFCRDI5RTFCODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBL c29RYnFUNlFMcWFDbVMycWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4q6ar0viuO7BDJE/YToLPgWw7w907dE6rqvNV1GR6v9OZhQ+ytLo1 GOPD1AswHRbdjDN+tKnUWsgcsfk1ODKydg77DFNyjxC/+lzlspRIPVkZ+3D7COD1 u/ePLzp7D+flJVSbQzDKDovAvDieS9/5zKr0QHaRw53xcTLvh2GYz5CWYtlgC/Jf hu/l64iZEYkJdwjd7Ew331Ddo52HbAugrbtRJliwpFoAWb1K4BJfAgDPdLOwad5f L3RC7wi7+Gn7xIkIAHhivtL/5dxAsefdEsnmxIgYrLRjZHukJ18dANwvqkx/jrqs OcnisQ9h4tzcT3K6dcRkVu6GLD1uB9M9 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org