$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft File: TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft (raw, json) Hash identifier: hiHqplUnx6PAbr2gxNowqkNSYRzhKypnFSiIsvsf2io= Subject key identifier: 9C:E8:9E:F5:2E:D9:F5:D6:81:3E:77:51:FC:C0:41:D5:D8:82:42:D1 Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft Manifest number: 010C Signing time: Sat 23 Nov 2024 03:09:19 +0000 Manifest this update: Sat 23 Nov 2024 03:09:19 +0000 Manifest next update: Sat 30 Nov 2024 03:09:19 +0000 Files and hashes: 1: TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl (hash: 4TZ1vToP+oB6widz5HQeVRRUzczryP5Yrw7q7RpeSWo=) 2: 5EAB725014A211EEA889E832C4F9AE02.roa (hash: N9v1fXpAWQUpJZbuaCy/aYTK4l+eZ+kCyMuepJ8AyXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Nov 23 03:09:19 2024 GMT Not After : Nov 30 03:09:19 2024 GMT Subject: CN=6741475f-3936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e7:de:8e:41:91:78:5b:91:31:af:00:42:24: d7:8c:29:5d:8a:38:ef:ff:39:ca:55:9d:4f:bd:eb: 13:d5:11:7d:db:39:c8:72:6e:c1:f4:9b:65:2e:b9: 63:a3:41:b0:86:6e:f9:b5:78:7b:3d:5c:ff:fb:54: ce:37:36:53:25:21:83:04:46:ab:91:b4:f0:d9:22: 3c:de:3c:98:53:7a:56:75:9c:65:7b:3d:a2:45:c1: e2:e8:9f:22:05:ab:07:2d:fc:2a:5c:76:30:d0:d7: 8b:34:c3:b3:08:65:5f:67:ac:1b:b7:3a:56:b4:57: 3e:7c:5b:06:8c:34:53:5d:bb:2a:ff:c2:8b:68:17: ea:2f:0d:ba:ac:77:19:cf:4b:7d:22:6d:a5:97:0f: c3:e2:68:fd:51:2e:dd:26:85:57:f0:16:54:65:59: 28:97:aa:4b:2f:55:4c:ba:0a:15:49:b5:90:d3:44: 1b:56:04:4f:98:7e:85:30:59:29:8c:c9:20:5f:46: 28:a6:88:a2:e2:41:f3:a7:d4:92:cd:8e:26:46:02: fe:c8:4d:a0:a2:d0:a2:c8:cd:8a:85:66:88:b9:70: ac:2f:2a:2d:06:08:92:97:a7:48:39:13:8a:4f:34: 12:3c:28:73:7b:45:5d:4c:83:58:de:3d:0f:20:71: f8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E8:9E:F5:2E:D9:F5:D6:81:3E:77:51:FC:C0:41:D5:D8:82:42:D1 X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:d5:7b:04:e2:c3:fa:15:6b:46:d7:d9:36:40:00:c3:db:d3: 64:63:8d:1e:e9:30:38:e3:67:b5:1e:02:81:12:e8:d8:db:c4: f8:22:1f:11:d5:41:2d:9c:fe:f1:80:f8:1d:f0:b4:0e:02:66: 70:f6:d4:13:fe:05:02:4f:8a:f1:8d:c4:79:f0:fb:22:39:2f: e1:73:5a:35:b2:26:b7:ce:f8:67:16:a2:b0:94:26:f6:5e:5a: 87:c3:04:19:71:54:91:29:37:7c:b6:b2:f5:50:08:c5:09:6a: 8c:21:90:e8:8f:2c:c9:5d:3d:5c:6b:b1:d7:e9:d5:3f:21:13: 18:94:d5:51:2d:7a:c3:1f:e7:13:fc:fb:4b:31:4e:9f:25:ae: 95:64:23:16:c5:8d:e0:5b:bd:16:15:a0:ac:3e:f8:05:34:7f: c4:b6:04:ce:00:4b:98:d7:f9:1a:73:43:05:39:81:66:30:ca: a1:29:51:42:3c:ee:ce:34:77:90:97:72:38:69:8d:0e:bb:54: b5:71:b7:9f:ba:19:c6:f2:e1:07:7b:01:f0:85:80:ca:8e:61: 8a:9b:7c:98:98:ba:79:dc:5d:f6:16:f2:28:c1:37:8d:b0:f2: 08:a8:de:33:d3:a6:83:43:df:8a:da:27:c3:32:ca:aa:01:a6: 25:52:0e:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQyNzExMTAvBgNVBAUTKDRDRUVFRTZEMzY2M0MxM0ZEODJFOTMxREFDNjlGMTcw NDZGQzk5QjMwHhcNMjQxMTIzMDMwOTE5WhcNMjQxMTMwMDMwOTE5WjAYMRYwFAYD VQQDEw02NzQxNDc1Zi0zOTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOfejkGReFuRMa8AQiTXjCldijjv/znKVZ1PvesT1RF92znIcm7B9JtlLrlj o0Gwhm75tXh7PVz/+1TONzZTJSGDBEarkbTw2SI83jyYU3pWdZxlez2iRcHi6J8i BasHLfwqXHYw0NeLNMOzCGVfZ6wbtzpWtFc+fFsGjDRTXbsq/8KLaBfqLw26rHcZ z0t9Im2llw/D4mj9US7dJoVX8BZUZVkol6pLL1VMugoVSbWQ00QbVgRPmH6FMFkp jMkgX0Yopoii4kHzp9SSzY4mRgL+yE2gotCiyM2KhWaIuXCsLyotBgiSl6dIOROK TzQSPChze0VdTINY3j0PIHH4ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzonvUu 2fXWgT53UfzAQdXYgkLRMB8GA1UdIwQYMBaAFEzu7m02Y8E/2C6THaxp8XBG/Jmz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDI3MS8yODE0RjBERTEx QjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandUX1lMcE1kckdueGNFYjht Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1iTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi9UTzd1YlRaandU X1lMcE1kckdueGNFYjhtYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk1XsE4sP6FWtG19k2QADD29NkY40e6TA442e1HgKBEujY28T4Ih8R 1UEtnP7xgPgd8LQOAmZw9tQT/gUCT4rxjcR58PsiOS/hc1o1sia3zvhnFqKwlCb2 XlqHwwQZcVSRKTd8trL1UAjFCWqMIZDojyzJXT1ca7HX6dU/IRMYlNVRLXrDH+cT /PtLMU6fJa6VZCMWxY3gW70WFaCsPvgFNH/EtgTOAEuY1/kac0MFOYFmMMqhKVFC PO7ONHeQl3I4aY0Ou1S1cbefuhnG8uEHewHwhYDKjmGKm3yYmLp53F32FvIowTeN sPIIqN4z06aDQ9+K2ifDMsqqAaYlUg78 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org