$ rpki-client -vvf rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft File: tw3qbHe56OzOWDkTKBnvkTc_xSc.mft (raw, json) Hash identifier: euqlWhtPcqGXg+LXOZh9wZ7C+CTcE1XmYdFMgV4RHIM= Subject key identifier: 16:FE:F5:1B:0B:39:C5:E8:B3:15:5F:77:66:83:14:DC:E5:90:56:6E Authority key identifier: B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 Certificate issuer: /CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft Manifest number: 43 Signing time: Sun 15 Sep 2024 09:46:51 +0000 Manifest this update: Sun 15 Sep 2024 09:46:51 +0000 Manifest next update: Sun 22 Sep 2024 09:46:50 +0000 Files and hashes: 1: tw3qbHe56OzOWDkTKBnvkTc_xSc.crl (hash: E57ptbsMvMV8TOfCIwjLUfweGZvruEonJLE5cK4xCpE=) 2: D6AEA2D20DE311EFA1E24F25C4F9AE02.roa (hash: nDgnRwgmZ7bsNv+cYxklBGsN8gkMFm1vGl/SBkHHb6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E2B2/serialNumber=B70DEA6C77B9E8ECCE5839132819EF91373FC527 Validity Not Before: Sep 15 09:46:51 2024 GMT Not After : Sep 22 09:46:50 2024 GMT Subject: CN=66e6ad0b-180c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:14:96:2f:dd:41:09:28:8a:da:a1:1e:ec:87: 79:40:37:4b:5a:f7:21:a8:8a:30:d7:88:96:6b:37: 55:d8:31:78:17:3b:31:f3:70:94:27:50:f0:19:ac: 50:bc:6c:aa:66:22:db:f8:15:2b:b6:63:43:b1:f4: 1b:73:bb:2d:00:8b:24:fc:8e:e9:d7:95:46:73:79: e6:89:57:3f:84:2e:4b:77:2e:0f:39:f5:8f:41:49: 77:25:2f:c0:cb:2b:db:89:10:61:4a:a6:e6:9b:e0: b7:12:58:e3:e0:06:c9:c2:7a:94:4c:16:02:0b:3e: b4:b6:71:c8:00:d2:1d:90:3e:10:f4:43:83:8a:f0: 24:42:23:04:9e:34:f4:26:af:cd:e3:47:1a:3d:87: 22:59:e7:18:5f:ca:2a:b0:c9:7d:1e:12:35:af:dd: 8d:d8:b7:52:00:79:95:7a:34:2c:d5:69:5b:a2:17: 9e:0b:59:c8:b9:f4:f7:e1:b5:42:0e:18:d4:ee:84: bd:d1:66:97:16:49:b3:9d:fb:54:73:80:a5:48:0a: a3:f8:b2:d7:8a:a8:08:26:1e:3b:19:0c:15:a6:b2: e6:56:f6:86:7a:4f:c2:d3:7c:69:5f:b4:2c:a2:60: 30:03:83:03:a4:c7:47:c4:16:cf:1c:c0:aa:de:7c: d6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:FE:F5:1B:0B:39:C5:E8:B3:15:5F:77:66:83:14:DC:E5:90:56:6E X509v3 Authority Key Identifier: keyid:B7:0D:EA:6C:77:B9:E8:EC:CE:58:39:13:28:19:EF:91:37:3F:C5:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tw3qbHe56OzOWDkTKBnvkTc_xSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E2B2/2B46EA580DE311EF803F6F0EC4F9AE02/tw3qbHe56OzOWDkTKBnvkTc_xSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ef:31:5d:9c:f7:1d:3f:57:d8:be:88:76:fb:71:01:13:1c: b0:60:3a:5e:46:c0:be:0c:df:40:09:fd:36:30:c0:89:7e:31: 64:cf:fa:d9:fe:eb:9e:2b:b5:8a:91:54:e9:84:fb:bc:37:06: 0c:be:aa:fd:a4:50:0a:16:ab:f9:d0:00:58:b5:89:18:ce:27: f6:5e:09:dc:a8:5c:61:de:34:86:9e:65:e2:ad:bf:b5:25:72: b9:7e:14:da:47:fa:a2:c6:5f:86:b2:c4:fe:de:e7:3f:cd:63: 09:12:3d:55:4b:10:c3:83:a8:ca:a8:24:b3:24:1b:8a:e9:5f: 39:c7:7f:22:6f:f4:a9:2e:8e:53:e4:8d:ab:dd:af:0a:2f:85: b8:9e:bb:96:72:c6:6b:35:22:14:46:ee:14:a2:7a:91:e7:bd: a8:a8:50:d9:ef:4e:39:05:2a:c1:85:55:7b:53:e6:e5:9d:77: e9:51:d3:49:e0:e1:c5:59:53:61:16:36:fc:b8:21:9a:8a:e5: d7:83:2d:79:cd:37:fb:45:38:4f:51:8b:a0:96:49:ef:ae:ac: fa:e3:2a:7c:fb:6a:54:99:7f:48:91:b4:ed:63:b7:74:11:4e: 6f:69:e8:3e:8c:33:ba:d4:ca:ad:2d:f1:be:ca:49:07:11:0b: 66:be:10:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTJCMjExMC8GA1UEBRMoQjcwREVBNkM3N0I5RThFQ0NFNTgzOTEzMjgxOUVGOTEz NzNGQzUyNzAeFw0yNDA5MTUwOTQ2NTFaFw0yNDA5MjIwOTQ2NTBaMBgxFjAUBgNV BAMTDTY2ZTZhZDBiLTE4MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmFJYv3UEJKIraoR7sh3lAN0ta9yGoijDXiJZrN1XYMXgXOzHzcJQnUPAZrFC8 bKpmItv4FSu2Y0Ox9Btzuy0AiyT8junXlUZzeeaJVz+ELkt3Lg859Y9BSXclL8DL K9uJEGFKpuab4LcSWOPgBsnCepRMFgILPrS2ccgA0h2QPhD0Q4OK8CRCIwSeNPQm r83jRxo9hyJZ5xhfyiqwyX0eEjWv3Y3Yt1IAeZV6NCzVaVuiF54LWci59PfhtUIO GNTuhL3RZpcWSbOd+1RzgKVICqP4steKqAgmHjsZDBWmsuZW9oZ6T8LTfGlftCyi YDADgwOkx0fEFs8cwKrefNY9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFv71Gws5 xeizFV93ZoMU3OWQVm4wHwYDVR0jBBgwFoAUtw3qbHe56OzOWDkTKBnvkTc/xScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMkIyLzJCNDZFQTU4MERF MzExRUY4MDNGNkYwRUM0RjlBRTAyL3R3M3FiSGU1Nk96T1dEa1RLQm52a1RjX3hT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdHczcWJIZTU2T3pPV0RrVEtCbnZrVGNfeFNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MkIyLzJCNDZFQTU4MERFMzExRUY4MDNGNkYwRUM0RjlBRTAyL3R3M3FiSGU1Nk96 T1dEa1RLQm52a1RjX3hTYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF/vMV2c9x0/V9i+iHb7cQETHLBgOl5GwL4M30AJ/TYwwIl+MWTP+tn+ 654rtYqRVOmE+7w3Bgy+qv2kUAoWq/nQAFi1iRjOJ/ZeCdyoXGHeNIaeZeKtv7Ul crl+FNpH+qLGX4ayxP7e5z/NYwkSPVVLEMODqMqoJLMkG4rpXznHfyJv9KkujlPk javdrwovhbieu5Zyxms1IhRG7hSiepHnvaioUNnvTjkFKsGFVXtT5uWdd+lR00ng 4cVZU2EWNvy4IZqK5deDLXnNN/tFOE9Ri6CWSe+urPrjKnz7alSZf0iRtO1jt3QR Tm9p6D6MM7rUyq0t8b7KSQcRC2a+EFI= -----END CERTIFICATE-----Generated at Sun Sep 15 10:46:17 2024 by rpki-client on console-ams.rpki-client.org