$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft File: tGadMNIQ5JB80oiL50uJpt08tsg.mft (raw, json) Hash identifier: kCDPtm4I41gyDFB4ub2l6iv6rODjF8j4wLpb3WSUzFY= Subject key identifier: FD:98:FB:25:7B:82:C9:C8:E7:65:44:F0:D8:28:4D:17:0C:14:86:A8 Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 08C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft Manifest number: 08AF Signing time: Wed 20 Nov 2024 20:13:09 +0000 Manifest this update: Wed 20 Nov 2024 20:13:08 +0000 Manifest next update: Wed 27 Nov 2024 20:13:08 +0000 Files and hashes: 1: tGadMNIQ5JB80oiL50uJpt08tsg.crl (hash: 3lYtLu5hZ2h/8G5j/9R7WDBOtZmhHGYdnjrI3Iil1Jo=) 2: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (hash: 4s1yJr2g52+DMFY429ohpA5bZaHqp1IUUCW4B4SaCTc=) 3: B350B67E964611EDA10D8777C4F9AE02.roa (hash: Q3J0B0gf8wzjDQC7Y6zzpOQiUzusEOubL6oTAO7DZBI=) 4: D7120558A7ED11EA95BED565C4F9AE02.roa (hash: dHv+b9eqHvJpNCOa+cVeJt4WLtjB7VsmaWpat9hHq+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2241 (0x8c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: Nov 20 20:13:08 2024 GMT Not After : Nov 27 20:13:08 2024 GMT Subject: CN=673e42d4-ce66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:95:2b:1d:44:d5:7b:60:6a:aa:5b:a6:bc: 0b:68:21:21:b7:00:3b:8c:66:78:24:6d:9c:51:59: 8d:03:90:70:28:46:1a:71:e8:a7:3c:07:78:7e:3c: 94:7e:03:7f:e4:01:69:fd:9e:db:2b:07:72:3f:72: 55:a1:5c:2e:9f:fe:b5:69:73:b3:25:86:70:79:a9: 83:bd:e1:1f:b8:ab:bf:f7:63:76:d0:1f:c4:dd:ae: 70:49:b4:e5:fc:12:42:03:c4:52:d1:0a:23:bd:2b: be:86:4b:c9:70:ea:96:8a:1b:38:5f:ed:51:65:14: a0:99:7e:0c:b5:42:78:31:e5:e9:2f:f5:3f:16:f5: 24:f1:8b:3c:95:5d:e3:e3:a6:96:d4:40:aa:81:1a: ca:ed:f2:38:84:ae:b3:61:cc:9d:cc:a0:ae:c0:42: 1a:4a:87:5c:2a:87:b1:f1:08:ec:66:3e:b2:3c:41: aa:85:d0:6c:91:a2:65:6a:25:e1:57:a4:b2:b5:51: 2e:37:f6:04:ee:0d:23:f6:4d:07:90:71:59:04:e8: ee:44:06:6f:5f:a2:70:d7:e5:8b:7b:8b:03:9f:21: f2:cc:7f:94:90:4d:0a:9c:2c:7a:9f:20:05:b6:8d: cf:40:09:6a:64:58:da:42:1b:81:76:7c:dd:42:7a: 1a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:98:FB:25:7B:82:C9:C8:E7:65:44:F0:D8:28:4D:17:0C:14:86:A8 X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f1:03:b5:23:d7:4f:ab:18:a5:75:d0:2e:f1:00:cf:6b:7b:0b: 13:e7:f3:a6:6f:04:7d:13:fa:bf:44:d3:72:33:82:72:cb:7b: ff:05:2a:de:76:17:0b:b1:27:e2:34:55:c9:0f:29:e5:ff:d0: bb:9b:8e:c9:7c:09:e5:39:53:e1:15:2d:23:6a:3f:fb:f3:2e: 2f:00:19:b8:c9:67:ea:ed:67:9b:a5:72:fe:8d:c9:cc:fa:66: b7:f2:f5:4c:f8:c6:e4:8a:9e:5b:93:13:9a:02:f9:f4:70:07: a7:96:09:76:2f:3b:2b:40:bb:32:9a:6e:c7:2e:7a:90:e4:61: b9:d8:64:2a:8c:6a:69:ed:fb:86:31:67:31:5e:1e:72:29:d3: 14:5d:b7:92:1f:b4:a4:60:94:ac:93:c5:90:fa:da:f3:0d:74: c9:e1:9e:ec:da:f4:5e:0d:ee:a3:5e:9f:bd:43:37:a5:20:d1: 2d:cf:dd:f7:7f:ec:c0:63:24:d2:da:4b:4f:7c:44:dd:f9:5e: 4f:1b:c6:7d:5e:24:c2:54:b8:a9:89:27:b0:15:d7:99:55:67: d3:38:e2:57:cb:01:46:41:d0:3c:60:21:0c:bf:cd:13:f6:26: 55:dd:43:62:5d:01:91:a9:cc:8d:41:ad:41:49:f9:63:97:4b: 2c:96:23:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjQxMTIwMjAxMzA4WhcNMjQxMTI3MjAxMzA4WjAYMRYwFAYD VQQDEw02NzNlNDJkNC1jZTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZKVKx1E1XtgaqpbprwLaCEhtwA7jGZ4JG2cUVmNA5BwKEYaceinPAd4fjyU fgN/5AFp/Z7bKwdyP3JVoVwun/61aXOzJYZweamDveEfuKu/92N20B/E3a5wSbTl /BJCA8RS0QojvSu+hkvJcOqWihs4X+1RZRSgmX4MtUJ4MeXpL/U/FvUk8Ys8lV3j 46aW1ECqgRrK7fI4hK6zYcydzKCuwEIaSodcKoex8QjsZj6yPEGqhdBskaJlaiXh V6SytVEuN/YE7g0j9k0HkHFZBOjuRAZvX6Jw1+WLe4sDnyHyzH+UkE0KnCx6nyAF to3PQAlqZFjaQhuBdnzdQnoaCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2Y+yV7 gsnI52VE8NgoTRcMFIaoMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1OC9CMzg5MzA0RUE3RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVK Qjgwb2lMNTB1SnB0MDh0c2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDxA7Uj10+rGKV10C7xAM9rewsT5/OmbwR9E/q/RNNyM4Jyy3v/BSre dhcLsSfiNFXJDynl/9C7m47JfAnlOVPhFS0jaj/78y4vABm4yWfq7WebpXL+jcnM +ma38vVM+Mbkip5bkxOaAvn0cAenlgl2LzsrQLsymm7HLnqQ5GG52GQqjGpp7fuG MWcxXh5yKdMUXbeSH7SkYJSsk8WQ+trzDXTJ4Z7s2vReDe6jXp+9QzelINEtz933 f+zAYyTS2ktPfETd+V5PG8Z9XiTCVLipiSewFdeZVWfTOOJXywFGQdA8YCEMv80T 9iZV3UNiXQGRqcyNQa1BSfljl0ssliOl -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:49 2024 by rpki-client on console-ams.rpki-client.org