$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft File: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft (raw, json) Hash identifier: M+nXwnTjFH/8WfLVisOCw9DM7Bx6NQ9ikwwYRH43RU0= Subject key identifier: 12:BC:D9:0F:DF:CB:28:8F:B2:DC:AF:BC:6A:5E:0A:A1:1A:E4:77:00 Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft Manifest number: 01E5 Signing time: Thu 21 Nov 2024 01:42:05 +0000 Manifest this update: Thu 21 Nov 2024 01:42:05 +0000 Manifest next update: Thu 28 Nov 2024 01:42:05 +0000 Files and hashes: 1: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl (hash: 1w3eClaKgH69hUL6oJfrJExku8SB+d5gx/ZRhmIxa80=) 2: C6C06E5CC18D11EEB2096833C4F9AE02.roa (hash: oaAB5qpX/99+WdwH6mtr0Q1RDHPmcMa4eeDmW9Aw7VM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: Nov 21 01:42:05 2024 GMT Not After : Nov 28 01:42:05 2024 GMT Subject: CN=673e8fed-91b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:32:13:ea:bc:08:8e:51:e3:e8:f2:40:06:e5: b9:3d:79:6f:da:f4:35:4c:ba:b8:f3:01:d3:58:ad: 2b:a4:56:5b:bc:3c:52:f5:06:36:91:cc:33:65:de: f0:fc:08:cf:78:5b:93:7f:c3:91:f7:05:86:10:af: 94:32:6f:39:6d:dd:43:2c:d4:5d:e8:45:f2:63:79: 7e:39:77:7f:51:65:09:59:c3:26:5f:e8:65:56:6a: 3b:9e:65:ce:fc:87:12:f4:80:fa:9a:9c:fc:f0:c2: 1b:07:f4:11:26:4e:0c:09:2b:c6:e9:a2:a9:84:bf: 52:6d:18:ca:80:a4:1b:ec:88:79:78:da:d3:87:62: 7f:3e:59:1f:9f:3a:b3:1f:f4:80:d1:d9:98:85:a5: 20:eb:fc:84:1c:11:71:f6:db:c9:e0:f1:92:72:4f: f8:dd:18:8e:14:1f:3c:54:8f:0b:09:83:29:b3:63: 48:30:e8:38:e4:99:30:d0:75:18:8f:91:c7:33:3b: 35:1a:8c:9d:ff:ed:f2:e9:fe:06:83:3a:e2:32:df: e6:3c:2b:ac:e5:f7:96:e5:3e:ae:1c:cc:e5:ac:93: f8:32:cd:5f:22:53:2f:d4:62:8c:89:25:1f:3c:44: 2b:b1:26:d8:1b:e9:2f:ff:a4:da:9c:02:da:82:37: 08:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:BC:D9:0F:DF:CB:28:8F:B2:DC:AF:BC:6A:5E:0A:A1:1A:E4:77:00 X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:5e:22:35:01:9b:bf:28:02:41:10:93:24:c8:3d:7a:ec:cd: 6a:6a:37:39:5c:af:31:7e:de:ae:38:de:0c:d6:e3:62:97:22: c1:89:7a:df:46:a9:a9:00:22:90:55:b3:ce:db:80:51:15:3c: aa:7c:ea:f7:64:ff:8c:cb:b7:72:c4:94:49:ca:59:9a:a2:47: 7a:a6:a0:fb:fe:4a:3a:ed:4a:14:7b:ff:b0:66:ba:47:8b:1f: 35:6d:51:4b:4a:ac:83:6c:52:bf:25:21:ea:48:4d:65:99:59: ee:3c:fb:21:bd:f6:df:80:11:05:5c:70:2f:df:d7:1f:8c:28: 6c:0f:c3:40:ac:08:5d:7c:36:d0:b2:ac:18:a3:a4:1c:1b:f9: b9:83:81:6d:4d:54:dc:1e:35:f6:a9:17:f1:3b:98:6d:ab:de: 2e:c0:aa:79:40:87:20:38:c1:d3:0c:38:c1:30:2c:b6:6c:75: 60:b8:1e:8f:0a:68:9d:8b:60:37:a1:2b:af:39:7b:34:fb:47: e5:16:b7:85:3b:df:25:fe:88:f3:4f:6b:d4:58:ce:f6:52:6a: 5b:1b:92:a4:21:99:09:21:a0:f6:29:1c:b7:21:41:ff:c2:23: 0b:74:3e:8d:a9:fb:09:f6:23:4e:fa:14:4d:27:b5:e9:b9:b1: de:06:1a:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjQxMTIxMDE0MjA1WhcNMjQxMTI4MDE0MjA1WjAYMRYwFAYD VQQDEw02NzNlOGZlZC05MWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjIT6rwIjlHj6PJABuW5PXlv2vQ1TLq48wHTWK0rpFZbvDxS9QY2kcwzZd7w /AjPeFuTf8OR9wWGEK+UMm85bd1DLNRd6EXyY3l+OXd/UWUJWcMmX+hlVmo7nmXO /IcS9ID6mpz88MIbB/QRJk4MCSvG6aKphL9SbRjKgKQb7Ih5eNrTh2J/Plkfnzqz H/SA0dmYhaUg6/yEHBFx9tvJ4PGSck/43RiOFB88VI8LCYMps2NIMOg45Jkw0HUY j5HHMzs1Goyd/+3y6f4GgzriMt/mPCus5feW5T6uHMzlrJP4Ms1fIlMv1GKMiSUf PEQrsSbYG+kv/6TanALagjcItQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBK82Q/f yyiPstyvvGpeCqEa5HcAMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzJENy9GOTc5NTlDMjI0MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2Vk VTlaUTVTVFI2UG1MQ01LT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeXiI1AZu/KAJBEJMkyD167M1qajc5XK8xft6uON4M1uNilyLBiXrf RqmpACKQVbPO24BRFTyqfOr3ZP+My7dyxJRJylmaokd6pqD7/ko67UoUe/+wZrpH ix81bVFLSqyDbFK/JSHqSE1lmVnuPPshvfbfgBEFXHAv39cfjChsD8NArAhdfDbQ sqwYo6QcG/m5g4FtTVTcHjX2qRfxO5htq94uwKp5QIcgOMHTDDjBMCy2bHVguB6P Cmidi2A3oSuvOXs0+0flFreFO98l/ojzT2vUWM72UmpbG5KkIZkJIaD2KRy3IUH/ wiMLdD6NqfsJ9iNO+hRNJ7XpubHeBhol -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:57 2024 by rpki-client on console-fra.rpki-client.org