$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft File: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft (raw, json) Hash identifier: ml0gFgtuKo01DwTGIUd1YA+TGATwkUWEkF4bD1oBJig= Subject key identifier: D8:CF:F5:D0:73:6D:46:BD:31:3C:01:12:7D:29:05:A0:BE:99:5A:B8 Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft Manifest number: 017D Signing time: Sat 27 Apr 2024 04:42:22 +0000 Manifest this update: Sat 27 Apr 2024 04:42:21 +0000 Manifest next update: Sat 04 May 2024 04:42:21 +0000 Files and hashes: 1: Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl (hash: 6NptyQTgi7DdwKohU6bRVmh9lsvmkefbQBKVSwWzf+8=) 2: C6C06E5CC18D11EEB2096833C4F9AE02.roa (hash: oaAB5qpX/99+WdwH6mtr0Q1RDHPmcMa4eeDmW9Aw7VM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 04:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: Apr 27 04:42:21 2024 GMT Not After : May 4 04:42:21 2024 GMT Subject: CN=662c822e-18da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8e:70:dd:a9:e7:4a:ae:04:2b:b6:34:44:6f: 89:36:95:bd:ae:8a:8e:2b:b7:64:7a:00:05:15:f5: 53:57:1d:d4:fd:0d:79:70:e8:ef:09:ea:26:4d:20: e7:3d:59:2a:8d:a2:e1:38:59:1c:b2:37:cd:79:1b: f5:d0:58:0a:3d:78:24:65:da:de:5c:3a:f4:ed:23: f7:a3:ce:b8:7a:45:44:9f:ae:cb:91:14:6d:5f:f2: 08:68:17:57:f1:f6:6b:16:31:41:2c:40:68:47:0f: 42:50:bf:8e:ba:55:e5:91:6b:d6:2c:6c:76:7f:05: a8:93:32:d6:52:f1:83:ff:89:19:31:78:52:15:22: ae:d1:fd:5c:8e:f3:d5:61:c3:a7:1a:be:16:48:20: 0a:60:6f:4d:3f:76:88:ea:c1:92:bf:3e:c1:34:21: e0:d3:ec:51:14:6b:a6:dd:72:fa:1b:ad:c3:f5:05: 71:60:b2:f3:d9:0d:5e:84:a4:96:f0:e3:dc:d1:20: 22:9e:fe:82:6f:b3:54:52:2e:4c:48:ee:a0:29:0f: bb:6a:1c:0b:1a:ac:87:7d:b1:9e:78:e8:a1:04:0d: 75:ad:a6:0d:04:a6:f4:9e:1d:c3:b6:d9:f3:36:82: 35:87:fd:ba:2c:83:86:4e:d2:4f:95:c3:19:06:8b: 1d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CF:F5:D0:73:6D:46:BD:31:3C:01:12:7D:29:05:A0:BE:99:5A:B8 X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:de:84:a8:97:84:4c:d0:cb:dd:b6:a0:4b:2c:f5:fb:c8:69: 60:21:70:8a:32:dc:95:9f:e4:6e:70:dc:91:8c:00:7c:e6:20: b9:5b:e3:0c:d6:3e:12:11:e5:05:78:12:60:4d:1c:36:61:9d: 1a:e4:4c:e0:0f:4e:ac:91:bf:f1:cf:8a:2d:dd:c9:96:fd:b6: 00:ec:29:c7:e9:d6:52:4f:fb:87:5d:c2:72:76:37:f0:c1:4d: 00:23:d5:75:71:28:78:04:12:26:26:9c:30:b1:6e:c5:12:a6: 9b:4c:96:db:a4:6a:8d:7d:2e:6f:26:fc:f0:83:6d:b8:4f:8e: 6e:73:17:5f:42:b9:23:9a:fe:6e:69:7f:71:7c:1c:00:8f:4a: 25:cc:72:ff:90:ec:69:80:32:6f:b8:5a:96:91:9e:e9:d7:db: a3:5f:1a:d1:b5:0e:76:d8:d1:f2:03:25:9b:2e:c3:ca:66:4a: 66:f8:72:72:a8:26:26:0a:5e:c7:05:c1:fd:ea:5e:bf:b9:b5: e1:f8:10:fa:95:6b:0d:14:c7:66:2b:76:ee:ec:c3:6d:42:93: f8:c7:cf:2d:d1:1d:f5:17:0a:5a:4a:1c:30:78:6d:d0:e0:58: 7a:36:d1:12:c7:48:f3:69:49:7d:87:2a:14:ea:57:c8:76:7d: c1:ce:81:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjQwNDI3MDQ0MjIxWhcNMjQwNTA0MDQ0MjIxWjAYMRYwFAYD VQQDEw02NjJjODIyZS0xOGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I5w3annSq4EK7Y0RG+JNpW9roqOK7dkegAFFfVTVx3U/Q15cOjvCeomTSDn PVkqjaLhOFkcsjfNeRv10FgKPXgkZdreXDr07SP3o864ekVEn67LkRRtX/IIaBdX 8fZrFjFBLEBoRw9CUL+OulXlkWvWLGx2fwWokzLWUvGD/4kZMXhSFSKu0f1cjvPV YcOnGr4WSCAKYG9NP3aI6sGSvz7BNCHg0+xRFGum3XL6G63D9QVxYLLz2Q1ehKSW 8OPc0SAinv6Cb7NUUi5MSO6gKQ+7ahwLGqyHfbGeeOihBA11raYNBKb0nh3Dttnz NoI1h/26LIOGTtJPlcMZBosdlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjP9dBz bUa9MTwBEn0pBaC+mVq4MB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzJENy9GOTc5NTlDMjI0MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2Vk VTlaUTVTVFI2UG1MQ01LT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO3oSol4RM0MvdtqBLLPX7yGlgIXCKMtyVn+RucNyRjAB85iC5W+MM 1j4SEeUFeBJgTRw2YZ0a5EzgD06skb/xz4ot3cmW/bYA7CnH6dZST/uHXcJydjfw wU0AI9V1cSh4BBImJpwwsW7FEqabTJbbpGqNfS5vJvzwg224T45ucxdfQrkjmv5u aX9xfBwAj0olzHL/kOxpgDJvuFqWkZ7p19ujXxrRtQ522NHyAyWbLsPKZkpm+HJy qCYmCl7HBcH96l6/ubXh+BD6lWsNFMdmK3bu7MNtQpP4x88t0R31FwpaShwweG3Q 4Fh6NtESx0jzaUl9hyoU6lfIdn3BzoF8 -----END CERTIFICATE-----Generated at Sun Apr 28 15:50:48 2024 by rpki-client on console-fra.rpki-client.org