$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: S/mNd/slHFakaRHk5ie7zsZth6r03Qwq4RX0qk59ydo= Subject key identifier: 47:AA:64:52:41:DF:32:FC:2B:4D:91:A5:27:66:C7:4E:75:2A:C2:CD Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: 5D Signing time: Thu 21 Nov 2024 05:10:44 +0000 Manifest this update: Thu 21 Nov 2024 05:10:44 +0000 Manifest next update: Thu 28 Nov 2024 05:10:44 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: jzJ5Zf9rSuRX3+jz5hvZ6KaIey0mQmxpmVt4OZ++Z1s=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: gxFq4TGudmApxCmCB48V39AuCdBYRdeV/qO3X4yaetA=) 3: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (hash: ophTAyTavYYvv+S2dKtdeyoYjEN6drMlrbOrhmzxr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Nov 21 05:10:44 2024 GMT Not After : Nov 28 05:10:44 2024 GMT Subject: CN=673ec0d4-444a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:06:79:6d:62:55:c7:f7:a2:e4:de:50:30:67: 9e:be:e4:7f:56:46:1e:09:b7:c9:d2:32:dd:4d:d7: 1e:6d:99:ea:24:54:cb:de:7c:70:06:90:fa:16:86: ea:a7:f4:0a:bd:14:e5:32:b4:28:5e:e2:28:fb:70: 09:bf:77:3b:95:aa:62:fe:1e:f9:c6:93:68:1b:b5: 3c:a6:64:35:7a:7a:39:24:64:da:75:99:e2:a3:54: 21:67:ea:67:30:c9:f1:ce:79:b3:e9:9b:c2:25:c5: 1e:78:a3:ec:b6:c1:e6:76:78:d1:aa:3d:65:e5:ab: f4:88:ea:fd:ca:0d:cd:6e:af:5e:d1:40:9c:31:71: 8f:77:09:30:9e:99:43:7d:18:5d:ea:cd:17:ff:7d: 84:c8:a8:6c:1c:40:43:f3:78:30:b3:15:89:e9:73: 52:f5:6a:5b:cc:ba:4a:24:c6:b0:74:1e:c1:fb:01: 3e:11:48:cc:e8:62:41:7c:2f:a6:31:ac:4c:ef:b9: 8b:28:30:8b:74:53:23:ce:b3:42:46:4c:1b:35:77: 71:b0:a6:e6:b5:95:a9:6f:f3:d5:63:a7:8b:f1:9a: 55:13:eb:b9:0f:16:3b:80:fe:d4:10:7a:db:25:81: 00:24:ec:cb:55:c3:14:03:fe:a0:26:c2:fa:4e:63: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:AA:64:52:41:DF:32:FC:2B:4D:91:A5:27:66:C7:4E:75:2A:C2:CD X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:b2:95:92:23:2e:e2:cc:53:4e:2f:5c:26:81:25:0f:a8:cc: ee:22:33:0f:9b:42:18:11:f5:85:5d:44:19:a5:81:54:44:91: 38:9c:cc:4f:9a:31:93:fe:2b:ed:38:50:bc:91:02:d1:d7:45: 6f:46:71:7f:03:60:5f:d9:44:6a:e2:51:08:d9:4e:80:69:e2: db:2e:dd:f0:a5:3a:12:b2:fc:d2:93:c3:e1:6e:e5:65:fb:fd: 1a:a0:62:62:9c:89:b0:13:ad:e3:16:88:1f:05:a2:29:da:19: 35:84:76:fc:cf:52:b9:8e:61:0a:8f:12:12:8f:87:15:fb:bb: 32:ce:a9:b9:d1:e4:3d:5a:9b:0b:3c:7e:42:cd:64:a0:9e:39: d6:63:12:8c:c2:77:f4:cf:6b:5c:6e:80:28:54:c5:cf:73:0e: 40:a6:07:50:99:84:f1:54:fd:4c:e2:b0:cf:9d:01:b5:4a:01: 23:18:2a:22:40:21:7d:e6:8d:95:2c:be:19:49:6e:12:2c:c5: 54:18:6b:46:e9:33:09:d8:0f:0c:4f:2c:0c:8b:17:bf:35:86: 62:ee:03:1c:6f:1d:78:75:ee:fb:88:99:cb:f2:f7:c4:1b:63: 40:8a:0f:3c:1e:73:c5:6c:f7:da:bf:33:5d:54:3e:c0:3f:dc: b0:da:fd:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OThFQzExMC8GA1UEBRMoNERCM0IyRTM1OTlCNjQ2RTlGMzBBRjc0QTU4QzY2NzhG QUYxRDJCNzAeFw0yNDExMjEwNTEwNDRaFw0yNDExMjgwNTEwNDRaMBgxFjAUBgNV BAMTDTY3M2VjMGQ0LTQ0NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOBnltYlXH96Lk3lAwZ56+5H9WRh4Jt8nSMt1N1x5tmeokVMvefHAGkPoWhuqn 9Aq9FOUytChe4ij7cAm/dzuVqmL+HvnGk2gbtTymZDV6ejkkZNp1meKjVCFn6mcw yfHOebPpm8IlxR54o+y2weZ2eNGqPWXlq/SI6v3KDc1ur17RQJwxcY93CTCemUN9 GF3qzRf/fYTIqGwcQEPzeDCzFYnpc1L1alvMukokxrB0HsH7AT4RSMzoYkF8L6Yx rEzvuYsoMIt0UyPOs0JGTBs1d3Gwpua1lalv89Vjp4vxmlUT67kPFjuA/tQQetsl gQAk7MtVwxQD/qAmwvpOYwvXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR6pkUkHf MvwrTZGlJ2bHTnUqws0wHwYDVR0jBBgwFoAUTbOy41mbZG6fMK90pYxmePrx0rcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5OEVDLzNBOEY4NDEwMjE0 OTExRUZCRTg4Q0YyOUM0RjlBRTAyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDBy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVGJPeTQxbWJaRzZmTUs5MHBZeG1lUHJ4MHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 OEVDLzNBOEY4NDEwMjE0OTExRUZCRTg4Q0YyOUM0RjlBRTAyL1RiT3k0MW1iWkc2 Zk1LOTBwWXhtZVByeDByYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH6ylZIjLuLMU04vXCaBJQ+ozO4iMw+bQhgR9YVdRBmlgVREkTiczE+a MZP+K+04ULyRAtHXRW9GcX8DYF/ZRGriUQjZToBp4tsu3fClOhKy/NKTw+Fu5WX7 /RqgYmKcibATreMWiB8FoinaGTWEdvzPUrmOYQqPEhKPhxX7uzLOqbnR5D1amws8 fkLNZKCeOdZjEozCd/TPa1xugChUxc9zDkCmB1CZhPFU/UzisM+dAbVKASMYKiJA IX3mjZUsvhlJbhIsxVQYa0bpMwnYDwxPLAyLF781hmLuAxxvHXh17vuImcvy98Qb Y0CKDzwec8Vs99q/M11UPsA/3LDa/S0= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:05 2024 by rpki-client on console-ams.rpki-client.org