$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft File: TbOy41mbZG6fMK90pYxmePrx0rc.mft (raw, json) Hash identifier: qz8NhB1ylRjkpiqeGkd2BIkvyBEJZZpfaJcPNDcV/EQ= Subject key identifier: D1:3A:21:B8:D9:C1:67:8C:64:1C:43:89:43:40:96:23:4B:CB:8C:31 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft Manifest number: 39 Signing time: Sun 15 Sep 2024 09:56:20 +0000 Manifest this update: Sun 15 Sep 2024 09:56:20 +0000 Manifest next update: Sun 22 Sep 2024 09:56:19 +0000 Files and hashes: 1: TbOy41mbZG6fMK90pYxmePrx0rc.crl (hash: 5jgKLE2c0Xj0mO560zN7PzppDLUCx+az9tjUoSbjirw=) 2: 206DB948214F11EFAB245D49C4F9AE02.roa (hash: gxFq4TGudmApxCmCB48V39AuCdBYRdeV/qO3X4yaetA=) 3: E5B4526C27E311EFA1F13E50C4F9AE02.roa (hash: HLCB0XWeAYNevHkEh0OA3liJ2PV90xS5EEZdM78Ue1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Sep 15 09:56:20 2024 GMT Not After : Sep 22 09:56:19 2024 GMT Subject: CN=66e6af44-4f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4a:d1:bb:d4:da:77:d7:be:0e:c7:fb:94:79: 14:3b:3e:f7:10:25:25:1d:1e:10:48:af:e0:9a:92: 85:dd:ab:5e:d2:76:c1:63:8d:ac:49:cb:df:a9:4c: 9c:44:b6:f2:d3:47:5b:60:87:7d:72:43:fb:25:49: be:9e:68:6b:0d:23:0f:fe:38:b6:4b:8d:59:78:a2: 68:8a:f7:4c:12:de:3d:4a:de:dd:fb:d8:47:5d:c0: c4:65:d5:c3:15:26:5c:08:98:89:ef:ae:c2:b8:25: 92:17:36:cf:80:85:79:53:ff:f7:04:a6:58:d7:9d: a4:13:f9:1b:0c:c5:66:8c:da:fa:c9:01:45:3e:d7: 14:30:20:69:ee:fd:09:1e:7e:a3:ed:c2:33:55:73: 7f:38:03:36:fe:8f:b6:e9:55:e3:9d:0f:49:89:1d: cd:45:74:2e:57:5c:96:53:11:7d:30:f0:68:24:a3: 60:71:21:47:db:2f:94:5f:a7:db:cb:22:3c:87:44: c3:5f:1e:7b:12:a3:a3:85:f7:ce:f8:f7:ae:ce:de: b4:7d:88:41:e5:4a:4f:10:8a:ea:bf:b4:fc:79:1b: 71:db:3c:06:4d:9d:93:c7:7b:ba:eb:d8:2d:80:78: 43:5a:2f:da:98:db:8a:94:0f:c8:ff:1a:b8:16:75: d5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3A:21:B8:D9:C1:67:8C:64:1C:43:89:43:40:96:23:4B:CB:8C:31 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:0d:8b:53:3c:28:a5:92:70:30:9b:3b:be:68:70:a4:a7:76: 49:17:77:eb:e0:0d:82:ef:0a:d9:8a:3d:9a:a2:2c:46:c2:6b: 9f:74:e1:72:d3:b9:04:8d:ae:87:6d:6a:bd:89:db:d3:74:60: e2:eb:59:21:91:70:5c:c0:be:0c:93:db:2f:00:50:f7:62:74: 48:bb:41:45:42:70:30:6f:80:9e:dd:8a:93:04:f6:1a:87:59: 88:9a:2e:af:96:d8:d9:4a:38:21:7a:28:56:6b:aa:d6:bc:0b: b2:ad:e2:97:fb:94:bc:3d:41:04:91:c1:2f:fc:be:7c:e1:0a: 90:12:83:67:6b:8e:f5:8a:e9:5f:54:55:35:a5:c4:56:ce:00: 30:0d:f0:57:79:6c:3b:2e:b0:38:ff:6a:4e:02:6c:66:57:7f: 29:8e:6d:2c:6c:87:5c:e8:93:8c:a5:a2:58:67:39:0c:ae:23: 4b:04:3e:df:c9:e6:84:6f:33:f4:74:54:09:ad:94:b7:b8:f5: 8a:78:a5:07:3d:d2:40:0b:28:27:61:9b:04:41:d5:9c:3d:8e: 74:5b:8f:78:0e:b9:88:2b:13:5e:d3:69:a9:0e:49:82:1d:09: 3a:61:45:70:46:f5:6f:1b:c0:f4:cb:80:52:14:04:88:66:9d: 7b:93:56:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OThFQzExMC8GA1UEBRMoNERCM0IyRTM1OTlCNjQ2RTlGMzBBRjc0QTU4QzY2NzhG QUYxRDJCNzAeFw0yNDA5MTUwOTU2MjBaFw0yNDA5MjIwOTU2MTlaMBgxFjAUBgNV BAMTDTY2ZTZhZjQ0LTRmM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCStG71Np3174Ox/uUeRQ7PvcQJSUdHhBIr+CakoXdq17SdsFjjaxJy9+pTJxE tvLTR1tgh31yQ/slSb6eaGsNIw/+OLZLjVl4omiK90wS3j1K3t372EddwMRl1cMV JlwImInvrsK4JZIXNs+AhXlT//cEpljXnaQT+RsMxWaM2vrJAUU+1xQwIGnu/Qke fqPtwjNVc384Azb+j7bpVeOdD0mJHc1FdC5XXJZTEX0w8Ggko2BxIUfbL5Rfp9vL IjyHRMNfHnsSo6OF9874967O3rR9iEHlSk8Qiuq/tPx5G3HbPAZNnZPHe7rr2C2A eENaL9qY24qUD8j/GrgWddWfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0TohuNnB Z4xkHEOJQ0CWI0vLjDEwHwYDVR0jBBgwFoAUTbOy41mbZG6fMK90pYxmePrx0rcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5OEVDLzNBOEY4NDEwMjE0 OTExRUZCRTg4Q0YyOUM0RjlBRTAyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDBy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVGJPeTQxbWJaRzZmTUs5MHBZeG1lUHJ4MHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 OEVDLzNBOEY4NDEwMjE0OTExRUZCRTg4Q0YyOUM0RjlBRTAyL1RiT3k0MW1iWkc2 Zk1LOTBwWXhtZVByeDByYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG0Ni1M8KKWScDCbO75ocKSndkkXd+vgDYLvCtmKPZqiLEbCa5904XLT uQSNrodtar2J29N0YOLrWSGRcFzAvgyT2y8AUPdidEi7QUVCcDBvgJ7dipME9hqH WYiaLq+W2NlKOCF6KFZrqta8C7Kt4pf7lLw9QQSRwS/8vnzhCpASg2drjvWK6V9U VTWlxFbOADAN8Fd5bDsusDj/ak4CbGZXfymObSxsh1zok4ylolhnOQyuI0sEPt/J 5oRvM/R0VAmtlLe49Yp4pQc90kALKCdhmwRB1Zw9jnRbj3gOuYgrE17TaakOSYId CTphRXBG9W8bwPTLgFIUBIhmnXuTVuI= -----END CERTIFICATE-----Generated at Sun Sep 15 10:45:10 2024 by rpki-client on console-fra.rpki-client.org