$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: yu8R+FwUOehnZREIGKuFk7i6NBe5c/uPMLvHUhjgqHc= Subject key identifier: A8:C3:73:61:0C:E1:24:D0:5C:64:BD:CB:15:8F:ED:5F:C8:9C:7C:4F Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2B23 Signing time: Wed 20 Nov 2024 15:33:39 +0000 Manifest this update: Wed 20 Nov 2024 15:33:38 +0000 Manifest next update: Wed 27 Nov 2024 15:33:38 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: gMY+1UWdAghrGkeqWJK7KmxCVJ6tlG9Jep7bIaYGSjo=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: cw0PqwBBK0RHpksVvzPS62Y/XzIKpQmwvX5oJ3Ga1Uc=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: G/2ljlZXzsuc6fmr+LrsxDu437pL1+BbINl7CakOHNg=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: ZzwjjjV43983S9z3YZGjXBw9c3x4QvReAm0radZl0Rc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: iJX8QvRtMVBhv+UXxylmDNIfKvmMzmtMROe4rMBXyWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11208 (0x2bc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Nov 20 15:33:38 2024 GMT Not After : Nov 27 15:33:38 2024 GMT Subject: CN=673e0152-3674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fa:8b:a5:25:cf:6c:9a:cd:9e:4f:40:b1:36: 04:54:da:48:c2:5d:b0:fc:62:2c:d8:e5:9d:5c:8b: b3:e0:9a:84:19:e5:ed:06:eb:56:84:0d:30:2b:55: a2:91:e4:72:42:1e:eb:a8:02:12:6c:38:4b:18:b6: 81:ae:f9:e1:6f:97:af:f8:e9:83:df:fa:de:ec:f2: 8a:ca:cd:6a:b9:e2:9b:cb:e2:a1:c2:35:69:45:79: 5a:91:38:c9:5b:7b:24:f6:ef:a0:18:3f:79:b1:be: 11:cf:1c:24:42:b9:70:52:32:e6:ab:bc:85:a7:ca: 52:4f:93:71:3e:23:c1:0d:1a:cf:8d:53:fe:79:23: db:8d:8a:59:62:96:ca:84:8a:72:37:b9:81:39:99: 65:ab:57:e5:e2:1c:2f:5b:3b:b5:67:a2:12:8e:01: d9:d9:1e:71:fe:b5:2d:a0:e0:48:17:4d:4b:5b:5c: f0:9a:5a:13:46:29:7f:05:b8:93:08:ee:bb:af:34: 6f:64:c2:71:5a:7b:c4:b9:a1:90:b6:cd:de:be:f2: 2a:87:29:a6:f5:0b:b7:4e:ed:09:32:cf:5d:cc:4f: dc:da:e3:8e:98:ad:9d:fd:eb:16:05:9c:0d:34:40: cc:3c:6b:b2:21:a0:51:a1:d4:cd:3c:77:aa:41:d8: de:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:C3:73:61:0C:E1:24:D0:5C:64:BD:CB:15:8F:ED:5F:C8:9C:7C:4F X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:db:d5:ce:29:34:de:6d:b8:f4:f1:ee:d9:40:d8:d1:56:83: 49:03:ec:4a:f5:78:73:c5:bf:51:2c:49:97:93:e5:6f:25:e5: 98:31:64:9a:c1:b2:e3:ae:44:2a:14:86:6b:3d:ef:4d:ae:26: d7:60:09:be:e5:00:ac:ca:39:18:a9:c1:08:8e:21:ae:24:19: 5d:b4:2f:0f:de:4e:19:dc:51:50:75:36:3f:dc:f9:ef:e2:a2: 63:05:69:c5:3b:3f:4b:3d:e4:c5:74:83:65:75:aa:05:ce:1b: a2:23:45:f2:e3:41:8f:07:a4:67:b0:60:18:f1:ce:89:6b:c0: f3:7d:44:5b:c0:39:59:ec:b2:fa:05:07:48:ee:99:e6:fc:8c: e5:37:94:69:45:5a:c4:47:c4:20:49:f2:fe:ee:df:a1:bd:5f: da:7c:ba:94:01:1f:bc:99:6b:4c:0b:87:7e:21:e0:b3:36:50: 84:b7:eb:22:14:6e:0f:50:bb:fc:2b:f0:d0:01:d0:8a:71:65: 13:7e:84:eb:87:25:69:d1:03:93:2a:1b:7a:51:a6:3c:72:8a: 50:6c:12:db:f4:fa:83:6f:a2:29:64:1f:cd:32:a7:86:5c:85: 5e:96:e9:e6:02:fe:21:cb:7c:4b:1f:69:41:28:f6:ce:91:e4: a4:1b:c8:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjQxMTIwMTUzMzM4WhcNMjQxMTI3MTUzMzM4WjAYMRYwFAYD VQQDEw02NzNlMDE1Mi0zNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvqLpSXPbJrNnk9AsTYEVNpIwl2w/GIs2OWdXIuz4JqEGeXtButWhA0wK1Wi keRyQh7rqAISbDhLGLaBrvnhb5ev+OmD3/re7PKKys1queKby+KhwjVpRXlakTjJ W3sk9u+gGD95sb4RzxwkQrlwUjLmq7yFp8pST5NxPiPBDRrPjVP+eSPbjYpZYpbK hIpyN7mBOZllq1fl4hwvWzu1Z6ISjgHZ2R5x/rUtoOBIF01LW1zwmloTRil/BbiT CO67rzRvZMJxWnvEuaGQts3evvIqhymm9Qu3Tu0JMs9dzE/c2uOOmK2d/esWBZwN NEDMPGuyIaBRodTNPHeqQdje1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjDc2EM 4STQXGS9yxWP7V/InHxPMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAt29XOKTTebbj08e7ZQNjRVoNJA+xK9Xhzxb9RLEmXk+VvJeWYMWSa wbLjrkQqFIZrPe9NribXYAm+5QCsyjkYqcEIjiGuJBldtC8P3k4Z3FFQdTY/3Pnv 4qJjBWnFOz9LPeTFdINldaoFzhuiI0Xy40GPB6RnsGAY8c6Ja8DzfURbwDlZ7LL6 BQdI7pnm/IzlN5RpRVrER8QgSfL+7t+hvV/afLqUAR+8mWtMC4d+IeCzNlCEt+si FG4PULv8K/DQAdCKcWUTfoTrhyVp0QOTKht6UaY8copQbBLb9PqDb6IpZB/NMqeG XIVelunmAv4hy3xLH2lBKPbOkeSkG8g6 -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:20 2024 by rpki-client on console-ams.rpki-client.org