$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft File: TbA103TIQSzmgNnaCtvsBkKdiLg.mft (raw, json) Hash identifier: d+uz9VCX1uXNJbJi+4XbEEw7FkcY/mrzEqM5F6NRQ1U= Subject key identifier: 11:34:47:85:C9:8B:1E:A4:9C:81:07:7D:3E:41:75:01:63:85:91:9A Authority key identifier: 4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 Certificate issuer: /CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Certificate serial: 162E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft Manifest number: 1579 Signing time: Wed 20 Nov 2024 16:54:16 +0000 Manifest this update: Wed 20 Nov 2024 16:54:15 +0000 Manifest next update: Wed 27 Nov 2024 16:54:15 +0000 Files and hashes: 1: TbA103TIQSzmgNnaCtvsBkKdiLg.crl (hash: Bi6U1eWyeXOVW11Ptv+bx5+cRmmGO+zdKusn2KvqeZ4=) 2: 1F24033CDF7111EEB534147FC4F9AE02.roa (hash: F7+/UI/IdrG7UJylIwMQeWeh8x4KccRZsFSY0IMAJig=) 3: 48B0725E93A711EFBD8CB217C4F9AE02.roa (hash: qG1faZE0mqmc9wRMhDlaNXyyJhKu4mJwPGkR04RoSsw=) 4: B62B9156280611ED8BEBC536C4F9AE02.roa (hash: G9R6UKF81vPpeZEj71HVNBUREkX7yk3WJ1Q6tTRHYYM=) 5: 820BE5609CEE11EF9001717EC4F9AE02.roa (hash: kIvT/50E2laNc1gLfjO5rKE/sWwcpe4nrifpeBT23BI=) 6: 0D08636C75D611EB920B5162C4F9AE02.roa (hash: j6prxSOt5QlgU/NV/soMWbDX95ZjTIwaOn33GpJLHDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:54:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5678 (0x162e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678/serialNumber=4DB035D374C8412CE680D9DA0ADBEC06429D88B8 Validity Not Before: Nov 20 16:54:15 2024 GMT Not After : Nov 27 16:54:15 2024 GMT Subject: CN=673e1438-73f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:58:98:ea:0f:20:f1:41:61:de:25:ff:41:13: cf:24:87:1e:89:38:7f:69:d8:ec:3f:b7:68:bc:38: 40:20:e3:e1:58:ba:cd:36:df:23:31:f2:7f:a9:55: 89:68:02:b1:c3:6a:34:b1:69:b7:89:e9:17:97:66: 2e:80:f7:56:a8:e6:16:24:d5:57:fd:e5:1a:4e:a4: 1d:c6:5a:1b:ab:d2:83:fe:22:5e:10:a5:81:ee:f1: f1:31:ad:74:20:b3:71:ed:14:ad:2b:c6:93:6d:f9: 48:bb:d6:d5:42:58:71:69:19:bc:7f:75:c6:02:2c: b5:22:e0:7c:ba:a0:17:90:8c:9d:39:3a:b9:ee:56: c6:87:ff:88:44:ee:3d:b0:3d:60:26:6d:ed:e2:c8: c3:a2:63:1d:65:7d:57:cf:75:a9:06:77:53:23:a4: 18:10:01:07:46:e3:e1:ec:87:a6:65:50:82:e7:ec: 6d:df:71:a5:b5:9b:b7:4e:8c:e5:f8:12:31:4a:46: 21:c3:cd:b2:51:67:3c:d0:cb:35:26:af:c6:c6:80: 02:e7:9e:f3:d6:7c:50:e8:33:2f:f5:bc:ad:eb:83: e5:f1:0f:56:69:97:e2:7d:ab:85:7c:96:49:14:b0: 1c:62:69:47:68:c6:0d:d4:12:f6:03:3a:2b:80:99: c2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:34:47:85:C9:8B:1E:A4:9C:81:07:7D:3E:41:75:01:63:85:91:9A X509v3 Authority Key Identifier: keyid:4D:B0:35:D3:74:C8:41:2C:E6:80:D9:DA:0A:DB:EC:06:42:9D:88:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TbA103TIQSzmgNnaCtvsBkKdiLg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/72583AFA695711E8A42BE680C4F9AE02/TbA103TIQSzmgNnaCtvsBkKdiLg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:79:b0:55:f3:63:e2:2f:48:3d:36:b2:66:39:e0:8c:d4:c2: 33:bc:00:d6:1e:80:92:b4:80:63:c5:68:a5:4d:45:a7:77:5c: 71:e3:72:a4:53:42:06:ed:81:a1:0c:29:52:94:46:1b:29:fc: 2d:a7:91:1d:64:69:c4:57:a2:29:f8:ee:39:45:df:07:62:fd: 9e:f5:82:f7:75:af:23:02:39:2b:66:f7:d2:63:cf:0a:43:53: e6:d3:ab:c4:64:09:31:bd:c5:ae:df:c0:73:8b:76:79:da:db: 1a:b5:1d:27:29:5c:f9:7e:9f:f2:6e:e4:e0:90:08:3d:dc:d9: 5e:63:36:f0:7a:88:6a:f8:6f:69:2d:90:88:a7:85:c6:7c:94: 34:0f:1c:8d:17:f8:fd:63:3f:dc:20:99:b6:2b:f6:22:46:eb: 8a:dc:43:cd:5a:30:af:4d:9e:7c:b7:c3:60:7f:6c:c2:cd:54: 54:73:8d:17:ba:11:e1:a2:93:ae:ce:f2:f1:1b:60:26:cc:09: 9f:6e:33:52:8e:5f:85:57:ed:37:37:4f:82:01:fb:fc:a2:e2: da:80:86:d6:63:52:26:b2:2f:03:db:2f:73:6c:db:fb:4a:eb: c3:7a:68:32:3f:fc:e1:52:e9:87:af:b5:6f:fc:67:04:c3:32: d3:5c:0c:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKDREQjAzNUQzNzRDODQxMkNFNjgwRDlEQTBBREJFQzA2 NDI5RDg4QjgwHhcNMjQxMTIwMTY1NDE1WhcNMjQxMTI3MTY1NDE1WjAYMRYwFAYD VQQDEw02NzNlMTQzOC03M2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqliY6g8g8UFh3iX/QRPPJIceiTh/adjsP7dovDhAIOPhWLrNNt8jMfJ/qVWJ aAKxw2o0sWm3iekXl2YugPdWqOYWJNVX/eUaTqQdxlobq9KD/iJeEKWB7vHxMa10 ILNx7RStK8aTbflIu9bVQlhxaRm8f3XGAiy1IuB8uqAXkIydOTq57lbGh/+IRO49 sD1gJm3t4sjDomMdZX1Xz3WpBndTI6QYEAEHRuPh7IemZVCC5+xt33GltZu3Tozl +BIxSkYhw82yUWc80Ms1Jq/GxoAC557z1nxQ6DMv9byt64Pl8Q9WaZfifauFfJZJ FLAcYmlHaMYN1BL2AzorgJnCfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBE0R4XJ ix6knIEHfT5BdQFjhZGaMB8GA1UdIwQYMBaAFE2wNdN0yEEs5oDZ2grb7AZCnYi4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC83MjU4M0FGQTY5 NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFTem1nTm5hQ3R2c0JrS2Rp TGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiQTEwM1RJUVN6bWdObmFDdHZzQmtLZGlMZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC83MjU4M0FGQTY5NTcxMUU4QTQyQkU2ODBDNEY5QUUwMi9UYkExMDNUSVFT em1nTm5hQ3R2c0JrS2RpTGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPebBV82PiL0g9NrJmOeCM1MIzvADWHoCStIBjxWilTUWnd1xx43Kk U0IG7YGhDClSlEYbKfwtp5EdZGnEV6Ip+O45Rd8HYv2e9YL3da8jAjkrZvfSY88K Q1Pm06vEZAkxvcWu38Bzi3Z52tsatR0nKVz5fp/ybuTgkAg93NleYzbweohq+G9p LZCIp4XGfJQ0DxyNF/j9Yz/cIJm2K/YiRuuK3EPNWjCvTZ58t8Ngf2zCzVRUc40X uhHhopOuzvLxG2AmzAmfbjNSjl+FV+03N0+CAfv8ouLagIbWY1Imsi8D2y9zbNv7 SuvDemgyP/zhUumHr7Vv/GcEwzLTXAwY -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:21 2024 by rpki-client on console-ams.rpki-client.org