$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft File: TzFe71rLLtp6NynnnhNZkMAecHQ.mft (raw, json) Hash identifier: T3dj2Hev3/SCfxx2FNgUJ5HlKsW3AUtSdwtJiwixpTc= Subject key identifier: A2:4A:01:80:D0:5B:83:EB:2D:C2:29:C2:58:94:13:E8:E1:6A:E5:5B Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0DB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft Manifest number: 0DA7 Signing time: Fri 22 Nov 2024 17:50:58 +0000 Manifest this update: Fri 22 Nov 2024 17:50:57 +0000 Manifest next update: Fri 29 Nov 2024 17:50:57 +0000 Files and hashes: 1: TzFe71rLLtp6NynnnhNZkMAecHQ.crl (hash: sUuIk6INhoKqHWNjCD1cDb4yeNdAqnByf3xhhAahkLk=) 2: B55EC19EAC2B11E996F6E511C4F9AE02.roa (hash: tkTXTVKUd8aNAELhiE6CqioYyd2lpCDkfnkCm1fkHpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3505 (0xdb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Nov 22 17:50:57 2024 GMT Not After : Nov 29 17:50:57 2024 GMT Subject: CN=6740c482-96b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cd:52:91:9c:e3:e3:ba:08:46:ae:e1:10:85: ce:36:9e:e5:8b:a3:5e:55:70:a3:5b:33:d0:aa:41: 9b:1e:33:bb:89:86:57:2e:54:0f:30:ba:78:c3:08: d0:bc:18:c7:60:3b:25:57:2d:8e:a8:0a:41:01:86: a8:e0:db:6f:21:0c:4e:1a:19:10:66:a1:11:b6:24: 72:d9:ac:be:cc:50:6d:5b:7d:2d:2a:fa:bb:61:84: 8c:47:ff:e9:45:65:b9:79:8c:ca:79:fd:b2:0a:2b: 5a:41:f9:8f:31:df:e4:85:96:44:8a:3b:55:dc:8a: ad:c1:18:ee:03:f3:19:4f:0f:72:8d:de:f7:e9:2a: 4e:85:9d:55:be:4a:39:b9:03:a3:df:0a:0e:8b:45: 80:92:bb:ae:2e:d4:8f:d0:5c:da:5a:6f:79:93:c8: 4c:68:19:cd:54:2e:f7:b3:63:d6:32:b4:21:7f:e0: 30:b8:29:ae:f4:e5:e9:ef:4a:ae:ea:66:7e:b2:26: 7d:8e:ac:c1:4b:b3:b0:e0:15:fa:ce:ad:fd:65:9c: 7b:49:79:47:35:a1:cf:ed:82:2c:56:fb:48:8d:96: ab:de:8d:34:dc:a1:b7:a6:46:13:5f:6e:ba:50:bd: 4b:a1:4e:3f:35:27:77:99:cd:c0:98:10:1d:21:74: fb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4A:01:80:D0:5B:83:EB:2D:C2:29:C2:58:94:13:E8:E1:6A:E5:5B X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5d:ce:5f:ea:59:e0:f7:bc:5c:1c:dd:26:80:37:37:52:1e: 86:20:20:e5:e7:19:09:4b:48:51:b9:3f:4d:43:2e:9b:61:d8: f7:46:78:c7:70:95:e8:42:82:e5:42:bb:a3:a1:2d:3e:f3:93: 08:c4:7b:b2:71:bb:2b:82:2a:3e:8f:b3:22:a5:fc:15:c1:c7: a6:af:7d:63:f2:b8:b5:78:71:6e:95:34:e4:3d:9a:f4:74:bc: d2:f9:b8:a6:7e:2e:73:45:76:dd:f9:cd:b8:19:bd:2b:1e:32: 47:8b:0c:42:8f:ae:50:81:dc:5b:86:2f:b5:c8:31:98:cc:b5: 11:f1:52:c2:e9:70:57:43:57:50:43:4c:de:0f:5e:ae:35:df: ff:5b:95:41:57:30:01:ce:1e:a5:3e:0b:a9:a7:43:1f:ea:b9: 6d:30:d5:79:f5:b9:72:f4:26:a5:a5:9c:46:58:5d:22:3e:dd: 51:39:56:2b:69:77:b5:c0:49:8d:6f:99:c3:f2:98:2b:d1:97: a4:ce:b4:e2:ec:30:82:c0:38:af:30:0f:ec:5d:f3:42:36:40: 43:83:ac:37:f7:ae:77:37:53:28:bc:88:f0:6d:70:cf:4d:54: 37:2f:84:87:e1:82:5d:01:ad:07:51:51:47:22:4d:f7:9d:36: 63:0a:dc:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjQxMTIyMTc1MDU3WhcNMjQxMTI5MTc1MDU3WjAYMRYwFAYD VQQDEw02NzQwYzQ4Mi05NmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArs1SkZzj47oIRq7hEIXONp7li6NeVXCjWzPQqkGbHjO7iYZXLlQPMLp4wwjQ vBjHYDslVy2OqApBAYao4NtvIQxOGhkQZqERtiRy2ay+zFBtW30tKvq7YYSMR//p RWW5eYzKef2yCitaQfmPMd/khZZEijtV3IqtwRjuA/MZTw9yjd736SpOhZ1Vvko5 uQOj3woOi0WAkruuLtSP0FzaWm95k8hMaBnNVC73s2PWMrQhf+AwuCmu9OXp70qu 6mZ+siZ9jqzBS7Ow4BX6zq39ZZx7SXlHNaHP7YIsVvtIjZar3o003KG3pkYTX266 UL1LoU4/NSd3mc3AmBAdIXT7fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJKAYDQ W4PrLcIpwliUE+jhauVbMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdDOS9DMzU5RTc1RUFDMTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0 cDZOeW5ubmhOWmtNQWVjSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiXc5f6lng97xcHN0mgDc3Uh6GICDl5xkJS0hRuT9NQy6bYdj3RnjH cJXoQoLlQrujoS0+85MIxHuycbsrgio+j7MipfwVwcemr31j8ri1eHFulTTkPZr0 dLzS+bimfi5zRXbd+c24Gb0rHjJHiwxCj65Qgdxbhi+1yDGYzLUR8VLC6XBXQ1dQ Q0zeD16uNd//W5VBVzABzh6lPgupp0Mf6rltMNV59bly9CalpZxGWF0iPt1ROVYr aXe1wEmNb5nD8pgr0ZekzrTi7DCCwDivMA/sXfNCNkBDg6w39653N1MovIjwbXDP TVQ3L4SH4YJdAa0HUVFHIk33nTZjCtwD -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org