$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft File: tAgYFca67ZihzJUKxvoQvGAFiQI.mft (raw, json) Hash identifier: xgXreVS60yyPCZ8zxsFXZMYyWNcUK/hAN3TU9/3wNQk= Subject key identifier: A6:C4:FD:49:68:65:E3:2B:6F:22:96:AB:24:97:91:C7:28:D6:52:EB Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft Manifest number: 70 Signing time: Thu 21 Nov 2024 05:01:12 +0000 Manifest this update: Thu 21 Nov 2024 05:01:11 +0000 Manifest next update: Thu 28 Nov 2024 05:01:11 +0000 Files and hashes: 1: tAgYFca67ZihzJUKxvoQvGAFiQI.crl (hash: m2NEwPmFCKT3Ur3nUnj0GDkIMsJDzXSPhCrP9kuoVB8=) 2: C27BAE1E63B411EF9A87155DC4F9AE02.roa (hash: 5eMEB5vOjKQ5wQgd27+ZUWTTg4x5gmrbf6+2h3hRHcw=) 3: 04B0D250076211EFB14D3B12C4F9AE02.roa (hash: qJIeqrgvCSqMs8+P3KeM1F5hY5WT3B+IFIjWWFc0WLk=) 4: 052FFA76076211EFB14D3B12C4F9AE02.roa (hash: wEtGlzkarGn03dBjE4SQLfRy6nk8r9fN3HDFHlt9mQY=) 5: 03DAC9E4076211EFB14D3B12C4F9AE02.roa (hash: OxXlFTh6o0hdm5zRnG9YrbxWsj3c5r5ToTCPNyKoHps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: Nov 21 05:01:11 2024 GMT Not After : Nov 28 05:01:11 2024 GMT Subject: CN=673ebe98-bb3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:43:4c:f8:d4:e1:c6:99:3f:3a:dc:bd:98:f3: a4:c1:6e:ab:b3:1f:9b:22:50:ff:b2:2a:d4:4a:a0: 63:ef:b2:17:79:e8:1e:36:90:2a:89:cf:f5:f6:fb: 08:55:ef:f6:fa:f8:95:0b:3e:1d:55:c9:ec:9f:ff: 5a:af:99:1e:bf:bc:0e:36:f5:da:c6:09:cf:c9:8f: 7c:1a:29:b2:bc:e3:99:00:ea:64:2a:7a:91:d1:9f: 3f:d8:0c:28:90:61:00:e3:a5:d7:21:ed:95:09:9b: d8:2f:fb:89:d2:04:16:44:f6:32:0d:35:85:32:12: 6d:cf:14:76:4a:6f:70:a1:ff:d6:b3:4b:5b:c0:22: 11:fa:79:c9:fd:69:95:c9:a6:72:b2:34:f4:cd:4a: a8:1a:34:12:20:9f:31:0f:d7:4a:a5:69:ec:93:23: 96:32:9b:9d:fb:cb:ba:b1:a7:56:b4:bd:fa:98:af: a4:cf:eb:d0:af:b0:e2:aa:5b:f3:80:37:d4:d7:05: 8f:91:91:d5:96:d8:66:30:b9:8b:e3:4f:ec:95:df: b7:54:2f:ea:61:6d:14:b5:27:9d:af:fd:fd:a2:62: 1a:23:d3:ff:81:8c:32:df:eb:b0:e1:98:f4:53:a9: 2b:fe:8c:05:12:60:bd:1a:2e:72:93:78:b9:d0:c4: ea:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:C4:FD:49:68:65:E3:2B:6F:22:96:AB:24:97:91:C7:28:D6:52:EB X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5f:b5:94:a3:77:c0:1e:f2:6e:f2:f3:74:ba:e1:04:7f:43: ec:2c:12:cd:35:ad:5e:06:60:6a:98:18:36:e7:8f:5a:7c:d9: 64:c6:48:40:c3:26:bf:98:70:df:36:d2:0a:29:16:c6:23:6b: a2:e1:f9:2b:1e:38:6b:f8:34:7b:0f:47:39:54:9a:25:71:de: a4:b2:5b:7c:1b:c5:ba:df:87:4d:c0:81:d4:bf:f0:84:12:33: 65:01:2c:9b:9b:35:49:a9:af:8c:5e:ad:d9:46:eb:0c:1c:28: bb:90:90:5c:43:c3:c6:05:5e:8f:a8:29:c4:80:71:39:bf:0c: 53:94:c9:22:c8:54:f5:54:e0:a7:98:d3:77:bc:07:cd:63:10: 88:34:93:45:3a:ac:be:ad:1a:b4:cc:3b:00:b9:72:a4:a8:fa: 09:ca:4a:5f:97:2d:c4:12:d1:28:68:a0:57:ee:c9:00:b5:dd: c2:7f:c2:f1:46:1a:eb:68:7e:1f:9b:3b:3c:a0:2c:35:40:ac: c1:7b:22:02:e5:df:b6:06:99:a0:1f:b7:37:59:53:a8:56:c0: 38:12:47:51:a8:ec:15:00:32:03:02:7a:ae:8b:62:38:b9:81: ed:c0:5d:70:6f:80:7b:25:01:37:5a:2b:ff:54:3d:14:4c:79: 2a:30:ae:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB M0Y1RDExMC8GA1UEBRMoQjQwODE4MTVDNkJBRUQ5OEExQ0M5NTBBQzZGQTEwQkM2 MDA1ODkwMjAeFw0yNDExMjEwNTAxMTFaFw0yNDExMjgwNTAxMTFaMBgxFjAUBgNV BAMTDTY3M2ViZTk4LWJiM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2Q0z41OHGmT863L2Y86TBbquzH5siUP+yKtRKoGPvshd56B42kCqJz/X2+whV 7/b6+JULPh1Vyeyf/1qvmR6/vA429drGCc/Jj3waKbK845kA6mQqepHRnz/YDCiQ YQDjpdch7ZUJm9gv+4nSBBZE9jINNYUyEm3PFHZKb3Ch/9azS1vAIhH6ecn9aZXJ pnKyNPTNSqgaNBIgnzEP10qlaeyTI5Yym537y7qxp1a0vfqYr6TP69CvsOKqW/OA N9TXBY+RkdWW2GYwuYvjT+yV37dUL+phbRS1J52v/f2iYhoj0/+BjDLf67DhmPRT qSv+jAUSYL0aLnKTeLnQxOojAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpsT9SWhl 4ytvIparJJeRxyjWUuswHwYDVR0jBBgwFoAUtAgYFca67ZihzJUKxvoQvGAFiQIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzRjVELzEwRjk0RUYwMDZB QjExRUY4N0JGQTcyNUM0RjlBRTAyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlR SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdEFnWUZjYTY3WmloekpVS3h2b1F2R0FGaVFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEz RjVELzEwRjk0RUYwMDZBQjExRUY4N0JGQTcyNUM0RjlBRTAyL3RBZ1lGY2E2N1pp aHpKVUt4dm9RdkdBRmlRSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGxftZSjd8Ae8m7y83S64QR/Q+wsEs01rV4GYGqYGDbnj1p82WTGSEDD Jr+YcN820gopFsYja6Lh+SseOGv4NHsPRzlUmiVx3qSyW3wbxbrfh03AgdS/8IQS M2UBLJubNUmpr4xerdlG6wwcKLuQkFxDw8YFXo+oKcSAcTm/DFOUySLIVPVU4KeY 03e8B81jEIg0k0U6rL6tGrTMOwC5cqSo+gnKSl+XLcQS0ShooFfuyQC13cJ/wvFG Gutofh+bOzygLDVArMF7IgLl37YGmaAftzdZU6hWwDgSR1Go7BUAMgMCeq6LYji5 ge3AXXBvgHslATdaK/9UPRRMeSowrsg= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:37 2024 by rpki-client on console-ams.rpki-client.org