$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft File: TKAS9bToBGfvDuxPjAJEoj1WmbU.mft (raw, json) Hash identifier: 9+dMCqr/Nx3B6OK1U4EGzyKCkNIUZMWZaIAIcscxLok= Subject key identifier: E0:27:A0:44:AE:4F:4D:CF:77:8D:93:F3:AA:57:0A:E1:6B:43:57:7C Authority key identifier: 4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 Certificate issuer: /CN=A91B1E8B/serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft Manifest number: 1F Signing time: Sun 15 Sep 2024 10:21:50 +0000 Manifest this update: Sun 15 Sep 2024 10:21:49 +0000 Manifest next update: Sun 22 Sep 2024 10:21:49 +0000 Files and hashes: 1: TKAS9bToBGfvDuxPjAJEoj1WmbU.crl (hash: +zrVFM/OuH95ZpZoMbcTdZDXgrbx8qjGx8TeLYqbtIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B/serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Validity Not Before: Sep 15 10:21:49 2024 GMT Not After : Sep 22 10:21:49 2024 GMT Subject: CN=66e6b53d-b116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:41:b4:86:07:02:0b:3b:2f:3c:e3:3f:45: c4:91:16:c4:7a:9e:99:ad:b2:b8:97:d5:06:42:ef: 31:95:ec:72:d4:de:74:dd:c6:cb:d2:1a:19:b6:ea: 05:27:0a:e0:8c:f9:13:44:35:e7:5b:58:68:c7:be: b2:25:f6:9b:e6:00:45:a9:1c:cc:cd:a6:15:a2:48: da:eb:43:b4:bb:98:55:fa:07:7e:f9:23:c9:fa:02: c3:db:0b:b8:30:8d:ae:bf:34:7b:11:d4:d9:af:35: aa:04:b0:b7:42:a3:da:d9:fe:76:78:1d:51:4c:e4: e6:01:79:36:b4:03:d0:c4:c3:0d:93:8f:60:67:52: 9f:24:ea:b6:dc:8f:72:2b:cf:59:2c:32:10:57:88: 7a:13:1a:b8:6c:88:20:e7:02:16:48:a5:e8:e5:3f: af:1f:cb:12:23:09:c3:48:d0:43:ac:ba:bd:65:5c: 55:25:15:d1:b1:e9:43:75:f0:3d:04:0f:ae:e4:45: b7:7c:50:37:e5:2e:8d:0c:5d:2f:fc:85:bf:97:de: e8:24:d5:97:c8:62:af:fb:dd:d4:e1:65:c3:a8:4a: b7:ad:c0:f0:bf:89:7c:f8:3c:b6:4b:be:31:b8:3b: ee:0b:73:3f:6b:4a:4e:0e:a1:48:22:a0:56:b7:cc: 2c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:27:A0:44:AE:4F:4D:CF:77:8D:93:F3:AA:57:0A:E1:6B:43:57:7C X509v3 Authority Key Identifier: keyid:4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:11:6a:e6:9b:43:c0:db:09:3a:c2:2f:8c:8d:ea:49:ad:6f: 0c:93:b7:b0:4c:db:74:89:73:b6:9b:eb:44:61:64:2a:ea:f8: cb:3b:42:34:10:bb:be:1c:41:86:e8:2f:b4:78:dd:63:0c:e8: d7:15:93:f0:e7:90:82:a0:db:6b:75:4e:74:ce:83:78:c2:f8: 59:d8:2b:2a:45:ef:54:b7:96:e5:92:27:db:4b:6c:33:92:e6: 68:55:16:7d:70:42:c2:7c:4d:98:4e:0e:71:d8:bb:f2:21:f5: b8:40:c9:a2:30:35:01:a5:da:a0:bd:86:3d:c4:30:2f:3a:9d: 85:ce:00:79:34:ea:94:a1:26:b2:0d:5b:dc:8d:e8:3b:4c:a0: 31:6d:f6:35:38:30:2e:cf:e1:2d:c6:8e:6c:47:32:7b:6f:4f: 28:1b:c2:e6:7b:e2:6c:32:e8:d4:06:1b:70:fa:74:91:93:ba: 0d:78:eb:93:c9:fe:25:d5:25:bf:2c:85:ae:c2:8b:f1:c6:e4: 17:4a:33:a1:61:41:d9:f5:4a:bb:b8:78:ce:6b:bc:c2:34:f0: 1b:b1:35:8d:83:24:da:4a:93:72:62:fd:f2:9f:ce:9f:7f:ec: 4c:2e:b5:f0:b2:ca:ad:72:68:ae:e6:6f:58:e0:f0:50:45:36: eb:0e:47:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUU4QjExMC8GA1UEBRMoNENBMDEyRjVCNEU4MDQ2N0VGMEVFQzRGOEMwMjQ0QTIz RDU2OTlCNTAeFw0yNDA5MTUxMDIxNDlaFw0yNDA5MjIxMDIxNDlaMBgxFjAUBgNV BAMTDTY2ZTZiNTNkLWIxMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD5kG0hgcCCzsvPOM/RcSRFsR6npmtsriX1QZC7zGV7HLU3nTdxsvSGhm26gUn CuCM+RNENedbWGjHvrIl9pvmAEWpHMzNphWiSNrrQ7S7mFX6B375I8n6AsPbC7gw ja6/NHsR1NmvNaoEsLdCo9rZ/nZ4HVFM5OYBeTa0A9DEww2Tj2BnUp8k6rbcj3Ir z1ksMhBXiHoTGrhsiCDnAhZIpejlP68fyxIjCcNI0EOsur1lXFUlFdGx6UN18D0E D67kRbd8UDflLo0MXS/8hb+X3ugk1ZfIYq/73dThZcOoSretwPC/iXz4PLZLvjG4 O+4Lcz9rSk4OoUgioFa3zCy7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4CegRK5P Tc93jZPzqlcK4WtDV3wwHwYDVR0jBBgwFoAUTKAS9bToBGfvDuxPjAJEoj1WmbUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxRThCLzZCMzhCODE2NDVC NjExRUY4QUIzMEEzMUM0RjlBRTAyL1RLQVM5YlRvQkdmdkR1eFBqQUpFb2oxV21i VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVEtBUzliVG9CR2Z2RHV4UGpBSkVvajFXbWJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx RThCLzZCMzhCODE2NDVCNjExRUY4QUIzMEEzMUM0RjlBRTAyL1RLQVM5YlRvQkdm dkR1eFBqQUpFb2oxV21iVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABURauabQ8DbCTrCL4yN6kmtbwyTt7BM23SJc7ab60RhZCrq+Ms7QjQQ u74cQYboL7R43WMM6NcVk/DnkIKg22t1TnTOg3jC+FnYKypF71S3luWSJ9tLbDOS 5mhVFn1wQsJ8TZhODnHYu/Ih9bhAyaIwNQGl2qC9hj3EMC86nYXOAHk06pShJrIN W9yN6DtMoDFt9jU4MC7P4S3GjmxHMntvTygbwuZ74mwy6NQGG3D6dJGTug1465PJ /iXVJb8sha7Ci/HG5BdKM6FhQdn1Sru4eM5rvMI08BuxNY2DJNpKk3Ji/fKfzp9/ 7EwutfCyyq1yaK7mb1jg8FBFNusOR70= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:44 2024 by rpki-client on console-fra.rpki-client.org