$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft File: TKAS9bToBGfvDuxPjAJEoj1WmbU.mft (raw, json) Hash identifier: Be2sE0N/sSe0D0HeQi7iN1in7C1B/6lzC0FL+Rim6o8= Subject key identifier: 30:15:A9:29:A9:92:74:C9:AA:C0:C3:D7:21:E7:A4:01:CC:5D:89:A0 Authority key identifier: 4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 Certificate issuer: /CN=A91B1E8B/serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft Manifest number: 42 Signing time: Sat 23 Nov 2024 05:22:32 +0000 Manifest this update: Sat 23 Nov 2024 05:22:31 +0000 Manifest next update: Sat 30 Nov 2024 05:22:31 +0000 Files and hashes: 1: TKAS9bToBGfvDuxPjAJEoj1WmbU.crl (hash: 7P+ZZLVC4367kbfU6YXxsUUoqHBvr5HR0cD5JVsHL9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B/serialNumber=4CA012F5B4E80467EF0EEC4F8C0244A23D5699B5 Validity Not Before: Nov 23 05:22:31 2024 GMT Not After : Nov 30 05:22:31 2024 GMT Subject: CN=67416697-c645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:07:7d:41:04:72:b1:38:d5:ab:71:30:29:2c: 24:22:31:dc:fd:aa:a9:0a:cc:9e:ef:6c:3a:bd:21: 6c:7a:65:cd:8e:ad:b4:01:1e:de:66:79:88:81:82: 79:2e:bc:7a:a3:33:31:49:4b:99:7b:13:22:bf:e2: 7b:7c:34:23:e7:3e:f7:a8:92:fa:85:3f:9c:bf:0b: 1e:10:36:eb:ee:6e:7f:ed:6b:ee:18:4f:20:10:e2: 4d:c1:5b:3b:3e:fa:71:37:72:99:29:59:7d:21:d4: 57:47:42:12:fb:d9:62:aa:7b:61:9d:4f:3e:ca:9f: 81:c6:1c:ce:64:81:cc:fd:54:3c:79:02:86:50:39: e7:75:fd:30:ba:06:4d:9d:c9:b1:8e:89:07:0b:90: 1c:0e:39:73:90:86:c3:63:d7:27:87:e3:09:38:50: d7:b9:ca:dd:19:ba:6e:ee:c1:a3:c8:b0:3a:6c:d2: 4a:85:94:fc:c5:8b:8c:1c:02:5c:88:6b:43:31:b6: 78:da:95:9e:7d:59:55:1d:33:e4:e9:e6:69:cf:4c: cb:fb:f4:74:fb:c9:c5:50:3b:df:6d:9f:bc:76:9e: d5:e2:1d:1f:b9:85:2b:06:e7:b9:a1:ad:97:e7:80: 63:df:0c:1e:22:99:79:7f:0c:75:dc:dc:df:59:d9: b3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:15:A9:29:A9:92:74:C9:AA:C0:C3:D7:21:E7:A4:01:CC:5D:89:A0 X509v3 Authority Key Identifier: keyid:4C:A0:12:F5:B4:E8:04:67:EF:0E:EC:4F:8C:02:44:A2:3D:56:99:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKAS9bToBGfvDuxPjAJEoj1WmbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6B38B81645B611EF8AB30A31C4F9AE02/TKAS9bToBGfvDuxPjAJEoj1WmbU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:ea:3a:ec:2c:8b:24:48:1a:76:4a:5d:94:1c:eb:a0:f3:89: be:71:06:87:f5:7f:e5:85:eb:08:26:dc:6d:a4:79:f0:1c:f0: d7:4e:ce:79:31:f8:77:b4:77:7a:1b:22:af:c1:f4:b3:5b:41: 20:11:63:1d:e4:45:86:ca:e1:43:c5:8f:58:7b:34:2f:91:5c: 33:9f:fd:16:ef:64:33:20:4c:0c:cc:d9:d8:96:ca:27:b0:56: f7:e8:f2:62:ee:8b:75:6a:7c:3f:59:da:3a:7a:67:ea:23:38: 76:ae:f5:e5:99:e1:54:aa:48:2f:13:f6:45:e6:cd:92:2c:b4: 96:f3:66:bd:44:55:be:88:84:ee:d3:47:56:b8:8f:95:12:a5: 8c:b3:b5:f3:27:70:5e:73:40:ec:7c:a7:e4:08:20:31:86:d6: 7b:f9:09:cc:fd:c3:40:5e:17:e1:5a:8a:09:3c:e7:0e:30:50: b7:13:d8:4c:63:eb:98:d5:d9:a3:58:32:ad:07:ba:6d:b9:de: 74:74:6b:63:43:0c:80:d3:b1:18:09:01:a3:f4:1b:3f:86:70: ef:ef:de:f3:ae:01:00:ae:47:ea:c3:38:8c:dc:72:ee:d6:a3: e1:9c:08:09:be:39:c7:9f:16:19:eb:09:a1:09:a6:54:b3:aa: 1e:f1:8e:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUU4QjExMC8GA1UEBRMoNENBMDEyRjVCNEU4MDQ2N0VGMEVFQzRGOEMwMjQ0QTIz RDU2OTlCNTAeFw0yNDExMjMwNTIyMzFaFw0yNDExMzAwNTIyMzFaMBgxFjAUBgNV BAMTDTY3NDE2Njk3LWM2NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzB31BBHKxONWrcTApLCQiMdz9qqkKzJ7vbDq9IWx6Zc2OrbQBHt5meYiBgnku vHqjMzFJS5l7EyK/4nt8NCPnPveokvqFP5y/Cx4QNuvubn/ta+4YTyAQ4k3BWzs+ +nE3cpkpWX0h1FdHQhL72WKqe2GdTz7Kn4HGHM5kgcz9VDx5AoZQOed1/TC6Bk2d ybGOiQcLkBwOOXOQhsNj1yeH4wk4UNe5yt0Zum7uwaPIsDps0kqFlPzFi4wcAlyI a0MxtnjalZ59WVUdM+Tp5mnPTMv79HT7ycVQO99tn7x2ntXiHR+5hSsG57mhrZfn gGPfDB4imXl/DHXc3N9Z2bNrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMBWpKamS dMmqwMPXIeekAcxdiaAwHwYDVR0jBBgwFoAUTKAS9bToBGfvDuxPjAJEoj1WmbUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxRThCLzZCMzhCODE2NDVC NjExRUY4QUIzMEEzMUM0RjlBRTAyL1RLQVM5YlRvQkdmdkR1eFBqQUpFb2oxV21i VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVEtBUzliVG9CR2Z2RHV4UGpBSkVvajFXbWJVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx RThCLzZCMzhCODE2NDVCNjExRUY4QUIzMEEzMUM0RjlBRTAyL1RLQVM5YlRvQkdm dkR1eFBqQUpFb2oxV21iVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALjqOuwsiyRIGnZKXZQc66Dzib5xBof1f+WF6wgm3G2kefAc8NdOznkx +He0d3obIq/B9LNbQSARYx3kRYbK4UPFj1h7NC+RXDOf/RbvZDMgTAzM2diWyiew Vvfo8mLui3VqfD9Z2jp6Z+ojOHau9eWZ4VSqSC8T9kXmzZIstJbzZr1EVb6IhO7T R1a4j5USpYyztfMncF5zQOx8p+QIIDGG1nv5Ccz9w0BeF+Faigk85w4wULcT2Exj 65jV2aNYMq0Hum253nR0a2NDDIDTsRgJAaP0Gz+GcO/v3vOuAQCuR+rDOIzccu7W o+GcCAm+OcefFhnrCaEJplSzqh7xjj8= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:20 2024 by rpki-client on console-ams.rpki-client.org