$ rpki-client -vvf rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft File: tsh7tYco929vkKCd_WuqGtTnO8o.mft (raw, json) Hash identifier: afAqpzmBnlQO/fJ7t1YJ6Bcf92vHLmBVrTjBAlgfqhQ= Subject key identifier: D3:58:A7:4F:83:2A:FF:8F:36:3A:94:86:BF:19:02:70:7B:1D:08:81 Authority key identifier: B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA Certificate issuer: /CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Certificate serial: 0BFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft Manifest number: 0BF0 Signing time: Fri 22 Nov 2024 18:22:50 +0000 Manifest this update: Fri 22 Nov 2024 18:22:50 +0000 Manifest next update: Fri 29 Nov 2024 18:22:50 +0000 Files and hashes: 1: tsh7tYco929vkKCd_WuqGtTnO8o.crl (hash: kTnifvBt1lwuaGwLwP37c3x+qZJYwpMtxttmYH67/IQ=) 2: 132926D68A0B11EE84250E7BC4F9AE02.roa (hash: CNREoAjSrhLH+9lhx2Q8ti5rW1LW37er1wAnAgRYwEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3067 (0xbfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B25F2/serialNumber=B6C87BB58728F76F6F90A09DFD6BAA1AD4E73BCA Validity Not Before: Nov 22 18:22:50 2024 GMT Not After : Nov 29 18:22:50 2024 GMT Subject: CN=6740cbfa-a609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ea:39:a8:8a:d7:08:bd:f3:94:36:56:ff:b5: af:9c:c4:a3:f8:c7:b1:ea:c4:60:bd:58:be:9a:40: 32:e2:90:a3:c7:01:5b:86:13:9e:ca:69:58:f9:1f: 91:14:06:61:d6:5b:79:4c:a1:c2:96:e6:95:2c:a6: aa:1b:c2:00:5a:a1:bd:dc:cd:f6:3a:7c:f5:2c:9f: 9d:a2:0a:fc:38:a0:3d:43:a9:e9:b9:9f:b8:1c:f7: a2:ce:f1:59:1a:22:6f:10:91:ba:6f:ca:9b:be:32: 9b:13:93:8e:06:9b:4a:98:c0:5e:ef:fe:f3:99:1a: 38:9d:3f:49:50:49:13:2c:9b:d6:88:67:91:f5:6f: 08:c7:cc:f9:ca:0f:56:49:d6:10:17:5c:19:7c:17: 1a:d7:c9:d3:fe:8c:48:0d:85:3b:4e:e8:94:91:28: 6a:c3:f4:02:a8:d4:2b:c1:16:28:a7:a3:8d:f2:b6: 9f:1f:c9:5e:af:da:0e:6a:6b:68:10:03:80:01:b5: 3f:8e:d3:85:61:ec:27:11:2c:48:ea:e8:e1:c1:a7: af:d1:5f:c6:4a:02:60:b3:b3:a3:27:8e:83:b3:ce: 61:76:3d:d5:ad:b1:09:cf:4b:a5:02:d6:43:1e:10: 0f:e3:9a:29:e0:4e:67:68:90:5c:ac:62:0c:43:c6: bf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:58:A7:4F:83:2A:FF:8F:36:3A:94:86:BF:19:02:70:7B:1D:08:81 X509v3 Authority Key Identifier: keyid:B6:C8:7B:B5:87:28:F7:6F:6F:90:A0:9D:FD:6B:AA:1A:D4:E7:3B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsh7tYco929vkKCd_WuqGtTnO8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B25F2/EF90CD4E03B011EA85F02934C4F9AE02/tsh7tYco929vkKCd_WuqGtTnO8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:70:05:db:44:57:03:a2:c5:b0:e3:3b:13:a6:8b:4e:16:bf: 29:47:b2:ea:2a:2d:75:80:6b:01:4d:68:c3:d4:f2:f6:1f:fd: 7b:58:c8:34:a8:10:cf:82:99:9d:66:8f:59:64:a2:a7:06:2e: f1:ef:3f:0f:f4:88:02:fa:93:bf:20:4f:8a:1f:07:01:7c:0e: 61:f5:8d:5c:2a:b2:f7:16:65:64:c3:05:bd:9f:12:bd:8a:30: f4:f3:df:68:d5:77:1b:12:20:ef:28:47:e8:05:23:89:27:a4: 65:73:d9:07:73:7b:a1:2c:b7:1f:9f:96:37:62:48:93:6d:56: e5:29:40:4a:45:4b:74:bf:4c:2a:66:0b:14:f5:f7:a6:35:7d: e4:27:6e:5b:c5:81:cf:10:71:19:80:ef:bb:cc:28:0f:41:cf: f6:10:48:d6:54:39:80:de:d3:ba:38:4b:64:24:70:f3:31:c7: 25:3e:80:5a:42:9b:a8:3f:ed:39:7b:6d:84:fd:f5:03:77:f5: 83:2d:ca:3a:79:3f:10:fb:db:6e:ba:f6:81:8a:73:50:0a:0a: ae:63:e2:8c:7a:be:8b:66:c6:e6:9f:41:eb:31:10:6c:d4:81: ec:4e:98:62:24:71:99:5d:47:a5:c1:50:5e:81:bb:41:63:2e: 32:ca:ec:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI1RjIxMTAvBgNVBAUTKEI2Qzg3QkI1ODcyOEY3NkY2RjkwQTA5REZENkJBQTFB RDRFNzNCQ0EwHhcNMjQxMTIyMTgyMjUwWhcNMjQxMTI5MTgyMjUwWjAYMRYwFAYD VQQDEw02NzQwY2JmYS1hNjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1eo5qIrXCL3zlDZW/7WvnMSj+Mex6sRgvVi+mkAy4pCjxwFbhhOeymlY+R+R FAZh1lt5TKHCluaVLKaqG8IAWqG93M32Onz1LJ+dogr8OKA9Q6npuZ+4HPeizvFZ GiJvEJG6b8qbvjKbE5OOBptKmMBe7/7zmRo4nT9JUEkTLJvWiGeR9W8Ix8z5yg9W SdYQF1wZfBca18nT/oxIDYU7TuiUkShqw/QCqNQrwRYop6ON8rafH8ler9oOamto EAOAAbU/jtOFYewnESxI6ujhwaev0V/GSgJgs7OjJ46Ds85hdj3VrbEJz0ulAtZD HhAP45op4E5naJBcrGIMQ8a/eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNYp0+D Kv+PNjqUhr8ZAnB7HQiBMB8GA1UdIwQYMBaAFLbIe7WHKPdvb5Cgnf1rqhrU5zvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjVGMi9FRjkwQ0Q0RTAz QjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzkyOXZrS0NkX1d1cUd0VG5P OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzaDd0WWNvOTI5dmtLQ2RfV3VxR3RUbk84by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjVGMi9FRjkwQ0Q0RTAzQjAxMUVBODVGMDI5MzRDNEY5QUUwMi90c2g3dFljbzky OXZrS0NkX1d1cUd0VG5POG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzcAXbRFcDosWw4zsTpotOFr8pR7LqKi11gGsBTWjD1PL2H/17WMg0 qBDPgpmdZo9ZZKKnBi7x7z8P9IgC+pO/IE+KHwcBfA5h9Y1cKrL3FmVkwwW9nxK9 ijD0899o1XcbEiDvKEfoBSOJJ6Rlc9kHc3uhLLcfn5Y3YkiTbVblKUBKRUt0v0wq ZgsU9femNX3kJ25bxYHPEHEZgO+7zCgPQc/2EEjWVDmA3tO6OEtkJHDzMcclPoBa QpuoP+05e22E/fUDd/WDLco6eT8Q+9tuuvaBinNQCgquY+KMer6LZsbmn0HrMRBs 1IHsTphiJHGZXUelwVBegbtBYy4yyuzn -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org