$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: k6qOxlQDFfrz/E0a0cnOQQZf7P4VkRBvmfrF3K2LtsM= Subject key identifier: 71:8A:84:D1:83:E2:6C:A5:D4:40:07:93:CE:DA:2B:D1:92:62:22:AB Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 07E1 Signing time: Fri 22 Nov 2024 20:41:04 +0000 Manifest this update: Fri 22 Nov 2024 20:41:03 +0000 Manifest next update: Fri 29 Nov 2024 20:41:03 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: /fx2z11GJ2EnQzxM0bfKQ5rCmOFEkHE3DQI+DkZLlrs=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: d3qr5RqMQclwYYIrxTT2M2ZEqEhw3tr48jNwaXCY/ZQ=) 3: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: Gf0OG44Gbrw/oSuWZaX2oN0pSzBlgivn+JOWWsA/Jy4=) 4: 8F44F16A4BCC11EDA2E6375FC4F9AE02.roa (hash: A3kThrVaT5oRwxsCsohgrMXC95qG/MeuK1hdFh/7ma0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Nov 22 20:41:03 2024 GMT Not After : Nov 29 20:41:03 2024 GMT Subject: CN=6740ec5f-f200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fc:a7:9b:0a:6f:16:22:de:bb:66:23:fa:a1: 32:8f:cd:a4:2f:22:aa:0f:d3:fc:a5:a7:97:15:5e: e9:e6:6a:a1:1e:c0:0a:86:85:af:01:d9:8a:25:a3: f4:67:29:ae:d3:d3:e4:8d:25:a3:44:f2:6b:86:19: 67:b8:b4:bb:ea:12:d7:34:dd:58:90:be:42:1b:da: ee:bd:36:bb:4c:0a:4b:e8:2d:7d:6a:11:70:8e:bf: 0a:74:01:ef:f9:12:82:16:f4:5a:dd:4b:e8:00:a3: 49:47:42:7a:c1:a4:ed:10:b3:68:e5:d1:52:27:86: 59:da:6f:1f:28:ff:14:ac:39:7e:dd:af:f8:bd:55: d1:c0:f8:bb:33:23:38:34:90:c3:8a:7e:5f:98:a3: 9d:ed:74:76:9f:75:f7:90:d8:86:c6:d9:59:35:16: 05:2e:8d:79:01:81:cf:52:55:ac:7c:8d:43:1d:e5: 47:93:1b:c9:90:9b:5c:44:87:88:7c:3a:a1:5b:e1: 5d:12:c4:d4:23:a9:5f:94:c2:74:ad:20:7c:9e:d3: 92:72:07:b2:10:97:2c:2f:dd:cf:9b:ea:4f:4f:3c: a8:fa:52:90:46:08:de:1b:e2:ae:ed:2b:ef:21:2b: 72:ff:23:d3:c8:ec:06:bc:00:61:85:fc:86:99:9a: 65:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8A:84:D1:83:E2:6C:A5:D4:40:07:93:CE:DA:2B:D1:92:62:22:AB X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d6:45:20:f0:a5:29:b3:68:ed:83:ae:95:07:29:4a:cb:82: 14:92:dd:38:d4:6e:9d:68:40:88:5b:53:26:ac:96:4a:49:00: f1:c4:24:97:94:5f:11:43:66:ec:d5:f0:57:d6:2d:69:54:dc: 55:f2:63:6e:0f:51:61:ef:61:88:41:db:33:52:66:83:52:92: f1:fa:5d:7b:05:94:cb:39:6a:26:a0:ea:4e:7d:d2:a9:f6:68: 95:7e:21:af:1e:76:f0:88:e1:6f:83:ab:3b:07:06:2a:a3:70: ee:88:92:4d:a7:64:18:7f:8f:d5:f8:7a:84:30:b5:0d:84:20: 31:ff:6b:8b:59:45:98:a6:14:65:18:ab:50:c9:3e:7a:60:80: 78:6e:98:49:0e:3a:82:6e:c5:68:0f:9a:6c:e5:19:c1:22:4e: 23:6d:ed:29:b0:83:58:e9:e8:d4:80:ff:ab:c7:a0:fc:40:cb: 92:99:7c:6a:f5:c2:aa:f9:ec:ab:b9:19:be:60:0a:92:58:68: db:a4:a4:ae:18:ad:88:f7:02:8a:85:6f:5e:34:f3:9f:28:8d: 23:91:c9:d9:c2:29:7c:fa:e3:53:66:fc:20:70:50:31:3b:39: aa:9e:58:a1:de:e1:fa:e2:95:8a:13:31:68:ee:f7:98:c0:e7: 3c:0e:0f:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjQxMTIyMjA0MTAzWhcNMjQxMTI5MjA0MTAzWjAYMRYwFAYD VQQDEw02NzQwZWM1Zi1mMjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fynmwpvFiLeu2Yj+qEyj82kLyKqD9P8paeXFV7p5mqhHsAKhoWvAdmKJaP0 Zymu09PkjSWjRPJrhhlnuLS76hLXNN1YkL5CG9ruvTa7TApL6C19ahFwjr8KdAHv +RKCFvRa3UvoAKNJR0J6waTtELNo5dFSJ4ZZ2m8fKP8UrDl+3a/4vVXRwPi7MyM4 NJDDin5fmKOd7XR2n3X3kNiGxtlZNRYFLo15AYHPUlWsfI1DHeVHkxvJkJtcRIeI fDqhW+FdEsTUI6lflMJ0rSB8ntOScgeyEJcsL93Pm+pPTzyo+lKQRgjeG+Ku7Svv ISty/yPTyOwGvABhhfyGmZplHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGKhNGD 4myl1EAHk87aK9GSYiKrMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX1kUg8KUps2jtg66VBylKy4IUkt041G6daECIW1MmrJZKSQDxxCSX lF8RQ2bs1fBX1i1pVNxV8mNuD1Fh72GIQdszUmaDUpLx+l17BZTLOWomoOpOfdKp 9miVfiGvHnbwiOFvg6s7BwYqo3DuiJJNp2QYf4/V+HqEMLUNhCAx/2uLWUWYphRl GKtQyT56YIB4bphJDjqCbsVoD5ps5RnBIk4jbe0psINY6ejUgP+rx6D8QMuSmXxq 9cKq+eyruRm+YAqSWGjbpKSuGK2I9wKKhW9eNPOfKI0jkcnZwil8+uNTZvwgcFAx Ozmqnlih3uH64pWKEzFo7veYwOc8Dg+Z -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org