$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft File: TK4677Gsir3bmbzO5PpakW0VezQ.mft (raw, json) Hash identifier: se+9v1wZLNBeqKSGesK/x5XdryMe5G/7HiJY80ky5TA= Subject key identifier: 6C:29:89:11:7F:14:23:7D:AB:A3:EC:DF:0A:72:35:C3:10:DC:68:FB Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 34F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft Manifest number: 3449 Signing time: Mon 06 May 2024 14:33:02 +0000 Manifest this update: Mon 06 May 2024 14:33:01 +0000 Manifest next update: Mon 13 May 2024 14:33:01 +0000 Files and hashes: 1: TK4677Gsir3bmbzO5PpakW0VezQ.crl (hash: oNCGuUcmJiCyxKbVa0D2AdAnoJi/CSRwO5PtxcGEOd4=) 2: D166652A072211EF9AC24D5BC4F9AE02.roa (hash: 6EnVuw6ZfUYXqCSV2smHwvRY6qKL4X2LNKW/sqTbKds=) 3: AD20058AA15311EDB7EEA166C4F9AE02.roa (hash: 0kjiBakfjScVJjewurb6gTRWeb7Z7CuEpqyiIX0oOgM=) 4: 945922AECEBA11EDBBFD9E28C4F9AE02.roa (hash: YM59NrW9H4UJvcLpw3cpsrcplsTUtR8tSQfAh5D2VVY=) 5: 24D7D74C978011EE87BB7D53C4F9AE02.roa (hash: 4NK+MhKMKZm2Ucwah4YCjjvRDUptfXHYxwu/ywrQ1XE=) 6: 31D56A8E06C711EF9A0E1D0AC4F9AE02.roa (hash: 7XBk8ORjYWijT3wsCOJ8nDcD/q7UOfGeSFnT4pFgWSc=) 7: D630A6B206D511EFB6CFDF2DC4F9AE02.roa (hash: 21j5VuSiIiFcZKr6TSvSPHqlTOFdzYbVC1rBUAH1qbI=) 8: 5AAF8D62F0CA11EE9E48CD72C4F9AE02.roa (hash: 50JhcfRfXERFUs5k1ez6LLrF7vV3+zy1Z8lXp8yJjDw=) 9: 4B2AFD54ABA611EEA4B59A6AC4F9AE02.roa (hash: 9fmSismXcyTH39qDXu1GtClnVNjxH/12hIIQgygnh2M=) 10: 982AFFA4E2B611EE97AF7309C4F9AE02.roa (hash: vBi4AGzYkidRMSHUwFbybOi16QJPXOsl8kgQKo3/2Lc=) 11: 71F2B10843B611EB9FB8597CC4F9AE02.roa (hash: DR5qaMSL4564H0nya+S0/xchH7Yi3cgTTW4HlyMJu4c=) 12: 8FF00754732F11EE90078C13C4F9AE02.roa (hash: kvr5IK6CaNUKo5drZu35gpH8jaxL84ltu+eFuUUFqZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13558 (0x34f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: May 6 14:33:01 2024 GMT Not After : May 13 14:33:01 2024 GMT Subject: CN=6638ea1d-2a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:e5:8a:a7:4e:62:77:ad:91:26:c0:f5:62: 7c:a1:a1:7f:c5:a5:b7:2f:37:23:90:50:9d:a8:fa: f6:cc:55:6b:87:54:95:99:2d:3f:8c:ff:f9:2c:e2: c4:61:4a:ec:4a:b5:ae:d0:1e:c6:6c:f7:1d:13:f1: 10:81:e3:4a:ec:42:74:07:c8:de:0d:f1:52:db:35: 91:44:0e:da:ca:38:90:3f:2f:ef:48:11:94:3c:60: 2a:9c:f4:05:dc:0a:8d:c2:d4:22:55:8a:46:f2:12: 3a:23:cc:db:f5:26:84:8d:3e:f9:4d:76:60:ca:2a: bc:cc:69:c0:74:e0:91:b3:ca:78:7c:42:8c:ab:71: ef:61:40:e0:9d:15:45:de:81:a1:ac:2d:5d:bf:4b: 61:14:39:39:66:a2:12:b4:d0:a2:a3:a4:f6:0c:fc: 19:97:07:f5:bc:10:73:30:df:e8:71:d9:d6:53:bd: 71:0e:05:72:f0:97:4e:90:ed:6b:3d:d1:a4:f5:54: 2d:ba:66:24:29:c1:22:9f:51:58:22:f0:a4:d0:83: 82:6c:63:24:53:e8:23:58:98:99:43:90:3d:fc:14: 49:d5:46:27:77:09:6e:0c:a5:86:f4:e7:d5:b4:c5: 45:a2:6e:12:53:d0:7f:7c:82:54:cc:9a:da:fd:d2: c9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:29:89:11:7F:14:23:7D:AB:A3:EC:DF:0A:72:35:C3:10:DC:68:FB X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:c7:d8:fc:4b:a8:2f:e3:5c:88:d2:81:70:ff:0c:5a:34:c5: c0:8c:e4:12:6b:3d:6b:19:e0:82:ca:f6:74:20:ec:25:d3:dc: 58:7e:6a:69:5d:e5:7e:68:71:45:df:fa:fa:24:fa:b0:17:e0: 71:cd:44:1a:79:d2:75:45:b9:c4:82:83:01:c1:9b:6f:4d:39: 70:c1:b1:0a:9a:3d:d4:9e:46:6f:01:95:31:c2:22:2e:78:37: 3d:41:8f:0e:18:cd:69:6a:a9:09:ee:2f:68:5b:66:14:64:2d: ce:c7:1c:96:1e:95:6b:04:64:b4:8f:0b:a2:10:04:81:22:e6: 7c:39:b5:45:2e:2b:d8:6a:f7:d2:ec:45:bc:07:c1:b2:1e:00: 03:cf:66:e6:a4:9e:aa:f8:4c:f2:5a:d0:e5:bf:6e:79:2e:4a: b2:3c:9d:92:45:2e:c5:10:1b:c5:05:08:55:3a:d8:46:5f:c6: 0d:0c:88:34:a3:4d:59:1a:75:39:d7:13:37:52:d1:0f:d2:05: c6:bd:01:5b:e4:dc:30:df:33:f7:4b:39:77:18:22:e9:09:61: 11:30:20:92:a9:c0:00:9c:45:90:a3:bf:43:16:39:e8:4e:6b: d2:88:f4:6f:6b:73:ce:52:4c:7b:a4:80:49:1b:7e:7a:f0:03: e5:56:8d:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQwNTA2MTQzMzAxWhcNMjQwNTEzMTQzMzAxWjAYMRYwFAYD VQQDEw02NjM4ZWExZC0yYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd7liqdOYnetkSbA9WJ8oaF/xaW3LzcjkFCdqPr2zFVrh1SVmS0/jP/5LOLE YUrsSrWu0B7GbPcdE/EQgeNK7EJ0B8jeDfFS2zWRRA7ayjiQPy/vSBGUPGAqnPQF 3AqNwtQiVYpG8hI6I8zb9SaEjT75TXZgyiq8zGnAdOCRs8p4fEKMq3HvYUDgnRVF 3oGhrC1dv0thFDk5ZqIStNCio6T2DPwZlwf1vBBzMN/ocdnWU71xDgVy8JdOkO1r PdGk9VQtumYkKcEin1FYIvCk0IOCbGMkU+gjWJiZQ5A9/BRJ1UYndwluDKWG9OfV tMVFom4SU9B/fIJUzJra/dLJpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwpiRF/ FCN9q6Ps3wpyNcMQ3Gj7MB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ3RS9FQ0E2ODIzNDFEODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2ly M2JtYnpPNVBwYWtXMFZlelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAx9j8S6gv41yI0oFw/wxaNMXAjOQSaz1rGeCCyvZ0IOwl09xYfmpp XeV+aHFF3/r6JPqwF+BxzUQaedJ1RbnEgoMBwZtvTTlwwbEKmj3UnkZvAZUxwiIu eDc9QY8OGM1paqkJ7i9oW2YUZC3OxxyWHpVrBGS0jwuiEASBIuZ8ObVFLivYavfS 7EW8B8GyHgADz2bmpJ6q+EzyWtDlv255LkqyPJ2SRS7FEBvFBQhVOthGX8YNDIg0 o01ZGnU51xM3UtEP0gXGvQFb5Nww3zP3Szl3GCLpCWERMCCSqcAAnEWQo79DFjno TmvSiPRva3POUkx7pIBJG3568APlVo1t -----END CERTIFICATE-----Generated at Mon May 6 17:36:19 2024 by rpki-client on console-fra.rpki-client.org