$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: 2km4sZIaczjTnmLjD+OATa6F3Df9es+4EivyIhPNw6I= Subject key identifier: 1B:FC:39:4C:B7:07:1B:35:ED:8E:05:10:5D:3C:24:8B:46:0F:A9:7F Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: 3D Signing time: Thu 19 Sep 2024 05:47:42 +0000 Manifest this update: Thu 19 Sep 2024 05:47:42 +0000 Manifest next update: Thu 26 Sep 2024 05:47:42 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: 6lLSQp9XXqmzKC/2eVqEyOrRllmKhoyX1pEXxzPiyOw=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: ymGuQNubHZmih1/MlsNM4UjPPYjnvk5QIBxrno55/zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Sep 19 05:47:42 2024 GMT Not After : Sep 26 05:47:42 2024 GMT Subject: CN=66ebbafe-658c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f8:24:92:26:06:14:a6:11:b5:8d:be:c2:49: c6:74:4b:e6:80:69:5b:8e:c2:ff:9a:0d:35:f6:82: 8f:88:16:55:04:b0:e5:f4:7a:d0:27:9e:c3:4e:c3: 04:b1:bc:2f:17:ff:15:e9:e7:da:13:c9:35:78:7a: 11:c7:37:24:18:98:d6:92:a3:b1:4d:12:47:bf:1b: e8:90:1c:6e:43:1a:72:24:61:d3:67:fb:14:01:cb: ee:8b:6f:eb:a4:9c:3e:0f:d4:54:36:99:3a:7e:db: 13:1c:fe:68:b5:58:58:3f:e5:cf:02:ce:64:2b:c1: 77:b6:9a:ea:66:ed:e8:90:bc:ba:b4:f7:e3:ee:99: 79:dd:8e:c8:38:3f:46:cb:eb:ce:2f:b8:2e:d2:27: ab:dc:8b:f0:01:cd:de:fd:fe:6d:69:e6:bc:eb:e8: a4:b7:ec:2e:c5:61:2a:76:aa:c4:59:79:f6:e3:ac: 6c:af:00:86:a3:cd:76:e4:0c:d6:ca:fd:1b:23:52: 2f:02:b4:44:df:80:b9:fc:42:ef:3b:68:f0:1e:ee: 8d:63:a9:56:aa:fe:c7:2c:6a:0a:e3:9c:16:eb:31: 21:03:0e:08:29:1b:57:28:62:dc:03:e9:fe:2b:94: 0e:87:ec:63:3e:3e:1e:93:49:cf:ce:31:98:3c:f5: fd:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FC:39:4C:B7:07:1B:35:ED:8E:05:10:5D:3C:24:8B:46:0F:A9:7F X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e9:9a:9d:d4:6e:50:43:62:f0:3c:1f:77:73:64:7b:a3:c1: 45:56:9c:88:09:28:89:9a:eb:ba:2f:7c:dd:41:89:f5:0a:f9: 4e:71:ce:06:88:4e:74:e0:55:6d:b6:33:d5:a8:97:58:3d:37: bf:08:21:27:5a:13:df:8f:7c:e7:83:24:50:ab:02:bf:53:ff: b8:30:72:c7:36:a4:83:63:36:92:01:47:f0:85:d2:56:a2:61: 73:8f:ec:36:9c:e6:d1:85:8f:c8:77:7b:8f:e5:98:be:df:e2: 3e:27:71:3d:b3:88:86:d6:31:45:f3:7e:84:2b:e0:ae:8d:d5: 63:84:d4:72:20:1d:4c:a1:a2:87:cb:55:8c:b3:e6:0f:f2:df: a5:ad:13:ae:86:06:2e:73:ef:aa:b3:0c:a4:06:5b:08:52:0b: c7:cb:6a:4f:fd:be:b6:67:09:fe:66:43:31:8b:94:30:ab:ee: 02:a5:e9:3e:43:8a:6e:f6:b9:8c:3e:7f:79:dc:65:a7:24:9a: f8:25:75:21:89:11:22:29:fd:2f:e8:26:d7:eb:7b:d3:32:3d: 86:02:05:92:28:72:20:80:3a:ff:1b:d1:7f:a0:07:42:11:f8: 62:b5:d1:18:d6:3d:fe:1b:a2:73:64:fb:43:f2:c2:9b:27:42: 0c:0c:41:68 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzFCNzExMC8GA1UEBRMoNEMzMzlDQUJGQzgwQTVGNDE5REYzM0RGQjA2ODg1QzFD MzQ4OEIyRDAeFw0yNDA5MTkwNTQ3NDJaFw0yNDA5MjYwNTQ3NDJaMBgxFjAUBgNV BAMTDTY2ZWJiYWZlLTY1OGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2+CSSJgYUphG1jb7CScZ0S+aAaVuOwv+aDTX2go+IFlUEsOX0etAnnsNOwwSx vC8X/xXp59oTyTV4ehHHNyQYmNaSo7FNEke/G+iQHG5DGnIkYdNn+xQBy+6Lb+uk nD4P1FQ2mTp+2xMc/mi1WFg/5c8CzmQrwXe2mupm7eiQvLq09+PumXndjsg4P0bL 684vuC7SJ6vci/ABzd79/m1p5rzr6KS37C7FYSp2qsRZefbjrGyvAIajzXbkDNbK /RsjUi8CtETfgLn8Qu87aPAe7o1jqVaq/scsagrjnBbrMSEDDggpG1coYtwD6f4r lA6H7GM+Ph6TSc/OMZg89f1HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG/w5TLcH GzXtjgUQXTwki0YPqX8wHwYDVR0jBBgwFoAUTDOcq/yApfQZ3zPfsGiFwcNIiy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMUI3L0YyQTU3MzJFMUU2 QjExRUZBQzBFOTE0RUM0RjlBRTAyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVERPY3FfeUFwZlFaM3pQZnNHaUZ3Y05JaXkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MUI3L0YyQTU3MzJFMUU2QjExRUZBQzBFOTE0RUM0RjlBRTAyL1RET2NxX3lBcGZR WjN6UGZzR2lGd2NOSWl5MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAvpmp3UblBDYvA8H3dzZHujwUVWnIgJKIma67ovfN1BifUK+U5xzgaI TnTgVW22M9Wol1g9N78IISdaE9+PfOeDJFCrAr9T/7gwcsc2pINjNpIBR/CF0lai YXOP7Dac5tGFj8h3e4/lmL7f4j4ncT2ziIbWMUXzfoQr4K6N1WOE1HIgHUyhoofL VYyz5g/y36WtE66GBi5z76qzDKQGWwhSC8fLak/9vrZnCf5mQzGLlDCr7gKl6T5D im72uYw+f3ncZackmvgldSGJESIp/S/oJtfre9MyPYYCBZIociCAOv8b0X+gB0IR +GK10RjWPf4bonNk+0PywpsnQgwMQWg= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:22 2024 by rpki-client on console-fra.rpki-client.org