$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft File: TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft (raw, json) Hash identifier: vzAmePGBaPWBY+FImvyTG1kYZ8uvVjpOUfnn/zfpcRg= Subject key identifier: 83:89:FF:63:58:07:10:6A:78:91:95:CF:83:4A:C2:6D:55:AD:E9:42 Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft Manifest number: 5D Signing time: Thu 21 Nov 2024 05:10:18 +0000 Manifest this update: Thu 21 Nov 2024 05:10:18 +0000 Manifest next update: Thu 28 Nov 2024 05:10:18 +0000 Files and hashes: 1: TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl (hash: aUdp200FWfU08F5wbA9+SGV9qyzxrP6csUip0tmp7IA=) 2: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (hash: ymGuQNubHZmih1/MlsNM4UjPPYjnvk5QIBxrno55/zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Nov 21 05:10:18 2024 GMT Not After : Nov 28 05:10:18 2024 GMT Subject: CN=673ec0ba-92b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:51:c1:58:c6:bb:13:d1:05:a7:8d:0b:8b:5f: d3:5f:1a:92:71:13:2a:d3:45:5f:e4:60:18:2d:61: 8d:87:3b:a0:ec:31:61:08:5b:ee:e3:14:e0:1d:09: 10:ea:03:d9:53:06:68:5e:b0:5b:3e:56:a6:7d:87: 02:16:23:93:28:ff:16:96:70:5f:48:e0:27:70:90: 21:d2:9a:d1:9e:35:a4:7e:06:8c:01:ac:ee:24:b4: bc:58:3e:0a:53:c1:71:70:24:7e:60:03:15:73:c1: 9c:8b:eb:2b:fb:cd:06:78:6c:c0:08:23:67:9a:f5: b5:bf:c9:93:9c:ff:31:47:23:4e:91:a0:62:28:c5: 21:51:94:2d:30:a8:3c:db:e6:f2:62:45:21:36:47: 0a:fd:71:72:7f:43:79:7a:38:43:88:f2:10:23:0a: 59:26:96:93:2d:69:12:c5:7a:25:7c:0c:3c:13:28: 4d:fc:50:e8:f0:d9:cb:22:c7:43:02:13:3c:f7:31: 67:dc:71:50:e6:06:6d:cb:d3:c9:0b:bd:5e:7e:d6: a2:d9:e7:23:1e:c4:82:1a:46:b7:2f:f4:e9:6e:f5: ce:06:58:d3:9c:af:16:aa:e8:a4:f1:30:ad:c9:d9: 96:00:6f:25:d4:78:7d:13:7f:e1:15:b7:dd:d1:48: 05:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:89:FF:63:58:07:10:6A:78:91:95:CF:83:4A:C2:6D:55:AD:E9:42 X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:74:b4:b1:ab:3c:35:21:33:2c:49:89:20:65:96:17:8e:df: 1d:7b:8b:ea:51:36:49:ad:28:cb:09:b7:a4:3d:0b:8b:b9:41: 8a:d5:2c:92:82:75:06:83:f1:39:9c:9b:0b:48:a3:48:1d:a0: 55:af:0c:68:7c:b0:6f:60:10:82:b4:7e:e7:52:38:e6:7c:b6: 9a:17:c6:c9:e5:7e:3a:d6:2e:06:6c:2e:37:49:15:db:3a:78: 9b:4e:01:45:65:41:37:83:56:6b:5f:86:a2:dc:f4:18:55:ae: 21:7b:cf:6f:35:ac:a9:7f:a7:28:59:8f:0d:7c:a9:ba:b4:ef: d5:45:df:51:a5:db:55:ae:d2:eb:4b:2e:f1:04:56:91:80:b5: 81:37:f8:cb:36:2a:4d:52:83:07:71:4f:a5:bd:38:6a:26:d8: d5:a5:8e:2e:82:cb:ff:43:e5:86:ce:e8:a9:e0:8c:8f:0d:e5: ac:50:71:bd:f9:45:d7:e1:60:ba:ac:7c:27:2f:99:41:98:ca: ff:c2:8f:8b:f9:12:fc:69:6e:bf:51:ab:9e:8f:ef:fc:72:69: a4:f6:3e:90:d2:8a:3e:2b:43:9d:23:44:14:50:bc:04:de:32: 91:9d:27:8f:e0:3e:6a:0c:c4:b8:ab:cc:40:a9:10:29:0b:11: 6e:32:a5:96 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzFCNzExMC8GA1UEBRMoNEMzMzlDQUJGQzgwQTVGNDE5REYzM0RGQjA2ODg1QzFD MzQ4OEIyRDAeFw0yNDExMjEwNTEwMThaFw0yNDExMjgwNTEwMThaMBgxFjAUBgNV BAMTDTY3M2VjMGJhLTkyYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqUcFYxrsT0QWnjQuLX9NfGpJxEyrTRV/kYBgtYY2HO6DsMWEIW+7jFOAdCRDq A9lTBmhesFs+VqZ9hwIWI5Mo/xaWcF9I4CdwkCHSmtGeNaR+BowBrO4ktLxYPgpT wXFwJH5gAxVzwZyL6yv7zQZ4bMAII2ea9bW/yZOc/zFHI06RoGIoxSFRlC0wqDzb 5vJiRSE2Rwr9cXJ/Q3l6OEOI8hAjClkmlpMtaRLFeiV8DDwTKE38UOjw2csix0MC Ezz3MWfccVDmBm3L08kLvV5+1qLZ5yMexIIaRrcv9Olu9c4GWNOcrxaq6KTxMK3J 2ZYAbyXUeH0Tf+EVt93RSAW/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg4n/Y1gH EGp4kZXPg0rCbVWt6UIwHwYDVR0jBBgwFoAUTDOcq/yApfQZ3zPfsGiFwcNIiy0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMUI3L0YyQTU3MzJFMUU2 QjExRUZBQzBFOTE0RUM0RjlBRTAyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVERPY3FfeUFwZlFaM3pQZnNHaUZ3Y05JaXkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz MUI3L0YyQTU3MzJFMUU2QjExRUZBQzBFOTE0RUM0RjlBRTAyL1RET2NxX3lBcGZR WjN6UGZzR2lGd2NOSWl5MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEB0tLGrPDUhMyxJiSBllheO3x17i+pRNkmtKMsJt6Q9C4u5QYrVLJKC dQaD8TmcmwtIo0gdoFWvDGh8sG9gEIK0fudSOOZ8tpoXxsnlfjrWLgZsLjdJFds6 eJtOAUVlQTeDVmtfhqLc9BhVriF7z281rKl/pyhZjw18qbq079VF31Gl21Wu0utL LvEEVpGAtYE3+Ms2Kk1SgwdxT6W9OGom2NWlji6Cy/9D5YbO6KngjI8N5axQcb35 RdfhYLqsfCcvmUGYyv/Cj4v5Evxpbr9Rq56P7/xyaaT2PpDSij4rQ50jRBRQvATe MpGdJ4/gPmoMxLirzECpECkLEW4ypZY= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org