$ rpki-client -vvf rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft File: DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft (raw, json) Hash identifier: A9+p78TIOcrh0VEWd7XBukBcAEGxMNfXdWlpGgHdRUs= Subject key identifier: 4B:E8:9E:23:82:F3:14:18:AF:92:FA:13:4A:20:3A:23:96:B6:AA:EB Authority key identifier: 0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F Certificate issuer: /CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Certificate serial: 072C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft Manifest number: 0727 Signing time: Fri 22 Nov 2024 21:17:10 +0000 Manifest this update: Fri 22 Nov 2024 21:17:10 +0000 Manifest next update: Fri 29 Nov 2024 21:17:10 +0000 Files and hashes: 1: DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl (hash: JMLxTO6dI1lnyBQ2+O21TtpycC7MLDcaUhk518ocIrE=) 2: 90C5BDF013F011EBA31BF948C4F9AE02.roa (hash: Kj36KmNfFdkRcV28mvAKtxE5L96/nJfLHFIFp5dBrXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1836 (0x72c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Validity Not Before: Nov 22 21:17:10 2024 GMT Not After : Nov 29 21:17:10 2024 GMT Subject: CN=6740f4d6-e5ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:32:fc:46:ce:7f:5d:17:56:02:e7:25:ed:2f: 22:d7:58:ee:2b:de:fa:ce:bf:c5:98:0f:87:76:c1: e4:77:4f:39:55:4d:53:79:56:4f:a1:c0:fe:6e:af: 74:02:d7:44:0d:95:e8:45:15:3f:21:42:09:ae:b6: a9:c6:20:a3:ea:76:2e:da:a2:01:ed:1c:0c:8c:fb: bc:b8:c1:e8:a0:e5:d8:e9:75:5f:70:32:cb:19:9c: bf:99:60:eb:bd:37:e8:88:1c:16:4a:70:12:e6:24: fa:aa:a4:61:43:15:17:2c:d6:e8:bf:d9:fb:8d:37: cd:c1:3d:74:25:0f:94:b5:78:a0:19:5d:a6:42:35: 21:14:e3:51:e8:ab:1d:da:b1:08:83:b7:77:6d:9c: c3:09:d6:34:11:1f:61:39:41:bc:f1:65:f9:b5:48: 8b:da:5e:15:05:43:76:7a:39:34:59:a6:a9:e0:0c: a1:56:b6:9e:fe:c1:d1:a7:0f:59:ac:e1:a2:a4:25: d2:59:5e:6b:f1:6e:51:8a:b3:22:7a:0c:bb:52:a4: 0a:01:63:e7:cb:c5:a6:c9:87:ac:9c:63:ef:7e:7c: cf:20:05:3d:43:fd:1d:a1:55:8d:0e:bb:c1:11:fd: d1:2a:b7:1f:ba:b4:d8:1b:b8:c0:29:62:66:60:b2: 0b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:E8:9E:23:82:F3:14:18:AF:92:FA:13:4A:20:3A:23:96:B6:AA:EB X509v3 Authority Key Identifier: keyid:0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:1c:5d:7c:ac:d2:37:34:84:f6:3c:ce:8f:39:30:86:db:57: 2b:52:8d:ae:ed:dd:bd:71:b3:c3:7a:2d:3d:07:57:03:f1:52: 45:43:b2:6e:ce:75:56:6a:bb:b2:c0:20:c4:3e:c1:a8:e5:f4: cd:80:fd:5b:94:9a:29:9b:b0:2d:a6:10:d7:34:a7:c6:db:91: 4d:2a:c4:b2:ee:5e:a1:3a:ef:4a:cb:f2:02:3b:ab:a3:a5:46: 5b:23:81:9a:9c:95:b8:e1:75:63:1c:1e:b9:e5:90:98:6c:c4: 1a:55:a5:a2:35:83:b7:58:3a:98:b4:0c:87:79:27:13:a5:76: de:00:e4:4e:b9:62:93:ae:da:2c:27:b0:d5:ea:cb:48:ac:80: 60:31:d7:bd:18:14:81:20:e3:38:2f:7b:2b:82:ff:ea:1d:33: ac:ac:31:4e:a8:6b:48:6b:22:70:96:67:39:a1:74:e8:69:4c: 0d:87:7a:8a:43:71:f4:f8:08:b7:29:14:f8:47:71:7a:5a:09: 39:ed:85:c0:ff:87:3c:39:38:ae:e1:5d:95:d6:45:6f:07:b5: c9:6e:ff:d5:9a:2e:63:3c:f6:d0:0c:2e:a5:a4:d4:f3:17:10: c5:b8:a6:13:16:6b:81:20:0e:a5:ff:37:d0:de:97:5c:65:fc: a7:fe:af:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczMUExMTAvBgNVBAUTKDBEQjREM0Y5RDVFMjBEODVCRUI3RjlDQjFCMDdDMzE1 QUE0NjA5OUYwHhcNMjQxMTIyMjExNzEwWhcNMjQxMTI5MjExNzEwWjAYMRYwFAYD VQQDEw02NzQwZjRkNi1lNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDL8Rs5/XRdWAucl7S8i11juK976zr/FmA+HdsHkd085VU1TeVZPocD+bq90 AtdEDZXoRRU/IUIJrrapxiCj6nYu2qIB7RwMjPu8uMHooOXY6XVfcDLLGZy/mWDr vTfoiBwWSnAS5iT6qqRhQxUXLNbov9n7jTfNwT10JQ+UtXigGV2mQjUhFONR6Ksd 2rEIg7d3bZzDCdY0ER9hOUG88WX5tUiL2l4VBUN2ejk0Waap4AyhVrae/sHRpw9Z rOGipCXSWV5r8W5RirMiegy7UqQKAWPny8WmyYesnGPvfnzPIAU9Q/0doVWNDrvB Ef3RKrcfurTYG7jAKWJmYLIL5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvoniOC 8xQYr5L6E0ogOiOWtqrrMB8GA1UdIwQYMBaAFA200/nV4g2Fvrf5yxsHwxWqRgmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzMxQS9DOUY4M0FFRTBF QzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZVy10X25MR3dmREZhcEdD WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RiVFQtZFhpRFlXLXRfbkxHd2ZERmFwR0NaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzMxQS9DOUY4M0FFRTBFQzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZ Vy10X25MR3dmREZhcEdDWjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJHF18rNI3NIT2PM6POTCG21crUo2u7d29cbPDei09B1cD8VJFQ7Ju znVWaruywCDEPsGo5fTNgP1blJopm7AtphDXNKfG25FNKsSy7l6hOu9Ky/ICO6uj pUZbI4GanJW44XVjHB655ZCYbMQaVaWiNYO3WDqYtAyHeScTpXbeAOROuWKTrtos J7DV6stIrIBgMde9GBSBIOM4L3srgv/qHTOsrDFOqGtIayJwlmc5oXToaUwNh3qK Q3H0+Ai3KRT4R3F6Wgk57YXA/4c8OTiu4V2V1kVvB7XJbv/Vmi5jPPbQDC6lpNTz FxDFuKYTFmuBIA6l/zfQ3pdcZfyn/q+c -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org