$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: ZMnVwZCpHDUBQ7auHIZCkZ+qwhYumD3rUpi+NfNCRyQ= Subject key identifier: A8:32:C0:F9:3B:3E:9D:B1:37:0E:16:BC:79:F0:2D:72:49:37:7A:96 Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 042D Signing time: Fri 22 Nov 2024 23:53:37 +0000 Manifest this update: Fri 22 Nov 2024 23:53:37 +0000 Manifest next update: Fri 29 Nov 2024 23:53:37 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: tPNZh42p0E+jmB5/QwJBBwj5KGmmOZjSev5KuZzFPHM=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: jYyif5XzvidlG1gkLHEZCka6sLKHMVLL3uaZPQUQSWU=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: aIqnIQInPJrCMj5K0+1zGOgCOM0xLmrh4KbjkSzgqVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Nov 22 23:53:37 2024 GMT Not After : Nov 29 23:53:37 2024 GMT Subject: CN=67411981-9af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bb:89:25:95:e9:0a:d5:00:06:fc:b5:f0:04: 71:3e:69:7f:d8:14:2a:68:32:fa:1b:c8:dc:09:15: 55:3a:92:05:f6:dc:84:8c:26:34:b1:c9:ca:fa:90: 2c:c2:5a:8a:ce:db:99:39:13:16:11:3a:80:80:7f: d6:52:f6:d8:10:8e:bd:9c:8e:a4:51:b4:b6:a5:f1: 9c:ff:9d:79:d6:6c:90:96:24:6b:fb:f8:15:66:6b: 7b:cf:93:75:61:7a:3d:a3:8e:52:fc:b9:f3:f8:ff: aa:fd:76:43:e2:1a:06:fb:8e:3e:54:4a:1a:36:3c: 13:cd:55:21:27:1c:fd:14:b7:2a:e9:d1:f9:37:84: 56:a7:96:91:48:72:5c:53:2d:86:4d:ec:b8:f8:a9: 86:fc:83:12:f2:9d:0d:9b:27:55:e4:04:24:96:6f: 30:5a:e3:94:a2:7b:52:5d:72:52:35:81:b3:b0:93: 0a:71:76:6a:3b:3c:96:1f:71:39:0c:05:52:5e:82: 25:06:5a:c9:61:0c:fe:6f:d6:44:5f:4b:7d:61:a6: 08:05:3b:c3:da:34:33:a5:d6:67:30:e7:57:56:81: ca:d2:a0:81:e3:b7:36:eb:23:ef:b7:b9:4d:45:78: 77:5e:c3:81:78:86:33:76:fd:f3:76:05:4c:cd:6f: 21:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:32:C0:F9:3B:3E:9D:B1:37:0E:16:BC:79:F0:2D:72:49:37:7A:96 X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:f5:47:eb:29:8d:fc:a0:9b:0e:8b:d1:c7:f2:5b:12:81:4d: dc:54:3d:b4:d0:b5:4a:29:72:7d:7b:35:b2:32:04:f9:2c:9a: 99:2b:92:91:c1:a0:b3:fb:2f:44:d2:ad:b8:0a:38:49:61:38: aa:e9:a8:f5:65:81:a6:b2:9e:28:56:6c:07:9a:43:81:51:64: e3:3d:e1:b6:75:a8:d6:64:10:f6:29:6f:16:4c:86:54:5f:3b: 7a:45:fd:f5:4f:df:a4:ef:c6:c1:d6:4a:10:83:5d:60:32:df: c9:97:31:ca:da:c1:94:a8:fe:29:ed:91:95:b2:ff:c3:eb:0f: be:7b:9d:51:40:55:fe:91:a6:4d:f1:3f:74:96:f4:ad:14:81: 6d:99:ba:ed:b7:27:a6:09:f5:ce:16:eb:14:67:73:1f:21:a9: 04:21:64:56:9c:2a:4e:b9:18:dd:72:c6:94:84:a4:81:14:88: 67:dc:cc:0c:ea:9f:3d:fd:8a:82:e6:2d:72:a3:6b:62:02:0d: 7b:d3:55:19:55:d4:e3:a9:90:68:b0:b7:b7:1d:e8:66:1c:22: 4c:29:85:dc:69:68:46:17:cb:87:28:3f:70:1a:f6:9f:9d:f9: f4:65:81:cb:f8:9c:c4:89:bd:95:93:82:2a:b3:fb:6f:85:2e: 60:22:c1:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjQxMTIyMjM1MzM3WhcNMjQxMTI5MjM1MzM3WjAYMRYwFAYD VQQDEw02NzQxMTk4MS05YWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApruJJZXpCtUABvy18ARxPml/2BQqaDL6G8jcCRVVOpIF9tyEjCY0scnK+pAs wlqKztuZORMWETqAgH/WUvbYEI69nI6kUbS2pfGc/5151myQliRr+/gVZmt7z5N1 YXo9o45S/Lnz+P+q/XZD4hoG+44+VEoaNjwTzVUhJxz9FLcq6dH5N4RWp5aRSHJc Uy2GTey4+KmG/IMS8p0NmydV5AQklm8wWuOUontSXXJSNYGzsJMKcXZqOzyWH3E5 DAVSXoIlBlrJYQz+b9ZEX0t9YaYIBTvD2jQzpdZnMOdXVoHK0qCB47c26yPvt7lN RXh3XsOBeIYzdv3zdgVMzW8hkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgywPk7 Pp2xNw4WvHnwLXJJN3qWMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw9UfrKY38oJsOi9HH8lsSgU3cVD200LVKKXJ9ezWyMgT5LJqZK5KR waCz+y9E0q24CjhJYTiq6aj1ZYGmsp4oVmwHmkOBUWTjPeG2dajWZBD2KW8WTIZU Xzt6Rf31T9+k78bB1koQg11gMt/JlzHK2sGUqP4p7ZGVsv/D6w++e51RQFX+kaZN 8T90lvStFIFtmbrttyemCfXOFusUZ3MfIakEIWRWnCpOuRjdcsaUhKSBFIhn3MwM 6p89/YqC5i1yo2tiAg1701UZVdTjqZBosLe3HehmHCJMKYXcaWhGF8uHKD9wGvaf nfn0ZYHL+JzEib2Vk4Iqs/tvhS5gIsH8 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org