$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft File: tLEObLONU2XQVOjb6Q808sOIsQw.mft (raw, json) Hash identifier: KgCjG8Nu7MWAFWkVgYRYejy7nx8v+MFmkFn3vJs/lrU= Subject key identifier: 48:F2:9B:38:B5:11:15:A1:0C:47:DC:25:5A:D4:A9:8A:F3:53:24:5E Authority key identifier: B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C Certificate issuer: /CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Certificate serial: 0C1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft Manifest number: 0C02 Signing time: Fri 22 Nov 2024 18:25:24 +0000 Manifest this update: Fri 22 Nov 2024 18:25:23 +0000 Manifest next update: Fri 29 Nov 2024 18:25:23 +0000 Files and hashes: 1: tLEObLONU2XQVOjb6Q808sOIsQw.crl (hash: veS3LGAmxAbELt2C8NVYobL0UBMnusnUup4iMlqF5s4=) 2: 30256B5CF7B911EEAB0C6C36C4F9AE02.roa (hash: YgmB/miyciCfel1NRXhzBbmgg6ljB6KT231oPhcSu5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3102 (0xc1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3/serialNumber=B4B10E6CB38D5365D054E8DBE90F34F2C388B10C Validity Not Before: Nov 22 18:25:23 2024 GMT Not After : Nov 29 18:25:23 2024 GMT Subject: CN=6740cc94-52f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bc:df:c2:a7:f3:04:95:43:c8:f0:fd:be:9f: ad:e3:c0:bb:22:87:94:3b:dc:d4:7e:3c:8b:b1:1c: ed:1e:c8:f2:f6:58:14:54:c1:22:48:29:61:44:82: 52:3f:44:80:f1:eb:77:23:de:85:a4:ab:0c:05:a9: 4e:58:19:84:0f:55:41:de:fa:05:75:d3:91:c0:28: 3c:25:32:34:d5:74:d7:2f:4d:87:31:62:86:75:1e: 21:57:dc:e2:f7:ca:d8:ba:06:97:80:0a:ac:b6:d3: b8:cf:d9:1c:ca:c9:c3:a4:32:f9:15:01:d0:93:8b: 74:41:22:c0:73:37:19:44:8c:95:ac:17:80:f2:22: 28:a5:96:d2:36:62:5b:07:3f:ec:9f:27:d4:8f:e5: 1d:df:df:46:17:ec:6d:96:7e:d6:26:44:46:15:65: 4b:04:fc:d1:e9:3d:fd:9f:18:4a:99:5c:2a:87:48: 08:3c:ff:6c:38:e3:4c:d5:77:f6:7f:07:57:ed:6a: 09:da:a1:42:e3:2e:df:33:42:58:89:5e:23:1f:3e: ba:d5:16:2e:44:ad:7d:46:aa:01:7a:4f:0f:11:3e: b9:56:9d:8d:fa:67:b1:bb:89:e7:5b:ea:05:b5:15: 3d:01:8e:1c:55:de:9d:c0:88:3b:63:cd:1b:60:35: 71:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:F2:9B:38:B5:11:15:A1:0C:47:DC:25:5A:D4:A9:8A:F3:53:24:5E X509v3 Authority Key Identifier: keyid:B4:B1:0E:6C:B3:8D:53:65:D0:54:E8:DB:E9:0F:34:F2:C3:88:B1:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLEObLONU2XQVOjb6Q808sOIsQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/2091DC8E050111EABD9B202CC4F9AE02/tLEObLONU2XQVOjb6Q808sOIsQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:80:26:b6:f7:6c:5d:25:84:cf:3e:93:ae:f5:80:8c:97:fa: 75:d4:59:b4:16:75:7f:95:c8:fd:62:42:65:a6:2f:89:32:53: 4b:68:45:c4:92:5e:46:ef:55:b6:e9:b8:d4:0e:2e:ec:24:14: f4:da:b3:46:eb:4a:58:3d:ef:e5:23:61:0c:b4:c2:fe:f0:04: fa:8b:86:fa:3b:33:0b:02:12:f5:80:46:28:46:e0:e7:b3:b9: ba:70:0c:4d:f8:16:52:df:f3:4b:3e:8e:8d:9e:a2:d7:9d:5f: cc:25:b3:60:1f:cd:84:ab:5a:5a:c6:03:f9:bb:69:c3:a1:ad: de:73:55:68:b3:dc:cf:66:25:b3:57:3e:19:e2:36:32:d1:ea: a2:27:ed:bb:25:12:8e:ab:25:f9:8b:50:26:51:35:7d:9b:5c: 1d:f6:9b:b4:14:5b:c6:b4:1b:45:58:8e:ef:c2:0c:02:91:62: 30:1d:b4:d2:05:de:4e:b5:ea:f0:22:21:0f:0c:a9:11:ac:21: 6b:02:7d:9c:ba:bb:29:d3:74:d9:e3:de:40:ca:8b:64:f3:ae: 93:9a:b1:36:c5:33:11:48:b8:47:3c:ff:5a:b3:4b:b5:21:57: c1:ce:80:c9:c1:09:96:72:6b:34:17:02:b8:8f:19:b5:18:23: 3d:74:6d:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKEI0QjEwRTZDQjM4RDUzNjVEMDU0RThEQkU5MEYzNEYy QzM4OEIxMEMwHhcNMjQxMTIyMTgyNTIzWhcNMjQxMTI5MTgyNTIzWjAYMRYwFAYD VQQDEw02NzQwY2M5NC01MmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybzfwqfzBJVDyPD9vp+t48C7IoeUO9zUfjyLsRztHsjy9lgUVMEiSClhRIJS P0SA8et3I96FpKsMBalOWBmED1VB3voFddORwCg8JTI01XTXL02HMWKGdR4hV9zi 98rYugaXgAqsttO4z9kcysnDpDL5FQHQk4t0QSLAczcZRIyVrBeA8iIopZbSNmJb Bz/snyfUj+Ud399GF+xtln7WJkRGFWVLBPzR6T39nxhKmVwqh0gIPP9sOONM1Xf2 fwdX7WoJ2qFC4y7fM0JYiV4jHz661RYuRK19RqoBek8PET65Vp2N+mexu4nnW+oF tRU9AY4cVd6dwIg7Y80bYDVxIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjymzi1 ERWhDEfcJVrUqYrzUyReMB8GA1UdIwQYMBaAFLSxDmyzjVNl0FTo2+kPNPLDiLEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8yMDkxREM4RTA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUyWFFWT2piNlE4MDhzT0lz UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMRU9iTE9OVTJYUVZPamI2UTgwOHNPSXNRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8yMDkxREM4RTA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi90TEVPYkxPTlUy WFFWT2piNlE4MDhzT0lzUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEgCa292xdJYTPPpOu9YCMl/p11Fm0FnV/lcj9YkJlpi+JMlNLaEXE kl5G71W26bjUDi7sJBT02rNG60pYPe/lI2EMtML+8AT6i4b6OzMLAhL1gEYoRuDn s7m6cAxN+BZS3/NLPo6NnqLXnV/MJbNgH82Eq1paxgP5u2nDoa3ec1Vos9zPZiWz Vz4Z4jYy0eqiJ+27JRKOqyX5i1AmUTV9m1wd9pu0FFvGtBtFWI7vwgwCkWIwHbTS Bd5OterwIiEPDKkRrCFrAn2cursp03TZ495Ayotk866TmrE2xTMRSLhHPP9as0u1 IVfBzoDJwQmWcms0FwK4jxm1GCM9dG1n -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org