$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft File: sTgy_KSTRJYjasOJSZjD3VE9fAk.mft (raw, json) Hash identifier: Ye3hkLi/ZmuHY1WetteZCG2+thZQApnNZIRT38JbJfg= Subject key identifier: 90:1C:7D:9E:B8:F8:39:C8:01:99:B6:45:EB:3B:D3:CF:4F:36:C7:8C Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 0140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft Manifest number: 013C Signing time: Sat 23 Nov 2024 02:44:06 +0000 Manifest this update: Sat 23 Nov 2024 02:44:05 +0000 Manifest next update: Sat 30 Nov 2024 02:44:05 +0000 Files and hashes: 1: sTgy_KSTRJYjasOJSZjD3VE9fAk.crl (hash: 5ZjCyNqXHGSJvPm3XGtC8ZQOzQYrBs+CzgXWAK7A6zM=) 2: 61DBE422A88B11EFAF507987C4F9AE02.roa (hash: STHjjsnIAoIPHR0TFAUlDiXLQCeT5pB31DsweaU0WWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 320 (0x140) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Nov 23 02:44:05 2024 GMT Not After : Nov 30 02:44:05 2024 GMT Subject: CN=67414176-2191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b6:23:b2:9e:41:e1:02:bf:ed:cf:c7:21:b9: ad:6d:a7:51:a6:9e:df:98:cc:60:30:24:09:b6:39: 69:cb:08:26:19:b2:3b:c8:46:db:58:85:3b:a8:50: 0a:92:ca:c4:5b:c8:42:cf:38:a0:33:97:cb:c2:04: 2e:ad:de:27:cb:9d:2a:b7:45:90:0b:ef:33:ce:d3: 73:03:09:dd:56:33:19:41:b3:e3:a5:1a:b2:52:c7: 0f:3c:f0:bc:e4:7c:1c:cc:f4:bc:af:86:71:fb:f8: 0b:38:41:5c:13:25:2a:0d:55:36:2a:d2:53:e8:44: f5:d6:1f:4d:97:9e:62:51:79:0d:f3:67:a0:fd:4d: f8:44:ae:e3:66:cb:ec:2d:1b:92:fb:98:50:c9:09: d8:87:94:00:b8:80:57:9a:52:61:ee:29:e9:1a:6a: 66:5c:37:89:ce:a3:d2:e6:62:ba:39:9a:3e:5f:a6: 95:67:58:74:16:e8:12:f4:b7:cc:ee:0f:18:b9:13: f1:87:5e:57:0d:1c:64:84:b1:0a:0d:db:73:70:32: a0:5e:f1:22:86:97:cf:bf:70:1e:7e:e6:61:37:13: f8:cb:86:6c:41:6c:ca:ff:8c:3b:cb:c0:96:18:a7: 96:09:24:c7:9c:f4:6f:bd:3c:7e:a5:e0:42:29:41: 52:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1C:7D:9E:B8:F8:39:C8:01:99:B6:45:EB:3B:D3:CF:4F:36:C7:8C X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:28:35:ae:46:0c:a4:20:1f:14:57:1b:2c:0c:33:f0:29:29: cd:67:9f:f1:22:9f:3b:d0:1f:87:57:68:fe:29:8d:9d:a7:70: 05:e5:cb:f8:99:6f:b8:b0:b2:fa:91:d6:f8:8d:12:78:13:21: 50:45:c0:6c:84:25:8f:d8:da:38:0b:76:7e:60:8d:47:4d:1a: 98:66:a6:ac:81:00:c1:52:cd:00:00:cc:60:f3:16:fc:ec:59: 1b:ee:91:33:bf:38:b1:a7:f9:4b:d3:c4:a3:b4:2b:9f:c8:df: 23:71:0a:58:98:d5:f0:79:5b:0d:a6:1d:d3:53:ac:30:d8:df: 5d:5f:eb:40:00:e9:ac:c2:78:73:a3:3a:6a:5d:57:bc:9f:17: d1:20:0d:bc:7c:87:db:e5:0e:47:8b:d0:73:82:11:98:50:d0: bc:62:1d:a7:13:f3:8d:fe:9a:2e:20:ee:ab:13:61:34:84:42: 00:20:88:e0:6e:e9:66:9e:4f:58:84:7a:03:b8:fb:08:1e:a7: 64:53:b9:55:0a:ec:76:32:f5:e6:3d:76:1f:b1:54:d3:4f:35: 78:34:cf:48:63:66:e4:3e:02:7b:dc:a5:ac:c6:de:b0:55:90: 5e:9e:5f:de:79:33:91:b6:85:1f:bf:ad:07:59:e2:eb:a4:5f: 30:f5:e2:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRBMTYxMTAvBgNVBAUTKEIxMzgzMkZDQTQ5MzQ0OTYyMzZBQzM4OTQ5OThDM0RE NTEzRDdDMDkwHhcNMjQxMTIzMDI0NDA1WhcNMjQxMTMwMDI0NDA1WjAYMRYwFAYD VQQDEw02NzQxNDE3Ni0yMTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurYjsp5B4QK/7c/HIbmtbadRpp7fmMxgMCQJtjlpywgmGbI7yEbbWIU7qFAK ksrEW8hCzzigM5fLwgQurd4ny50qt0WQC+8zztNzAwndVjMZQbPjpRqyUscPPPC8 5HwczPS8r4Zx+/gLOEFcEyUqDVU2KtJT6ET11h9Nl55iUXkN82eg/U34RK7jZsvs LRuS+5hQyQnYh5QAuIBXmlJh7inpGmpmXDeJzqPS5mK6OZo+X6aVZ1h0FugS9LfM 7g8YuRPxh15XDRxkhLEKDdtzcDKgXvEihpfPv3AefuZhNxP4y4ZsQWzK/4w7y8CW GKeWCSTHnPRvvTx+peBCKUFSgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAcfZ64 +DnIAZm2Res7089PNseMMB8GA1UdIwQYMBaAFLE4Mvykk0SWI2rDiUmYw91RPXwJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEExNi9CQUU3RUZGRUND NTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJKWWphc09KU1pqRDNWRTlm QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9zVGd5X0tTVFJK WWphc09KU1pqRDNWRTlmQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMKDWuRgykIB8UVxssDDPwKSnNZ5/xIp870B+HV2j+KY2dp3AF5cv4 mW+4sLL6kdb4jRJ4EyFQRcBshCWP2No4C3Z+YI1HTRqYZqasgQDBUs0AAMxg8xb8 7Fkb7pEzvzixp/lL08SjtCufyN8jcQpYmNXweVsNph3TU6ww2N9dX+tAAOmswnhz ozpqXVe8nxfRIA28fIfb5Q5Hi9BzghGYUNC8Yh2nE/ON/pouIO6rE2E0hEIAIIjg bulmnk9YhHoDuPsIHqdkU7lVCux2MvXmPXYfsVTTTzV4NM9IY2bkPgJ73KWsxt6w VZBenl/eeTORtoUfv60HWeLrpF8w9eL3 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org