$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft File: tpVKYo70-TShCnBay8uQbtYQSAw.mft (raw, json) Hash identifier: 6lDuraimewOXPKFYfJHPyUk4sT70kBRFZoSaBanoEoY= Subject key identifier: 03:F6:58:CB:1B:2D:7E:0F:2B:64:3E:F0:34:70:12:BB:51:03:CC:D9 Authority key identifier: B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C Certificate issuer: /CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Certificate serial: 0B22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft Manifest number: 0B1D Signing time: Fri 22 Nov 2024 19:00:40 +0000 Manifest this update: Fri 22 Nov 2024 19:00:40 +0000 Manifest next update: Fri 29 Nov 2024 19:00:40 +0000 Files and hashes: 1: tpVKYo70-TShCnBay8uQbtYQSAw.crl (hash: O+bkE4GV9QYsKS3j2dZwsrwKjSvD+h8HEYgWDJbUwjU=) 2: 5E117DC82AFC11EAB5FEC955C4F9AE02.roa (hash: 1QrZ8l58V/+hrgX4EydJuc5N4220X3xtp9kwFtuNsFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE43E/serialNumber=B6954A628EF4F934A10A705ACBCB906ED610480C Validity Not Before: Nov 22 19:00:40 2024 GMT Not After : Nov 29 19:00:40 2024 GMT Subject: CN=6740d4d8-538d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:9f:6f:44:ad:88:ee:3e:c3:49:7f:3c:92:69: 72:f2:54:fb:ea:48:58:bf:6c:e9:86:94:ea:6b:7a: f2:24:53:52:ed:95:dc:ed:6c:94:1a:8e:3b:10:e1: 03:54:8d:c9:2a:00:83:ef:9a:ea:62:99:16:9b:4f: e7:8b:3f:46:eb:1b:14:f6:74:f4:46:a3:22:12:39: 95:f9:fd:c8:a3:33:8d:42:3e:b5:39:04:25:2e:7a: 67:0a:08:47:2a:f9:27:a4:42:63:75:b0:68:e9:15: 0b:15:fc:a2:ad:1a:5b:3a:c3:fb:28:c1:b5:6a:6d: 04:6f:a7:fc:50:94:a7:18:95:93:50:b3:92:fa:53: b0:b9:0e:14:55:53:7f:46:10:e5:47:35:88:cf:6b: 65:94:3b:e4:88:50:30:c8:bd:4a:53:b1:be:a9:00: 0c:e8:a2:4a:20:27:c1:70:fc:8f:31:a2:6d:82:25: e8:a3:ca:a3:b5:76:a7:ee:b2:5b:c4:76:b0:b4:1f: 69:50:2d:99:27:9e:d8:ed:2b:8c:d8:1c:66:7b:79: 85:4e:1d:27:68:90:c7:bb:99:97:89:c3:3c:08:a0: f2:1c:1c:5f:18:26:e0:cb:37:96:f3:e7:ae:16:d0: ac:db:bb:f3:ac:00:2e:e9:54:f0:95:8c:da:d3:67: c2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F6:58:CB:1B:2D:7E:0F:2B:64:3E:F0:34:70:12:BB:51:03:CC:D9 X509v3 Authority Key Identifier: keyid:B6:95:4A:62:8E:F4:F9:34:A1:0A:70:5A:CB:CB:90:6E:D6:10:48:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tpVKYo70-TShCnBay8uQbtYQSAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE43E/CC03FBB82AFB11EA8DF37D55C4F9AE02/tpVKYo70-TShCnBay8uQbtYQSAw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:98:df:0f:e3:de:d8:e6:60:e8:13:a0:67:30:2e:9b:13:7c: 0c:2f:9d:2a:5a:84:4d:22:52:e0:eb:34:a8:1f:c2:16:4d:db: 15:b9:fe:97:81:9b:78:29:ef:a0:8a:12:4c:8f:7c:6f:51:4f: a4:cf:ba:95:92:d3:eb:ab:8a:be:bd:eb:d9:8d:b1:d0:ae:fc: dd:71:b8:9e:be:5d:f2:9a:fc:e9:4b:3e:50:8b:ba:4d:84:e9: e9:89:ad:a7:f2:1d:26:c8:a2:90:8d:15:8c:04:92:05:48:ac: 48:1f:fa:bc:16:f8:9a:dc:0e:4b:9a:4d:05:f3:97:81:ae:f7: 66:0f:53:58:05:60:64:6c:b8:cf:42:18:f5:be:b0:65:b9:33: 6f:90:97:3c:2c:a1:28:9e:72:86:77:47:a9:56:bc:ee:14:62: 0c:e6:7c:1f:51:5e:93:77:8f:e6:83:e4:34:59:9c:0f:b9:8d: bc:df:a3:6e:1b:c7:29:58:ae:f8:08:81:51:c9:a1:f2:3d:d4: 91:2d:10:a1:48:57:21:9c:91:7b:cf:ff:02:8f:fe:c3:6c:55: d2:ee:75:fa:f7:38:fb:d2:24:37:0a:d4:75:c9:f9:e0:d2:dc: 5d:7c:8a:21:5f:68:3e:e0:40:c1:1c:1a:cf:f0:9d:70:2e:a5: 64:b3:08:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0M0UxMTAvBgNVBAUTKEI2OTU0QTYyOEVGNEY5MzRBMTBBNzA1QUNCQ0I5MDZF RDYxMDQ4MEMwHhcNMjQxMTIyMTkwMDQwWhcNMjQxMTI5MTkwMDQwWjAYMRYwFAYD VQQDEw02NzQwZDRkOC01MzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7J9vRK2I7j7DSX88kmly8lT76khYv2zphpTqa3ryJFNS7ZXc7WyUGo47EOED VI3JKgCD75rqYpkWm0/niz9G6xsU9nT0RqMiEjmV+f3IozONQj61OQQlLnpnCghH KvknpEJjdbBo6RULFfyirRpbOsP7KMG1am0Eb6f8UJSnGJWTULOS+lOwuQ4UVVN/ RhDlRzWIz2tllDvkiFAwyL1KU7G+qQAM6KJKICfBcPyPMaJtgiXoo8qjtXan7rJb xHawtB9pUC2ZJ57Y7SuM2Bxme3mFTh0naJDHu5mXicM8CKDyHBxfGCbgyzeW8+eu FtCs27vzrAAu6VTwlYza02fCfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAP2WMsb LX4PK2Q+8DRwErtRA8zZMB8GA1UdIwQYMBaAFLaVSmKO9Pk0oQpwWsvLkG7WEEgM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTQzRS9DQzAzRkJCODJB RkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1UU2hDbkJheTh1UWJ0WVFT QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RwVktZbzcwLVRTaENuQmF5OHVRYnRZUVNBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTQzRS9DQzAzRkJCODJBRkIxMUVBOERGMzdENTVDNEY5QUUwMi90cFZLWW83MC1U U2hDbkJheTh1UWJ0WVFTQXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6mN8P497Y5mDoE6BnMC6bE3wML50qWoRNIlLg6zSoH8IWTdsVuf6X gZt4Ke+gihJMj3xvUU+kz7qVktPrq4q+vevZjbHQrvzdcbievl3ymvzpSz5Qi7pN hOnpia2n8h0myKKQjRWMBJIFSKxIH/q8Fvia3A5Lmk0F85eBrvdmD1NYBWBkbLjP Qhj1vrBluTNvkJc8LKEonnKGd0epVrzuFGIM5nwfUV6Td4/mg+Q0WZwPuY2836Nu G8cpWK74CIFRyaHyPdSRLRChSFchnJF7z/8Cj/7DbFXS7nX69zj70iQ3CtR1yfng 0txdfIohX2g+4EDBHBrP8J1wLqVkswj3 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org