$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft File: TnWast4kVGn4MRuSc7VVOH51CpA.mft (raw, json) Hash identifier: R8YUJSQ8XyEHwlSYPYAKphaCyA76DlKEkZCkA2dQ2hU= Subject key identifier: AC:DD:3F:7E:C9:BD:EB:9B:AF:9C:36:15:F2:14:73:7B:A5:C9:20:23 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: 0E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft Manifest number: 0D Signing time: Fri 27 Dec 2024 06:13:08 +0000 Manifest this update: Fri 27 Dec 2024 06:13:08 +0000 Manifest next update: Fri 03 Jan 2025 06:13:08 +0000 Files and hashes: 1: TnWast4kVGn4MRuSc7VVOH51CpA.crl (hash: q1A30j20PZ7go3InzkrzVWdBd2i5q1N7wuzYb3RN0Ns=) 2: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (hash: i4QqretrMrfllRlkSz0xUOac9qaskNbaHtNPO9MoQA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Dec 27 06:13:08 2024 GMT Not After : Jan 3 06:13:08 2025 GMT Subject: CN=676e4574-7424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3f:88:27:b0:18:6c:09:38:32:fb:67:e1:00: e5:57:15:d8:5f:5d:60:27:64:4d:37:fb:b5:6f:7f: ff:96:06:4e:0f:0c:4d:33:43:de:ee:5c:b4:da:e6: ab:c2:8c:81:16:49:80:d7:d3:0d:b2:ea:ed:95:be: 39:b8:7b:ba:ca:05:37:3d:39:23:d5:9e:ff:75:ea: f6:cc:3f:9b:b8:63:e7:55:3b:c0:5a:0b:33:b2:17: ac:7c:77:ed:6d:83:a3:7b:27:46:fe:cc:4b:7a:f4: 20:2a:55:fc:ed:59:c4:67:58:37:bf:2b:7d:64:09: e7:06:da:bf:4a:cd:0a:cf:54:ba:44:fb:2b:56:89: 7d:95:cd:e4:8c:75:98:00:66:8a:9c:09:3c:28:5f: f4:77:e4:39:bd:a5:52:27:00:a2:0c:fa:66:c1:52: cd:d4:13:51:97:ad:dd:db:e7:eb:f5:cb:08:b4:e2: b0:9d:a0:85:da:4b:e7:91:be:49:a2:fa:eb:11:c7: ca:d3:56:7e:15:36:f8:2d:56:39:22:74:d2:21:f7: ed:90:51:4d:ee:42:fe:95:60:15:fc:a6:33:ef:e9: b4:7c:08:5d:57:ea:2a:e3:0b:48:ab:17:4c:6d:c0: dc:d5:e3:b8:c8:9c:30:2b:e9:b0:df:ea:a5:a2:43: fc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DD:3F:7E:C9:BD:EB:9B:AF:9C:36:15:F2:14:73:7B:A5:C9:20:23 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:95:22:55:74:c6:48:08:e7:4a:c6:b3:f2:db:fe:4b:fe:3a: 4e:f8:a8:c8:b9:d4:45:ba:87:9d:7d:32:e5:d7:4e:6e:d4:23: d3:46:61:8d:4f:06:1c:a5:e9:fc:b5:ae:51:91:c9:fb:eb:e8: 85:a8:01:32:2e:88:10:3d:8d:d8:4a:59:f4:cd:f5:75:f6:5f: 8c:b9:b8:39:01:2c:e6:76:04:45:ed:84:db:14:75:72:67:73: a5:84:ba:da:4d:97:63:7c:45:a6:b1:c8:1e:3a:7b:98:f8:07: d5:59:df:bf:32:8d:3a:b2:9b:39:75:de:b9:f4:32:c7:65:87: ba:2e:a4:da:89:f6:46:99:e1:eb:07:05:5f:24:05:d4:9e:07: a2:38:c2:58:2b:3d:be:d4:65:a6:ea:43:d9:5d:25:42:3f:44: d7:a7:b4:2f:24:ea:e4:2c:84:59:9b:4b:76:ff:25:9b:03:48: db:25:fa:18:f2:b1:d1:75:0f:5d:7e:9b:3a:f1:ae:83:50:bc: ff:ee:f7:f5:74:82:89:fd:03:9e:aa:c7:8d:0f:ea:57:2e:7e: 59:2b:98:cd:6e:d1:34:29:23:01:f5:d8:39:11:70:a3:9a:e6: d9:e8:bf:07:71:8b:9f:53:c9:fc:02:1a:d5:d1:b5:3d:95:6c: 53:9d:d4:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoNEU3NTlBQjJERTI0NTQ2OUY4MzExQjkyNzNCNTU1Mzg3 RTc1MEE5MDAeFw0yNDEyMjcwNjEzMDhaFw0yNTAxMDMwNjEzMDhaMBgxFjAUBgNV BAMTDTY3NmU0NTc0LTc0MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSP4gnsBhsCTgy+2fhAOVXFdhfXWAnZE03+7Vvf/+WBk4PDE0zQ97uXLTa5qvC jIEWSYDX0w2y6u2Vvjm4e7rKBTc9OSPVnv916vbMP5u4Y+dVO8BaCzOyF6x8d+1t g6N7J0b+zEt69CAqVfztWcRnWDe/K31kCecG2r9KzQrPVLpE+ytWiX2VzeSMdZgA ZoqcCTwoX/R35Dm9pVInAKIM+mbBUs3UE1GXrd3b5+v1ywi04rCdoIXaS+eRvkmi +usRx8rTVn4VNvgtVjkidNIh9+2QUU3uQv6VYBX8pjPv6bR8CF1X6irjC0irF0xt wNzV47jInDAr6bDf6qWiQ/yvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrN0/fsm9 65uvnDYV8hRze6XJICMwHwYDVR0jBBgwFoAUTnWast4kVGn4MRuSc7VVOH51CpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzA4RjA1MjYwQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5XYXN0NGtWR240TVJ1U2M3VlZPSDUxQ3BBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG MjMzLzA4RjA1MjYwQjM3ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkdu NE1SdVNjN1ZWT0g1MUNwQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHaVIlV0xkgI50rGs/Lb/kv+Ok74qMi51EW6h519MuXXTm7UI9NGYY1P Bhyl6fy1rlGRyfvr6IWoATIuiBA9jdhKWfTN9XX2X4y5uDkBLOZ2BEXthNsUdXJn c6WEutpNl2N8RaaxyB46e5j4B9VZ378yjTqymzl13rn0Msdlh7oupNqJ9kaZ4esH BV8kBdSeB6I4wlgrPb7UZabqQ9ldJUI/RNentC8k6uQshFmbS3b/JZsDSNsl+hjy sdF1D11+mzrxroNQvP/u9/V0gon9A56qx40P6lcuflkrmM1u0TQpIwH12DkRcKOa 5tnovwdxi59TyfwCGtXRtT2VbFOd1H4= -----END CERTIFICATE-----Generated at Fri Dec 27 07:44:01 2024 by rpki-client on console-ams.rpki-client.org