$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft File: TAYxLToLHGP1R9TWRXxM1a9xQ80.mft (raw, json) Hash identifier: k7/cXihyBD+Ynuwo+/jiszG8V7qcMMYxFqrYR7z/GW4= Subject key identifier: 0E:29:32:B2:A5:E8:DB:71:D3:25:77:17:AB:09:3C:7F:45:5D:C5:8D Authority key identifier: 4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD Certificate issuer: /CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft Manifest number: 03D6 Signing time: Sat 23 Nov 2024 00:11:26 +0000 Manifest this update: Sat 23 Nov 2024 00:11:26 +0000 Manifest next update: Sat 30 Nov 2024 00:11:26 +0000 Files and hashes: 1: TAYxLToLHGP1R9TWRXxM1a9xQ80.crl (hash: fQDubJewH7ANOg74StaUU7oFzQTikl8chzK4kgVrvDY=) 2: 09C2A1645A3511ED8F0A3087C4F9AE02.roa (hash: kFZl4IQNhnU2aj7rGn68m71oMcBKAQdxzYX/r9H/7DI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0EF2/serialNumber=4C06312D3A0B1C63F547D4D6457C4CD5AF7143CD Validity Not Before: Nov 23 00:11:26 2024 GMT Not After : Nov 30 00:11:26 2024 GMT Subject: CN=67411dae-c5ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:ff:f0:b8:57:c5:f9:09:0a:22:b7:4c:c0: 1a:59:a0:59:8d:9c:2f:75:df:a9:92:a6:ac:ff:70: 8d:d8:43:69:83:10:0d:1f:80:47:65:77:06:1e:e7: 8e:14:e6:93:e6:b5:69:1b:6d:1c:c9:b6:5d:68:ed: 2c:7c:e2:d7:78:08:c7:16:fa:bf:3c:84:7d:6e:e6: 3e:35:b9:c2:60:e6:10:59:e1:af:2b:f9:a1:29:10: 6a:fd:e5:1f:c1:c7:02:b8:51:62:98:0f:aa:af:33: d7:ec:05:31:3e:88:46:8e:56:5a:13:53:09:93:db: bf:25:4b:40:91:b7:b7:1d:4e:c0:87:21:c7:e4:92: d3:c9:9a:59:47:fe:02:5f:9e:ae:a3:b7:a8:95:d5: 71:ad:99:00:9e:a1:8d:1e:01:af:a6:f3:3a:94:36: 92:b2:9e:51:f9:95:1b:1e:8b:a7:84:ba:5f:9c:8e: 27:f7:57:66:6d:f6:fc:f8:75:cc:00:91:c5:db:d8: bb:02:cb:f5:4c:07:04:a8:01:7e:03:0b:a4:32:88: 1c:c5:ef:12:26:e1:0d:d9:aa:07:06:f9:6c:5d:20: 09:1b:56:dd:7b:97:ee:6d:28:5e:14:5d:52:9f:06: e1:ed:cf:fd:51:0f:29:ea:ed:f2:c5:e6:ee:2d:d2: e3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:29:32:B2:A5:E8:DB:71:D3:25:77:17:AB:09:3C:7F:45:5D:C5:8D X509v3 Authority Key Identifier: keyid:4C:06:31:2D:3A:0B:1C:63:F5:47:D4:D6:45:7C:4C:D5:AF:71:43:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAYxLToLHGP1R9TWRXxM1a9xQ80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0EF2/B50546525EE211ECAFA64B44C4F9AE02/TAYxLToLHGP1R9TWRXxM1a9xQ80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:fc:7c:59:96:41:22:df:a2:bf:64:36:0b:31:b9:ab:a8:8f: 70:72:98:68:4a:2d:56:f8:39:b4:31:02:d9:2a:2b:48:45:c0: b6:bc:02:68:90:ca:a4:92:99:8f:2d:74:6e:44:3b:f0:70:60: 5d:c3:cf:95:cd:61:e6:8b:43:44:04:af:0d:8b:0c:66:9b:9c: 9e:f8:df:a5:b2:b9:ea:e2:4e:56:b7:b0:c5:c8:ef:d7:11:6c: 4c:b2:cb:fe:cf:5a:40:85:64:9a:34:8b:70:a3:af:ce:cf:a2: a9:a4:04:6f:33:69:6f:01:6d:73:4a:9f:5f:a3:e3:4d:d9:92: 1a:f5:6c:5f:cb:62:dd:ff:e0:9a:bd:1c:6b:e4:b5:62:44:4b: c5:d4:02:9f:0b:4b:93:b7:7d:b1:91:c6:21:3a:a5:15:f5:60: 03:80:6a:07:0a:75:e4:c7:5b:44:d1:d1:a5:4f:74:bc:3c:c9: f2:ce:45:44:dc:e3:01:15:5d:e5:7a:db:75:4b:4e:8f:02:38: 0e:ab:e0:32:2e:98:0d:56:e1:6b:17:5b:4c:9e:c3:a8:46:49: 21:45:26:55:f2:d5:4b:e6:0f:f4:88:c6:91:cb:b0:02:39:29: 20:9d:82:cf:4b:1f:4b:49:b0:d4:62:73:5a:0c:4b:2c:6b:35: cb:7c:33:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBFRjIxMTAvBgNVBAUTKDRDMDYzMTJEM0EwQjFDNjNGNTQ3RDRENjQ1N0M0Q0Q1 QUY3MTQzQ0QwHhcNMjQxMTIzMDAxMTI2WhcNMjQxMTMwMDAxMTI2WjAYMRYwFAYD VQQDEw02NzQxMWRhZS1jNWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFf/8LhXxfkJCiK3TMAaWaBZjZwvdd+pkqas/3CN2ENpgxANH4BHZXcGHueO FOaT5rVpG20cybZdaO0sfOLXeAjHFvq/PIR9buY+NbnCYOYQWeGvK/mhKRBq/eUf wccCuFFimA+qrzPX7AUxPohGjlZaE1MJk9u/JUtAkbe3HU7AhyHH5JLTyZpZR/4C X56uo7eoldVxrZkAnqGNHgGvpvM6lDaSsp5R+ZUbHounhLpfnI4n91dmbfb8+HXM AJHF29i7Asv1TAcEqAF+AwukMogcxe8SJuEN2aoHBvlsXSAJG1bde5fubSheFF1S nwbh7c/9UQ8p6u3yxebuLdLjpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4pMrKl 6Ntx0yV3F6sJPH9FXcWNMB8GA1UdIwQYMBaAFEwGMS06Cxxj9UfU1kV8TNWvcUPN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEVGMi9CNTA1NDY1MjVF RTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhHUDFSOVRXUlh4TTFhOXhR ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBWXhMVG9MSEdQMVI5VFdSWHhNMWE5eFE4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEVGMi9CNTA1NDY1MjVFRTIxMUVDQUZBNjRCNDRDNEY5QUUwMi9UQVl4TFRvTEhH UDFSOVRXUlh4TTFhOXhRODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq/HxZlkEi36K/ZDYLMbmrqI9wcphoSi1W+Dm0MQLZKitIRcC2vAJo kMqkkpmPLXRuRDvwcGBdw8+VzWHmi0NEBK8Niwxmm5ye+N+lsrnq4k5Wt7DFyO/X EWxMssv+z1pAhWSaNItwo6/Oz6KppARvM2lvAW1zSp9fo+NN2ZIa9Wxfy2Ld/+Ca vRxr5LViREvF1AKfC0uTt32xkcYhOqUV9WADgGoHCnXkx1tE0dGlT3S8PMnyzkVE 3OMBFV3lett1S06PAjgOq+AyLpgNVuFrF1tMnsOoRkkhRSZV8tVL5g/0iMaRy7AC OSkgnYLPSx9LSbDUYnNaDEssazXLfDMm -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org