$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft File: tlTdX1sVILMlvAnEv0yt88r7NCk.mft (raw, json) Hash identifier: tPnNR+ugJVCSAgdH8Rc3OsqTysXFekY2AKe/fSVL//I= Subject key identifier: 9C:FF:4F:E6:8B:16:B4:D6:E8:5D:C7:57:16:68:96:0F:2F:CB:13:3C Authority key identifier: B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 Certificate issuer: /CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Certificate serial: 08A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft Manifest number: 1EFE Signing time: Fri 22 Nov 2024 16:42:31 +0000 Manifest this update: Fri 22 Nov 2024 16:42:30 +0000 Manifest next update: Fri 29 Nov 2024 16:42:30 +0000 Files and hashes: 1: tlTdX1sVILMlvAnEv0yt88r7NCk.crl (hash: 3YraJhdYThwyTKzidqui8rxv27331bqAv7zVrjdF5AU=) 2: 3D13A01EA9AB11EAA4DBEA5EC4F9AE02.roa (hash: /rJ72nX+kkgSo0V45R+mQxQnHh38w+ytfp+FOoflTT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2215 (0x8a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B25/serialNumber=B654DD5F5B1520B325BC09C4BF4CADF3CAFB3429 Validity Not Before: Nov 22 16:42:30 2024 GMT Not After : Nov 29 16:42:30 2024 GMT Subject: CN=6740b477-4989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:b6:e2:99:45:cb:b8:73:cd:a2:a3:92:73: fe:06:76:36:73:e6:4d:f5:de:83:60:f7:aa:9b:5a: 2e:9c:45:2c:a2:01:73:b3:12:c4:de:c8:7d:07:10: 70:09:1c:01:83:7f:d6:3b:b5:63:07:e8:87:d1:ff: 7e:70:f2:5e:50:db:23:aa:b8:cd:80:da:b9:ca:b8: 74:d6:14:e2:9e:54:77:d1:78:0b:11:a8:51:8f:f3: 71:f1:90:c7:65:eb:ca:be:84:14:d0:0d:aa:04:f9: 0c:e4:da:00:c1:a9:04:85:ce:37:b5:cc:21:b5:8d: fd:6e:d3:2c:38:06:74:23:ba:3c:a2:b7:55:0b:5f: 58:c8:55:23:88:ad:55:91:5b:4f:e8:b8:34:37:6a: 77:fd:3e:fe:27:42:ce:91:88:b4:1a:6f:02:46:44: 3d:90:1d:9d:79:9e:2b:31:f5:e9:2e:49:0a:74:89: 5d:40:1d:f1:73:d6:d9:1b:ac:e6:ba:62:e9:a8:2d: 3a:bd:fa:7f:33:97:89:52:d7:a8:a4:7e:af:5e:b8: 72:a0:cb:b9:9c:c1:03:53:4f:15:50:8a:e5:fd:9b: de:25:f3:47:e1:45:4c:92:24:88:11:90:0f:ff:c9: db:76:37:f5:09:3d:d4:fd:9f:46:ea:80:d1:fd:ae: 0c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FF:4F:E6:8B:16:B4:D6:E8:5D:C7:57:16:68:96:0F:2F:CB:13:3C X509v3 Authority Key Identifier: keyid:B6:54:DD:5F:5B:15:20:B3:25:BC:09:C4:BF:4C:AD:F3:CA:FB:34:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tlTdX1sVILMlvAnEv0yt88r7NCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B25/7E892CC2F61511E7B830096DC4F9AE02/tlTdX1sVILMlvAnEv0yt88r7NCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:cc:9b:7d:db:df:84:56:a0:14:e7:95:b6:e1:9c:29:fe:c3: 9b:f6:06:38:ac:17:6f:93:11:6c:7b:39:be:15:6e:cf:e4:b9: fb:34:61:17:4b:d6:d1:e0:2c:5c:e6:f8:1b:c3:b0:93:80:83: 53:0b:76:b1:70:15:f5:33:0f:4a:a1:0d:90:f0:32:e2:f5:ac: 66:a2:dd:28:47:69:f7:f9:71:93:e8:13:6c:3d:5b:32:ab:14: 91:81:84:f0:c2:b0:db:16:d5:5b:3d:e1:22:05:d5:7b:37:97: 46:80:84:a9:9d:49:a8:92:9c:89:5a:fb:e0:67:09:74:1d:72: 03:90:7a:18:0b:d8:56:9a:7e:9b:70:55:ff:f6:0d:cc:af:c9: 84:20:df:b2:71:fb:d4:b0:76:f3:e7:68:4b:eb:78:7a:af:b2: c2:0c:16:10:81:0e:03:e2:53:94:54:39:91:d1:55:15:76:92: a9:89:f7:2b:dc:8a:87:c4:62:d6:39:94:b8:76:fc:b9:39:06: 48:72:3b:65:c1:17:14:54:aa:94:5d:99:f5:1f:b8:07:f2:88: ea:34:4d:dd:bf:0f:3e:2d:84:b5:cf:a5:40:aa:65:cc:ef:59: 9c:cb:10:35:da:ee:50:89:9f:be:c7:58:2e:28:bc:03:b6:67: ab:18:ae:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMjUxMTAvBgNVBAUTKEI2NTRERDVGNUIxNTIwQjMyNUJDMDlDNEJGNENBREYz Q0FGQjM0MjkwHhcNMjQxMTIyMTY0MjMwWhcNMjQxMTI5MTY0MjMwWjAYMRYwFAYD VQQDEw02NzQwYjQ3Ny00OTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEG24plFy7hzzaKjknP+BnY2c+ZN9d6DYPeqm1ounEUsogFzsxLE3sh9BxBw CRwBg3/WO7VjB+iH0f9+cPJeUNsjqrjNgNq5yrh01hTinlR30XgLEahRj/Nx8ZDH ZevKvoQU0A2qBPkM5NoAwakEhc43tcwhtY39btMsOAZ0I7o8ordVC19YyFUjiK1V kVtP6Lg0N2p3/T7+J0LOkYi0Gm8CRkQ9kB2deZ4rMfXpLkkKdIldQB3xc9bZG6zm umLpqC06vfp/M5eJUteopH6vXrhyoMu5nMEDU08VUIrl/ZveJfNH4UVMkiSIEZAP /8nbdjf1CT3U/Z9G6oDR/a4MdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJz/T+aL FrTW6F3HVxZolg8vyxM8MB8GA1UdIwQYMBaAFLZU3V9bFSCzJbwJxL9MrfPK+zQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IyNS83RTg5MkNDMkY2 MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklMTWx2QW5FdjB5dDg4cjdO Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RsVGRYMXNWSUxNbHZBbkV2MHl0ODhyN05Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0IyNS83RTg5MkNDMkY2MTUxMUU3QjgzMDA5NkRDNEY5QUUwMi90bFRkWDFzVklM TWx2QW5FdjB5dDg4cjdOQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCezJt929+EVqAU55W24Zwp/sOb9gY4rBdvkxFsezm+FW7P5Ln7NGEX S9bR4Cxc5vgbw7CTgINTC3axcBX1Mw9KoQ2Q8DLi9axmot0oR2n3+XGT6BNsPVsy qxSRgYTwwrDbFtVbPeEiBdV7N5dGgISpnUmokpyJWvvgZwl0HXIDkHoYC9hWmn6b cFX/9g3Mr8mEIN+ycfvUsHbz52hL63h6r7LCDBYQgQ4D4lOUVDmR0VUVdpKpifcr 3IqHxGLWOZS4dvy5OQZIcjtlwRcUVKqUXZn1H7gH8ojqNE3dvw8+LYS1z6VAqmXM 71mcyxA12u5QiZ++x1guKLwDtmerGK5L -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org