$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft (raw, json) Hash identifier: T61MmSwPG2UO2n7vgTEZh/1xUz6cfqwiskJLoVdGJus= Subject key identifier: 54:74:42:0E:6E:0D:73:48:EC:A6:1C:4B:AD:8A:A4:FE:09:C1:C2:A8 Authority key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B Certificate issuer: /CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft Manifest number: 0159 Signing time: Sat 23 Nov 2024 02:26:11 +0000 Manifest this update: Sat 23 Nov 2024 02:26:11 +0000 Manifest next update: Sat 30 Nov 2024 02:26:11 +0000 Files and hashes: 1: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl (hash: edvImDYZALFQXpNC015w5V44wBHMNKIkWy6b6r/XS2Y=) 2: 34BB892E449C11EEB60E1441C4F9AE02.roa (hash: FmDMcqicvsxlDbwC/EaBQPR0koJ5obImCIK4fks4NaY=) 3: 66D00EB2449C11EE86105C41C4F9AE02.roa (hash: +yOPHXbGEhMTNhrz1gWIJCSv+uUbWM9Qo7qcKoe/CLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B Validity Not Before: Nov 23 02:26:11 2024 GMT Not After : Nov 30 02:26:11 2024 GMT Subject: CN=67413d43-ca94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c4:7e:64:6f:fc:b6:0c:8e:7f:95:57:8c:8b: b5:d3:49:83:ee:f3:eb:4c:c5:18:d6:c8:38:8f:f6: 04:11:3f:86:1f:45:8c:16:9a:c3:db:71:28:a3:2d: c2:29:c7:d9:a9:e1:cd:05:9d:c1:f8:a8:9d:70:7f: 1d:76:80:25:85:54:2a:2e:98:11:99:54:06:4b:0b: 1b:b6:30:df:26:8f:0a:af:f2:ae:13:8b:75:72:35: 0e:ee:41:5c:4d:45:14:a2:b3:64:85:4e:4f:3d:c7: 63:ef:a9:30:7c:8f:63:3d:62:f1:e1:d9:e5:3e:9a: 9e:b7:ed:11:c2:12:78:93:44:e8:f9:25:09:2b:a6: ad:e3:fc:dc:a3:d7:ee:2a:0d:08:00:7f:4e:b3:7a: 8e:61:41:9f:f7:f5:76:19:1e:f6:86:3c:71:2d:70: 12:76:1b:e2:67:ac:97:8c:d2:68:19:c8:c2:4f:97: 62:b2:88:9b:ae:ea:67:66:f8:14:b1:f4:02:31:fd: c3:9f:f5:a0:99:13:74:f8:9f:06:08:fa:c3:64:30: 88:54:ca:06:f0:e4:eb:fd:53:7d:8a:63:b4:09:d8: ee:d0:9d:d4:33:66:de:5e:5b:e4:bb:92:18:aa:f6: b0:30:87:82:5b:cb:3c:7e:a8:f1:ca:a0:49:60:1f: 2a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:74:42:0E:6E:0D:73:48:EC:A6:1C:4B:AD:8A:A4:FE:09:C1:C2:A8 X509v3 Authority Key Identifier: keyid:B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:99:b2:4e:a5:5f:10:5f:39:ae:58:07:2f:03:06:a2:f5:07: 34:ed:86:3d:b1:e6:f9:f5:4c:c0:5d:c4:5d:82:23:54:37:d8: 36:e6:a2:c7:71:ea:4a:3b:c8:25:95:4e:65:26:0d:22:c3:96: 95:da:75:e5:14:1d:2b:9f:94:0f:42:6e:8b:5a:4a:9d:77:89: f5:c2:4e:14:99:cb:34:32:7e:62:0e:69:fc:f8:4b:ae:22:76: bd:0c:13:53:fd:98:c8:4c:d4:e6:93:b9:79:2c:a8:8a:8b:98: 47:8a:7b:2a:ba:1c:21:32:87:8a:e1:95:e4:27:f2:de:44:9b: 27:8b:65:a5:02:66:b8:fe:8f:bf:d5:9e:62:fd:d3:66:12:2f: f9:40:a0:73:24:5f:a4:3e:63:1b:27:a7:94:1e:46:b5:82:50: ad:e5:c7:6d:38:cc:e6:71:ed:4b:14:2b:f1:87:75:67:63:f2: b5:94:63:3a:6f:a5:0b:19:05:f9:b7:4c:d8:8d:ab:9b:97:fa: 4f:7c:4e:f7:e2:f1:51:4a:69:c3:85:10:67:0e:75:88:6f:96: 2c:dc:7c:db:0b:bd:5d:36:b8:da:c9:86:80:2d:d5:72:97:9f: 93:a1:b2:99:5a:7c:8c:dd:b9:c6:54:a7:63:24:dd:41:aa:63: 13:84:80:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2NEQxMTAvBgNVBAUTKEI0QjE4QTI1M0ZCNjI5MzQzNzExNjYzNUREREQxOTk0 MjhCNjhENUIwHhcNMjQxMTIzMDIyNjExWhcNMjQxMTMwMDIyNjExWjAYMRYwFAYD VQQDEw02NzQxM2Q0My1jYTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8R+ZG/8tgyOf5VXjIu100mD7vPrTMUY1sg4j/YEET+GH0WMFprD23Eooy3C KcfZqeHNBZ3B+KidcH8ddoAlhVQqLpgRmVQGSwsbtjDfJo8Kr/KuE4t1cjUO7kFc TUUUorNkhU5PPcdj76kwfI9jPWLx4dnlPpqet+0RwhJ4k0To+SUJK6at4/zco9fu Kg0IAH9Os3qOYUGf9/V2GR72hjxxLXASdhviZ6yXjNJoGcjCT5disoibrupnZvgU sfQCMf3Dn/WgmRN0+J8GCPrDZDCIVMoG8OTr/VN9imO0Cdju0J3UM2beXlvku5IY qvawMIeCW8s8fqjxyqBJYB8q8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFR0Qg5u DXNI7KYcS62KpP4JwcKoMB8GA1UdIwQYMBaAFLSxiiU/tik0NxFmNd3dGZQoto1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDY0RC8zNzA3ODZDODk5 OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktUUTNFV1kxM2QwWmxDaTJq VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RMR0tKVC0yS1RRM0VXWTEzZDBabENpMmpWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDY0RC8zNzA3ODZDODk5OTQxMUVEODU2NzMxMUZDNEY5QUUwMi90TEdLSlQtMktU UTNFV1kxM2QwWmxDaTJqVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKmbJOpV8QXzmuWAcvAwai9Qc07YY9seb59UzAXcRdgiNUN9g25qLH cepKO8gllU5lJg0iw5aV2nXlFB0rn5QPQm6LWkqdd4n1wk4Umcs0Mn5iDmn8+Euu Ina9DBNT/ZjITNTmk7l5LKiKi5hHinsquhwhMoeK4ZXkJ/LeRJsni2WlAma4/o+/ 1Z5i/dNmEi/5QKBzJF+kPmMbJ6eUHka1glCt5cdtOMzmce1LFCvxh3VnY/K1lGM6 b6ULGQX5t0zYjaubl/pPfE734vFRSmnDhRBnDnWIb5Ys3HzbC71dNrjayYaALdVy l5+TobKZWnyM3bnGVKdjJN1BqmMThIAF -----END CERTIFICATE-----Generated at Sat Nov 23 03:59:00 2024 by rpki-client on console-ams.rpki-client.org