$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft File: 73683CF31A4147336D82C5218D7389B5D741DE1B.mft (raw, json) Hash identifier: XvVLl6H3/U4AJLaTA+m6jzYm5y4kYQQstUnIUY/eYc4= Subject key identifier: 9F:47:A4:12:F6:52:F7:86:8B:3E:07:9B:C1:8B:F2:09:64:25:09:6B Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 745C4F7CD54D657D2A8B5B95C3483388F1DEE749 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft Manifest number: 06E7 Signing time: Fri 22 Nov 2024 07:51:45 +0000 Manifest this update: Fri 22 Nov 2024 07:46:45 +0000 Manifest next update: Sat 23 Nov 2024 11:34:45 +0000 Files and hashes: 1: 3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa (hash: 6oVWbbqVFk6Pwgux9V8jfDQRsMYOVT5jirPBSL3Wig4=) 2: 3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa (hash: C3K+WGLs2QlNW8KfADo1lgYtDVhfDY/WxaHP6YqnW70=) 3: 3135372e3131392e3130302e302f32322d3234203d3e2038383838.roa (hash: afHMEGHzbUT5cZVLHaZvFHWQh333rAdnWIeWwLNhMCM=) 4: 3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa (hash: nZRdseJLG8pcz60dA2dIP+lQPJZ68YEbyLu8K+1sxGI=) 5: 73683CF31A4147336D82C5218D7389B5D741DE1B.crl (hash: BVTu663BET8M4Qj4FgVPIke3SNJkNXGVtr5nx+xVhMw=) 6: 3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa (hash: sr7r8uO67cDPo72NjWdP3dlG7qJrC9xZ+w35SmZvRyk=) 7: 3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa (hash: VCer1FC3ET4+hNfmEPOX+gJkqb65wt2p0FPfU+geXHc=) 8: 3130332e35362e35332e302f32342d3234203d3e2038383838.roa (hash: hJFUedJxlwrGsuBiVRcEB429TcpnC3Bw2MEl2q91qrM=) 9: 3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa (hash: Lw3S7PTchYPYJZr/k8u6PLmtg+S85T3OmOxCNmhG4Wc=) 10: 3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa (hash: 40jz3AEKo3c3bJ5OXVkbdCZfLDPOEfoKqABsamzBSKo=) 11: 34352e3131362e31332e302f32342d3234203d3e2034373835.roa (hash: rjHLbg5RxNx+OSrihRQaxhyOJyLwHXme40chbILQOQQ=) 12: 3130332e35362e35352e302f32342d3234203d3e2034373835.roa (hash: FayS7IHAAkpO4bVu+bSgTXwWFTtA3QN6s2Mvp+H5N/s=) 13: 34352e3132352e302e302f32322d3234203d3e2039333132.roa (hash: XsSHiraeLYNQTJR5HGAY6vwQ9Scu9lRrIHdSI54V+7M=) 14: 3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa (hash: mK1H0q2nScB12+HzJP5Ci9eZPi+rL/uehN1iZQBOZZg=) 15: 3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa (hash: lqCEmZ9NaCjaWEhq0OXTc04xBaaLhH59AP38axB9xQk=) 16: 323430333a326338303a3a2f33312d3438203d3e2039333132.roa (hash: YBRtGgVo128HYmmYrlq/rtgksrT7YQggo7xicgUIVnM=) 17: 3135372e3131392e3130302e302f32322d3234203d3e2039333132.roa (hash: GMRaZkN3zIDxVuJVnldek+MoIhPgvQ/+nioWSoYNFg0=) 18: 34352e3131362e31342e302f32342d3234203d3e2034373835.roa (hash: jmlPHqT2zn/G8VxGtz4qGDGVkC091Y4a8xRHPA/+0+0=) 19: 3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa (hash: eglNokA0036JbGNEJ4JBpUI9W7LtrNCo3IjzCiifpEo=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 11:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:5c:4f:7c:d5:4d:65:7d:2a:8b:5b:95:c3:48:33:88:f1:de:e7:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: Nov 22 07:46:45 2024 GMT Not After : Nov 23 11:34:45 2024 GMT Subject: CN=9F47A412F652F7868B3E079BC18BF2096425096B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:1a:0b:cb:6f:7e:1a:f0:de:82:26:42:60: 19:e9:f2:03:8d:3a:76:df:38:c1:8c:a3:c5:4a:42: 5d:c2:fe:6c:88:d4:f3:c4:69:59:e6:82:79:22:e0: 18:57:e5:c9:fb:f1:b0:78:f9:53:d1:41:46:7a:78: f5:48:f7:18:ce:fe:ff:f9:6a:e3:34:ca:98:a0:b2: ca:1b:26:c9:e4:1c:9b:16:c8:e2:7c:87:f8:12:b5: 67:3f:c3:ce:fb:3b:6d:54:51:5e:13:84:33:9d:fd: 26:86:23:f7:e5:25:cb:e2:90:7c:a6:60:8a:d7:f4: 92:cb:7c:6d:08:6d:cc:04:fc:4e:f4:1e:81:f7:ff: ff:8d:12:91:fa:07:2c:f1:8d:de:c1:09:6f:6d:ae: ba:8a:d9:0a:96:ff:68:58:82:15:39:62:6e:4b:57: 6a:b4:14:5a:13:59:48:4c:9a:b3:52:6c:72:3a:e4: de:b7:a4:34:dc:67:6f:79:6e:48:cc:fb:35:c7:e4: f9:a2:77:3b:75:63:ab:3b:44:2f:31:51:b2:e4:de: 55:d4:a8:b6:b9:4e:20:a0:5e:7c:ac:da:1f:da:42: 79:4d:ed:e2:1f:b0:19:9f:d4:4e:08:92:93:6b:04: 62:6f:de:5d:c1:2c:66:a6:ce:02:90:8c:f7:1f:78: 8d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:47:A4:12:F6:52:F7:86:8B:3E:07:9B:C1:8B:F2:09:64:25:09:6B X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:2a:8c:ae:5b:d6:1c:e1:20:51:78:e0:00:ec:c3:8e:6d:f0: 00:df:9b:5f:14:21:66:64:12:08:7e:8d:f3:fc:15:aa:4e:e2: 91:83:ff:fb:d0:9e:e2:de:81:a9:e9:ea:39:22:08:11:30:a5: 51:29:38:b1:a2:58:c9:e2:07:b6:33:83:22:4b:e6:ff:17:c4: 54:15:c8:77:00:d5:3b:15:7a:00:dc:1c:cf:28:87:44:fd:14: 43:01:54:4d:4a:05:46:3d:d9:9b:70:7e:5f:ce:e7:79:7b:32: ec:a6:1b:5a:5e:f2:bf:d9:da:3d:f2:14:ba:65:5d:d2:d6:c5: 18:92:df:60:7b:c2:04:e7:0a:c6:0d:3e:81:db:82:33:0d:3a: e5:1b:26:85:27:95:60:50:7a:9b:d5:7f:f7:e0:ef:7a:7c:91: b8:f6:d9:cd:65:b8:cd:6b:b3:82:0c:4e:d2:7d:5f:ae:99:c7: 9f:99:1e:17:76:32:5c:6d:9c:e1:e0:38:e6:66:8b:d9:02:fd: 37:d6:e2:be:6e:9f:77:2d:0f:da:ae:1b:10:69:87:50:79:c9: d6:d4:33:1c:20:45:fd:c5:ae:28:9e:34:ec:ad:75:36:50:9d: 57:4e:f4:ad:b5:96:3b:59:92:6e:38:68:ad:c8:63:23:93:1f: ff:2d:f9:0b -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUdFxPfNVNZX0qi1uVw0gziPHe50kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MTEyMjA3NDY0NVoX DTI0MTEyMzExMzQ0NVowMzExMC8GA1UEAxMoOUY0N0E0MTJGNjUyRjc4NjhCM0Uw NzlCQzE4QkYyMDk2NDI1MDk2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyLGgvLb34a8N6CJkJgGenyA406dt84wYyjxUpCXcL+bIjU88RpWeaCeSLg GFflyfvxsHj5U9FBRnp49Uj3GM7+//lq4zTKmKCyyhsmyeQcmxbI4nyH+BK1Zz/D zvs7bVRRXhOEM539JoYj9+Uly+KQfKZgitf0kst8bQhtzAT8TvQegff//40SkfoH LPGN3sEJb22uuorZCpb/aFiCFTlibktXarQUWhNZSEyas1Jscjrk3rekNNxnb3lu SMz7Ncfk+aJ3O3VjqztELzFRsuTeVdSotrlOIKBefKzaH9pCeU3t4h+wGZ/UTgiS k2sEYm/eXcEsZqbOApCM9x94jcUCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBSfR6QS 9lL3hos+B5vBi/IJZCUJazAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvNzM2ODNDRjMxQTQxNDczMzZEODJDNTIxOEQ3Mzg5 QjVENzQxREUxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKwqjK5b1hzhIFF44ADsw45t8ADfm18UIWZk Egh+jfP8FapO4pGD//vQnuLeganp6jkiCBEwpVEpOLGiWMniB7YzgyJL5v8XxFQV yHcA1TsVegDcHM8oh0T9FEMBVE1KBUY92Ztwfl/O53l7MuymG1pe8r/Z2j3yFLpl XdLWxRiS32B7wgTnCsYNPoHbgjMNOuUbJoUnlWBQepvVf/fg73p8kbj22c1luM1r s4IMTtJ9X66Zx5+ZHhd2MlxtnOHgOOZmi9kC/TfW4r5un3ctD9quGxBph1B5ydbU MxwgRf3FriieNOytdTZQnVdO9K21ljtZkm44aK3IYyOTH/8t+Qs= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:28 2024 by rpki-client on console-ams.rpki-client.org