$ rpki-client -vvf rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft File: 73683CF31A4147336D82C5218D7389B5D741DE1B.mft (raw, json) Hash identifier: FSegfNL7VxMyqMunT59Is8rA0sbrq80AFRNGNCMYvsA= Subject key identifier: B9:72:C3:30:5C:DE:59:9A:8F:B1:62:E6:77:9B:D7:70:94:EE:29:05 Authority key identifier: 73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B Certificate issuer: /CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Certificate serial: 170D6E8896E22BB11A501EB05F4B29F6E53DF413 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject info access: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft Manifest number: 05F2 Signing time: Sat 18 May 2024 01:21:03 +0000 Manifest this update: Sat 18 May 2024 01:16:03 +0000 Manifest next update: Sun 19 May 2024 05:08:03 +0000 Files and hashes: 1: 3130332e3139322e3232362e302f32342d3234203d3e2036313334.roa (hash: adj2riG7gB+K6iWEOJrOJ/QkP4tFp6jIN7r40OZVmrw=) 2: 323430333a326338303a3a2f33312d3438203d3e2039333132.roa (hash: dq/S35/9gJN156qGdq3sHgd3c6kS54iBI0wR9FySm00=) 3: 3130332e3139322e3232372e302f32342d3234203d3e2039333132.roa (hash: ozpow74s9/vkyRYoUy+95bprf8wXf4BD410ve+r0GnE=) 4: 3130332e35362e35352e302f32342d3234203d3e2034373835.roa (hash: GH8khGqY9L0+LH7niUi6DXdvQANYzayy9lXEnU+N+BU=) 5: 73683CF31A4147336D82C5218D7389B5D741DE1B.crl (hash: 8WyxbZ4PTwoF4yP7c5ket86dEbj/nJ7kRBWrr1MYdrY=) 6: 3130332e3139322e3232362e302f32342d3234203d3e20313337343433.roa (hash: y9aOMeE0hTe5z5Ks0JRIBgoWSzULCU0wQSowRvNwERI=) 7: 3135372e3131392e3130302e302f32322d3234203d3e2036323333.roa (hash: UaHMNF2pmLdBArMzocZxMV/mbZRNujlu+4BAM4H8DeQ=) 8: 3130332e3139322e3232342e302f32342d3234203d3e2039333132.roa (hash: ImREtJmI9Py+3tSryDA/tvEACO9jXKusfJ0vZUKw0YU=) 9: 3138302e3233352e3133362e302f32322d3332203d3e2039333132.roa (hash: 40jz3AEKo3c3bJ5OXVkbdCZfLDPOEfoKqABsamzBSKo=) 10: 34352e3132352e302e302f32322d3234203d3e2039333132.roa (hash: jLXKsGG8VQZyOSjlauKKXuqYMPMvcJ8wzlt4IsbTgOM=) 11: 3138302e3233352e3133382e302f32342d3234203d3e2034373835.roa (hash: jqJFG1Fw5C48XP/CIB5c/CizVSrPmt6xrc3ti/ecvBk=) 12: 3135372e3131392e3130302e302f32322d3234203d3e2039333132.roa (hash: 8Flif2nx+ipPus6EjLwmvv0mPjTf0cG/OAZcyLzrFAM=) 13: 34352e3131362e31332e302f32342d3234203d3e2034373835.roa (hash: PISjy53T43OPrPVdVIrSrCKAjIktOP5kaTdGpkev9G0=) 14: 3130332e3139322e3232352e302f32342d3234203d3e2039333132.roa (hash: CZnX1QmIvehC0rwPmPmw8X50WQ3tVV/JN3IC4Q32Fuw=) 15: 34352e3131362e31342e302f32342d3234203d3e2034373835.roa (hash: 3DVUN8hsuCa5M/5YawEU5ZNZ6+YF4DINIe7b4/ww5aU=) 16: 3130332e35362e35332e302f32342d3234203d3e2038383838.roa (hash: Cu6uC4XIQ/nc2t5YSaCpf9dEiwqNHQJJUIl1xAKBDHw=) 17: 3138302e3233352e3133372e302f32342d3332203d3e2033323538.roa (hash: Lw3S7PTchYPYJZr/k8u6PLmtg+S85T3OmOxCNmhG4Wc=) 18: 3138302e3233352e3133372e302f32342d3332203d3e2039333132.roa (hash: VCer1FC3ET4+hNfmEPOX+gJkqb65wt2p0FPfU+geXHc=) Validation: OK Signature path: rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 May 2024 05:08:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:0d:6e:88:96:e2:2b:b1:1a:50:1e:b0:5f:4b:29:f6:e5:3d:f4:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913250A0000/serialNumber=73683CF31A4147336D82C5218D7389B5D741DE1B Validity Not Before: May 18 01:16:03 2024 GMT Not After : May 19 05:08:03 2024 GMT Subject: CN=B972C3305CDE599A8FB162E6779BD77094EE2905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e0:da:7a:22:ae:73:e2:81:6c:c2:c7:b7:b0: 68:c8:5c:fc:de:d4:09:7a:fa:27:3b:22:28:99:9d: 68:1b:de:98:5c:34:57:df:06:1d:73:cc:ac:3b:ed: 61:de:8f:c2:5b:18:a6:25:81:f4:be:9d:bd:d5:81: 99:fe:a8:f0:d9:68:fe:b1:c0:dc:57:21:fc:33:f2: c1:42:5d:22:e2:c0:5a:52:97:83:44:33:72:ff:19: d8:49:3c:1d:e6:54:d0:c3:d3:5f:bc:af:da:bf:80: 25:25:b1:f7:93:23:e0:26:86:d5:28:3c:06:f6:8a: 3b:f4:44:60:de:f8:5e:46:f6:eb:78:e5:8d:4e:b8: 38:39:19:11:e3:a9:ae:d5:af:07:7c:d8:c2:85:16: 07:40:66:cb:bc:bd:86:28:83:cb:f3:ac:05:69:04: cb:52:6a:5a:f3:57:5d:f5:4e:7b:8f:df:a7:e0:5c: f7:a4:0e:97:59:04:e2:d6:16:5d:f1:e3:1d:a4:a1: 81:0b:d8:b8:9d:1a:3f:4a:39:35:ae:52:49:fb:8a: e5:83:e7:8c:8f:f2:e8:c4:ed:37:bf:1c:81:72:1c: 00:48:e3:91:13:32:1b:ad:68:9e:0b:f8:2a:a2:07: b5:85:b2:3d:cb:47:15:73:16:85:ac:3e:e0:6f:10: e9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:72:C3:30:5C:DE:59:9A:8F:B1:62:E6:77:9B:D7:70:94:EE:29:05 X509v3 Authority Key Identifier: keyid:73:68:3C:F3:1A:41:47:33:6D:82:C5:21:8D:73:89:B5:D7:41:DE:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c2g88xpBRzNtgsUhjXOJtddB3hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.roa.net/rrdp/xTom/42/73683CF31A4147336D82C5218D7389B5D741DE1B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:49:f8:e7:2c:c3:97:d8:87:c9:dc:4e:ec:91:b5:88:d3:ef: 83:a9:28:e7:a3:8b:0c:53:51:66:61:88:ad:0c:b1:cd:0d:e2: 43:7b:bb:8f:4d:09:cb:52:ec:f2:35:b8:36:f1:be:9d:58:ca: 81:26:50:7a:70:a9:a1:d8:6c:fe:f7:62:21:b4:cc:e6:76:44: 58:06:4b:21:e5:38:c1:50:98:b9:43:91:08:ae:77:5b:02:15: 3f:dc:c5:00:f6:43:85:41:ea:66:fe:2e:17:05:72:ae:08:68: de:52:7f:0b:2e:7a:ba:33:7b:05:7b:69:06:74:de:e3:7d:6a: 7f:e3:e7:2b:12:43:ae:f4:c1:aa:e6:7d:c5:dd:76:10:91:e1: f7:08:0e:4b:89:7c:6b:d6:dd:2d:7a:7f:9d:dc:9c:88:0c:51: e7:14:d9:e5:82:88:a3:33:c2:f0:a4:ef:2b:9f:bd:5f:57:ca: 57:4d:db:40:da:cd:05:3c:19:df:78:4a:80:94:65:93:cb:f5: d0:9a:dd:94:da:72:ce:fd:03:eb:13:e1:a8:e4:f8:97:53:69: 52:67:dd:4a:63:94:89:36:62:43:46:14:b6:47:38:8a:27:39: 9c:de:a3:2b:79:58:5e:32:d9:7a:9a:69:65:e2:aa:3b:34:56: e9:44:68:d2 -----BEGIN CERTIFICATE----- MIIFAjCCA+qgAwIBAgIUFw1uiJbiK7EaUB6wX0sp9uU99BMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxMzI1MEEwMDAwMTEwLwYDVQQFEyg3MzY4M0NGMzFB NDE0NzMzNkQ4MkM1MjE4RDczODlCNUQ3NDFERTFCMB4XDTI0MDUxODAxMTYwM1oX DTI0MDUxOTA1MDgwM1owMzExMC8GA1UEAxMoQjk3MkMzMzA1Q0RFNTk5QThGQjE2 MkU2Nzc5QkQ3NzA5NEVFMjkwNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfg2noirnPigWzCx7ewaMhc/N7UCXr6JzsiKJmdaBvemFw0V98GHXPMrDvt Yd6PwlsYpiWB9L6dvdWBmf6o8Nlo/rHA3Fch/DPywUJdIuLAWlKXg0Qzcv8Z2Ek8 HeZU0MPTX7yv2r+AJSWx95Mj4CaG1Sg8BvaKO/REYN74Xkb263jljU64ODkZEeOp rtWvB3zYwoUWB0Bmy7y9hiiDy/OsBWkEy1JqWvNXXfVOe4/fp+Bc96QOl1kE4tYW XfHjHaShgQvYuJ0aP0o5Na5SSfuK5YPnjI/y6MTtN78cgXIcAEjjkRMyG61ongv4 KqIHtYWyPctHFXMWhaw+4G8Q6UsCAwEAAaOCAfUwggHxMB0GA1UdDgQWBBS5csMw XN5Zmo+xYuZ3m9dwlO4pBTAfBgNVHSMEGDAWgBRzaDzzGkFHM22CxSGNc4m110He GzAOBgNVHQ8BAf8EBAMCB4AwXwYDVR0fBFgwVjBUoFKgUIZOcnN5bmM6Ly9ycGtp LnJvYS5uZXQvcnJkcC94VG9tLzQyLzczNjgzQ0YzMUE0MTQ3MzM2RDgyQzUyMThE NzM4OUI1RDc0MURFMUIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZi cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjEx RTJCQjQ2OEY3QzcyRkQxRkYyL2MyZzg4eHBCUnpOdGdzVWhqWE9KdGRkQjNocy5j ZXIwagYIKwYBBQUHAQsEXjBcMFoGCCsGAQUFBzALhk5yc3luYzovL3Jwa2kucm9h Lm5ldC9ycmRwL3hUb20vNDIvNzM2ODNDRjMxQTQxNDczMzZEODJDNTIxOEQ3Mzg5 QjVENzQxREUxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEtJ+Ocsw5fYh8ncTuyRtYjT74OpKOejiwxT UWZhiK0Msc0N4kN7u49NCctS7PI1uDbxvp1YyoEmUHpwqaHYbP73YiG0zOZ2RFgG SyHlOMFQmLlDkQiud1sCFT/cxQD2Q4VB6mb+LhcFcq4IaN5SfwsuerozewV7aQZ0 3uN9an/j5ysSQ670warmfcXddhCR4fcIDkuJfGvW3S16f53cnIgMUecU2eWCiKMz wvCk7yufvV9XyldN20DazQU8Gd94SoCUZZPL9dCa3ZTacs79A+sT4ajk+JdTaVJn 3UpjlIk2YkNGFLZHOIonOZzeoyt5WF4y2XqaaWXiqjs0VulEaNI= -----END CERTIFICATE-----Generated at Sat May 18 04:10:58 2024 by rpki-client on console-ams.rpki-client.org