$ rpki-client -vvf rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft File: tg1afDY_D02TL-MXuQzmz4DSg8k.mft (raw, json) Hash identifier: RDKPCNwP6VMqZuoFhIlYjxH6hrGbfoWL5gqcNmgh99I= Subject key identifier: 08:2D:D1:59:65:90:28:5A:1D:16:32:18:84:A1:86:63:9E:EA:9E:B3 Authority key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 Certificate issuer: /CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Certificate serial: 09C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft Manifest number: 09BE Signing time: Wed 20 Nov 2024 19:42:15 +0000 Manifest this update: Wed 20 Nov 2024 19:42:15 +0000 Manifest next update: Wed 27 Nov 2024 19:42:15 +0000 Files and hashes: 1: tg1afDY_D02TL-MXuQzmz4DSg8k.crl (hash: BVIWN1xnh7o0lrrcMVn/rlAr9Y36ZiFRXFgqCXzA80U=) 2: 59AA22D06FFD11EA9160902DC4F9AE02.roa (hash: asIJPd7ycQgmyjnwr6+3XbmDuWfL8nZVojE1+b6iXHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:42:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9 Validity Not Before: Nov 20 19:42:15 2024 GMT Not After : Nov 27 19:42:15 2024 GMT Subject: CN=673e3b97-dcf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:c0:aa:f9:41:ee:6a:8a:ae:9d:ff:51:2d: 5b:5b:e2:dc:af:62:59:fd:e1:f9:20:d2:ea:b9:a0: 65:68:69:b5:95:1d:5a:f0:6c:b8:0b:b8:fe:87:f3: fe:70:45:ee:fa:46:66:4d:5a:71:c1:72:2f:21:7c: 9b:ab:5e:bf:fd:e3:5f:80:cb:76:e1:7b:5e:a2:a0: 01:38:23:6a:0e:7c:a3:99:85:b7:c9:ef:90:b9:6e: 4e:85:7e:ac:f5:f1:93:d2:3a:b6:63:04:3a:f7:1d: 2f:f4:3f:44:cf:29:b7:bc:60:56:f9:2f:61:5c:dc: 5e:e2:1e:e2:43:46:ca:af:a8:fc:65:68:aa:f4:d0: 95:4e:b5:c6:fd:b9:97:24:82:2d:e9:c4:40:6f:c0: 22:78:16:23:90:c4:c9:c0:92:32:48:0f:e9:0c:db: a5:06:f8:38:8a:9d:e8:ae:06:4a:bb:bd:67:63:69: b2:22:f8:7c:2d:d2:08:20:21:0d:64:b3:0f:7f:30: c4:45:c0:20:27:15:95:46:e6:c7:2e:cf:9b:38:80: a8:b0:4c:1a:20:5b:bc:6d:20:26:72:80:e3:ea:cc: d9:5e:b4:73:38:dd:4e:4e:9c:42:f6:db:95:b4:5d: 9a:c6:e1:15:86:d3:42:56:a3:b8:96:9f:6f:7c:8d: 96:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2D:D1:59:65:90:28:5A:1D:16:32:18:84:A1:86:63:9E:EA:9E:B3 X509v3 Authority Key Identifier: keyid:B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0c:67:f4:43:01:b5:2e:fc:1d:11:38:69:37:ed:9b:21:b3: 85:42:bc:cb:2d:74:02:0f:46:07:e0:a4:84:0a:04:94:fa:6c: 32:1a:be:72:8f:57:0d:cf:3d:35:4a:96:4c:94:41:e1:fa:8d: 33:50:85:65:97:26:69:9f:a4:59:4c:d0:98:24:46:e6:d2:2d: 24:24:9f:18:ef:ac:6b:9e:44:24:04:3b:96:1b:a6:ed:c0:af: d7:b0:f1:51:23:75:64:2e:b9:85:bc:b6:ee:35:49:3c:8f:9e: 91:6f:db:9b:38:4c:2a:8c:45:99:24:98:60:67:59:8c:b5:74: fd:04:63:b8:cd:b2:6f:e7:0a:0c:90:81:f4:f0:74:fe:4c:b8: cc:11:8c:69:4a:79:dd:e3:96:3b:d5:c8:a4:b2:a6:7e:17:61: 97:35:5d:6c:e7:23:db:99:66:20:82:2d:78:e1:ea:dd:52:a6: 6a:64:c1:88:d1:57:58:03:e4:ec:ef:91:42:24:c7:ac:7f:dd: da:e0:4f:31:fb:78:c7:ad:1b:c5:d8:2c:2c:c0:bb:e2:79:d1: fa:93:9f:a3:20:75:a2:47:ab:8c:33:e1:e0:dd:3f:15:d3:d3: 34:a8:44:5c:82:8c:4f:0c:66:f9:90:b7:76:9c:cd:e5:62:cf: 22:82:26:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgzMDkxMTAvBgNVBAUTKEI2MEQ1QTdDMzYzRjBGNEQ5MzJGRTMxN0I5MENFNkNG ODBEMjgzQzkwHhcNMjQxMTIwMTk0MjE1WhcNMjQxMTI3MTk0MjE1WjAYMRYwFAYD VQQDEw02NzNlM2I5Ny1kY2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxbAqvlB7mqKrp3/US1bW+Lcr2JZ/eH5INLquaBlaGm1lR1a8Gy4C7j+h/P+ cEXu+kZmTVpxwXIvIXybq16//eNfgMt24XteoqABOCNqDnyjmYW3ye+QuW5OhX6s 9fGT0jq2YwQ69x0v9D9Ezym3vGBW+S9hXNxe4h7iQ0bKr6j8ZWiq9NCVTrXG/bmX JIIt6cRAb8AieBYjkMTJwJIySA/pDNulBvg4ip3orgZKu71nY2myIvh8LdIIICEN ZLMPfzDERcAgJxWVRubHLs+bOICosEwaIFu8bSAmcoDj6szZXrRzON1OTpxC9tuV tF2axuEVhtNCVqO4lp9vfI2WewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgt0Vll kChaHRYyGIShhmOe6p6zMB8GA1UdIwQYMBaAFLYNWnw2Pw9Nky/jF7kM5s+A0oPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODMwOS8xQTQ4REM4NjZG RkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0QwMlRMLU1YdVF6bXo0RFNn OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RnMWFmRFlfRDAyVEwtTVh1UXptejREU2c4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODMwOS8xQTQ4REM4NjZGRkMxMUVBODhGM0QyMkJDNEY5QUUwMi90ZzFhZkRZX0Qw MlRMLU1YdVF6bXo0RFNnOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8DGf0QwG1LvwdEThpN+2bIbOFQrzLLXQCD0YH4KSECgSU+mwyGr5y j1cNzz01SpZMlEHh+o0zUIVllyZpn6RZTNCYJEbm0i0kJJ8Y76xrnkQkBDuWG6bt wK/XsPFRI3VkLrmFvLbuNUk8j56Rb9ubOEwqjEWZJJhgZ1mMtXT9BGO4zbJv5woM kIH08HT+TLjMEYxpSnnd45Y71ciksqZ+F2GXNV1s5yPbmWYggi144erdUqZqZMGI 0VdYA+Ts75FCJMesf93a4E8x+3jHrRvF2CwswLviedH6k5+jIHWiR6uMM+Hg3T8V 09M0qERcgoxPDGb5kLd2nM3lYs8igiak -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:44 2024 by rpki-client on console-ams.rpki-client.org