$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft File: tUMZgoesmRJSAHhil7k2l_jySK4.mft (raw, json) Hash identifier: 0DmuBehloNs/hswfC3fREaZ7oSWGpqgwsKUqI7hTDE0= Subject key identifier: 6C:36:C9:0A:1B:6E:47:51:A5:5E:D7:91:B6:0E:88:F6:F5:2A:65:73 Authority key identifier: B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE Certificate issuer: /CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Certificate serial: 0BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft Manifest number: 0BCD Signing time: Fri 22 Nov 2024 18:34:59 +0000 Manifest this update: Fri 22 Nov 2024 18:34:59 +0000 Manifest next update: Fri 29 Nov 2024 18:34:59 +0000 Files and hashes: 1: tUMZgoesmRJSAHhil7k2l_jySK4.crl (hash: 13r+Ng80OFcrmd510c6CqaGgjgDee4XyywXsuce4ntE=) 2: DBE709060AA511EA86C8E31DC4F9AE02.roa (hash: zgjsHos2MHOxvntym+ulSXBT66zLuQ8zyiMRNeqJYvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3033 (0xbd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DBC/serialNumber=B543198287AC99125200786297B93697F8F248AE Validity Not Before: Nov 22 18:34:59 2024 GMT Not After : Nov 29 18:34:59 2024 GMT Subject: CN=6740ced3-ce18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:18:47:31:62:9c:36:42:2f:9a:c4:85:bd:8d: a4:9b:17:c1:f8:ec:27:6a:e4:9f:cb:4f:bd:bb:b7: dc:da:05:3e:80:7b:f5:0d:6e:b3:79:cc:34:a2:51: 7b:a0:78:2d:7b:03:ec:01:b4:be:b5:a7:45:f5:07: 32:eb:00:4b:1c:6b:3a:cd:de:50:3a:3b:2c:2e:ea: 61:78:b5:9c:d8:d6:6c:07:92:ab:9c:1c:cb:1b:c8: 2e:ae:42:4c:2d:34:ae:09:6f:82:e1:3b:2d:4b:9d: 8b:3f:29:d5:2a:2d:21:71:c8:77:33:fe:48:ee:1f: 6e:d7:5e:4e:9e:59:8a:a3:b5:89:2c:12:5b:54:68: bd:49:e9:d4:48:17:43:05:11:95:bb:6a:66:e1:b5: 83:5d:88:7f:48:2a:df:75:eb:b5:09:2f:2a:67:6b: 9d:48:b0:e5:e3:b0:85:2c:03:ea:ac:c3:a4:d7:fe: 64:01:f3:cc:47:08:01:0f:98:ab:13:4b:d3:8d:fe: aa:cd:8a:14:1f:a6:37:6e:7e:a6:e9:5b:74:df:3c: fd:f1:b4:25:e2:2e:d1:ac:02:b1:9e:d8:a2:f0:89: 3d:be:ef:b7:d6:d9:39:b0:ce:df:20:94:cb:53:7c: 8e:c1:fc:9c:a8:23:70:4f:9c:3c:ef:b8:45:b8:26: d6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:36:C9:0A:1B:6E:47:51:A5:5E:D7:91:B6:0E:88:F6:F5:2A:65:73 X509v3 Authority Key Identifier: keyid:B5:43:19:82:87:AC:99:12:52:00:78:62:97:B9:36:97:F8:F2:48:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUMZgoesmRJSAHhil7k2l_jySK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DBC/69FA25680AA411EA8C5A831BC4F9AE02/tUMZgoesmRJSAHhil7k2l_jySK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:72:bf:38:07:bc:88:90:44:f5:7f:a2:69:6e:42:7b:2a:fb: 1c:e5:34:6e:aa:39:43:ee:7b:14:35:8c:b3:52:73:0e:78:2a: 17:a9:5c:f3:22:d5:85:a1:39:50:31:72:a2:27:b8:5c:8b:83: e3:66:f7:ec:e3:1b:96:61:79:45:89:5b:ab:b0:e2:f0:fc:97: cd:f5:1d:03:80:ff:7f:91:07:44:11:48:6e:1f:e2:2f:55:45: 9d:a1:ee:69:38:78:7f:71:ab:88:05:38:f2:c9:1b:1d:22:38: f4:c1:8e:4d:3d:84:20:10:0e:23:38:6b:11:af:b0:54:29:cf: 14:8b:7a:83:34:24:64:48:42:59:8a:40:f1:94:c5:82:64:62: 63:4d:0f:08:af:a9:55:63:73:e6:23:d3:d1:99:e9:6a:de:2c: bb:3a:db:46:55:59:cd:7e:8e:83:58:8b:13:94:60:8d:6e:06: 72:4b:a7:4f:e2:b4:61:b9:95:f5:9a:f1:60:61:74:e4:53:6b: f3:03:7b:19:7f:59:6d:05:ea:9d:59:ac:cc:8d:a5:fe:b9:45: 9b:35:08:a6:a7:93:5f:38:87:ca:90:43:d9:46:13:04:b9:0e: 1e:be:f8:ed:67:cd:a8:d9:69:2f:53:09:98:2f:e1:87:47:8b: ee:85:ed:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQkMxMTAvBgNVBAUTKEI1NDMxOTgyODdBQzk5MTI1MjAwNzg2Mjk3QjkzNjk3 RjhGMjQ4QUUwHhcNMjQxMTIyMTgzNDU5WhcNMjQxMTI5MTgzNDU5WjAYMRYwFAYD VQQDEw02NzQwY2VkMy1jZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBhHMWKcNkIvmsSFvY2kmxfB+OwnauSfy0+9u7fc2gU+gHv1DW6zecw0olF7 oHgtewPsAbS+tadF9Qcy6wBLHGs6zd5QOjssLupheLWc2NZsB5KrnBzLG8gurkJM LTSuCW+C4TstS52LPynVKi0hcch3M/5I7h9u115OnlmKo7WJLBJbVGi9SenUSBdD BRGVu2pm4bWDXYh/SCrfdeu1CS8qZ2udSLDl47CFLAPqrMOk1/5kAfPMRwgBD5ir E0vTjf6qzYoUH6Y3bn6m6Vt03zz98bQl4i7RrAKxntii8Ik9vu+31tk5sM7fIJTL U3yOwfycqCNwT5w877hFuCbWAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGw2yQob bkdRpV7XkbYOiPb1KmVzMB8GA1UdIwQYMBaAFLVDGYKHrJkSUgB4Ype5Npf48kiu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRCQy82OUZBMjU2ODBB QTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21SSlNBSGhpbDdrMmxfanlT SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVTVpnb2VzbVJKU0FIaGlsN2sybF9qeVNLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRCQy82OUZBMjU2ODBBQTQxMUVBOEM1QTgzMUJDNEY5QUUwMi90VU1aZ29lc21S SlNBSGhpbDdrMmxfanlTSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9cr84B7yIkET1f6JpbkJ7Kvsc5TRuqjlD7nsUNYyzUnMOeCoXqVzz ItWFoTlQMXKiJ7hci4PjZvfs4xuWYXlFiVursOLw/JfN9R0DgP9/kQdEEUhuH+Iv VUWdoe5pOHh/cauIBTjyyRsdIjj0wY5NPYQgEA4jOGsRr7BUKc8Ui3qDNCRkSEJZ ikDxlMWCZGJjTQ8Ir6lVY3PmI9PRmelq3iy7OttGVVnNfo6DWIsTlGCNbgZyS6dP 4rRhuZX1mvFgYXTkU2vzA3sZf1ltBeqdWazMjaX+uUWbNQimp5NfOIfKkEPZRhME uQ4evvjtZ82o2WkvUwmYL+GHR4vuhe2M -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org