$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft File: tNIXk5onUZOOB2WaeUiFqciEGRk.mft (raw, json) Hash identifier: Aukc1/1lrebgIIbJWks1a/Qm0fCM3Mlf8osAiA39k30= Subject key identifier: A1:D1:1D:C7:CB:B1:05:BA:7C:A2:93:15:78:72:49:F7:FA:87:04:48 Authority key identifier: B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 Certificate issuer: /CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft Manifest number: 0E Signing time: Wed 25 Dec 2024 06:09:53 +0000 Manifest this update: Wed 25 Dec 2024 06:09:53 +0000 Manifest next update: Wed 01 Jan 2025 06:09:53 +0000 Files and hashes: 1: tNIXk5onUZOOB2WaeUiFqciEGRk.crl (hash: FBomkrrWcf17+oVLPkFB+3jauaz2ce1fPAlKtii80II=) 2: 793486E0C11A11EF99C19012C4F9AE02.roa (hash: pawwhpt8xl4Jm5tUlNLFvNNRwT1g8ks5JKIz2Wod4KM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13/serialNumber=B4D217939A2751938E07659A794885A9C8841919 Validity Not Before: Dec 25 06:09:53 2024 GMT Not After : Jan 1 06:09:53 2025 GMT Subject: CN=676ba1b1-1643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:0f:60:e2:5c:c3:13:d0:3c:71:ab:cd:51: e7:f4:37:83:5e:a4:00:cc:9a:d3:a6:49:11:fb:b3: 60:d5:1d:4b:e0:17:26:b0:4d:66:0d:70:59:62:e2: 96:a8:25:f2:38:db:12:eb:3d:14:be:a8:e0:a3:60: 55:41:f6:32:5e:ce:f5:b7:47:91:89:ea:16:63:67: 65:11:80:b5:ac:9d:be:78:b1:7a:10:49:1f:c8:15: 2d:37:55:c2:3a:89:2d:b4:b9:73:dd:e0:d4:8a:87: c0:cf:07:a0:8c:74:48:a9:20:6c:a3:7a:db:78:d1: b3:94:9e:c1:97:b6:32:bb:de:7d:e6:39:e6:1d:bd: ef:31:89:d9:a9:ad:a4:6e:81:82:fd:c9:8e:9d:9e: 52:6a:bc:cb:f4:f5:0a:89:56:40:cf:0d:cf:1f:9d: 1f:f7:9c:b9:7d:b3:34:ce:be:0d:b2:c2:e4:64:54: 6c:ca:74:2f:2c:a5:4c:90:5c:c7:85:d7:a1:d0:6d: 78:a6:cb:55:6d:9e:4c:11:15:04:25:47:a1:a5:59: 8f:78:2f:e1:7b:bb:9f:1e:73:a7:3c:7e:03:7d:94: 2a:65:e0:8f:d3:2c:e0:e9:33:9c:fe:dc:b1:3b:8b: a8:49:e7:92:2f:5d:ce:8a:d6:5b:a6:43:e3:7b:e7: da:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D1:1D:C7:CB:B1:05:BA:7C:A2:93:15:78:72:49:F7:FA:87:04:48 X509v3 Authority Key Identifier: keyid:B4:D2:17:93:9A:27:51:93:8E:07:65:9A:79:48:85:A9:C8:84:19:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNIXk5onUZOOB2WaeUiFqciEGRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/50BD230EB12811EFB750A52BC4F9AE02/tNIXk5onUZOOB2WaeUiFqciEGRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2f:9e:dc:d0:e6:9f:80:4f:c3:c1:31:a6:95:ed:fe:7d:3c: 3b:83:b1:7e:0a:40:11:2a:01:3e:87:bf:c8:4c:20:1c:c7:5e: ff:a0:2f:98:a2:91:ca:95:bb:a4:c5:6f:f1:dd:f5:1a:d8:b9: 72:23:4c:95:69:4f:27:e2:31:a1:3a:00:d0:7f:25:37:52:38: 7b:17:73:76:97:89:62:4c:30:58:bb:af:1c:c9:44:fb:fe:fa: 08:60:10:ef:47:95:e9:19:91:9b:d0:3a:d8:ff:c5:20:40:20: 83:8a:75:f0:46:89:1f:3e:bd:bd:5b:07:82:2d:bb:f1:99:11: de:e2:0f:96:c6:0a:51:3a:a7:71:70:d6:94:85:ce:10:17:61: d0:d7:5d:76:62:62:0c:43:bb:80:89:64:fe:61:93:80:dc:47: 6a:37:d9:b7:54:34:10:62:3e:b4:2c:5b:45:39:7c:ff:f0:57: 6d:85:71:1b:8c:42:47:56:06:85:ac:61:95:d9:3b:99:2d:6b: 09:43:0d:93:1b:b5:62:bb:f1:05:00:59:4d:3f:c8:6c:2a:29: 50:ef:3e:64:98:1a:bd:70:3f:0f:58:7b:4d:ab:8e:26:b0:34: 27:48:d8:62:be:08:1d:28:ec:09:22:36:11:65:9d:20:76:6b: aa:5b:19:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUIxMzExMC8GA1UEBRMoQjREMjE3OTM5QTI3NTE5MzhFMDc2NTlBNzk0ODg1QTlD ODg0MTkxOTAeFw0yNDEyMjUwNjA5NTNaFw0yNTAxMDEwNjA5NTNaMBgxFjAUBgNV BAMTDTY3NmJhMWIxLTE2NDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJeQ9g4lzDE9A8cavNUef0N4NepADMmtOmSRH7s2DVHUvgFyawTWYNcFli4pao JfI42xLrPRS+qOCjYFVB9jJezvW3R5GJ6hZjZ2URgLWsnb54sXoQSR/IFS03VcI6 iS20uXPd4NSKh8DPB6CMdEipIGyjett40bOUnsGXtjK73n3mOeYdve8xidmpraRu gYL9yY6dnlJqvMv09QqJVkDPDc8fnR/3nLl9szTOvg2ywuRkVGzKdC8spUyQXMeF 16HQbXimy1VtnkwRFQQlR6GlWY94L+F7u58ec6c8fgN9lCpl4I/TLODpM5z+3LE7 i6hJ55IvXc6K1lumQ+N759pLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUodEdx8ux Bbp8opMVeHJJ9/qHBEgwHwYDVR0jBBgwFoAUtNIXk5onUZOOB2WaeUiFqciEGRkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjEzLzUwQkQyMzBFQjEy ODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpPT0IyV2FlVWlGcWNpRUdS ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdE5JWGs1b25VWk9PQjJXYWVVaUZxY2lFR1JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 QjEzLzUwQkQyMzBFQjEyODExRUZCNzUwQTUyQkM0RjlBRTAyL3ROSVhrNW9uVVpP T0IyV2FlVWlGcWNpRUdSay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE4vntzQ5p+AT8PBMaaV7f59PDuDsX4KQBEqAT6Hv8hMIBzHXv+gL5ii kcqVu6TFb/Hd9RrYuXIjTJVpTyfiMaE6ANB/JTdSOHsXc3aXiWJMMFi7rxzJRPv+ +ghgEO9HlekZkZvQOtj/xSBAIIOKdfBGiR8+vb1bB4Itu/GZEd7iD5bGClE6p3Fw 1pSFzhAXYdDXXXZiYgxDu4CJZP5hk4DcR2o32bdUNBBiPrQsW0U5fP/wV22FcRuM QkdWBoWsYZXZO5ktawlDDZMbtWK78QUAWU0/yGwqKVDvPmSYGr1wPw9Ye02rjiaw NCdI2GK+CB0o7AkiNhFlnSB2a6pbGbA= -----END CERTIFICATE-----Generated at Wed Dec 25 08:00:00 2024 by rpki-client on console-ams.rpki-client.org