$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft File: -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json) Hash identifier: gPSP53A3jaU/cWIBnre/iW/gTLg1nVbCj7s91Rc/SsA= Subject key identifier: 6A:88:F0:C1:6B:C3:26:D8:26:64:0C:1D:40:B9:FB:A2:03:5F:A5:AD Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 055E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft Manifest number: 0559 Signing time: Fri 22 Nov 2024 22:57:38 +0000 Manifest this update: Fri 22 Nov 2024 22:57:37 +0000 Manifest next update: Fri 29 Nov 2024 22:57:37 +0000 Files and hashes: 1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: YMbSrVL2p/pxTj+qYITSFaaCUO62cOEUZ0Ut00i3Y2M=) 2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: RVfGnSNi7Gc2NDwMnGvANcouUDMPNtTfLB5zmPwCbz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1374 (0x55e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Nov 22 22:57:37 2024 GMT Not After : Nov 29 22:57:37 2024 GMT Subject: CN=67410c62-d181 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0d:a2:61:ba:a0:59:0c:b2:48:d9:dc:77:0d: 90:78:99:6c:8f:04:2f:e4:d1:11:f4:8e:fe:d8:0e: a3:56:6a:b5:25:e2:6f:c1:c8:a2:b4:7f:a0:75:98: bd:52:10:0e:6c:07:b1:8b:44:19:48:96:c1:7b:15: 14:58:92:14:f6:3c:e6:f8:e3:d8:91:bb:f3:f8:26: 50:1c:8f:f9:93:2c:6f:32:94:8e:f3:e7:6c:72:97: e3:84:78:01:9d:13:f4:fb:65:7e:a3:fc:ce:e6:45: 01:ec:44:b6:e1:ed:50:a4:d5:c1:e7:76:95:d2:0c: 50:d5:7d:f5:ad:01:e3:ce:d0:e3:81:41:cd:50:24: 90:5e:b8:43:25:ae:cf:90:f6:4d:4d:d2:aa:78:e7: 91:06:bf:5e:76:1e:15:7c:1a:64:50:fa:f2:9d:bd: 12:d0:40:5a:08:cd:76:9b:b0:42:68:a2:63:e6:18: ee:29:36:cb:75:3a:4e:43:fd:97:64:ad:bb:8c:3a: 9a:b2:1e:4c:89:c6:5b:3d:cd:b2:f0:30:f5:b7:7b: 28:8f:22:05:a4:1f:fe:5e:0b:93:65:32:f7:28:31: e1:5d:47:4e:b9:1e:d3:3e:d5:2f:ef:75:7e:f9:45: 9b:4f:a2:1e:fe:04:ed:3b:d6:7b:9a:b5:24:07:b6: 04:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:88:F0:C1:6B:C3:26:D8:26:64:0C:1D:40:B9:FB:A2:03:5F:A5:AD X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a7:18:a8:b4:db:11:3e:d0:6e:2d:46:39:c7:a3:3d:0f:a3: 60:12:71:f8:6b:14:2c:e7:f0:1f:d7:75:dd:9e:53:9f:c1:6f: a4:ed:d4:14:fc:9e:02:db:f3:5d:1d:8d:c3:e6:9e:96:02:a1: f7:d7:bb:71:0b:32:68:8e:81:f6:83:36:4d:2f:83:f6:69:44: 81:82:fb:2b:cd:42:ee:66:3c:f9:08:87:bc:98:b4:10:34:89: 38:ef:4f:75:09:59:ca:e9:a4:06:ea:ff:44:e9:24:86:0b:29: d3:26:ec:d3:41:26:4b:9a:47:2b:06:48:fd:16:90:12:ad:d1: 5e:87:06:0d:ab:8b:f7:83:37:0d:8d:e5:5e:26:8f:a5:f9:91: 94:e9:35:84:76:7b:d4:f2:d3:31:f2:a8:66:f4:b1:af:22:38: 7f:e0:32:44:fd:82:4f:07:7f:b7:59:14:9a:37:76:4c:4e:77: 76:cf:d3:22:89:d7:57:02:c5:e0:ff:32:bb:90:2d:a4:2c:59: c0:82:30:73:ee:d4:81:50:9c:0d:e0:d2:e1:6a:ec:d1:e9:eb: 0d:17:f4:83:ab:33:67:92:bd:87:d0:27:f1:96:3c:a5:bd:09: 0a:b8:33:bc:b0:60:a5:87:4e:9c:76:46:3e:40:1b:1d:9a:35: 80:83:19:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjQxMTIyMjI1NzM3WhcNMjQxMTI5MjI1NzM3WjAYMRYwFAYD VQQDEw02NzQxMGM2Mi1kMTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsg2iYbqgWQyySNncdw2QeJlsjwQv5NER9I7+2A6jVmq1JeJvwciitH+gdZi9 UhAObAexi0QZSJbBexUUWJIU9jzm+OPYkbvz+CZQHI/5kyxvMpSO8+dscpfjhHgB nRP0+2V+o/zO5kUB7ES24e1QpNXB53aV0gxQ1X31rQHjztDjgUHNUCSQXrhDJa7P kPZNTdKqeOeRBr9edh4VfBpkUPrynb0S0EBaCM12m7BCaKJj5hjuKTbLdTpOQ/2X ZK27jDqash5MicZbPc2y8DD1t3sojyIFpB/+XguTZTL3KDHhXUdOuR7TPtUv73V+ +UWbT6Ie/gTtO9Z7mrUkB7YE8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqI8MFr wybYJmQMHUC5+6IDX6WtMB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJpxiotNsRPtBuLUY5x6M9D6NgEnH4axQs5/Af13XdnlOfwW+k7dQU /J4C2/NdHY3D5p6WAqH317txCzJojoH2gzZNL4P2aUSBgvsrzULuZjz5CIe8mLQQ NIk47091CVnK6aQG6v9E6SSGCynTJuzTQSZLmkcrBkj9FpASrdFehwYNq4v3gzcN jeVeJo+l+ZGU6TWEdnvU8tMx8qhm9LGvIjh/4DJE/YJPB3+3WRSaN3ZMTnd2z9Mi iddXAsXg/zK7kC2kLFnAgjBz7tSBUJwN4NLhauzR6esNF/SDqzNnkr2H0Cfxljyl vQkKuDO8sGClh06cdkY+QBsdmjWAgxkn -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org