$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: dUfookXsCy8g7icXVuMoM1VYSkwtB24Z6FTjae8nfuc= Subject key identifier: FE:B9:2D:38:86:55:99:68:00:F2:58:6D:09:B9:D4:8A:A5:42:D5:23 Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 49 Signing time: Sat 23 Nov 2024 05:17:28 +0000 Manifest this update: Sat 23 Nov 2024 05:17:28 +0000 Manifest next update: Sat 30 Nov 2024 05:17:28 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: EO0GA7OO5ZsUiCQBTuMnIKukno8w/kmc8pYlEJ0jFLc=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: LrQNetWX/kWMMJz247yWUJ25L5V6W9haJZqldtz3j0Y=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: KlwexvDGFQzb3abuiXQPF43ztld2Pg+xYp8Fr2ZD2ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Nov 23 05:17:28 2024 GMT Not After : Nov 30 05:17:28 2024 GMT Subject: CN=67416568-6aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a3:d5:72:e6:21:6f:20:ea:5f:d6:97:a3:75: 86:58:03:59:4a:b3:b7:ed:77:dc:a1:5f:8a:7e:61: 2c:8d:e9:2d:3f:0f:e5:ea:83:e5:d1:e3:e4:8b:d6: 59:65:82:f2:a4:a8:a5:0c:d3:ba:4d:18:b2:cc:60: f8:c7:9f:e8:92:14:20:4b:22:bd:78:93:28:eb:93: 92:69:06:b3:b7:7b:aa:db:93:70:9f:98:8d:64:5c: e8:08:83:5d:d5:84:09:67:9b:de:bc:9b:d2:0c:a3: c3:3e:63:12:96:dd:66:d5:cd:92:6e:6b:84:a8:72: c3:e8:2a:3a:0b:24:18:46:55:41:05:8f:78:79:4b: 60:1e:15:7f:0b:82:a1:61:d0:ee:bd:19:07:3e:bc: 60:37:24:db:a1:c3:1f:70:95:43:1c:bc:37:b2:aa: 38:90:7f:e3:7a:c2:43:b2:e1:4f:25:df:82:03:fc: 31:0a:13:00:4e:1b:21:ed:fc:12:15:ae:3a:30:cd: 9f:6b:90:4d:29:23:c2:66:53:ee:fa:27:21:50:b8: 30:dc:49:a0:4d:63:b1:1c:d5:80:74:bf:3a:61:9c: 7a:d3:06:f3:08:8a:f3:aa:a3:28:0f:bb:96:19:c3: 02:b1:4a:4e:62:46:bb:46:b3:19:ec:59:30:b3:9c: 94:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B9:2D:38:86:55:99:68:00:F2:58:6D:09:B9:D4:8A:A5:42:D5:23 X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:63:25:7b:3e:5d:ac:10:79:a2:31:f0:f8:c7:cb:30:06:fc: 8b:8c:5c:50:0a:d3:2a:ae:62:fa:1b:5e:c5:15:fb:46:70:2d: 79:4e:37:31:09:b5:dd:32:89:fd:55:74:45:45:2e:63:20:7f: a4:8f:bc:26:10:43:d2:7a:01:54:56:5e:75:39:d2:f5:6f:5e: e9:8d:76:a2:e9:ee:bb:ee:3b:c8:62:b5:ba:c7:46:2e:2a:d4: aa:a3:ed:5a:16:cf:b2:2d:b1:47:dd:69:9e:4f:74:7c:bd:50: 48:5a:4d:31:6a:7b:72:5b:d4:13:bb:90:36:2a:e3:88:ee:bf: fb:e9:6f:58:1f:70:b0:1b:d5:bf:6a:b1:15:a2:72:1c:92:7a: c3:0a:b0:38:ed:02:24:75:3d:88:0e:d3:54:99:af:4c:e0:1c: 7b:6e:aa:c6:f5:00:17:17:42:73:78:e6:99:d0:c8:d1:3a:48: 38:81:a9:84:59:99:1e:fc:ab:3c:09:a4:c2:bf:20:7d:ce:1a: 5e:ad:38:3d:0e:fe:75:be:68:c7:90:ae:4e:2d:2d:50:49:e9: 21:bc:47:88:63:f5:be:38:5e:bf:0c:3f:00:ed:59:1d:f9:f7: 29:8f:4b:64:41:70:6f:fc:ab:07:72:ef:0e:ac:cd:57:47:ad: 06:f0:72:98 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUY3MzExMC8GA1UEBRMoQjQzQzRFM0QzMkY5NUI1MDU1RDA0RkRDMDFGODUxOTYz N0M4OUE2RjAeFw0yNDExMjMwNTE3MjhaFw0yNDExMzAwNTE3MjhaMBgxFjAUBgNV BAMTDTY3NDE2NTY4LTZhYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgo9Vy5iFvIOpf1pejdYZYA1lKs7ftd9yhX4p+YSyN6S0/D+Xqg+XR4+SL1lll gvKkqKUM07pNGLLMYPjHn+iSFCBLIr14kyjrk5JpBrO3e6rbk3CfmI1kXOgIg13V hAlnm968m9IMo8M+YxKW3WbVzZJua4SocsPoKjoLJBhGVUEFj3h5S2AeFX8LgqFh 0O69GQc+vGA3JNuhwx9wlUMcvDeyqjiQf+N6wkOy4U8l34ID/DEKEwBOGyHt/BIV rjowzZ9rkE0pI8JmU+76JyFQuDDcSaBNY7Ec1YB0vzphnHrTBvMIivOqoygPu5YZ wwKxSk5iRrtGsxnsWTCznJRnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/rktOIZV mWgA8lhtCbnUiqVC1SMwHwYDVR0jBBgwFoAUtDxOPTL5W1BV0E/cAfhRljfImm8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjczLzZERjBFMTA4M0Qw NzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1t OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdER4T1BUTDVXMUJWMEVfY0FmaFJsamZJbW04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx RjczLzZERjBFMTA4M0QwNzExRUZCNUM5RUMyNEM0RjlBRTAyL3REeE9QVEw1VzFC VjBFX2NBZmhSbGpmSW1tOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF9jJXs+XawQeaIx8PjHyzAG/IuMXFAK0yquYvobXsUV+0ZwLXlONzEJ td0yif1VdEVFLmMgf6SPvCYQQ9J6AVRWXnU50vVvXumNdqLp7rvuO8hitbrHRi4q 1Kqj7VoWz7ItsUfdaZ5PdHy9UEhaTTFqe3Jb1BO7kDYq44juv/vpb1gfcLAb1b9q sRWichySesMKsDjtAiR1PYgO01SZr0zgHHtuqsb1ABcXQnN45pnQyNE6SDiBqYRZ mR78qzwJpMK/IH3OGl6tOD0O/nW+aMeQrk4tLVBJ6SG8R4hj9b44Xr8MPwDtWR35 9ymPS2RBcG/8qwdy7w6szVdHrQbwcpg= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:08 2024 by rpki-client on console-ams.rpki-client.org