$ rpki-client -vvf rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft File: tUdigfNZTThknMz_UvWLtJtHXwk.mft (raw, json) Hash identifier: uQi5ZvnTD6ymAlLpY2TnYO8jELkuR2QFL3xwAcrDRxs= Subject key identifier: 12:88:67:8D:F2:01:F3:6D:95:6C:B5:57:AA:1C:6D:E0:05:70:FD:E8 Authority key identifier: B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 Certificate issuer: /CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft Manifest number: BA Signing time: Sat 23 Nov 2024 04:06:22 +0000 Manifest this update: Sat 23 Nov 2024 04:06:21 +0000 Manifest next update: Sat 30 Nov 2024 04:06:21 +0000 Files and hashes: 1: tUdigfNZTThknMz_UvWLtJtHXwk.crl (hash: FCT3APUeLfj8mFOAZzlu1/pxpTRcC93d6J2a6nsai78=) 2: 86080D8A940511EE8A83F00DC4F9AE02.roa (hash: Lf6SXJlubwVeZ9CNSFtJKx7lUWNwb+NpSYdLt1vEz7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Validity Not Before: Nov 23 04:06:21 2024 GMT Not After : Nov 30 04:06:21 2024 GMT Subject: CN=674154be-c47f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e8:7f:8e:38:7a:a5:94:6c:42:ee:ea:2a:5b: c8:74:2c:70:fa:04:57:26:fd:70:72:e3:5c:94:ee: a3:ee:3d:d8:e0:2f:92:f2:2d:26:9c:57:70:96:a4: 06:de:fb:5a:3c:53:d1:95:6d:ef:b2:54:ec:25:14: f7:74:8a:8b:3e:e8:ab:0b:15:0c:07:b8:b6:e8:81: 49:fe:8f:be:9b:7d:a3:82:e9:22:96:40:86:a2:c7: 86:54:6e:44:fc:f5:e4:91:ea:ac:8f:87:51:c8:35: 0a:7f:bc:ce:4f:55:70:d2:ba:b2:85:51:c1:5f:88: b9:2f:b8:a3:e8:79:13:f7:1d:9a:0a:88:ea:d7:0e: 74:84:31:4f:fd:6e:4a:9c:ad:ea:01:96:c3:55:c4: 8c:ef:92:61:a3:d8:05:82:9e:7b:db:2d:18:85:b3: 8e:fa:04:15:92:bc:55:0f:3a:ff:96:13:bb:34:85: 18:40:45:44:9b:fb:8d:87:a1:52:d7:f2:2c:ab:20: e5:f8:9d:1c:8c:61:84:7a:54:2a:c6:05:9b:b2:e3: 29:6d:de:24:05:3f:69:f5:5d:e0:b1:15:8f:f4:11: a0:ea:7b:1e:72:c8:c8:e1:27:59:e8:0b:06:7d:be: 32:9f:55:41:90:83:30:e6:aa:ad:76:fc:69:ed:16: 34:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:88:67:8D:F2:01:F3:6D:95:6C:B5:57:AA:1C:6D:E0:05:70:FD:E8 X509v3 Authority Key Identifier: keyid:B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:ea:4e:d3:cb:fb:be:3c:7b:98:47:2c:70:16:85:e2:f5:15: be:5a:70:f1:2e:c0:44:79:c3:df:84:13:dd:74:52:7b:b8:0a: 49:dd:4d:8c:16:64:41:61:74:b6:b7:86:a4:6c:b2:b6:4a:30: aa:6b:ca:04:74:f9:71:2d:b0:10:bf:2d:57:84:b3:41:75:52: 74:43:8e:c3:59:80:70:45:49:53:cf:c9:8d:04:51:1d:3e:40: 33:6b:38:79:00:12:a4:f6:78:80:34:92:31:55:6f:e6:8b:3e: 05:66:71:72:1c:1e:f6:6e:54:d3:09:2c:c8:6d:dc:1e:23:b3: 67:f6:0b:22:98:28:31:30:cb:f3:39:f7:de:20:d9:d0:01:df: 9f:61:b1:a7:de:db:21:13:56:dd:4d:08:b2:bd:4e:52:e6:be: bc:6f:22:4a:93:3c:44:0d:fd:8c:12:ee:c6:84:56:7c:c7:ab: 0f:b4:c1:1a:44:d6:99:38:76:a9:db:ed:34:56:16:c1:11:56: 21:cb:52:8c:f6:54:56:5f:02:0e:3f:e3:0e:34:f7:6c:d0:d0: a6:68:7f:aa:49:18:1f:00:3f:6a:22:70:f5:5d:73:3f:c5:0a: 6e:3a:e5:66:cf:28:f6:9e:24:a8:4c:bb:e8:19:32:e1:99:5d: fc:71:39:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzNTExMTAvBgNVBAUTKEI1NDc2MjgxRjM1OTREMzg2NDlDQ0NGRjUyRjU4QkI0 OUI0NzVGMDkwHhcNMjQxMTIzMDQwNjIxWhcNMjQxMTMwMDQwNjIxWjAYMRYwFAYD VQQDEw02NzQxNTRiZS1jNDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8eh/jjh6pZRsQu7qKlvIdCxw+gRXJv1wcuNclO6j7j3Y4C+S8i0mnFdwlqQG 3vtaPFPRlW3vslTsJRT3dIqLPuirCxUMB7i26IFJ/o++m32jgukilkCGoseGVG5E /PXkkeqsj4dRyDUKf7zOT1Vw0rqyhVHBX4i5L7ij6HkT9x2aCojq1w50hDFP/W5K nK3qAZbDVcSM75Jho9gFgp572y0YhbOO+gQVkrxVDzr/lhO7NIUYQEVEm/uNh6FS 1/IsqyDl+J0cjGGEelQqxgWbsuMpbd4kBT9p9V3gsRWP9BGg6nsecsjI4SdZ6AsG fb4yn1VBkIMw5qqtdvxp7RY0fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKIZ43y AfNtlWy1V6ocbeAFcP3oMB8GA1UdIwQYMBaAFLVHYoHzWU04ZJzM/1L1i7SbR18J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM1MS8zMUEwRDE4Mjk0 MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRUaGtuTXpfVXZXTHRKdEhY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVZGlnZk5aVFRoa25Nel9VdldMdEp0SFh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM1MS8zMUEwRDE4Mjk0MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRU aGtuTXpfVXZXTHRKdEhYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB6k7Ty/u+PHuYRyxwFoXi9RW+WnDxLsBEecPfhBPddFJ7uApJ3U2M FmRBYXS2t4akbLK2SjCqa8oEdPlxLbAQvy1XhLNBdVJ0Q47DWYBwRUlTz8mNBFEd PkAzazh5ABKk9niANJIxVW/miz4FZnFyHB72blTTCSzIbdweI7Nn9gsimCgxMMvz OffeINnQAd+fYbGn3tshE1bdTQiyvU5S5r68byJKkzxEDf2MEu7GhFZ8x6sPtMEa RNaZOHap2+00VhbBEVYhy1KM9lRWXwIOP+MONPds0NCmaH+qSRgfAD9qInD1XXM/ xQpuOuVmzyj2niSoTLvoGTLhmV38cTni -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:08 2024 by rpki-client on console-ams.rpki-client.org