$ rpki-client -vvf rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft File: tUdigfNZTThknMz_UvWLtJtHXwk.mft (raw, json) Hash identifier: 2tWz9dL/Na2ZWjj5sXUvhRDFdoYfvCOuBE22h4zKSiI= Subject key identifier: 15:5A:25:4E:C9:E3:5D:7B:02:3C:32:B6:3C:A5:1B:29:F8:ED:1A:E9 Authority key identifier: B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 Certificate issuer: /CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Certificate serial: 5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft Manifest number: 59 Signing time: Wed 15 May 2024 07:58:46 +0000 Manifest this update: Wed 15 May 2024 07:58:45 +0000 Manifest next update: Wed 22 May 2024 07:58:45 +0000 Files and hashes: 1: tUdigfNZTThknMz_UvWLtJtHXwk.crl (hash: ppRHENowqDPWQSi4OnL3RybHfYX+kn70POB4ixbxfO4=) 2: 86080D8A940511EE8A83F00DC4F9AE02.roa (hash: Lf6SXJlubwVeZ9CNSFtJKx7lUWNwb+NpSYdLt1vEz7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Validity Not Before: May 15 07:58:45 2024 GMT Not After : May 22 07:58:45 2024 GMT Subject: CN=66446b36-80fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f2:57:c0:d7:6d:ea:a8:00:c6:2f:f8:59:9f: ce:45:c1:15:a1:71:7c:4c:58:48:45:b8:a2:e5:55: fb:94:88:16:99:a9:f4:78:c8:04:41:fd:26:89:04: d4:57:f1:39:2b:83:dc:8e:3d:e9:a5:f3:13:8d:d7: 80:0e:f2:65:d6:07:9b:e9:81:0c:2e:dc:99:38:91: 26:31:75:be:00:1f:8a:34:82:60:44:b7:60:44:c6: 8b:10:a4:70:c9:07:4a:3d:95:cf:ca:81:e3:14:89: 30:35:b8:14:60:ee:a4:d1:ae:36:7e:0f:43:5a:46: ef:3d:dd:ad:7a:5c:41:d9:ec:78:49:47:ae:8f:1c: b4:03:bd:08:c2:f8:81:4c:18:4f:f3:b5:eb:7e:50: 12:a5:6f:f6:99:55:56:c4:c0:46:53:91:68:0f:1a: 24:47:10:a7:25:27:09:a6:7b:10:8d:37:7c:e8:14: e6:07:67:38:e3:b5:63:15:1a:88:7c:9c:bf:4b:34: da:fc:58:6c:15:15:bc:c9:40:7c:cf:26:82:b7:9e: cc:b4:42:40:c2:06:df:ef:1a:4b:35:c9:80:f2:a5: f9:5f:bd:8a:25:35:b1:61:48:79:ea:2c:a2:f0:a4: 4f:c5:5c:23:21:05:45:d6:7f:af:65:5b:03:d5:cd: 30:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:5A:25:4E:C9:E3:5D:7B:02:3C:32:B6:3C:A5:1B:29:F8:ED:1A:E9 X509v3 Authority Key Identifier: keyid:B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:78:dd:dd:14:ef:ee:e7:ce:e8:8b:8e:14:0c:b0:51:cd:2b: 50:a5:8c:78:ab:cf:9d:83:6a:7f:1b:56:71:94:7b:47:46:60: 50:2b:64:42:11:6c:a2:2d:77:98:7b:a5:05:b8:6d:12:e6:62: 12:d9:a5:95:f2:42:b3:60:40:3a:7b:65:89:af:61:f2:9a:28: e5:a7:80:db:9a:c1:39:5d:11:3b:2b:fb:67:2c:49:3d:fd:a4: 5a:88:f4:04:48:1d:7a:96:6e:dd:da:54:b0:56:4a:f6:b0:aa: ed:08:c1:c1:7a:2d:10:93:f7:4d:0f:fc:f7:86:3b:75:b0:d5: f2:5a:36:25:06:07:3a:6c:09:10:e2:fc:c0:53:25:d2:1d:ff: ae:82:56:ba:f7:01:c1:bb:74:d0:db:56:4b:9d:2e:3f:7d:4c: 70:a7:ed:2f:ac:8a:a0:27:4d:d6:4f:1d:62:9f:07:fd:bf:08: 07:58:46:48:9c:c9:c4:42:b8:2f:38:9a:e1:d3:c0:87:b0:8f: fc:5a:85:ac:5b:08:df:86:85:b3:f1:f7:13:44:fd:f3:e7:2b: 0a:4b:20:44:6f:ab:bc:0f:8e:21:d5:5f:e4:75:89:b9:b7:9e: ba:ce:fa:06:3a:f5:ad:3d:87:d5:d6:00:97:b6:eb:0f:a6:21: 24:ed:48:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OTM1MTExMC8GA1UEBRMoQjU0NzYyODFGMzU5NEQzODY0OUNDQ0ZGNTJGNThCQjQ5 QjQ3NUYwOTAeFw0yNDA1MTUwNzU4NDVaFw0yNDA1MjIwNzU4NDVaMBgxFjAUBgNV BAMTDTY2NDQ2YjM2LTgwZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC68lfA123qqADGL/hZn85FwRWhcXxMWEhFuKLlVfuUiBaZqfR4yARB/SaJBNRX 8Tkrg9yOPeml8xON14AO8mXWB5vpgQwu3Jk4kSYxdb4AH4o0gmBEt2BExosQpHDJ B0o9lc/KgeMUiTA1uBRg7qTRrjZ+D0NaRu893a16XEHZ7HhJR66PHLQDvQjC+IFM GE/ztet+UBKlb/aZVVbEwEZTkWgPGiRHEKclJwmmexCNN3zoFOYHZzjjtWMVGoh8 nL9LNNr8WGwVFbzJQHzPJoK3nsy0QkDCBt/vGks1yYDypflfvYolNbFhSHnqLKLw pE/FXCMhBUXWf69lWwPVzTBXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFVolTsnj XXsCPDK2PKUbKfjtGukwHwYDVR0jBBgwFoAUtUdigfNZTThknMz/UvWLtJtHXwkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5MzUxLzMxQTBEMTgyOTQw NTExRUVBODY4NzU0N0M0RjlBRTAyL3RVZGlnZk5aVFRoa25Nel9VdldMdEp0SFh3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFVkaWdmTlpUVGhrbk16X1V2V0x0SnRIWHdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5 MzUxLzMxQTBEMTgyOTQwNTExRUVBODY4NzU0N0M0RjlBRTAyL3RVZGlnZk5aVFRo a25Nel9VdldMdEp0SFh3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABN43d0U7+7nzuiLjhQMsFHNK1CljHirz52Dan8bVnGUe0dGYFArZEIR bKItd5h7pQW4bRLmYhLZpZXyQrNgQDp7ZYmvYfKaKOWngNuawTldETsr+2csST39 pFqI9ARIHXqWbt3aVLBWSvawqu0IwcF6LRCT900P/PeGO3Ww1fJaNiUGBzpsCRDi /MBTJdId/66CVrr3AcG7dNDbVkudLj99THCn7S+siqAnTdZPHWKfB/2/CAdYRkic ycRCuC84muHTwIewj/xahaxbCN+GhbPx9xNE/fPnKwpLIERvq7wPjiHVX+R1ibm3 nrrO+gY69a09h9XWAJe26w+mISTtSAY= -----END CERTIFICATE-----Generated at Wed May 15 09:27:33 2024 by rpki-client on console-fra.rpki-client.org