$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: MJ/louX+qA9t2MrNCczwZEIFzU/92JlZ+r5H51frfyA= Subject key identifier: 21:16:4F:BF:01:2E:C9:03:83:49:A0:1D:62:4A:90:AE:2D:D0:70:70 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 1C Signing time: Wed 23 Oct 2024 06:36:07 +0000 Manifest this update: Wed 23 Oct 2024 06:36:06 +0000 Manifest next update: Wed 30 Oct 2024 06:36:06 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: mSTHrSTw0ZBRE8D15fqOiny8YZPDGTZBpNtihvFCAzE=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Oct 23 06:36:06 2024 GMT Not After : Oct 30 06:36:06 2024 GMT Subject: CN=67189957-3b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b5:54:19:7c:2a:48:f4:cb:62:b7:33:53:91: 79:97:e8:31:77:98:8c:ec:db:3a:75:f6:e4:50:44: 45:be:1d:7d:fa:d2:57:78:4a:5a:b3:31:ed:cf:ca: bc:b0:bf:d5:b8:48:79:f3:ba:1c:8d:30:55:7f:e5: e3:0d:38:c3:a5:f5:9c:64:64:d5:ff:d1:92:65:67: 53:17:b1:02:55:23:91:49:66:3e:73:5d:c0:83:21: 9f:54:de:99:22:74:32:56:cc:cf:f9:bb:d0:3b:75: 3e:01:4f:8f:38:58:a8:5b:ac:49:ef:a1:6a:68:f8: ed:13:86:68:6c:15:5d:5f:48:38:a2:de:cf:29:47: e7:0b:e9:58:06:19:dc:e1:55:b8:81:f5:27:34:e3: b0:0d:17:00:b7:57:b0:c0:d7:98:61:4a:cf:b4:fa: 83:59:6f:a6:26:29:74:5d:a4:85:ba:77:a4:67:02: 77:5c:b2:c8:0f:e0:89:d5:91:a8:71:0d:57:e3:60: 24:5b:45:fb:33:6a:b5:6e:e4:4e:62:93:b0:6e:ac: 40:f8:37:98:f1:47:91:7e:ae:4a:b0:24:51:98:78: 03:9f:0c:b0:31:49:bf:d7:49:2a:c6:11:73:31:10: 4d:e8:a3:20:0c:13:bf:36:16:47:d1:b7:f1:0c:bd: b2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:16:4F:BF:01:2E:C9:03:83:49:A0:1D:62:4A:90:AE:2D:D0:70:70 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:b3:65:e5:d2:24:23:e9:b3:ed:72:c4:1d:87:2b:f9:d8:4c: c5:cb:24:04:5f:73:ca:79:c9:4c:26:84:f5:78:e3:c7:e3:49: fb:4f:80:e7:84:d9:02:d2:65:8c:02:76:c8:90:b3:41:bc:b4: 6e:1e:d7:60:76:39:e5:4e:ee:87:a2:c5:46:9e:84:7d:fd:39: e2:86:6d:94:4f:0f:ea:3c:69:09:c3:7c:13:0f:37:48:c9:c1: 97:55:da:65:98:bf:34:a2:8c:6f:66:08:0f:fd:da:0e:af:6e: ea:52:b9:cd:6d:c0:c1:21:a9:78:f1:64:df:83:63:3c:19:84: 8e:c6:1b:73:bd:6a:aa:b0:61:df:17:80:21:b9:fc:0c:02:79: b6:e2:96:52:cb:dc:9e:c9:dc:d7:85:d4:17:b6:9f:98:84:02: e0:cd:dd:82:43:8e:60:63:17:f2:f2:dc:56:fd:c7:f9:34:08: 18:af:ba:ac:ca:77:aa:be:63:1c:a4:84:d5:aa:5e:11:5d:7c: 68:b9:4d:00:9a:b5:ad:a9:6f:2f:90:b8:46:b2:68:0f:a1:a3: 7a:8c:3e:d8:65:68:e7:98:c5:ae:ff:af:60:ad:31:16:6a:34: f7:62:6a:e3:1d:81:50:47:e0:38:bb:91:c9:a3:ab:25:94:5f: 96:28:88:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkM4RjExMC8GA1UEBRMoNEU3RUQ5NTFDNEY4OUYxMUYxOTQ0NjhFQTgxNTQ0RDcz MzVFNEY1OTAeFw0yNDEwMjMwNjM2MDZaFw0yNDEwMzAwNjM2MDZaMBgxFjAUBgNV BAMTDTY3MTg5OTU3LTNiNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLtVQZfCpI9MtitzNTkXmX6DF3mIzs2zp19uRQREW+HX360ld4SlqzMe3Pyryw v9W4SHnzuhyNMFV/5eMNOMOl9ZxkZNX/0ZJlZ1MXsQJVI5FJZj5zXcCDIZ9U3pki dDJWzM/5u9A7dT4BT484WKhbrEnvoWpo+O0ThmhsFV1fSDii3s8pR+cL6VgGGdzh VbiB9Sc047ANFwC3V7DA15hhSs+0+oNZb6YmKXRdpIW6d6RnAndcssgP4InVkahx DVfjYCRbRfszarVu5E5ik7BurED4N5jxR5F+rkqwJFGYeAOfDLAxSb/XSSrGEXMx EE3ooyAME782FkfRt/EMvbJtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIRZPvwEu yQODSaAdYkqQri3QcHAwHwYDVR0jBBgwFoAUTn7ZUcT4nxHxlEaOqBVE1zNeT1kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2QzhGL0YxNEVFRDk4NkI1 QTExRUZCQzk5OTI1Q0M0RjlBRTAyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQx ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG43WlVjVDRueEh4bEVhT3FCVkUxek5lVDFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 QzhGL0YxNEVFRDk4NkI1QTExRUZCQzk5OTI1Q0M0RjlBRTAyL1RuN1pVY1Q0bnhI eGxFYU9xQlZFMXpOZVQxay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADmzZeXSJCPps+1yxB2HK/nYTMXLJARfc8p5yUwmhPV448fjSftPgOeE 2QLSZYwCdsiQs0G8tG4e12B2OeVO7oeixUaehH39OeKGbZRPD+o8aQnDfBMPN0jJ wZdV2mWYvzSijG9mCA/92g6vbupSuc1twMEhqXjxZN+DYzwZhI7GG3O9aqqwYd8X gCG5/AwCebbillLL3J7J3NeF1Be2n5iEAuDN3YJDjmBjF/Ly3Fb9x/k0CBivuqzK d6q+YxykhNWqXhFdfGi5TQCata2pby+QuEayaA+ho3qMPthlaOeYxa7/r2CtMRZq NPdiauMdgVBH4Di7kcmjqyWUX5YoiP8= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:55 2024 by rpki-client on console-ams.rpki-client.org