$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: ctLwM1U1KPSD3tC7CH8n2i1jG7he6w5ytIkCgvfvE04= Subject key identifier: E7:B4:3F:CC:67:94:F7:3E:37:68:CD:BF:16:CB:1D:20:1E:32:10:63 Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: 2D Signing time: Thu 21 Nov 2024 05:48:06 +0000 Manifest this update: Thu 21 Nov 2024 05:48:05 +0000 Manifest next update: Thu 28 Nov 2024 05:48:05 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: LlIrEV7I6IlaEh3kJ2oCMqEVy8McBrTRovbZuGR7XH8=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: qpNZ0Lm7ohL4bDYSXZ5HFsKxSW3wfA050YYCOcr+GtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Nov 21 05:48:05 2024 GMT Not After : Nov 28 05:48:05 2024 GMT Subject: CN=673ec995-165a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a4:34:9e:ca:1b:8f:13:2e:b6:52:30:ce:0e: 13:0d:c4:17:01:b0:60:bd:c3:6b:7e:d8:2e:12:05: d5:d5:fb:f5:5b:fd:19:51:95:ee:48:cb:8b:54:83: 6a:26:c6:52:4b:09:1d:00:c3:e5:f0:63:c2:40:be: f5:f6:d4:f8:73:d0:58:2c:de:7e:d6:a3:67:e9:12: fb:62:77:2a:cd:2a:a3:40:15:1c:d3:2b:8e:16:14: 26:8e:cd:cf:34:a3:1c:6b:02:7d:b8:1b:cd:9a:7d: 25:0c:f9:fa:3d:a3:6e:f9:96:30:d2:f4:6a:13:08: b9:ee:e0:27:c9:62:d8:9a:ec:92:ab:bb:ab:bc:25: 67:f1:ed:a0:cc:71:03:d8:c2:60:42:d6:31:59:1b: 8c:a1:fb:26:7b:bb:f7:9c:f8:df:5b:58:9a:5d:6e: c3:67:99:9d:26:bd:36:1c:06:37:dc:b3:7a:3b:d3: 26:e5:cd:e9:41:5c:b4:09:be:7c:5f:08:e6:56:96: 1e:61:78:12:53:d2:59:85:9a:21:3f:86:58:ed:12: f4:a5:16:6b:d4:cc:46:e6:bd:5a:82:62:45:9d:30: 15:14:8b:16:91:38:55:f4:91:e5:40:d1:d4:40:16: 76:43:9a:f5:3a:0d:3e:9e:91:de:b5:2c:6d:e0:64: 55:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B4:3F:CC:67:94:F7:3E:37:68:CD:BF:16:CB:1D:20:1E:32:10:63 X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:da:6f:69:b6:39:75:20:09:98:d1:df:8c:75:41:28:e7:c0: 6e:df:9f:68:04:e4:be:73:5b:fe:f2:5d:9e:25:fd:2b:49:d7: ef:b5:04:7d:97:40:a2:0a:f4:d6:67:56:cf:69:fe:48:60:5a: e3:d6:c2:a0:c8:05:7a:86:56:8f:01:51:5e:81:1b:72:a9:62: ba:1e:4f:c5:3d:57:77:e2:6f:a4:e7:4c:14:9c:e0:b8:f4:86: da:49:c4:be:2a:6f:47:6e:80:ab:f4:e3:84:87:cd:84:58:cd: 02:2e:e6:71:8c:85:4d:96:7d:c3:4a:5b:b6:3d:bc:e9:79:55: f8:98:b6:09:65:64:f2:fb:e9:5f:d5:7d:ff:ae:cf:8f:03:7d: 1c:8b:fb:6e:a8:4e:f9:d4:a1:6d:ff:ba:ad:ec:18:19:41:1a: 18:0e:56:99:2f:d1:ac:fb:6f:e5:3c:37:43:b6:13:68:a1:e2: b7:4e:85:b0:bc:9e:30:af:c0:24:37:97:3f:ad:1c:4e:28:8c: 92:fd:49:a2:ac:1d:f1:96:63:e2:f0:5b:d3:9d:0d:57:ef:1a: 3f:ed:dc:7a:43:50:1e:b3:c9:e9:62:93:0d:90:5b:c6:32:d7: 33:eb:dc:d0:9d:5f:66:c1:2d:68:3d:c8:67:6d:37:30:52:ef: bc:47:0a:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkM4RjExMC8GA1UEBRMoNEU3RUQ5NTFDNEY4OUYxMUYxOTQ0NjhFQTgxNTQ0RDcz MzVFNEY1OTAeFw0yNDExMjEwNTQ4MDVaFw0yNDExMjgwNTQ4MDVaMBgxFjAUBgNV BAMTDTY3M2VjOTk1LTE2NWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBpDSeyhuPEy62UjDODhMNxBcBsGC9w2t+2C4SBdXV+/Vb/RlRle5Iy4tUg2om xlJLCR0Aw+XwY8JAvvX21Phz0Fgs3n7Wo2fpEvtidyrNKqNAFRzTK44WFCaOzc80 oxxrAn24G82afSUM+fo9o275ljDS9GoTCLnu4CfJYtia7JKru6u8JWfx7aDMcQPY wmBC1jFZG4yh+yZ7u/ec+N9bWJpdbsNnmZ0mvTYcBjfcs3o70yblzelBXLQJvnxf COZWlh5heBJT0lmFmiE/hljtEvSlFmvUzEbmvVqCYkWdMBUUixaROFX0keVA0dRA FnZDmvU6DT6ekd61LG3gZFVhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU57Q/zGeU 9z43aM2/FssdIB4yEGMwHwYDVR0jBBgwFoAUTn7ZUcT4nxHxlEaOqBVE1zNeT1kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2QzhGL0YxNEVFRDk4NkI1 QTExRUZCQzk5OTI1Q0M0RjlBRTAyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQx ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG43WlVjVDRueEh4bEVhT3FCVkUxek5lVDFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 QzhGL0YxNEVFRDk4NkI1QTExRUZCQzk5OTI1Q0M0RjlBRTAyL1RuN1pVY1Q0bnhI eGxFYU9xQlZFMXpOZVQxay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKfab2m2OXUgCZjR34x1QSjnwG7fn2gE5L5zW/7yXZ4l/StJ1++1BH2X QKIK9NZnVs9p/khgWuPWwqDIBXqGVo8BUV6BG3KpYroeT8U9V3fib6TnTBSc4Lj0 htpJxL4qb0dugKv044SHzYRYzQIu5nGMhU2WfcNKW7Y9vOl5VfiYtgllZPL76V/V ff+uz48DfRyL+26oTvnUoW3/uq3sGBlBGhgOVpkv0az7b+U8N0O2E2ih4rdOhbC8 njCvwCQ3lz+tHE4ojJL9SaKsHfGWY+LwW9OdDVfvGj/t3HpDUB6zyelikw2QW8Yy 1zPr3NCdX2bBLWg9yGdtNzBS77xHCqM= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org