$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft File: _tgXL4qVo1IC1RxvdfqUfehE9M0.mft (raw, json) Hash identifier: vyiVhS8SzIO5yPxwXm7wnu81HuHu80W1P69Nrl1hH1U= Subject key identifier: D2:EC:95:AF:E8:48:6B:35:8C:2B:72:AE:61:D0:68:1A:10:F5:A1:9F Authority key identifier: FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD Certificate issuer: /CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft Manifest number: 84 Signing time: Sat 23 Nov 2024 04:37:48 +0000 Manifest this update: Sat 23 Nov 2024 04:37:48 +0000 Manifest next update: Sat 30 Nov 2024 04:37:48 +0000 Files and hashes: 1: _tgXL4qVo1IC1RxvdfqUfehE9M0.crl (hash: Xuj37oQ6tlVPD0uMY/QL+79Kqbv2uihOfiQUQKMA6XA=) 2: 994A883AE06511EEA8CEC61EC4F9AE02.roa (hash: LjsOflVWx2ASLq3Z//t4WARlGyPly5HO69O4zsWdHy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D95/serialNumber=FED8172F8A95A35202D51C6F75FA947DE844F4CD Validity Not Before: Nov 23 04:37:48 2024 GMT Not After : Nov 30 04:37:48 2024 GMT Subject: CN=67415c1c-1cec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:43:61:36:45:f3:ee:44:eb:d4:61:2a:d2:3a: 9e:e8:91:69:bf:eb:d5:75:0e:a1:b2:cc:a6:ce:55: 72:30:55:d1:ed:d5:83:22:b1:df:95:14:db:30:f8: ee:d2:be:e2:7c:9d:99:7f:84:f1:fd:85:c9:b6:da: 7f:f0:73:18:ae:99:39:27:ad:9c:5c:e3:e6:f8:c8: 11:5f:d0:78:7d:2b:2b:7d:d6:cf:92:e8:de:42:38: a5:77:16:82:b0:74:a8:f6:6b:44:ae:95:cd:f7:f0: 85:be:b0:b0:96:fe:86:89:ff:82:18:01:4e:59:99: 7e:80:e1:a9:be:97:31:fa:f0:a2:fe:06:99:9e:93: 25:8a:95:c5:d6:cb:74:26:1c:25:05:5e:e5:f5:b1: f8:aa:a8:62:f9:db:58:e6:31:15:bd:cb:ba:35:62: 3b:d1:77:66:56:c6:72:f8:d7:14:4c:c4:e7:00:6d: b1:bd:3f:df:ca:0e:7f:a4:6b:e9:e2:50:35:52:aa: d6:69:48:28:4e:e1:97:c7:bb:ab:e9:d3:48:5a:50: 50:87:5f:01:5e:dd:9b:ec:d3:5a:99:cd:fe:73:7e: 15:c5:c0:58:e5:e4:4f:35:a2:9a:60:5d:b6:ee:99: 71:7d:69:f2:60:5d:19:42:05:5e:d9:63:df:1b:c5: 9e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EC:95:AF:E8:48:6B:35:8C:2B:72:AE:61:D0:68:1A:10:F5:A1:9F X509v3 Authority Key Identifier: keyid:FE:D8:17:2F:8A:95:A3:52:02:D5:1C:6F:75:FA:94:7D:E8:44:F4:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_tgXL4qVo1IC1RxvdfqUfehE9M0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D95/48ED296AE06511EEB35F421EC4F9AE02/_tgXL4qVo1IC1RxvdfqUfehE9M0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:78:96:49:7b:af:68:2a:cc:7e:61:d5:97:5f:b2:42:e9:48: 70:c7:ca:ac:a6:4e:e4:8f:07:82:03:17:bd:11:98:9c:c6:4d: 48:e8:6f:78:c3:8b:e3:00:b3:0e:95:35:a3:22:fb:d0:fb:9e: 14:44:c7:ec:cc:db:29:a5:9a:7a:63:0f:2f:35:56:b0:2d:7f: 8c:bd:a7:77:e6:df:71:b5:d2:27:cd:3a:11:0f:cf:a7:ed:5d: d9:d0:87:1e:26:fc:ee:34:30:72:51:3d:97:ff:83:92:89:e3: 8e:d6:5a:c6:e9:c9:3d:a9:10:f4:b8:95:64:30:5e:46:6a:65: a0:6d:26:2c:d6:c7:db:9b:b1:13:ee:3b:72:1a:2a:a5:21:79: 8c:39:07:25:b4:0f:21:ed:cc:eb:44:67:c5:e0:0d:52:b2:31: 41:e8:65:b9:44:d0:89:77:0f:18:b0:dc:60:57:df:76:cc:88: 25:a2:94:fa:05:96:3d:fc:21:4e:5f:66:4a:a1:f1:7e:af:d8: d0:01:d6:6a:a7:bb:d8:f6:78:f7:1b:16:44:ee:d3:03:4e:e7: e2:86:c2:f3:da:de:5b:bf:4b:08:c4:5c:c2:e6:a0:df:e8:b4: 30:58:40:bf:a0:9a:19:13:49:54:f3:ac:06:8f:14:7f:8c:6d: 38:8b:d4:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEOTUxMTAvBgNVBAUTKEZFRDgxNzJGOEE5NUEzNTIwMkQ1MUM2Rjc1RkE5NDdE RTg0NEY0Q0QwHhcNMjQxMTIzMDQzNzQ4WhcNMjQxMTMwMDQzNzQ4WjAYMRYwFAYD VQQDEw02NzQxNWMxYy0xY2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoENhNkXz7kTr1GEq0jqe6JFpv+vVdQ6hssymzlVyMFXR7dWDIrHflRTbMPju 0r7ifJ2Zf4Tx/YXJttp/8HMYrpk5J62cXOPm+MgRX9B4fSsrfdbPkujeQjildxaC sHSo9mtErpXN9/CFvrCwlv6Gif+CGAFOWZl+gOGpvpcx+vCi/gaZnpMlipXF1st0 JhwlBV7l9bH4qqhi+dtY5jEVvcu6NWI70XdmVsZy+NcUTMTnAG2xvT/fyg5/pGvp 4lA1UqrWaUgoTuGXx7ur6dNIWlBQh18BXt2b7NNamc3+c34VxcBY5eRPNaKaYF22 7plxfWnyYF0ZQgVe2WPfG8WeMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLsla/o SGs1jCtyrmHQaBoQ9aGfMB8GA1UdIwQYMBaAFP7YFy+KlaNSAtUcb3X6lH3oRPTN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ5NS80OEVEMjk2QUUw NjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8xSUMxUnh2ZGZxVWZlaEU5 TTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL190Z1hMNHFWbzFJQzFSeHZkZnFVZmVoRTlNMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQ5NS80OEVEMjk2QUUwNjUxMUVFQjM1RjQyMUVDNEY5QUUwMi9fdGdYTDRxVm8x SUMxUnh2ZGZxVWZlaEU5TTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZeJZJe69oKsx+YdWXX7JC6Uhwx8qspk7kjweCAxe9EZicxk1I6G94 w4vjALMOlTWjIvvQ+54URMfszNsppZp6Yw8vNVawLX+Mvad35t9xtdInzToRD8+n 7V3Z0IceJvzuNDByUT2X/4OSieOO1lrG6ck9qRD0uJVkMF5GamWgbSYs1sfbm7ET 7jtyGiqlIXmMOQcltA8h7czrRGfF4A1SsjFB6GW5RNCJdw8YsNxgV992zIglopT6 BZY9/CFOX2ZKofF+r9jQAdZqp7vY9nj3GxZE7tMDTufihsLz2t5bv0sIxFzC5qDf 6LQwWEC/oJoZE0lU86wGjxR/jG04i9TM -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:27 2024 by rpki-client on console-fra.rpki-client.org