$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft File: wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft (raw, json) Hash identifier: CNaNCwg2Ra42h/3So6usycmIGn2q14IE50YOo7DHSR8= Subject key identifier: 9C:9D:80:BC:11:95:E8:1F:7E:12:4D:25:10:6C:8C:64:A5:7E:26:DF Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft Manifest number: 0160 Signing time: Sat 23 Nov 2024 02:23:52 +0000 Manifest this update: Sat 23 Nov 2024 02:23:52 +0000 Manifest next update: Sat 30 Nov 2024 02:23:52 +0000 Files and hashes: 1: wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl (hash: CRQ3kHkutWOARqPiXR7DSP0meOuvV6rbwm5a8UdDf/E=) 2: 949A543291B011EDA9CB747CC4F9AE02.roa (hash: IIMoYfs0K2LP8PknicnuLwo634xq7BuixM17QupODh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: Nov 23 02:23:52 2024 GMT Not After : Nov 30 02:23:52 2024 GMT Subject: CN=67413cb8-528c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:c5:09:4e:a6:6e:ee:54:6f:bd:22:d7:75: 21:7c:e2:60:4d:18:67:dc:bd:a3:dd:d1:56:94:07: c8:22:ae:1f:68:a0:31:f5:fd:da:b2:52:ed:81:d9: 74:90:d8:fd:f9:c4:12:6f:8a:e0:1e:6f:d6:7a:bf: cb:d3:d1:30:3a:d8:0e:6e:27:bd:70:68:da:4c:c1: fe:7b:cf:88:5b:6d:05:d2:5f:88:4c:bc:55:30:63: a4:07:cd:86:8e:d8:4e:bd:54:db:41:d9:dd:d2:16: d5:a1:0e:3a:1d:4f:06:2b:20:1a:d8:8b:ea:e4:dd: c2:49:03:f5:d6:39:bd:7a:21:51:40:e0:a3:2f:6f: 74:5d:25:7a:46:5d:47:c2:76:2d:a7:bc:e3:d2:9e: cb:e5:c1:9f:db:de:35:b4:c8:22:19:8b:02:78:ce: d3:dd:36:fa:8a:ea:a0:8e:1d:1c:da:3c:d2:06:31: 4c:ed:80:a3:91:1f:2f:c2:31:0c:f4:8e:dd:3d:88: c8:f8:4e:c3:80:71:e2:76:f2:f8:e9:61:3f:39:bd: b5:a7:3c:08:35:23:b7:c3:aa:3a:cc:62:77:e7:8d: af:9b:09:84:35:e1:98:96:b8:6d:25:c1:7c:82:0d: 68:06:0a:b1:54:fa:2b:5f:f2:87:1c:c4:3b:b9:95: b1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:9D:80:BC:11:95:E8:1F:7E:12:4D:25:10:6C:8C:64:A5:7E:26:DF X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:e0:e6:6b:87:4d:9e:82:a7:df:15:a5:63:e8:69:50:d5:00: 79:7a:cf:f3:8d:a4:54:63:5f:56:af:59:a7:f7:5e:af:ee:f8: 24:49:06:05:93:8d:55:dc:03:51:b3:8e:c9:c6:ee:1d:22:d1: 95:9e:cb:91:68:a2:97:da:97:52:69:5a:34:fd:fe:b4:dd:76: b1:aa:7c:ae:1f:9c:33:44:24:38:2c:92:83:e1:c6:69:b0:69: 80:fd:f4:d3:65:ff:d3:b2:e7:97:0c:16:0b:4c:29:e6:ae:cb: 8a:a7:88:b3:3d:2d:dd:5a:6e:c8:79:f0:03:b2:02:c5:3c:36: 16:75:26:bf:1d:70:fb:49:73:c7:79:e3:38:b2:df:f9:d4:af: 59:5d:9b:98:31:a0:6d:18:24:b8:67:be:09:3e:b0:d0:4c:c3: f2:47:5f:87:e9:08:06:00:40:ff:1f:64:ed:8a:7b:25:42:40: 89:d8:1f:6c:ee:72:85:06:a2:c5:99:65:80:65:f8:76:17:b2: 67:fb:8f:35:5b:71:6c:2c:8b:22:48:44:da:cc:7c:9d:bf:78: 53:97:4a:87:b2:11:fe:8f:31:cc:d3:11:4e:cc:03:f3:c2:08: b9:13:cf:b0:3a:bb:78:a6:44:5c:ef:5e:d9:55:26:14:14:89: 67:b6:49:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjQxMTIzMDIyMzUyWhcNMjQxMTMwMDIyMzUyWjAYMRYwFAYD VQQDEw02NzQxM2NiOC01MjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjjFCU6mbu5Ub70i13UhfOJgTRhn3L2j3dFWlAfIIq4faKAx9f3aslLtgdl0 kNj9+cQSb4rgHm/Wer/L09EwOtgObie9cGjaTMH+e8+IW20F0l+ITLxVMGOkB82G jthOvVTbQdnd0hbVoQ46HU8GKyAa2Ivq5N3CSQP11jm9eiFRQOCjL290XSV6Rl1H wnYtp7zj0p7L5cGf2941tMgiGYsCeM7T3Tb6iuqgjh0c2jzSBjFM7YCjkR8vwjEM 9I7dPYjI+E7DgHHidvL46WE/Ob21pzwINSO3w6o6zGJ3542vmwmENeGYlrhtJcF8 gg1oBgqxVPorX/KHHMQ7uZWxcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJydgLwR legffhJNJRBsjGSlfibfMB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUQzNi9GQzEzQTNFNDkxQUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVF cm9SX2FTUGFpUkJweVFBX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk4OZrh02egqffFaVj6GlQ1QB5es/zjaRUY19Wr1mn916v7vgkSQYF k41V3ANRs47Jxu4dItGVnsuRaKKX2pdSaVo0/f603XaxqnyuH5wzRCQ4LJKD4cZp sGmA/fTTZf/TsueXDBYLTCnmrsuKp4izPS3dWm7IefADsgLFPDYWdSa/HXD7SXPH eeM4st/51K9ZXZuYMaBtGCS4Z74JPrDQTMPyR1+H6QgGAED/H2TtinslQkCJ2B9s 7nKFBqLFmWWAZfh2F7Jn+481W3FsLIsiSETazHydv3hTl0qHshH+jzHM0xFOzAPz wgi5E8+wOrt4pkRc717ZVSYUFIlntknz -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org