$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft File: wN6dhGshfHjdZIVanteaw9JxEI4.mft (raw, json) Hash identifier: PkHLA67zcsIzbEaZU2Pb4Dk1jaTlxQfx8VROwRKlYJU= Subject key identifier: B8:CF:95:F5:30:7C:E8:5C:5B:F9:BF:BB:B4:59:DD:71:19:6B:BD:87 Authority key identifier: C0:DE:9D:84:6B:21:7C:78:DD:64:85:5A:9E:D7:9A:C3:D2:71:10:8E Certificate issuer: /CN=A916EDC4/serialNumber=C0DE9D846B217C78DD64855A9ED79AC3D271108E Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft Manifest number: 01FA Signing time: Sat 23 Nov 2024 01:39:01 +0000 Manifest this update: Sat 23 Nov 2024 01:39:01 +0000 Manifest next update: Sat 30 Nov 2024 01:39:01 +0000 Files and hashes: 1: wN6dhGshfHjdZIVanteaw9JxEI4.crl (hash: Tf3LEHXy/D63Os9BAqwvngqDJo6zyV8CI5I92k1C1UE=) 2: F3862312575011EDA38B8A6DC4F9AE02.roa (hash: XVi0UgAslGszWLxV3R+z7xjOlX78p11eVVDevVvqWnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.crl rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC4/serialNumber=C0DE9D846B217C78DD64855A9ED79AC3D271108E Validity Not Before: Nov 23 01:39:01 2024 GMT Not After : Nov 30 01:39:01 2024 GMT Subject: CN=67413235-0d49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:87:b0:f4:e1:ac:4b:2e:b0:6d:82:66:54:23: bf:00:a5:9a:4f:01:08:a5:33:69:dc:72:bc:9a:03: 30:14:65:ad:ff:90:b0:72:ad:98:66:2d:5e:58:97: 7d:99:d1:b6:76:35:6b:ed:11:9a:71:71:3c:91:ec: f1:cd:a9:14:b7:b2:62:8d:dd:ba:fe:2f:77:cf:97: d2:96:51:41:d6:a1:d1:1c:d6:50:7e:4b:31:9c:ab: 4e:6a:35:4f:e1:e2:6f:77:54:64:4a:e7:d2:44:fe: 85:4f:e6:e6:a0:4d:a0:07:2a:a2:10:a8:08:a8:1f: 66:72:d3:71:40:7d:5b:60:ef:5d:1a:00:06:34:d7: 3c:d7:7d:31:61:d2:73:74:1c:03:b3:dc:d3:eb:30: 3a:6b:a2:b0:ec:27:78:a5:48:7e:3f:82:0d:2e:ec: fb:3e:de:d2:8e:43:50:d4:73:7f:35:f5:10:6a:55: da:26:ff:07:bf:39:68:ff:ed:db:03:b3:e4:10:f5: 6b:13:41:b0:c0:ee:eb:ae:df:e4:e8:d8:8d:b5:3d: 3c:d6:38:04:be:1c:86:d9:2c:11:f4:a1:95:83:3c: ab:00:50:47:d5:b9:15:9a:ee:ea:f4:e0:35:e9:ad: 86:ec:81:36:23:1e:6e:95:c7:d9:20:7d:64:21:60: bb:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:CF:95:F5:30:7C:E8:5C:5B:F9:BF:BB:B4:59:DD:71:19:6B:BD:87 X509v3 Authority Key Identifier: keyid:C0:DE:9D:84:6B:21:7C:78:DD:64:85:5A:9E:D7:9A:C3:D2:71:10:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:f3:d9:33:18:29:39:03:85:73:96:fa:27:9b:87:8d:d1:cf: 04:d5:9a:d4:e7:f4:ce:cf:dd:76:3d:57:8e:41:50:d3:bc:2a: 8e:de:b2:38:8b:78:47:cc:9b:96:c8:ca:c2:f7:23:e9:dc:a9: 0b:36:2f:63:a0:5f:68:0c:85:75:60:c7:87:4f:f7:a6:e8:0c: f8:a6:9d:18:5e:1a:48:ca:8b:14:05:2b:55:8c:91:a7:d4:64: 14:87:d8:e6:63:c0:b4:84:e7:93:71:49:d4:cf:dd:bc:83:ce: 27:03:11:54:d8:49:e3:cb:7b:e6:21:70:a1:ba:e9:d6:c4:09: c3:ef:35:90:99:65:95:e3:97:a1:da:57:06:89:54:72:8d:ad: bf:d7:8e:a8:3c:04:08:ce:39:0f:78:70:00:b6:5d:2e:ec:22: ef:85:fd:39:be:0d:10:36:0a:9f:ad:cb:3e:bd:cf:dd:f0:b1: 0e:66:a1:52:4f:b3:14:68:23:59:d4:24:f0:89:be:c0:7f:4a: 82:09:a6:e1:d6:01:11:82:9c:44:1b:20:aa:eb:7f:3f:ad:c5: d3:95:98:2f:ca:da:34:ce:0c:21:60:48:49:b8:c8:6c:ad:e3: 86:6a:b7:eb:fd:57:e3:46:42:2a:43:ed:10:54:49:5e:02:ff: 89:15:60:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzQxMTAvBgNVBAUTKEMwREU5RDg0NkIyMTdDNzhERDY0ODU1QTlFRDc5QUMz RDI3MTEwOEUwHhcNMjQxMTIzMDEzOTAxWhcNMjQxMTMwMDEzOTAxWjAYMRYwFAYD VQQDEw02NzQxMzIzNS0wZDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIew9OGsSy6wbYJmVCO/AKWaTwEIpTNp3HK8mgMwFGWt/5Cwcq2YZi1eWJd9 mdG2djVr7RGacXE8kezxzakUt7Jijd26/i93z5fSllFB1qHRHNZQfksxnKtOajVP 4eJvd1RkSufSRP6FT+bmoE2gByqiEKgIqB9mctNxQH1bYO9dGgAGNNc8130xYdJz dBwDs9zT6zA6a6Kw7Cd4pUh+P4INLuz7Pt7SjkNQ1HN/NfUQalXaJv8Hvzlo/+3b A7PkEPVrE0GwwO7rrt/k6NiNtT081jgEvhyG2SwR9KGVgzyrAFBH1bkVmu7q9OA1 6a2G7IE2Ix5ulcfZIH1kIWC7cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjPlfUw fOhcW/m/u7RZ3XEZa72HMB8GA1UdIwQYMBaAFMDenYRrIXx43WSFWp7XmsPScRCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDNC8wQjIyQTZGODFC QUIxMUVEOUMzNjJGNzhDNEY5QUUwMi93TjZkaEdzaGZIamRaSVZhbnRlYXc5SnhF STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dONmRoR3NoZkhqZFpJVmFudGVhdzlKeEVJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RURDNC8wQjIyQTZGODFCQUIxMUVEOUMzNjJGNzhDNEY5QUUwMi93TjZkaEdzaGZI amRaSVZhbnRlYXc5SnhFSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq89kzGCk5A4Vzlvonm4eN0c8E1ZrU5/TOz912PVeOQVDTvCqO3rI4 i3hHzJuWyMrC9yPp3KkLNi9joF9oDIV1YMeHT/em6Az4pp0YXhpIyosUBStVjJGn 1GQUh9jmY8C0hOeTcUnUz928g84nAxFU2Enjy3vmIXChuunWxAnD7zWQmWWV45eh 2lcGiVRyja2/146oPAQIzjkPeHAAtl0u7CLvhf05vg0QNgqfrcs+vc/d8LEOZqFS T7MUaCNZ1CTwib7Af0qCCabh1gERgpxEGyCq638/rcXTlZgvyto0zgwhYEhJuMhs reOGarfr/VfjRkIqQ+0QVEleAv+JFWC0 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:38 2024 by rpki-client on console-fra.rpki-client.org