$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: hfy2xdnKzt8bJD1w9hfiN92VRsyWZW4dmSXSE2xHzWc= Subject key identifier: 6E:F6:16:8D:3D:25:08:C8:D1:9D:BA:58:BE:2F:EF:32:77:96:1E:3E Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0C88 Signing time: Fri 22 Nov 2024 18:06:56 +0000 Manifest this update: Fri 22 Nov 2024 18:06:55 +0000 Manifest next update: Fri 29 Nov 2024 18:06:55 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: QETgBD+l6qdAZhNx1z11AJ9d/LcRFnesDJIW2JmP34g=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: 7Dst7szyPWooV+5WFj8vI4oANvEvXDCaESLYXfhjMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Nov 22 18:06:55 2024 GMT Not After : Nov 29 18:06:55 2024 GMT Subject: CN=6740c83f-c093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:07:2a:01:90:fb:9f:9e:58:f7:b3:d5:38:9a: 4d:8a:c0:46:4e:70:2a:dd:4c:12:a2:24:e4:65:ba: c6:ef:06:eb:2d:28:44:1f:9e:36:f9:a5:54:af:e6: 3c:0f:56:4a:8f:0a:22:c3:43:05:44:2c:01:57:3c: aa:52:c3:5e:30:e9:33:c9:93:cd:b3:15:88:5b:9c: 39:2d:ae:51:ae:8b:7e:a4:c8:be:ec:28:2d:f6:19: 69:e7:8b:b3:33:16:7d:df:be:cd:43:73:47:11:48: 81:b7:dc:4a:a9:7f:f0:0f:d3:e2:50:48:6b:e4:1f: 76:94:49:03:56:dc:ba:e1:b6:ab:98:f5:9a:b8:d1: 1b:88:a3:03:72:2d:ef:d6:77:e6:6f:72:f7:39:fd: 13:00:8e:ab:28:bd:12:f3:39:db:69:d5:0e:ac:81: fc:0b:5e:d8:cd:ae:65:63:63:d1:82:8b:f5:eb:b5: 32:41:b6:3b:a6:a0:e1:4b:ca:e2:d8:78:a5:ef:c6: 5e:6c:d2:a1:29:83:5b:dc:8d:92:93:00:4f:c5:3e: 8b:cc:cc:d7:c5:13:bf:0a:4e:3e:fb:c8:3e:60:08: 78:99:b9:84:76:bd:fa:a8:bf:5b:4c:7d:3a:58:4d: cc:c1:5f:f1:2c:60:d4:33:db:41:1a:fe:e4:3b:86: 7b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F6:16:8D:3D:25:08:C8:D1:9D:BA:58:BE:2F:EF:32:77:96:1E:3E X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:05:f4:a8:d6:63:b8:37:fb:79:6a:d1:09:c4:64:4b:32:cf: d7:cd:73:1f:4b:06:62:1d:27:16:06:8b:64:e6:3d:fb:09:b2: 3a:25:24:c8:da:b5:0e:8c:79:35:d5:03:8c:98:8c:4b:f3:66: 83:a6:57:fd:99:7d:c7:73:f1:30:eb:99:64:ad:3d:ef:b4:27: 60:a9:50:63:cd:4c:04:8a:aa:cd:d3:58:b5:d3:a7:11:63:41: 32:e0:06:04:e4:c6:f0:9e:f6:51:75:ee:05:65:99:9e:03:8c: e1:02:f0:0e:2b:95:fc:36:25:2a:a0:7e:bd:2e:20:dd:b1:0d: 7e:17:96:77:a4:1a:1a:6e:d1:9a:70:9d:7d:55:8c:90:d1:a4: 93:f4:bf:a4:9b:90:2a:75:d4:1b:c7:64:a7:84:f7:ce:97:05: 68:7d:95:30:5e:29:a1:b1:47:b5:7d:74:18:fd:47:34:78:1a: ea:7b:1a:a2:c2:90:9b:ae:85:ea:81:dc:0b:41:c6:eb:73:7d: ec:48:81:be:a0:ee:6f:c8:86:1a:ea:e7:15:57:77:2f:37:aa: a5:5a:24:a0:a8:5a:ee:cf:eb:34:dc:df:42:a1:1c:fd:3e:1a: 1c:8f:5f:31:d5:cc:96:1d:e4:c4:71:27:f7:61:48:f4:7e:fb: cb:82:42:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjQxMTIyMTgwNjU1WhcNMjQxMTI5MTgwNjU1WjAYMRYwFAYD VQQDEw02NzQwYzgzZi1jMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQcqAZD7n55Y97PVOJpNisBGTnAq3UwSoiTkZbrG7wbrLShEH542+aVUr+Y8 D1ZKjwoiw0MFRCwBVzyqUsNeMOkzyZPNsxWIW5w5La5Rrot+pMi+7Cgt9hlp54uz MxZ9377NQ3NHEUiBt9xKqX/wD9PiUEhr5B92lEkDVty64barmPWauNEbiKMDci3v 1nfmb3L3Of0TAI6rKL0S8znbadUOrIH8C17Yza5lY2PRgov167UyQbY7pqDhS8ri 2Hil78ZebNKhKYNb3I2SkwBPxT6LzMzXxRO/Ck4++8g+YAh4mbmEdr36qL9bTH06 WE3MwV/xLGDUM9tBGv7kO4Z7cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG72Fo09 JQjI0Z26WL4v7zJ3lh4+MB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjBfSo1mO4N/t5atEJxGRLMs/XzXMfSwZiHScWBotk5j37CbI6JSTI 2rUOjHk11QOMmIxL82aDplf9mX3Hc/Ew65lkrT3vtCdgqVBjzUwEiqrN01i106cR Y0Ey4AYE5MbwnvZRde4FZZmeA4zhAvAOK5X8NiUqoH69LiDdsQ1+F5Z3pBoabtGa cJ19VYyQ0aST9L+km5AqddQbx2SnhPfOlwVofZUwXimhsUe1fXQY/Uc0eBrqexqi wpCbroXqgdwLQcbrc33sSIG+oO5vyIYa6ucVV3cvN6qlWiSgqFruz+s03N9CoRz9 Phocj18x1cyWHeTEcSf3YUj0fvvLgkJV -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org