$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft File: wOMbX0XP5SusXO243MahoyL0cF0.mft (raw, json) Hash identifier: 71PjKVtZ3AHe4joe2idbbSPQrRmEx/tw1eP6x3S5NOo= Subject key identifier: 39:6E:76:18:97:F6:98:B1:7B:EC:A7:F1:98:00:06:18:B9:0D:20:50 Authority key identifier: C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D Certificate issuer: /CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft Manifest number: 7A Signing time: Sat 23 Nov 2024 04:49:57 +0000 Manifest this update: Sat 23 Nov 2024 04:49:57 +0000 Manifest next update: Sat 30 Nov 2024 04:49:57 +0000 Files and hashes: 1: wOMbX0XP5SusXO243MahoyL0cF0.crl (hash: q9K3QbTy1+X3zREUjGyDYzSYTQswNXqgq6iWlq1/2P8=) 2: E37CCF70718911EFA0C30257C4F9AE02.roa (hash: 86MGBaqU0CenrNP3bFYFMxCacl7zaPB2OM7HARI67bk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F7C/serialNumber=C0E31B5F45CFE52BAC5CEDB8DCC6A1A322F4705D Validity Not Before: Nov 23 04:49:57 2024 GMT Not After : Nov 30 04:49:57 2024 GMT Subject: CN=67415ef5-b6d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:b3:49:69:7e:fa:9b:6d:9b:b7:8c:8e:d8: a0:1e:6a:50:1f:ab:f0:cd:24:4c:3d:55:d4:df:be: 1c:87:eb:79:c3:2d:63:7a:0c:3d:c8:ab:3d:d6:48: 76:be:85:5a:17:0a:26:8e:46:db:2d:4d:1b:15:61: e6:9c:00:5e:bd:ce:37:bd:66:84:e5:99:aa:93:0a: e2:5e:3e:09:56:40:73:4e:99:1a:91:1d:4d:6b:d8: ad:93:03:3b:32:e6:d5:4a:6a:85:fd:b7:df:08:87: bd:4a:68:36:20:e5:61:7e:15:be:ed:5f:d1:71:4e: de:20:ac:ab:84:15:0b:f1:32:26:66:58:8a:26:6c: 2e:cf:83:47:bc:67:3b:5f:84:7e:31:3d:b7:f8:c5: 54:ea:3c:8e:74:e5:fe:b7:9f:81:5f:2b:10:6d:4a: 85:77:47:c7:d5:84:c4:c4:b0:6e:c6:25:5e:59:18: 55:7f:38:9a:57:e5:03:00:b1:25:fd:4f:2e:bd:86: a9:8a:d1:91:9a:b3:e0:9f:4b:df:74:23:40:eb:d7: 93:0c:8f:ef:9f:4f:d2:61:76:2f:95:33:13:f8:bb: fd:4a:a3:55:93:b3:da:7a:ce:06:48:c9:fb:b9:0a: 64:5d:2b:6d:cf:a6:18:c7:af:fb:3f:35:2a:9b:a6: 6d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6E:76:18:97:F6:98:B1:7B:EC:A7:F1:98:00:06:18:B9:0D:20:50 X509v3 Authority Key Identifier: keyid:C0:E3:1B:5F:45:CF:E5:2B:AC:5C:ED:B8:DC:C6:A1:A3:22:F4:70:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wOMbX0XP5SusXO243MahoyL0cF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/86F9161CFC5B11EEA3FF9D47C4F9AE02/wOMbX0XP5SusXO243MahoyL0cF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:16:b5:ad:91:85:7e:78:23:a9:2c:27:38:8e:33:8c:70:19: 23:77:73:f2:53:b6:1d:6b:28:f5:75:86:a5:84:c7:18:5a:05: e1:2c:25:3b:0a:3e:f5:4f:a8:28:a4:11:df:58:fe:21:44:70: 44:87:21:5d:69:ca:25:ea:07:99:3e:97:84:68:a1:06:80:97: 39:1e:4e:18:b3:08:1c:08:a8:a3:5d:28:d7:64:62:8e:11:27: 08:f6:81:23:0c:79:0c:bd:21:09:1e:0c:14:c4:fc:93:6d:58: b1:63:f1:9f:f8:55:ef:45:66:a6:2e:0b:38:8c:c6:3b:4a:74: 2f:2f:52:e8:75:1c:c7:08:68:90:90:07:ef:e8:74:ed:6a:eb: 71:9b:bf:8c:10:0e:86:cb:7b:3b:70:ad:5b:35:12:63:a9:4b: 0f:cb:87:b8:88:cf:2b:b0:49:b9:b8:c8:25:97:eb:24:c2:c6: d8:94:e2:c4:8a:df:fb:c1:11:d4:4a:c7:05:72:58:67:2b:94: 47:f5:75:a5:40:b9:cb:07:61:c6:3b:7e:89:b0:99:cd:16:1b: 1f:c4:5f:d9:a2:f1:d9:83:92:8c:ae:14:9d:88:de:7a:fa:d9: 01:6a:c7:53:aa:e5:0c:f5:84:1f:88:d7:2b:a2:cd:f6:d2:ab: ef:ef:33:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkY3QzExMC8GA1UEBRMoQzBFMzFCNUY0NUNGRTUyQkFDNUNFREI4RENDNkExQTMy MkY0NzA1RDAeFw0yNDExMjMwNDQ5NTdaFw0yNDExMzAwNDQ5NTdaMBgxFjAUBgNV BAMTDTY3NDE1ZWY1LWI2ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6FbNJaX76m22bt4yO2KAealAfq/DNJEw9VdTfvhyH63nDLWN6DD3Iqz3WSHa+ hVoXCiaORtstTRsVYeacAF69zje9ZoTlmaqTCuJePglWQHNOmRqRHU1r2K2TAzsy 5tVKaoX9t98Ih71KaDYg5WF+Fb7tX9FxTt4grKuEFQvxMiZmWIombC7Pg0e8Zztf hH4xPbf4xVTqPI505f63n4FfKxBtSoV3R8fVhMTEsG7GJV5ZGFV/OJpX5QMAsSX9 Ty69hqmK0ZGas+CfS990I0Dr15MMj++fT9Jhdi+VMxP4u/1Ko1WTs9p6zgZIyfu5 CmRdK23PphjHr/s/NSqbpm3rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOW52GJf2 mLF77KfxmAAGGLkNIFAwHwYDVR0jBBgwFoAUwOMbX0XP5SusXO243MahoyL0cF0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RjdDLzg2RjkxNjFDRkM1 QjExRUVBM0ZGOUQ0N0M0RjlBRTAyL3dPTWJYMFhQNVN1c1hPMjQzTWFob3lMMGNG MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd09NYlgwWFA1U3VzWE8yNDNNYWhveUwwY0YwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2 RjdDLzg2RjkxNjFDRkM1QjExRUVBM0ZGOUQ0N0M0RjlBRTAyL3dPTWJYMFhQNVN1 c1hPMjQzTWFob3lMMGNGMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHoWta2RhX54I6ksJziOM4xwGSN3c/JTth1rKPV1hqWExxhaBeEsJTsK PvVPqCikEd9Y/iFEcESHIV1pyiXqB5k+l4RooQaAlzkeThizCBwIqKNdKNdkYo4R Jwj2gSMMeQy9IQkeDBTE/JNtWLFj8Z/4Ve9FZqYuCziMxjtKdC8vUuh1HMcIaJCQ B+/odO1q63Gbv4wQDobLeztwrVs1EmOpSw/Lh7iIzyuwSbm4yCWX6yTCxtiU4sSK 3/vBEdRKxwVyWGcrlEf1daVAucsHYcY7fomwmc0WGx/EX9mi8dmDkoyuFJ2I3nr6 2QFqx1Oq5Qz1hB+I1yuizfbSq+/vM5A= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:15 2024 by rpki-client on console-ams.rpki-client.org