$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: hFUDkfEmLAK4inH/WXVvDSY7Mh8rkE9QOPXrUA5XZ1c= Subject key identifier: 33:BC:73:57:66:39:62:CD:ED:98:E7:35:55:59:15:F9:7E:23:99:46 Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0AB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0AB0 Signing time: Fri 22 Nov 2024 19:13:24 +0000 Manifest this update: Fri 22 Nov 2024 19:13:23 +0000 Manifest next update: Fri 29 Nov 2024 19:13:23 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: LVlxlFqeEPURLp5zHxL5Q/TKAgnabqhkNjRh15FdM6Q=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: O+1TVwNVO9fy4asd+g6mFvUYSSGMZxyCsanhKoUd1UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2743 (0xab7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Nov 22 19:13:23 2024 GMT Not After : Nov 29 19:13:23 2024 GMT Subject: CN=6740d7d4-9329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ba:09:e8:82:a5:d9:7d:a2:cd:62:91:ca:80: 1d:4e:8c:f6:44:ec:45:32:89:e0:a5:ec:09:98:27: 4c:39:a2:16:aa:08:af:23:df:fd:e0:3e:fb:de:d4: 97:41:ed:4e:fe:d0:4b:12:c2:8d:ae:c5:fb:61:2f: ef:14:19:27:23:8b:ea:cd:3d:82:e9:ac:3f:9e:46: 28:af:99:a0:36:11:88:e9:47:02:99:01:d3:1a:a2: a1:4f:9e:eb:cc:e1:2b:c4:13:45:8a:aa:06:07:dd: b6:65:d3:90:6e:fc:3e:cd:ac:b3:54:fa:52:1f:2f: 09:f7:39:b1:4f:da:be:fc:bc:07:2c:bb:b8:aa:2d: 4b:31:94:cc:4d:cb:08:16:2e:2b:73:84:19:3c:ee: ba:56:f1:11:d0:cb:b6:73:30:31:a3:ad:88:39:21: 01:b6:33:07:53:4d:6c:3f:be:04:5f:51:d1:c2:71: a8:05:2e:01:d6:8c:37:25:3e:44:6e:02:ec:73:c0: 4b:08:36:ad:b0:14:5c:81:1c:a4:90:e9:d9:be:61: 7a:fd:72:e9:03:53:f3:93:f3:2d:59:bc:0c:1f:67: 78:03:25:4c:61:b2:aa:d0:11:94:64:8b:a2:ab:fc: 56:26:9d:62:01:b7:09:4b:b9:7f:2b:ea:85:09:fd: a8:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:BC:73:57:66:39:62:CD:ED:98:E7:35:55:59:15:F9:7E:23:99:46 X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:9b:d8:60:44:a6:a3:51:a5:cd:a6:8f:41:9e:e0:cd:26:72: 7f:f2:30:47:b2:bc:5b:63:54:cf:6d:e8:77:94:a3:4c:ba:2f: a0:20:bb:dc:9c:bd:26:2c:99:62:f4:36:0e:36:c5:14:81:29: 7c:ff:e0:a3:e2:91:1e:33:fc:b9:4b:7b:fe:cb:46:0a:46:6e: ce:c8:c9:51:41:3f:68:73:44:a4:24:68:4e:56:55:8f:3c:01: 22:60:3c:8a:30:25:ff:66:c2:8d:d6:8d:93:fb:9e:05:ac:ed: 58:92:e8:54:1a:e9:22:76:54:07:94:a1:59:ac:cd:44:2b:f7: 86:84:b6:3e:6e:60:15:2e:2d:65:bc:36:c6:8c:06:96:d9:18: 77:5f:c3:a4:00:a3:11:b8:fa:ef:bd:98:68:14:2d:31:18:8a: 87:f2:db:c2:a3:35:fd:a5:c8:41:1d:a6:c0:31:5b:95:12:f4: 54:d0:b8:28:7d:f6:3a:38:c2:86:d9:d6:33:54:b3:9a:09:06: a0:60:00:d3:1d:b6:10:ed:e3:3a:ca:8e:a2:b5:5a:b4:1e:be: 3d:71:46:0f:7c:d3:55:e0:a2:ea:0d:3c:d7:36:92:8f:93:a7: a1:4c:fa:2e:c1:4e:42:61:5a:7c:06:25:39:b2:45:8a:87:d5: 71:12:10:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjQxMTIyMTkxMzIzWhcNMjQxMTI5MTkxMzIzWjAYMRYwFAYD VQQDEw02NzQwZDdkNC05MzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyboJ6IKl2X2izWKRyoAdToz2ROxFMongpewJmCdMOaIWqgivI9/94D773tSX Qe1O/tBLEsKNrsX7YS/vFBknI4vqzT2C6aw/nkYor5mgNhGI6UcCmQHTGqKhT57r zOErxBNFiqoGB922ZdOQbvw+zayzVPpSHy8J9zmxT9q+/LwHLLu4qi1LMZTMTcsI Fi4rc4QZPO66VvER0Mu2czAxo62IOSEBtjMHU01sP74EX1HRwnGoBS4B1ow3JT5E bgLsc8BLCDatsBRcgRykkOnZvmF6/XLpA1Pzk/MtWbwMH2d4AyVMYbKq0BGUZIui q/xWJp1iAbcJS7l/K+qFCf2obwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDO8c1dm OWLN7ZjnNVVZFfl+I5lGMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGm9hgRKajUaXNpo9BnuDNJnJ/8jBHsrxbY1TPbeh3lKNMui+gILvc nL0mLJli9DYONsUUgSl8/+Cj4pEeM/y5S3v+y0YKRm7OyMlRQT9oc0SkJGhOVlWP PAEiYDyKMCX/ZsKN1o2T+54FrO1YkuhUGukidlQHlKFZrM1EK/eGhLY+bmAVLi1l vDbGjAaW2Rh3X8OkAKMRuPrvvZhoFC0xGIqH8tvCozX9pchBHabAMVuVEvRU0Lgo ffY6OMKG2dYzVLOaCQagYADTHbYQ7eM6yo6itVq0Hr49cUYPfNNV4KLqDTzXNpKP k6ehTPouwU5CYVp8BiU5skWKh9VxEhBR -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org