$ rpki-client -vvf rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft File: wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft (raw, json) Hash identifier: 16YiQm0AKytqI3Y95sMTmANW0PXWl+OZqe5SzR19m64= Subject key identifier: 4F:89:ED:A1:30:81:75:2A:92:DC:4A:EA:11:BD:11:DB:1F:94:04:CF Authority key identifier: C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 Certificate issuer: /CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Certificate serial: 2F82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft Manifest number: 2F79 Signing time: Fri 22 Nov 2024 15:29:57 +0000 Manifest this update: Fri 22 Nov 2024 15:29:56 +0000 Manifest next update: Fri 29 Nov 2024 15:29:56 +0000 Files and hashes: 1: wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl (hash: JGkPNN5X5PhJ5G3vNtI39ZYdFvZ1swJ9KGgmKeUpAFA=) 2: 47A21580B6CC11EC98672826C4F9AE02.roa (hash: qjc1TRQ4aj3UWDrfE4OMe7D9VpKX+4bRXdtLVlC/TX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12162 (0x2f82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A445C/serialNumber=C0F7D8D6D54163765FF6F3E2FB337FCFE1507219 Validity Not Before: Nov 22 15:29:56 2024 GMT Not After : Nov 29 15:29:56 2024 GMT Subject: CN=6740a375-2e81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:46:ce:ce:0b:39:0a:90:ec:ea:3f:cc:51:3c: 7a:c6:42:1c:76:04:36:2f:12:23:a0:67:b2:3e:de: a3:78:8e:8e:48:bb:31:71:a7:4c:65:61:fc:53:ee: e4:ab:f0:e0:f9:fb:b1:5d:35:10:e1:fa:5f:71:56: 4d:61:9d:83:a9:9b:38:24:bf:53:51:b5:43:06:55: 9e:61:d3:e6:50:61:55:6f:ba:af:41:21:bb:22:f8: f3:98:f0:51:c9:eb:80:a3:3e:76:13:dd:6e:30:52: c3:a4:28:3c:d8:8c:83:f3:e5:21:94:64:29:ca:89: d5:3f:d3:a6:b3:d4:c5:af:18:07:23:16:50:75:15: 15:a7:b3:29:98:58:83:65:8d:3d:a0:de:9f:d2:67: fa:a1:1c:e0:48:98:af:41:7f:96:70:dd:39:a8:c3: 59:1f:05:79:51:1b:b5:8f:29:ca:5c:8d:0c:21:e3: fd:e2:ee:ea:df:cf:98:27:e4:42:9e:8a:4a:df:7d: e2:1b:d9:c8:6e:38:5f:5d:14:e2:45:a9:b2:79:6c: 1c:13:56:9f:ce:6c:9f:08:37:a2:95:24:21:9c:27: a4:66:56:c5:dc:e1:82:99:0e:56:e5:3c:cb:3c:9c: a5:6d:cf:53:72:da:ce:3e:11:bf:dc:45:4c:de:2e: 70:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:89:ED:A1:30:81:75:2A:92:DC:4A:EA:11:BD:11:DB:1F:94:04:CF X509v3 Authority Key Identifier: keyid:C0:F7:D8:D6:D5:41:63:76:5F:F6:F3:E2:FB:33:7F:CF:E1:50:72:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wPfY1tVBY3Zf9vPi-zN_z-FQchk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A445C/5A8AD0880B1811E3B637C6795911EA32/wPfY1tVBY3Zf9vPi-zN_z-FQchk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0a:b2:6d:0c:a5:b5:67:eb:63:85:d0:08:8e:27:21:75:14: a9:0e:f3:f1:f3:02:24:75:3c:0c:88:f7:2e:cb:28:ec:ba:e5: e5:b8:a0:8e:85:c9:a4:91:93:10:dc:47:ab:c3:12:05:3f:e8: e9:7b:76:a0:6a:b1:14:e9:1f:1f:be:07:fa:56:c3:9c:5d:7b: fe:11:79:1a:58:e7:91:9a:9e:3a:f6:7b:c4:93:c1:ea:cf:d5: 4e:a9:d0:1b:d9:d1:8d:48:0a:a5:4e:24:c0:ec:31:4c:28:84: 79:50:09:72:4d:69:ad:6c:f3:22:89:a0:2f:85:e4:c9:66:98: 0b:53:03:0b:51:2c:9b:f0:a1:29:fd:39:fc:a1:62:f1:1d:df: 78:80:fe:d3:39:59:d1:4d:bc:ac:3c:27:78:4f:9c:dd:d8:dd: f2:b8:99:ff:b6:f1:5b:e0:c4:f2:d9:20:0d:81:05:41:a9:ac: a4:fc:ca:8c:b1:da:c2:0b:2d:3f:b7:a1:eb:1f:c7:fe:e0:65: c8:03:45:4a:d7:2a:af:9d:ea:5b:5f:b9:9a:da:dd:38:bd:68: 80:00:99:a7:2c:f9:13:41:52:a4:50:2e:1d:41:9e:07:be:af: d0:69:62:1f:07:8c:fa:84:84:ac:54:a2:19:35:b4:ad:02:21: ac:97:43:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICL4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0NUMxMTAvBgNVBAUTKEMwRjdEOEQ2RDU0MTYzNzY1RkY2RjNFMkZCMzM3RkNG RTE1MDcyMTkwHhcNMjQxMTIyMTUyOTU2WhcNMjQxMTI5MTUyOTU2WjAYMRYwFAYD VQQDEw02NzQwYTM3NS0yZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEbOzgs5CpDs6j/MUTx6xkIcdgQ2LxIjoGeyPt6jeI6OSLsxcadMZWH8U+7k q/Dg+fuxXTUQ4fpfcVZNYZ2DqZs4JL9TUbVDBlWeYdPmUGFVb7qvQSG7IvjzmPBR yeuAoz52E91uMFLDpCg82IyD8+UhlGQpyonVP9Oms9TFrxgHIxZQdRUVp7MpmFiD ZY09oN6f0mf6oRzgSJivQX+WcN05qMNZHwV5URu1jynKXI0MIeP94u7q38+YJ+RC nopK333iG9nIbjhfXRTiRamyeWwcE1afzmyfCDeilSQhnCekZlbF3OGCmQ5W5TzL PJylbc9TctrOPhG/3EVM3i5wSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+J7aEw gXUqktxK6hG9EdsflATPMB8GA1UdIwQYMBaAFMD32NbVQWN2X/bz4vszf8/hUHIZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ1Qy81QThBRDA4ODBC MTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkzWmY5dlBpLXpOX3otRlFj aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dQZlkxdFZCWTNaZjl2UGktek5fei1GUWNoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ1Qy81QThBRDA4ODBCMTgxMUUzQjYzN0M2Nzk1OTExRUEzMi93UGZZMXRWQlkz WmY5dlBpLXpOX3otRlFjaGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaCrJtDKW1Z+tjhdAIjichdRSpDvPx8wIkdTwMiPcuyyjsuuXluKCO hcmkkZMQ3EerwxIFP+jpe3agarEU6R8fvgf6VsOcXXv+EXkaWOeRmp469nvEk8Hq z9VOqdAb2dGNSAqlTiTA7DFMKIR5UAlyTWmtbPMiiaAvheTJZpgLUwMLUSyb8KEp /Tn8oWLxHd94gP7TOVnRTbysPCd4T5zd2N3yuJn/tvFb4MTy2SANgQVBqayk/MqM sdrCCy0/t6HrH8f+4GXIA0VK1yqvnepbX7ma2t04vWiAAJmnLPkTQVKkUC4dQZ4H vq/QaWIfB4z6hISsVKIZNbStAiGsl0P/ -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org