$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft File: WZp41LvOE9TYE975FnzTV0fqAmA.mft (raw, json) Hash identifier: rKZDf035CnqsBRoQXOqTUqcZ1vqKDJ2jfTPnkCazZY0= Subject key identifier: 3D:94:26:4C:4C:56:E0:05:9B:89:A2:D1:6C:F0:4F:9B:9B:39:CD:F6 Authority key identifier: 59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 Certificate issuer: /CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Certificate serial: 0954 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft Manifest number: 093C Signing time: Fri 22 Nov 2024 20:02:57 +0000 Manifest this update: Fri 22 Nov 2024 20:02:57 +0000 Manifest next update: Fri 29 Nov 2024 20:02:57 +0000 Files and hashes: 1: WZp41LvOE9TYE975FnzTV0fqAmA.crl (hash: Hl9i+134SYOiIcCMOFlqgqbN7olqdc+UYSH4tOcXk88=) 2: 4967CEF66AD311EF88752B40C4F9AE02.roa (hash: xmJbA6IxBO4/+GmddqWiUZSxhJO/ZzoQBxBDrxW+61c=) 3: B67BE8ECC13C11EE80101E73C4F9AE02.roa (hash: 1aQRLZv1BGCnnNcNnCRaokdzw4E8uFS548+f2rZZdFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2388 (0x954) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFF15/serialNumber=599A78D4BBCE13D4D813DEF9167CD35747EA0260 Validity Not Before: Nov 22 20:02:57 2024 GMT Not After : Nov 29 20:02:57 2024 GMT Subject: CN=6740e371-20f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b1:6c:84:67:7b:ac:fc:f6:18:6d:1f:5e:d5: c9:b2:72:9c:2b:61:cd:7a:12:05:be:48:97:12:d7: 3b:8e:a9:e0:eb:04:75:5b:1b:f1:32:86:4c:7a:e3: 7f:d5:ec:50:df:4b:71:4a:b5:c8:07:a2:e9:8d:c6: f5:6d:95:ed:c7:7e:3d:46:84:32:f9:ed:a0:8c:0b: 80:97:99:c7:e4:cf:9b:f0:36:fa:3b:dc:fa:2f:a9: 88:59:ee:d6:8c:c3:56:e6:59:64:3e:c7:89:63:52: 98:48:c5:2e:bb:63:97:3c:cb:d9:41:20:88:bc:38: 19:5f:6d:0e:c8:78:e5:ae:6a:d5:ae:77:b1:be:4d: f8:54:61:a6:5b:fe:ad:ac:2a:7a:e8:39:a5:a8:45: 1d:68:52:a4:27:b2:58:98:23:59:10:77:94:7f:07: d7:d1:bf:25:bf:65:9f:6a:e0:f5:6c:db:a7:a4:c3: cc:87:41:f0:25:55:06:7f:0e:08:0f:e9:61:a7:1b: 42:f4:69:eb:93:54:16:97:80:97:64:2b:0c:50:d4: ea:a9:d3:3b:1c:00:55:50:f5:9f:2a:c6:c0:6a:a7: c4:40:e3:8b:63:bf:29:17:84:ca:b4:61:45:3f:4e: aa:66:58:63:fa:84:4e:88:ea:5a:61:77:2c:67:03: 1c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:94:26:4C:4C:56:E0:05:9B:89:A2:D1:6C:F0:4F:9B:9B:39:CD:F6 X509v3 Authority Key Identifier: keyid:59:9A:78:D4:BB:CE:13:D4:D8:13:DE:F9:16:7C:D3:57:47:EA:02:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZp41LvOE9TYE975FnzTV0fqAmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFF15/B4785BE88D4C11EABBDD3A74C4F9AE02/WZp41LvOE9TYE975FnzTV0fqAmA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:e6:57:6b:75:0d:fc:e3:68:05:80:37:2e:1a:4a:8b:22:0d: eb:60:6c:a8:83:9a:9c:33:45:0f:17:b9:e3:a0:50:82:2f:d4: 2f:0a:3a:e8:79:12:2b:ce:a3:a1:55:de:a3:b9:10:46:a9:61: 24:68:95:52:f6:ae:72:9f:eb:d1:27:4b:3f:1d:10:54:74:f9: 24:d6:68:93:8b:c6:d9:38:68:ee:98:ee:bc:4b:61:67:57:2a: 42:bc:c9:19:02:3c:ab:fd:d3:8b:d5:16:c3:26:90:39:5f:8d: df:29:8d:dd:7b:c2:10:45:83:da:6d:a3:be:c0:a3:e9:86:9f: 19:b9:79:eb:5a:1f:49:99:2d:52:16:49:88:12:c0:34:ec:75: fc:7b:2c:4a:a6:23:07:74:41:37:65:9b:88:95:dc:70:6b:07: 0c:81:b7:a4:09:ad:1e:0e:be:83:61:bc:85:83:dd:7a:34:a1: 15:1e:7a:e3:cb:05:a8:2a:57:ca:7f:18:da:e4:aa:d4:b5:e4: 6a:ca:fa:18:b6:62:17:e4:6a:43:9f:e8:5a:5c:31:45:fe:e8: 80:d9:14:49:2e:c2:e8:dc:b9:08:b5:5b:cd:da:23:cf:df:46: 0a:43:fa:b3:78:f1:d1:0e:41:a5:0b:8c:cc:d0:51:0d:00:dc: dc:3c:e2:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZGMTUxMTAvBgNVBAUTKDU5OUE3OEQ0QkJDRTEzRDREODEzREVGOTE2N0NEMzU3 NDdFQTAyNjAwHhcNMjQxMTIyMjAwMjU3WhcNMjQxMTI5MjAwMjU3WjAYMRYwFAYD VQQDEw02NzQwZTM3MS0yMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrFshGd7rPz2GG0fXtXJsnKcK2HNehIFvkiXEtc7jqng6wR1WxvxMoZMeuN/ 1exQ30txSrXIB6Lpjcb1bZXtx349RoQy+e2gjAuAl5nH5M+b8Db6O9z6L6mIWe7W jMNW5llkPseJY1KYSMUuu2OXPMvZQSCIvDgZX20OyHjlrmrVrnexvk34VGGmW/6t rCp66DmlqEUdaFKkJ7JYmCNZEHeUfwfX0b8lv2WfauD1bNunpMPMh0HwJVUGfw4I D+lhpxtC9Gnrk1QWl4CXZCsMUNTqqdM7HABVUPWfKsbAaqfEQOOLY78pF4TKtGFF P06qZlhj+oROiOpaYXcsZwMcXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2UJkxM VuAFm4mi0WzwT5ubOc32MB8GA1UdIwQYMBaAFFmaeNS7zhPU2BPe+RZ801dH6gJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkYxNS9CNDc4NUJFODhE NEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5VFlFOTc1Rm56VFYwZnFB bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dacDQxTHZPRTlUWUU5NzVGbnpUVjBmcUFtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkYxNS9CNDc4NUJFODhENEMxMUVBQkJERDNBNzRDNEY5QUUwMi9XWnA0MUx2T0U5 VFlFOTc1Rm56VFYwZnFBbUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl5ldrdQ3842gFgDcuGkqLIg3rYGyog5qcM0UPF7njoFCCL9QvCjro eRIrzqOhVd6juRBGqWEkaJVS9q5yn+vRJ0s/HRBUdPkk1miTi8bZOGjumO68S2Fn VypCvMkZAjyr/dOL1RbDJpA5X43fKY3de8IQRYPabaO+wKPphp8ZuXnrWh9JmS1S FkmIEsA07HX8eyxKpiMHdEE3ZZuIldxwawcMgbekCa0eDr6DYbyFg916NKEVHnrj ywWoKlfKfxja5KrUteRqyvoYtmIX5GpDn+haXDFF/uiA2RRJLsLo3LkItVvN2iPP 30YKQ/qzePHRDkGlC4zM0FENANzcPOKx -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:38 2024 by rpki-client on console-ams.rpki-client.org