$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft File: iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft (raw, json) Hash identifier: 30qwYsjso67CLiqsIL3bXWa0UxTtBQOQvIxgMnDU06c= Subject key identifier: A2:B8:9D:CD:0F:EB:74:36:54:A7:12:E7:EB:C4:8E:AB:8A:04:A8:C5 Authority key identifier: 8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 Certificate issuer: /CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Certificate serial: 10BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft Manifest number: 10B1 Signing time: Fri 22 Nov 2024 17:19:46 +0000 Manifest this update: Fri 22 Nov 2024 17:19:46 +0000 Manifest next update: Fri 29 Nov 2024 17:19:46 +0000 Files and hashes: 1: iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl (hash: HwJIhNO3m+/H1dn+yyoK7p67kWDirQXeR7xNpyN8yIY=) 2: 6127B9001FE711ECB8454E83C4F9AE02.roa (hash: A18BMNL1z8vEvxNnbAYEfetGV7OdVPlRvhOmRqVb1lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4282 (0x10ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Validity Not Before: Nov 22 17:19:46 2024 GMT Not After : Nov 29 17:19:46 2024 GMT Subject: CN=6740bd32-3a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fa:77:a9:a0:b8:38:71:69:92:16:25:84:6e: 30:c8:b4:a4:ea:8a:76:65:8d:5a:73:aa:35:a1:b4: b2:81:cc:99:e2:49:bc:bc:53:92:0e:5d:f9:fa:9b: 14:bb:15:34:8b:19:36:96:e0:60:79:92:6d:3b:03: 97:1d:dd:0a:f3:6e:88:ca:29:b4:66:1a:30:94:7f: 86:e9:bd:23:4c:0c:61:8a:59:e7:32:89:df:fc:cf: 89:90:3b:5c:06:17:a3:3f:1b:f7:db:2a:91:9b:9c: 0e:72:35:dd:64:2e:9b:08:99:23:8b:1c:73:6a:08: 6b:c5:e0:cf:b1:11:3a:73:bd:21:cb:14:88:dc:b7: f9:62:8d:64:f4:81:c6:d6:58:6e:75:f5:de:2b:a5: bb:f1:04:c1:dc:ed:b1:2e:c1:8e:77:53:dc:b6:4f: 38:3c:9a:89:1f:33:28:58:ef:63:9f:52:ff:92:18: 9c:95:5d:49:09:b7:77:93:27:be:d4:74:88:01:f9: ce:fe:3d:49:b3:77:d2:54:3e:77:49:67:53:8e:c5: fd:4d:93:5e:ed:70:5d:3b:44:7c:66:8a:fd:c2:a5: 40:56:84:63:a1:79:6c:0e:5b:24:94:97:b0:50:34: f1:09:bb:b3:0d:07:05:bf:5f:69:0a:0f:38:09:2c: 6e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B8:9D:CD:0F:EB:74:36:54:A7:12:E7:EB:C4:8E:AB:8A:04:A8:C5 X509v3 Authority Key Identifier: keyid:8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:93:c3:96:22:03:da:0c:2e:51:a8:74:7c:f6:fe:34:cd:e9: 11:ff:dc:ec:14:a6:6f:89:42:c5:34:c1:41:71:cf:8b:90:4a: 00:64:5a:a9:42:e6:ec:dc:45:07:62:0e:23:10:48:de:f8:cf: 54:ed:3d:bc:a3:4d:c5:c7:42:a4:92:cb:f8:15:17:75:8f:aa: e5:a0:52:a7:ed:d2:14:32:89:cb:9a:ad:0b:49:a8:5b:c6:59: f7:02:b2:fb:5c:ff:86:c2:d1:bf:45:00:9a:d2:37:11:3f:04: f7:f1:e0:77:fe:36:f2:a9:42:bc:61:29:6c:85:95:44:00:b7: cd:b8:65:70:89:a1:93:bd:97:7c:fa:8f:83:f5:6b:53:30:bd: 65:5a:2e:5e:ee:57:e0:e9:69:3c:c6:ed:f8:13:97:c6:1d:02: 93:7f:2e:9f:6a:fb:f5:45:16:98:b1:af:5f:24:c8:ae:b0:4e: 3f:66:10:a2:66:76:69:76:12:df:f6:ed:a4:89:a3:44:3d:c6: 53:5a:e0:96:1f:84:e8:ec:9b:b7:40:58:07:51:74:34:7f:e9: 4e:64:31:8f:44:de:0a:10:53:43:75:e2:30:94:a1:54:eb:e3: 9a:6c:c1:9f:04:15:b7:2f:5d:50:1c:ca:91:5e:01:1c:a6:8f: 0e:2b:3e:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMwNzgxMTAvBgNVBAUTKDhCMjYxNjg2QkQ5MkUyQ0Y2QkY1NDhDRDM1NTk2REVB OTVGRjU4MzMwHhcNMjQxMTIyMTcxOTQ2WhcNMjQxMTI5MTcxOTQ2WjAYMRYwFAYD VQQDEw02NzQwYmQzMi0zYTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfp3qaC4OHFpkhYlhG4wyLSk6op2ZY1ac6o1obSygcyZ4km8vFOSDl35+psU uxU0ixk2luBgeZJtOwOXHd0K826Iyim0ZhowlH+G6b0jTAxhilnnMonf/M+JkDtc BhejPxv32yqRm5wOcjXdZC6bCJkjixxzaghrxeDPsRE6c70hyxSI3Lf5Yo1k9IHG 1lhudfXeK6W78QTB3O2xLsGOd1Pctk84PJqJHzMoWO9jn1L/khiclV1JCbd3kye+ 1HSIAfnO/j1Js3fSVD53SWdTjsX9TZNe7XBdO0R8Zor9wqVAVoRjoXlsDlsklJew UDTxCbuzDQcFv19pCg84CSxuTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKK4nc0P 63Q2VKcS5+vEjquKBKjFMB8GA1UdIwQYMBaAFIsmFoa9kuLPa/VIzTVZbeqV/1gz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzA3OC82NkM4MzAyQzEz QkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRzOXI5VWpOTlZsdDZwWF9X RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5WVdocjJTNHM5cjlVak5OVmx0NnBYX1dETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzA3OC82NkM4MzAyQzEzQkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRz OXI5VWpOTlZsdDZwWF9XRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVk8OWIgPaDC5RqHR89v40zekR/9zsFKZviULFNMFBcc+LkEoAZFqp Qubs3EUHYg4jEEje+M9U7T28o03Fx0Kkksv4FRd1j6rloFKn7dIUMonLmq0LSahb xln3ArL7XP+GwtG/RQCa0jcRPwT38eB3/jbyqUK8YSlshZVEALfNuGVwiaGTvZd8 +o+D9WtTML1lWi5e7lfg6Wk8xu34E5fGHQKTfy6favv1RRaYsa9fJMiusE4/ZhCi ZnZpdhLf9u2kiaNEPcZTWuCWH4To7Ju3QFgHUXQ0f+lOZDGPRN4KEFNDdeIwlKFU 6+OabMGfBBW3L11QHMqRXgEcpo8OKz7I -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org