$ rpki-client -vvf rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft File: WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft (raw, json) Hash identifier: IgtCuPSOQH3AJwzSt6thCk0gV4rtL63UTK+BUmTcl6U= Subject key identifier: 12:43:0D:A4:BB:A1:1A:F8:FA:E1:E2:D2:13:B0:07:EB:C5:B3:89:05 Authority key identifier: 59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 Certificate issuer: /CN=A913C4FD/serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft Manifest number: 05 Signing time: Sat 23 Nov 2024 06:09:03 +0000 Manifest this update: Sat 23 Nov 2024 06:09:03 +0000 Manifest next update: Sat 30 Nov 2024 06:09:03 +0000 Files and hashes: 1: WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl (hash: qvrEIiDOo61yWMh8HSnjfT7krG6R9D7VsS/HNtQPuts=) 2: 7C321BDEA55711EFB8317F6BC4F9AE02.roa (hash: 6GvXrP8o2StjgBVhcwqtUNQLUzdZOXCdVs6snlQvu+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C4FD/serialNumber=5990F4C3BB23436C95100B4848DC9186AA495319 Validity Not Before: Nov 23 06:09:03 2024 GMT Not After : Nov 30 06:09:03 2024 GMT Subject: CN=6741717f-0e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cc:19:53:70:6a:5e:89:5f:6b:61:6a:e7:b7: ed:92:a7:11:71:e2:e6:e0:36:fc:c0:6b:11:69:b3: 56:3a:ba:c9:bd:98:50:59:92:70:74:d4:17:83:ea: 90:61:dd:49:43:62:06:e7:c1:13:e7:16:98:51:43: 63:7b:c1:7c:fe:92:3b:71:fd:42:f4:ad:77:04:f7: fe:3a:90:c1:bf:62:fe:5d:46:b4:4e:41:39:a8:e2: 63:64:6e:4e:97:95:f0:74:14:a5:33:1e:0b:85:de: 00:ae:a7:6b:63:d7:ed:5f:43:e9:d8:62:1c:dd:cf: 70:7f:46:a7:c1:80:65:4c:89:c9:fa:d8:32:36:b9: ab:84:c2:b7:35:5a:6a:be:aa:4a:36:38:3e:01:2c: 01:b8:2f:d7:92:87:20:39:1f:43:3a:89:26:62:46: 7b:3a:b5:c1:d2:e5:cf:3c:77:57:2b:07:b3:68:8d: ec:ca:b1:d3:c1:d7:7d:9b:cf:6c:ac:a4:f3:a8:5b: 1d:8b:c2:9a:d1:a2:5b:d8:82:62:47:86:17:2b:f2: fa:46:ed:53:9a:4b:c9:e4:a7:a3:4a:17:ec:37:c0: 04:cb:cf:e2:ce:ca:59:4b:07:f2:72:d6:69:34:02: 40:2a:d0:8f:9b:bf:b6:c4:60:41:d6:68:b4:91:bd: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:43:0D:A4:BB:A1:1A:F8:FA:E1:E2:D2:13:B0:07:EB:C5:B3:89:05 X509v3 Authority Key Identifier: keyid:59:90:F4:C3:BB:23:43:6C:95:10:0B:48:48:DC:91:86:AA:49:53:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WZD0w7sjQ2yVEAtISNyRhqpJUxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C4FD/A57CABECA55411EF8A975247C4F9AE02/WZD0w7sjQ2yVEAtISNyRhqpJUxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:0d:b8:64:32:d6:06:21:7b:4a:2f:ed:9b:0f:b6:2f:e2:d4: fc:3d:ae:c3:77:20:c0:be:43:fd:99:87:c3:46:f9:63:bb:dc: 9f:35:8a:2c:a6:8c:27:2e:2d:6d:6c:17:ff:5b:73:d4:25:20: 80:b3:39:e6:8d:68:66:52:59:0d:cd:e0:27:35:95:6f:46:c5: 0f:6e:1c:6b:5c:73:e6:85:b5:f5:9b:9a:4e:f0:e2:5c:6f:85: 21:ce:bd:df:3e:70:28:cf:6d:f4:9a:75:bb:c6:eb:eb:7d:31: 32:e4:8c:e6:ce:f0:73:ad:c3:a7:06:8a:ed:7d:d4:15:e9:43: 8c:31:cf:2a:4e:a9:1a:2c:b5:49:1a:38:8b:12:97:9c:ba:04: d7:05:f8:50:f1:b9:92:83:c1:26:16:0c:0f:70:9e:96:4a:30: 6d:f1:08:fa:9d:eb:2b:1f:51:be:72:2c:b6:09:39:8f:a0:cb: ce:e5:43:e8:db:c2:f6:88:e6:4b:44:b6:de:79:aa:a2:9b:df: 39:12:c1:56:00:2a:c3:b1:82:b6:c2:10:3b:4c:cb:69:db:f7: 04:fa:53:89:e6:20:4a:cd:d1:55:33:e5:2a:65:6e:74:22:15: 47:f5:14:7a:a0:40:f4:f4:dc:5b:ea:f0:d9:06:ec:84:71:4f: 38:6a:0e:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QzRGRDExMC8GA1UEBRMoNTk5MEY0QzNCQjIzNDM2Qzk1MTAwQjQ4NDhEQzkxODZB QTQ5NTMxOTAeFw0yNDExMjMwNjA5MDNaFw0yNDExMzAwNjA5MDNaMBgxFjAUBgNV BAMTDTY3NDE3MTdmLTBlMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1zBlTcGpeiV9rYWrnt+2SpxFx4ubgNvzAaxFps1Y6usm9mFBZknB01BeD6pBh 3UlDYgbnwRPnFphRQ2N7wXz+kjtx/UL0rXcE9/46kMG/Yv5dRrROQTmo4mNkbk6X lfB0FKUzHguF3gCup2tj1+1fQ+nYYhzdz3B/RqfBgGVMicn62DI2uauEwrc1Wmq+ qko2OD4BLAG4L9eShyA5H0M6iSZiRns6tcHS5c88d1crB7NojezKsdPB132bz2ys pPOoWx2LwprRolvYgmJHhhcr8vpG7VOaS8nkp6NKF+w3wATLz+LOyllLB/Jy1mk0 AkAq0I+bv7bEYEHWaLSRvTVBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEkMNpLuh Gvj64eLSE7AH68WziQUwHwYDVR0jBBgwFoAUWZD0w7sjQ2yVEAtISNyRhqpJUxkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNDNEZEL0E1N0NBQkVDQTU1 NDExRUY4QTk3NTI0N0M0RjlBRTAyL1daRDB3N3NqUTJ5VkVBdElTTnlSaHFwSlV4 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV1pEMHc3c2pRMnlWRUF0SVNOeVJocXBKVXhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTND NEZEL0E1N0NBQkVDQTU1NDExRUY4QTk3NTI0N0M0RjlBRTAyL1daRDB3N3NqUTJ5 VkVBdElTTnlSaHFwSlV4ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFwNuGQy1gYhe0ov7ZsPti/i1Pw9rsN3IMC+Q/2Zh8NG+WO73J81iiym jCcuLW1sF/9bc9QlIICzOeaNaGZSWQ3N4Cc1lW9GxQ9uHGtcc+aFtfWbmk7w4lxv hSHOvd8+cCjPbfSadbvG6+t9MTLkjObO8HOtw6cGiu191BXpQ4wxzypOqRostUka OIsSl5y6BNcF+FDxuZKDwSYWDA9wnpZKMG3xCPqd6ysfUb5yLLYJOY+gy87lQ+jb wvaI5ktEtt55qqKb3zkSwVYAKsOxgrbCEDtMy2nb9wT6U4nmIErN0VUz5SplbnQi FUf1FHqgQPT03Fvq8NkG7IRxTzhqDrA= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org