$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft File: WghDEGDly0pzQThDpsLwBL78Mr8.mft (raw, json) Hash identifier: Ls7f1AIPykHQ738xCk7akJSkVQed+X6ADXluiLf5zvk= Subject key identifier: 1B:02:7E:6D:28:B6:7B:E7:60:81:DD:A3:00:FF:CB:DF:DE:34:6A:FB Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 045A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft Manifest number: 0456 Signing time: Fri 22 Nov 2024 23:44:21 +0000 Manifest this update: Fri 22 Nov 2024 23:44:20 +0000 Manifest next update: Fri 29 Nov 2024 23:44:20 +0000 Files and hashes: 1: WghDEGDly0pzQThDpsLwBL78Mr8.crl (hash: pUH3I0H2wrqZd1TgwaB4yGqkiKXW3vzgDsl1KKA1ngY=) 2: 846935702CD911ECA528B744C4F9AE02.roa (hash: RV9WOS/uFginbA7aLvpCE9UqW0ZYkwPqAK1H9wKXrlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: Nov 22 23:44:20 2024 GMT Not After : Nov 29 23:44:20 2024 GMT Subject: CN=67411755-2e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:51:3a:3f:e1:88:7c:c1:19:a4:02:9b:26: 05:1b:41:1e:98:ac:5d:47:dc:b7:e6:97:65:cf:d5: 16:7e:4a:da:12:d5:d6:14:d0:0a:61:2b:bf:7e:06: ad:a1:65:c2:f7:29:63:33:3a:e4:7a:9e:04:7a:ff: 00:9d:ca:23:0f:c3:82:22:e1:25:71:4b:76:71:a8: 8c:64:56:c2:dd:b3:3f:2d:db:d2:f6:25:aa:8b:3f: 02:18:26:8f:8d:2e:08:5f:f1:24:8b:20:6c:fc:1f: 42:b4:41:a5:0d:62:53:0e:e5:ed:b5:04:19:3b:96: 10:1c:66:e6:01:fd:79:5c:68:49:11:08:9e:91:56: 14:9b:5a:08:d1:8c:e2:d4:13:54:be:25:85:89:c5: 8c:09:79:f1:65:2f:d8:00:c9:26:89:23:c0:2f:91: 84:7f:b2:8f:34:ff:05:ae:04:4a:e1:d1:69:45:bb: 41:8d:37:2f:6a:a7:2b:8d:55:de:10:e1:88:04:1d: 49:7e:13:db:80:c0:db:03:6b:d6:cd:11:5d:5d:21: 14:d1:16:8b:07:df:38:7a:2d:a4:3e:8d:54:3b:8f: b7:18:76:7f:4c:e4:b6:32:15:36:0b:09:33:25:be: 5f:73:05:29:09:8d:28:17:50:ab:b6:4a:1c:88:d8: db:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:02:7E:6D:28:B6:7B:E7:60:81:DD:A3:00:FF:CB:DF:DE:34:6A:FB X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:81:85:7b:c5:af:84:34:8e:62:ae:14:57:9e:4f:04:dc:83: a2:42:a0:73:c3:39:e7:14:c0:cb:4a:fa:f9:01:d6:7f:d1:f6: 91:77:dc:21:87:c3:03:c6:5e:88:9d:1b:c9:ff:2d:90:84:bb: 20:df:4e:8e:22:af:5b:d9:88:df:fe:4d:63:2f:c7:e2:c3:6b: b9:87:77:4c:f0:38:34:b0:99:b9:c0:8e:41:0f:bf:6f:21:f9: 31:a0:c3:d8:17:c6:88:e9:c5:cd:34:61:bf:d1:63:ef:1a:1b: b8:38:dc:93:95:92:86:04:72:9a:9e:75:3d:1f:e3:c8:58:07: 72:0e:30:ac:be:13:3c:46:d6:b8:19:b8:76:8f:e8:06:e8:02: 5f:22:bb:96:4e:0f:07:1c:1c:a3:29:24:ce:51:f6:8a:ae:89: 0f:53:46:50:52:5f:49:61:3a:15:d1:23:4e:cd:37:2e:f2:9b: 81:5e:cc:b1:39:f4:73:aa:35:d9:48:bf:5f:dd:5c:0b:79:ea: b4:86:1b:d8:0f:5a:eb:50:77:6e:93:07:91:31:e0:6d:6a:ef: 97:d4:74:b3:7c:70:a1:e8:50:05:60:ed:08:e0:31:1e:d9:28: 72:fa:e1:7a:87:bc:84:b5:f6:7a:2c:b6:a3:e2:10:e7:bc:77: 52:1b:89:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjQxMTIyMjM0NDIwWhcNMjQxMTI5MjM0NDIwWjAYMRYwFAYD VQQDEw02NzQxMTc1NS0yZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsA9ROj/hiHzBGaQCmyYFG0EemKxdR9y35pdlz9UWfkraEtXWFNAKYSu/fgat oWXC9yljMzrkep4Eev8AncojD8OCIuElcUt2caiMZFbC3bM/LdvS9iWqiz8CGCaP jS4IX/EkiyBs/B9CtEGlDWJTDuXttQQZO5YQHGbmAf15XGhJEQiekVYUm1oI0Yzi 1BNUviWFicWMCXnxZS/YAMkmiSPAL5GEf7KPNP8FrgRK4dFpRbtBjTcvaqcrjVXe EOGIBB1JfhPbgMDbA2vWzRFdXSEU0RaLB984ei2kPo1UO4+3GHZ/TOS2MhU2Cwkz Jb5fcwUpCY0oF1CrtkociNjbkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsCfm0o tnvnYIHdowD/y9/eNGr7MB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERGMS9FMzc5RDVBMDJDRDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkw cHpRVGhEcHNMd0JMNzhNcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqgYV7xa+ENI5irhRXnk8E3IOiQqBzwznnFMDLSvr5AdZ/0faRd9wh h8MDxl6InRvJ/y2QhLsg306OIq9b2Yjf/k1jL8fiw2u5h3dM8Dg0sJm5wI5BD79v IfkxoMPYF8aI6cXNNGG/0WPvGhu4ONyTlZKGBHKannU9H+PIWAdyDjCsvhM8Rta4 Gbh2j+gG6AJfIruWTg8HHByjKSTOUfaKrokPU0ZQUl9JYToV0SNOzTcu8puBXsyx OfRzqjXZSL9f3VwLeeq0hhvYD1rrUHdukweRMeBtau+X1HSzfHCh6FAFYO0I4DEe 2Shy+uF6h7yEtfZ6LLaj4hDnvHdSG4m7 -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org