$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft File: WghDEGDly0pzQThDpsLwBL78Mr8.mft (raw, json) Hash identifier: HlCGwW3qPGBXDsODayYx2v3KitoOUamVVkEcjbpa5As= Subject key identifier: 91:50:CC:7C:CF:4D:D5:E0:E9:65:46:14:39:07:E8:26:84:3A:5E:2D Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft Manifest number: 03E9 Signing time: Sat 27 Apr 2024 02:11:23 +0000 Manifest this update: Sat 27 Apr 2024 02:11:23 +0000 Manifest next update: Sat 04 May 2024 02:11:23 +0000 Files and hashes: 1: WghDEGDly0pzQThDpsLwBL78Mr8.crl (hash: G+dIWTMF5+exQ/Ct/XSa5d7k5866UGe5Xi/Zyl0vMC0=) 2: 846935702CD911ECA528B744C4F9AE02.roa (hash: Z/jSnIWWW2Yo0xK6PM0++m6EnLurEB4z2omEfGREcsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: Apr 27 02:11:23 2024 GMT Not After : May 4 02:11:23 2024 GMT Subject: CN=662c5ecb-8457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:89:31:06:f2:ce:89:cc:b1:f8:ad:48:1c:4f: 03:d3:98:6f:b4:a2:7d:e6:7e:67:59:e0:23:25:9d: 9c:45:e4:a8:5b:f0:19:b8:44:22:3a:d7:71:b4:d9: 3f:67:ed:7d:2c:28:a2:64:82:4c:a2:c8:2f:7b:9a: ea:db:0c:88:16:6b:21:10:3b:42:73:13:4e:23:0e: 9e:d2:03:78:51:aa:22:4e:69:76:9b:41:f6:85:11: 59:f1:ee:37:f5:6d:df:f8:9b:dc:d5:8d:61:ac:c5: 6f:1b:8f:14:d5:cb:30:b4:f0:8f:4d:85:2e:25:5b: 32:7e:1d:e4:f1:5a:9e:ad:e1:63:22:f3:37:a0:60: ca:20:3b:cd:7b:1d:f3:ec:3e:0b:e1:f0:44:37:0c: 70:59:89:38:41:e7:cf:27:e4:93:06:ba:59:a7:cf: a7:8a:63:8d:09:c5:06:14:f8:f2:8c:a1:c9:13:cd: cb:0d:6d:e1:ed:a9:a4:54:ec:9c:61:a6:cf:92:56: 44:59:71:50:a8:ee:44:35:d8:ee:4a:9b:2d:a1:63: 2b:cf:82:ab:a2:1e:3e:fd:b2:cd:de:ab:f5:a2:2c: f5:ee:f1:dc:8b:a8:25:03:fc:07:a1:93:f0:c9:ca: 56:60:e1:85:6a:f9:0b:e3:fb:ca:2c:82:22:36:46: 12:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:50:CC:7C:CF:4D:D5:E0:E9:65:46:14:39:07:E8:26:84:3A:5E:2D X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:b5:3d:9d:c6:c0:e9:69:37:c8:6e:5b:01:3a:03:c8:e6:ca: a7:2f:fe:de:4c:ba:84:8c:73:c4:16:9b:cd:99:b9:75:b5:b1: c9:76:7e:88:b4:c1:90:27:8a:43:d7:ce:f3:52:79:e8:35:98: d3:31:d4:b8:31:4d:4a:f2:70:32:6d:8a:4e:9b:ea:d0:58:60: a1:4f:2c:ee:1d:87:6b:ba:53:f3:ce:65:91:22:00:2c:77:50: f9:c6:a4:ac:80:4c:7a:e7:c9:85:09:c6:03:2b:bd:4e:a6:46: b4:34:f3:94:2d:f1:aa:53:46:96:47:54:3c:00:5e:06:3e:62: 42:6f:43:50:35:e0:91:15:82:d0:e6:07:b0:0c:b3:4c:a1:f4: 07:cd:d0:a5:f4:d8:a0:d3:fa:7d:6c:17:f8:d9:0b:53:90:d5: 4d:d0:ab:c0:e2:b5:46:bd:f3:fc:df:32:75:8b:7a:94:b3:a3: 5e:00:40:37:86:77:ab:58:fd:cb:0c:12:18:6f:1a:c9:a1:e7: 1c:f9:c7:76:f7:86:38:a2:fc:ac:ad:6c:97:5a:9c:7a:8f:6b: a7:6d:3f:35:3a:ae:f6:35:b7:57:80:1c:df:06:71:14:09:d6: ef:b4:34:e0:50:0b:d1:f5:8b:d3:0e:41:44:50:83:78:3e:3f: 3d:0c:98:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjQwNDI3MDIxMTIzWhcNMjQwNTA0MDIxMTIzWjAYMRYwFAYD VQQDEw02NjJjNWVjYi04NDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1okxBvLOicyx+K1IHE8D05hvtKJ95n5nWeAjJZ2cReSoW/AZuEQiOtdxtNk/ Z+19LCiiZIJMosgve5rq2wyIFmshEDtCcxNOIw6e0gN4UaoiTml2m0H2hRFZ8e43 9W3f+Jvc1Y1hrMVvG48U1cswtPCPTYUuJVsyfh3k8VqereFjIvM3oGDKIDvNex3z 7D4L4fBENwxwWYk4QefPJ+STBrpZp8+nimONCcUGFPjyjKHJE83LDW3h7amkVOyc YabPklZEWXFQqO5ENdjuSpstoWMrz4Kroh4+/bLN3qv1oiz17vHci6glA/wHoZPw ycpWYOGFavkL4/vKLIIiNkYSvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFQzHzP TdXg6WVGFDkH6CaEOl4tMB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERGMS9FMzc5RDVBMDJDRDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkw cHpRVGhEcHNMd0JMNzhNcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhtT2dxsDpaTfIblsBOgPI5sqnL/7eTLqEjHPEFpvNmbl1tbHJdn6I tMGQJ4pD187zUnnoNZjTMdS4MU1K8nAybYpOm+rQWGChTyzuHYdrulPzzmWRIgAs d1D5xqSsgEx658mFCcYDK71Opka0NPOULfGqU0aWR1Q8AF4GPmJCb0NQNeCRFYLQ 5gewDLNMofQHzdCl9Nig0/p9bBf42QtTkNVN0KvA4rVGvfP83zJ1i3qUs6NeAEA3 hnerWP3LDBIYbxrJoecc+cd294Y4ovysrWyXWpx6j2unbT81Oq72NbdXgBzfBnEU CdbvtDTgUAvR9YvTDkFEUIN4Pj89DJg4 -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:01 2024 by rpki-client on console-ams.rpki-client.org