$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft File: W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft (raw, json) Hash identifier: /hNnT5i+p23LIo7LWIPI0/9B5oFX2c6zbEs1YpwqTV0= Subject key identifier: E7:E5:E1:18:CB:4F:6B:5F:B0:25:40:30:DC:B8:8E:1F:7D:28:0E:7C Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft Manifest number: 76 Signing time: Thu 21 Nov 2024 04:51:56 +0000 Manifest this update: Thu 21 Nov 2024 04:51:55 +0000 Manifest next update: Thu 28 Nov 2024 04:51:55 +0000 Files and hashes: 1: W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl (hash: Oda81rikRPaytXfDPhx41ZJgdR6OOvTwkKoHEI6qG6Y=) 2: FD990E7AF0B311EE9923BC84C4F9AE02.roa (hash: UunbX0mH3OsfQ0HkJCqaF4weWk5/aIz4Kwft7QzCBww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Nov 21 04:51:55 2024 GMT Not After : Nov 28 04:51:55 2024 GMT Subject: CN=673ebc6b-c479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3b:45:78:bf:48:7e:88:7d:18:e7:59:25:da: db:e7:71:9f:87:aa:04:1b:b9:32:23:f4:8a:fb:fe: 6d:a6:37:85:0b:8f:a0:2a:44:e5:3b:29:0b:d3:21: ba:62:e7:6d:1d:36:c5:b2:0f:6f:4c:74:67:08:2b: 38:c8:38:79:1f:3f:0b:7a:46:ad:86:2b:9d:04:34: 27:75:8b:d1:19:7c:71:28:ab:7b:07:49:1b:09:b9: 08:e0:c2:fa:6c:e3:ab:70:57:bf:c6:f2:ee:29:d3: e3:73:9b:2d:d2:d6:2d:04:44:10:20:e8:2c:6e:5e: 88:ba:4a:0d:44:d3:e3:c6:61:e1:c0:e4:2f:d1:82: c4:df:f7:71:d0:01:97:d6:0e:bc:ec:e6:f6:6b:47: df:8b:0a:60:e7:06:76:19:80:75:f0:8d:dd:5b:e4: 16:42:c8:39:c5:60:b2:42:c3:f4:68:1a:8a:d6:a3: 64:6d:bd:6f:73:71:02:35:3c:23:d5:a4:b6:f2:1f: d6:05:30:b9:c5:57:7d:c5:bc:4c:86:f6:eb:86:67: f2:a7:ac:9d:1e:c6:cc:95:d4:19:33:a0:40:ff:dd: eb:d9:3f:fa:7c:5a:19:1a:96:05:57:44:6a:bb:09: 94:f9:56:4a:d7:72:37:16:84:0e:2a:5d:2d:1a:4b: 13:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E5:E1:18:CB:4F:6B:5F:B0:25:40:30:DC:B8:8E:1F:7D:28:0E:7C X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:44:e4:c1:66:47:d0:0f:b5:64:19:8c:ef:69:03:c9:5b:93: 79:ea:bb:74:f3:fc:54:49:5c:14:ed:78:f3:45:d5:47:11:cb: 63:30:41:61:0a:1b:89:84:d7:21:de:0b:4f:75:ca:6b:f3:f0: 11:87:13:98:20:e3:e2:4a:fb:58:a8:4b:14:38:22:5b:b7:e1: 90:20:3b:f0:8d:7e:13:02:62:32:d9:a0:7a:8b:bd:4b:82:9c: b5:e5:88:00:0e:2c:76:d5:d8:bd:4c:a0:6f:d0:1b:5f:21:ea: 82:84:eb:77:cc:ed:71:dd:33:79:8f:ab:87:2f:b0:39:94:ea: e8:49:73:af:cf:c1:99:2d:f0:a1:57:4e:78:34:67:4e:cc:83: 4f:52:1c:74:a0:4f:16:d0:1d:da:11:20:7a:e9:03:1f:ed:7c: 1f:f8:19:12:52:ed:1e:1b:bc:a4:bc:39:97:5b:2d:1e:6c:0f: 8e:db:cf:73:ff:31:a6:e5:07:34:8d:12:e6:93:e4:c6:95:48: 07:7e:14:f0:46:f0:96:80:54:b3:95:7c:36:e2:6d:7c:41:ca: e3:3b:f2:64:9b:33:fc:71:08:f1:77:2f:3b:23:e6:b1:0d:11: 17:a4:81:b5:0c:2f:39:53:d5:98:9f:92:c7:df:ba:95:8e:cb: 37:1a:b4:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTg4MjExMC8GA1UEBRMoNUJDNDk0RTg5RDBBNDE1NUI1NTI1MzYzRDEyMzVDNUVE QzBGREUyRjAeFw0yNDExMjEwNDUxNTVaFw0yNDExMjgwNDUxNTVaMBgxFjAUBgNV BAMTDTY3M2ViYzZiLWM0NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJO0V4v0h+iH0Y51kl2tvncZ+HqgQbuTIj9Ir7/m2mN4ULj6AqROU7KQvTIbpi 520dNsWyD29MdGcIKzjIOHkfPwt6Rq2GK50ENCd1i9EZfHEoq3sHSRsJuQjgwvps 46twV7/G8u4p0+Nzmy3S1i0ERBAg6CxuXoi6Sg1E0+PGYeHA5C/RgsTf93HQAZfW Drzs5vZrR9+LCmDnBnYZgHXwjd1b5BZCyDnFYLJCw/RoGorWo2RtvW9zcQI1PCPV pLbyH9YFMLnFV33FvEyG9uuGZ/KnrJ0exsyV1BkzoED/3evZP/p8WhkalgVXRGq7 CZT5VkrXcjcWhA4qXS0aSxNtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5+XhGMtP a1+wJUAw3LiOH30oDnwwHwYDVR0jBBgwFoAUW8SU6J0KQVW1UlNj0SNcXtwP3i8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxODgyL0E4QzI1MUVBRjBC MzExRUVBNEM3MkY4NEM0RjlBRTAyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNp OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVzhTVTZKMEtRVlcxVWxOajBTTmNYdHdQM2k4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx ODgyL0E4QzI1MUVBRjBCMzExRUVBNEM3MkY4NEM0RjlBRTAyL1c4U1U2SjBLUVZX MVVsTmowU05jWHR3UDNpOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHFE5MFmR9APtWQZjO9pA8lbk3nqu3Tz/FRJXBTtePNF1UcRy2MwQWEK G4mE1yHeC091ymvz8BGHE5gg4+JK+1ioSxQ4Ilu34ZAgO/CNfhMCYjLZoHqLvUuC nLXliAAOLHbV2L1MoG/QG18h6oKE63fM7XHdM3mPq4cvsDmU6uhJc6/PwZkt8KFX Tng0Z07Mg09SHHSgTxbQHdoRIHrpAx/tfB/4GRJS7R4bvKS8OZdbLR5sD47bz3P/ MablBzSNEuaT5MaVSAd+FPBG8JaAVLOVfDbibXxByuM78mSbM/xxCPF3Lzsj5rEN ERekgbUMLzlT1ZifksffupWOyzcatLE= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:06 2024 by rpki-client on console-ams.rpki-client.org