$ rpki-client -vvf rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft File: WRGN11PwUw7cK4w74mO-2wzOvA4.mft (raw, json) Hash identifier: UMRINpiNR39S4oeDa0xNOMfwS4gLetrQcwXE995zEF8= Subject key identifier: DA:F8:72:61:62:AE:89:04:69:61:9E:7A:85:EA:D7:9E:FF:F4:F7:DD Authority key identifier: 59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E Certificate issuer: /CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft Manifest number: 0274 Signing time: Mon 25 Nov 2024 01:03:44 +0000 Manifest this update: Mon 25 Nov 2024 01:03:44 +0000 Manifest next update: Mon 02 Dec 2024 01:03:44 +0000 Files and hashes: 1: WRGN11PwUw7cK4w74mO-2wzOvA4.crl (hash: 2sK6HdFUga6wjJ0P4071hlItWBOhBQNQAV4TK/30Ui0=) 2: 6967C1F494F711EF905E5F13C4F9AE02.roa (hash: SKYjC2+Kll4ZZKRgRzaVrVL/om+GJv0anlAPWT1K3TE=) 3: E15780AA32E111EFB163924BC4F9AE02.roa (hash: +tMP8g15DFcYp7mMqY0WVEOydxXfPdFwqrShsC1V228=) 4: 8409527078B011EE8D737723C4F9AE02.roa (hash: 0ZYVM7VxDyYQJk7ae/RUp5ynDYTJuRZ5sT+0mo9VS4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Validity Not Before: Nov 25 01:03:44 2024 GMT Not After : Dec 2 01:03:44 2024 GMT Subject: CN=6743ccf0-8855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:91:ec:e7:99:3e:95:de:15:a0:05:51:25:c3: 21:e5:10:f2:d1:25:13:df:60:6e:a9:fe:36:49:98: 57:e7:4c:a8:91:9b:2d:ed:53:26:11:57:50:12:fe: c0:02:90:38:1c:b4:b1:eb:07:c2:32:8d:7f:37:aa: 89:1d:e1:23:67:ad:a0:d8:7f:53:e3:b2:af:19:e7: 0b:07:a6:07:b2:41:93:b0:60:a6:76:6e:d2:51:05: 62:64:07:b7:1c:64:f7:d6:76:a1:c8:cb:64:91:18: 29:60:29:01:4a:a4:3a:e0:e3:c9:a2:09:f9:d3:50: 35:c6:f5:c1:c7:ba:c3:96:88:5b:17:74:7c:ff:1e: fe:a4:b8:21:57:49:df:51:44:e3:90:ee:44:bb:f1: 30:e7:41:37:bf:3b:5a:67:51:de:00:b6:89:a9:7e: 04:ab:6c:d6:99:02:fa:48:1d:d5:94:37:f9:37:11: bc:62:79:ca:32:ee:19:35:c5:fa:f5:2a:bc:7b:e9: be:69:7b:46:4f:d1:68:98:a2:55:d8:f5:d7:66:af: d4:93:40:d6:bb:23:eb:22:cf:bc:ae:45:29:ca:aa: 80:78:27:fd:b2:a8:cd:2e:21:53:37:f2:8f:4e:9d: bd:8a:86:50:17:27:7e:9c:e4:34:83:a6:6c:9d:0f: d9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F8:72:61:62:AE:89:04:69:61:9E:7A:85:EA:D7:9E:FF:F4:F7:DD X509v3 Authority Key Identifier: keyid:59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:3b:11:02:50:5a:f6:98:40:e4:03:9a:ad:7b:65:1c:11:4c: 25:77:50:46:e6:e5:c2:5a:ba:ec:ae:cb:84:23:2f:9d:84:5b: 28:8b:e7:d0:d5:eb:9e:29:2e:23:4b:03:75:8d:1a:1d:0f:cb: 75:5a:74:c6:f3:ed:27:77:bc:f4:10:9e:ff:e0:fa:ef:20:d3: be:91:b9:bd:53:07:76:0b:a7:fb:42:c4:8a:26:0b:50:98:c3: 61:4f:2e:a6:da:6b:09:73:e4:91:b9:16:64:09:9e:43:6b:3b: 99:1d:46:b0:ec:e8:e4:f0:9e:ed:18:e9:f2:17:59:f8:00:e7: db:fe:45:bf:a4:09:aa:5d:9b:d7:fe:15:d0:25:25:50:b3:a1: 47:28:88:49:68:c6:99:65:d6:04:18:68:27:79:81:d6:cd:3f: ae:c5:03:68:57:3b:55:f2:5f:db:d8:e4:e9:a2:a9:6f:d0:5b: 71:d3:41:6c:8b:8e:e3:b7:eb:f0:e8:94:e4:a1:1e:f2:ad:6f: ce:6f:ed:dc:28:9b:01:c4:79:bc:bf:2e:b1:17:80:31:de:41: 1c:32:92:17:3b:11:f6:f7:fc:9b:5c:29:5e:c6:02:ec:0b:84: 38:49:27:b3:e1:c5:ec:12:a4:d3:68:75:1a:58:3b:20:0c:26: 7e:22:6a:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEyRkIxMTAvBgNVBAUTKDU5MTE4REQ3NTNGMDUzMEVEQzJCOEMzQkUyNjNCRURC MENDRUJDMEUwHhcNMjQxMTI1MDEwMzQ0WhcNMjQxMjAyMDEwMzQ0WjAYMRYwFAYD VQQDEw02NzQzY2NmMC04ODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpHs55k+ld4VoAVRJcMh5RDy0SUT32Buqf42SZhX50yokZst7VMmEVdQEv7A ApA4HLSx6wfCMo1/N6qJHeEjZ62g2H9T47KvGecLB6YHskGTsGCmdm7SUQViZAe3 HGT31nahyMtkkRgpYCkBSqQ64OPJogn501A1xvXBx7rDlohbF3R8/x7+pLghV0nf UUTjkO5Eu/Ew50E3vztaZ1HeALaJqX4Eq2zWmQL6SB3VlDf5NxG8YnnKMu4ZNcX6 9Sq8e+m+aXtGT9FomKJV2PXXZq/Uk0DWuyPrIs+8rkUpyqqAeCf9sqjNLiFTN/KP Tp29ioZQFyd+nOQ0g6ZsnQ/Z4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNr4cmFi rokEaWGeeoXq157/9PfdMB8GA1UdIwQYMBaAFFkRjddT8FMO3CuMO+JjvtsMzrwO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTJGQi9FMEQ2NDUxNEVE MUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3N2NLNHc3NG1PLTJ3ek92 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dSR04xMVB3VXc3Y0s0dzc0bU8tMnd6T3ZBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTJGQi9FMEQ2NDUxNEVEMUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3 N2NLNHc3NG1PLTJ3ek92QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiOxECUFr2mEDkA5qte2UcEUwld1BG5uXCWrrsrsuEIy+dhFsoi+fQ 1eueKS4jSwN1jRodD8t1WnTG8+0nd7z0EJ7/4PrvINO+kbm9Uwd2C6f7QsSKJgtQ mMNhTy6m2msJc+SRuRZkCZ5DazuZHUaw7Ojk8J7tGOnyF1n4AOfb/kW/pAmqXZvX /hXQJSVQs6FHKIhJaMaZZdYEGGgneYHWzT+uxQNoVztV8l/b2OTpoqlv0Ftx00Fs i47jt+vw6JTkoR7yrW/Ob+3cKJsBxHm8vy6xF4Ax3kEcMpIXOxH29/ybXClexgLs C4Q4SSez4cXsEqTTaHUaWDsgDCZ+Imqc -----END CERTIFICATE-----Generated at Mon Nov 25 02:49:04 2024 by rpki-client on console-ams.rpki-client.org