$ rpki-client -vvf rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft File: WRGN11PwUw7cK4w74mO-2wzOvA4.mft (raw, json) Hash identifier: nYcHv3J4pL3AmpyuggIK9gTYB8hFR9/SkFNRc4XAQv8= Subject key identifier: 95:AE:89:F5:35:28:02:8C:C2:50:17:B5:AE:4F:CB:DE:29:97:E7:68 Authority key identifier: 59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E Certificate issuer: /CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft Manifest number: 0204 Signing time: Fri 03 May 2024 04:15:42 +0000 Manifest this update: Fri 03 May 2024 04:15:41 +0000 Manifest next update: Fri 10 May 2024 04:15:41 +0000 Files and hashes: 1: WRGN11PwUw7cK4w74mO-2wzOvA4.crl (hash: O5UAOqTA3D1C5tOvJOwooKI/pWSg2FfqgaZ3qc8i3rA=) 2: 1BB004005A5F11ED87558C5DC4F9AE02.roa (hash: gzhiY6733nAsRQa6TZbVTFq5lHDaOVITl4ckSX4MK2c=) 3: 8409527078B011EE8D737723C4F9AE02.roa (hash: Ncl+a5PXfkQi0ceg2GixYDGu2kxajLWRY1PTSbthHtY=) 4: E99BBB345A7D11ED870D4726C4F9AE02.roa (hash: 1XwKSY+eq+Y1++qgKdmdm33pEAhM2jfrsMnSz0IF6PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B12FB/serialNumber=59118DD753F0530EDC2B8C3BE263BEDB0CCEBC0E Validity Not Before: May 3 04:15:41 2024 GMT Not After : May 10 04:15:41 2024 GMT Subject: CN=663464ee-6948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:41:54:bc:5c:53:78:9d:56:28:ee:1c:81:c6: 47:58:50:a5:a5:7b:aa:7c:5e:15:c2:32:39:ca:af: 7b:db:49:62:b3:f7:db:0e:bd:2d:65:7d:77:fa:e4: 68:6c:e9:f7:78:3b:57:12:4c:b6:9b:72:fd:a2:1d: 28:16:6e:03:2a:6e:9b:ae:3d:d8:b7:d7:ca:bc:f4: bd:b8:e7:1a:6b:e9:6f:c1:e9:d1:d3:95:4c:77:e2: 2e:c4:49:d6:c8:bf:8f:fe:57:a6:11:8e:66:54:cb: 1c:a1:1b:4b:29:50:03:b0:63:6c:9e:71:88:15:5c: 80:b0:2f:b3:92:7c:33:5b:1e:f8:e0:1d:f1:03:fa: 23:bf:5e:63:d5:bd:c3:a7:c1:c3:16:09:a5:a6:e6: 30:52:a2:64:d6:bd:c4:82:2b:15:8e:76:0b:82:56: e5:1f:f5:0a:8a:bb:7b:08:c7:72:df:c3:3f:da:f5: 64:1d:d9:5a:c1:5a:82:f9:df:0c:39:90:67:87:ef: 06:7e:e7:c3:ef:a3:85:5c:1f:b9:2e:e0:e0:7f:14: f0:b3:3d:6f:03:70:9f:b9:b9:c4:bd:81:88:05:af: c7:d8:ff:c2:b8:a2:70:5b:2a:aa:0a:23:32:59:0d: 8d:70:c8:b6:ce:05:39:a2:d0:b0:bc:0d:69:d5:49: 38:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:AE:89:F5:35:28:02:8C:C2:50:17:B5:AE:4F:CB:DE:29:97:E7:68 X509v3 Authority Key Identifier: keyid:59:11:8D:D7:53:F0:53:0E:DC:2B:8C:3B:E2:63:BE:DB:0C:CE:BC:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WRGN11PwUw7cK4w74mO-2wzOvA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B12FB/E0D64514ED1D11ECB5FF2B24C4F9AE02/WRGN11PwUw7cK4w74mO-2wzOvA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c4:00:c8:69:7d:a9:b9:23:2f:cc:2b:90:fa:2e:03:40:20: 33:04:5e:3e:29:3a:dc:0f:c3:a5:df:06:43:78:2e:b1:b5:86: 51:76:a4:c5:5b:75:81:c6:ff:e5:75:28:cd:57:6b:e3:b2:c7: 13:c5:b4:cd:62:82:be:c5:bc:9c:27:77:01:57:04:af:c0:f5: cb:5d:ed:cc:d1:5c:d8:ff:d5:6c:56:59:97:a8:26:e7:6d:d7: ef:72:65:0f:7b:3d:23:44:f3:c7:3e:01:2f:4f:0b:ca:b3:4a: d0:eb:fe:02:52:4b:1f:ad:1a:1b:5c:6b:87:32:7b:0c:5a:6a: 4e:3a:ba:bb:4e:0e:af:c0:41:c3:b0:6e:47:79:4e:76:ec:0d: ea:3e:19:c7:f1:3e:9c:17:3f:16:67:a0:52:ed:29:1d:3b:20: 33:19:a8:e5:7b:7c:cd:6e:ab:3c:92:fc:cc:6a:d8:9b:61:9b: 5d:16:66:51:db:0a:41:b5:a8:c6:37:9f:89:87:6d:8b:07:7d: bf:7d:22:1e:a0:5c:ca:ae:f6:a0:0a:ab:64:5d:6a:e5:75:22: ce:3e:bd:f5:5a:49:6b:00:3d:bc:f7:da:c8:b0:88:d5:68:c2: 75:e5:b3:0a:0c:3e:f7:bc:48:5e:43:21:ef:3e:5b:5c:5d:51: 6f:29:39:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEyRkIxMTAvBgNVBAUTKDU5MTE4REQ3NTNGMDUzMEVEQzJCOEMzQkUyNjNCRURC MENDRUJDMEUwHhcNMjQwNTAzMDQxNTQxWhcNMjQwNTEwMDQxNTQxWjAYMRYwFAYD VQQDEw02NjM0NjRlZS02OTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0FUvFxTeJ1WKO4cgcZHWFClpXuqfF4VwjI5yq9720lis/fbDr0tZX13+uRo bOn3eDtXEky2m3L9oh0oFm4DKm6brj3Yt9fKvPS9uOcaa+lvwenR05VMd+IuxEnW yL+P/lemEY5mVMscoRtLKVADsGNsnnGIFVyAsC+zknwzWx744B3xA/ojv15j1b3D p8HDFgmlpuYwUqJk1r3EgisVjnYLglblH/UKirt7CMdy38M/2vVkHdlawVqC+d8M OZBnh+8GfufD76OFXB+5LuDgfxTwsz1vA3CfubnEvYGIBa/H2P/CuKJwWyqqCiMy WQ2NcMi2zgU5otCwvA1p1Uk4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWuifU1 KAKMwlAXta5Py94pl+doMB8GA1UdIwQYMBaAFFkRjddT8FMO3CuMO+JjvtsMzrwO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTJGQi9FMEQ2NDUxNEVE MUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3N2NLNHc3NG1PLTJ3ek92 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dSR04xMVB3VXc3Y0s0dzc0bU8tMnd6T3ZBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTJGQi9FMEQ2NDUxNEVEMUQxMUVDQjVGRjJCMjRDNEY5QUUwMi9XUkdOMTFQd1V3 N2NLNHc3NG1PLTJ3ek92QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAixADIaX2puSMvzCuQ+i4DQCAzBF4+KTrcD8Ol3wZDeC6xtYZRdqTF W3WBxv/ldSjNV2vjsscTxbTNYoK+xbycJ3cBVwSvwPXLXe3M0VzY/9VsVlmXqCbn bdfvcmUPez0jRPPHPgEvTwvKs0rQ6/4CUksfrRobXGuHMnsMWmpOOrq7Tg6vwEHD sG5HeU527A3qPhnH8T6cFz8WZ6BS7SkdOyAzGajle3zNbqs8kvzMatibYZtdFmZR 2wpBtajGN5+Jh22LB32/fSIeoFzKrvagCqtkXWrldSLOPr31WklrAD2899rIsIjV aMJ15bMKDD73vEheQyHvPltcXVFvKTlA -----END CERTIFICATE-----Generated at Fri May 3 05:32:35 2024 by rpki-client on console-ams.rpki-client.org