$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft File: WaZHKO4B1q40_newHohZyCCX5X8.mft (raw, json) Hash identifier: 0lx8yhdC6fSatVx09ShzGZvYRos9aYcCylQUa1dO5pk= Subject key identifier: A3:61:6C:F4:34:7E:5E:AE:C5:2E:57:EC:F0:C5:61:77:AC:68:FD:E3 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 20FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft Manifest number: 20E1 Signing time: Fri 22 Nov 2024 15:56:15 +0000 Manifest this update: Fri 22 Nov 2024 15:56:15 +0000 Manifest next update: Fri 29 Nov 2024 15:56:15 +0000 Files and hashes: 1: WaZHKO4B1q40_newHohZyCCX5X8.crl (hash: IMJj/Ya+hknIccx4YwKq5zfsGi9digrB5bdwQY0duF8=) 2: 9B1ABC54486111E8AA9B1B45C4F9AE02.roa (hash: s53j2skJsnDb4ejjn3tNze/p8sESg8UDFgbdXAnasB4=) 3: 431D19069E8211EAAD86AC51C4F9AE02.roa (hash: P4AZv++I8EWWlQck4s2dxs4RaVdYX4EVzJLdNjcAR5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8442 (0x20fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Nov 22 15:56:15 2024 GMT Not After : Nov 29 15:56:15 2024 GMT Subject: CN=6740a99f-565c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:12:ac:88:4c:03:93:5d:15:88:6b:41:d8:10: 54:ee:5a:03:50:d1:88:79:69:69:e3:29:73:4a:d1: 26:21:37:ff:5e:31:96:23:99:25:65:95:bb:59:de: 2e:3f:ff:b1:3c:47:a8:c8:18:70:af:a4:85:1e:e5: c3:43:88:82:35:cc:dd:82:53:9d:cd:f8:27:aa:4b: b1:ee:46:c3:09:95:fe:12:85:0e:21:2a:0e:2e:be: 1d:e3:28:bb:8d:4e:ca:27:d9:b4:f4:71:50:36:ee: 27:cc:d4:40:14:89:39:90:08:dc:57:51:d6:d9:52: 5d:4a:af:0a:ee:83:f6:d3:c8:49:79:04:d2:59:40: 6b:e6:8d:b4:24:ae:85:a7:7d:43:36:31:53:54:8c: 88:e3:75:4f:81:4a:43:ef:19:01:5c:23:b6:45:98: 97:ac:88:ee:54:d6:c0:a6:68:1b:a2:37:4a:1b:d9: ef:72:ff:eb:0b:6c:90:ee:7b:71:de:b2:c7:08:ff: 75:98:89:d3:c2:dc:9e:12:fd:a1:f0:9d:08:7d:ca: 42:a0:a7:b4:e0:7b:41:dc:7b:06:46:4e:c6:da:85: cd:9b:f0:66:ee:85:03:d2:4f:46:c3:42:d9:53:cf: 43:24:ab:d1:cb:02:c8:fd:6a:60:e6:74:78:c2:bc: 10:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:61:6C:F4:34:7E:5E:AE:C5:2E:57:EC:F0:C5:61:77:AC:68:FD:E3 X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:29:d5:22:d2:49:26:8e:2b:31:cf:f6:32:ca:0d:39:b6:02: c3:31:53:d6:8a:49:2d:ce:01:47:64:a3:07:00:b5:a9:75:3b: b1:5e:02:39:61:83:0b:09:0f:01:98:0a:49:ea:4b:6f:17:f0: 54:dc:01:a0:b2:23:d8:c9:2e:4a:2f:3e:0d:79:8b:4f:75:06: 0e:69:be:7a:77:ea:c4:13:76:2f:4e:30:bc:34:97:72:05:f1: f5:86:fd:12:b2:fd:df:3d:92:61:a7:8e:44:26:52:20:78:08: 4a:c8:39:25:8c:0c:1d:39:65:23:a1:b7:79:ae:1a:eb:d7:09: 18:7a:36:0e:55:8f:37:40:3a:51:bd:c1:4d:e2:61:db:e5:b8: e8:43:7c:f1:b6:03:dc:be:77:bc:92:25:97:39:2d:a5:a1:2c: 21:96:e5:c8:c6:6b:26:08:91:f4:df:7a:d8:59:39:05:cd:9a: 00:1e:ad:59:4e:12:64:09:bf:75:c9:4e:0e:cf:c8:71:81:df: 75:ae:c7:79:0a:61:a4:e9:0e:4f:67:e9:89:78:6b:5c:2c:5e: 75:d9:bc:c9:94:10:30:01:e4:1f:35:c0:7e:ee:17:7f:1a:fe: 8f:5e:e5:1e:31:a2:bf:4b:ef:e6:86:36:bf:e6:6f:9d:b7:38: 6d:79:65:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjQxMTIyMTU1NjE1WhcNMjQxMTI5MTU1NjE1WjAYMRYwFAYD VQQDEw02NzQwYTk5Zi01NjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBKsiEwDk10ViGtB2BBU7loDUNGIeWlp4ylzStEmITf/XjGWI5klZZW7Wd4u P/+xPEeoyBhwr6SFHuXDQ4iCNczdglOdzfgnqkux7kbDCZX+EoUOISoOLr4d4yi7 jU7KJ9m09HFQNu4nzNRAFIk5kAjcV1HW2VJdSq8K7oP208hJeQTSWUBr5o20JK6F p31DNjFTVIyI43VPgUpD7xkBXCO2RZiXrIjuVNbApmgbojdKG9nvcv/rC2yQ7ntx 3rLHCP91mInTwtyeEv2h8J0IfcpCoKe04HtB3HsGRk7G2oXNm/Bm7oUD0k9Gw0LZ U89DJKvRywLI/Wpg5nR4wrwQnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNhbPQ0 fl6uxS5X7PDFYXesaP3jMB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjI3Ri85QzMyNTZBMkU5OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFx NDBfbmV3SG9oWnlDQ1g1WDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsKdUi0kkmjisxz/Yyyg05tgLDMVPWikktzgFHZKMHALWpdTuxXgI5 YYMLCQ8BmApJ6ktvF/BU3AGgsiPYyS5KLz4NeYtPdQYOab56d+rEE3YvTjC8NJdy BfH1hv0Ssv3fPZJhp45EJlIgeAhKyDkljAwdOWUjobd5rhrr1wkYejYOVY83QDpR vcFN4mHb5bjoQ3zxtgPcvne8kiWXOS2loSwhluXIxmsmCJH033rYWTkFzZoAHq1Z ThJkCb91yU4Oz8hxgd91rsd5CmGk6Q5PZ+mJeGtcLF512bzJlBAwAeQfNcB+7hd/ Gv6PXuUeMaK/S+/mhja/5m+dtzhteWX6 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org