$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft File: WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft (raw, json) Hash identifier: 4g1K4g6eT7bfoC5tL4WYhjR4zCDPoakmMi7HL9xbVpU= Subject key identifier: 15:6B:0F:8D:59:C3:25:48:0D:47:5A:76:3D:89:F5:5C:EF:6C:4B:96 Authority key identifier: 58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 Certificate issuer: /CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft Manifest number: 0166 Signing time: Sun 24 Nov 2024 16:49:07 +0000 Manifest this update: Sun 24 Nov 2024 16:49:07 +0000 Manifest next update: Sun 01 Dec 2024 16:49:07 +0000 Files and hashes: 1: WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl (hash: 9gS8GdW8fkZbMIgcSBvmlzxo9XHURirz8Slpxfw25qw=) 2: 04594232DEA011EE91181415C4F9AE02.roa (hash: vr4MknI81PzosNninlS3D7KYEuSWmLv6vTOsgW/R4Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15/serialNumber=580E466B7D4FA8649D2E0B27375EA286C6C54584 Validity Not Before: Nov 24 16:49:07 2024 GMT Not After : Dec 1 16:49:07 2024 GMT Subject: CN=67435903-ba28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:25:b4:61:6c:47:96:2d:3f:4f:ce:cb:d1:1c: ad:2a:4a:1f:9b:b7:81:d4:d4:de:54:c0:fb:8d:5d: 90:3b:2e:b7:98:2c:cf:36:ba:fa:ee:33:1c:4e:17: 05:b1:78:40:7a:6b:4e:54:dc:6a:44:87:0e:a7:87: 61:45:91:c8:67:c1:86:0d:19:7f:28:c8:20:46:01: f0:01:c4:cd:44:9b:43:5d:1f:a1:56:86:b1:45:fd: 72:a6:d1:cb:b9:e4:7f:65:5a:54:29:18:1b:16:66: 4f:fd:b2:99:a6:8d:fd:33:6f:fd:0b:2f:4f:05:0a: fb:17:4a:66:0a:68:06:23:9f:dc:11:19:59:4e:a1: df:2d:1e:cd:14:eb:fe:62:80:75:03:2c:0d:63:b9: 0e:bc:27:a0:5d:75:4d:11:2d:98:22:e2:98:93:9d: be:ba:bd:24:e6:f9:96:4d:3d:38:36:cf:33:09:6b: dc:4f:4f:27:73:18:22:9b:57:05:61:e3:81:b5:e7: 2a:d5:8b:45:6e:0f:b3:3e:b9:fd:1e:f0:4e:75:79: 44:e6:6b:cb:1d:27:29:70:a9:8c:06:4a:72:20:4e: 9a:3e:87:da:2c:eb:fd:79:11:93:80:8f:36:96:da: 14:0a:1a:2f:51:1e:46:68:34:e3:a1:22:11:37:ae: 85:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6B:0F:8D:59:C3:25:48:0D:47:5A:76:3D:89:F5:5C:EF:6C:4B:96 X509v3 Authority Key Identifier: keyid:58:0E:46:6B:7D:4F:A8:64:9D:2E:0B:27:37:5E:A2:86:C6:C5:45:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/WA5Ga31PqGSdLgsnN16ihsbFRYQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/326EB0B48DEB11ED93FAAD0FC4F9AE02/WA5Ga31PqGSdLgsnN16ihsbFRYQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:d8:f5:88:e2:01:7c:b7:04:d7:ca:ee:c3:63:03:d7:a2:26: 65:ae:6c:c3:f2:71:62:94:c4:58:d4:64:b1:6d:71:8e:b7:57: c1:ab:ef:db:f8:ca:a5:9b:fc:39:0a:b5:e7:86:af:a0:9a:86: e2:f4:b3:43:fa:1d:53:52:a2:66:1d:7d:66:ad:70:69:89:07: 91:3c:c1:9d:52:19:d2:cc:bb:1f:c6:7c:98:54:da:cd:80:ed: 75:af:24:0d:8a:e5:63:81:00:1f:42:7b:35:06:db:61:3d:e2: 93:79:ac:69:9b:1f:5e:c4:53:4a:dd:f2:b3:29:1a:cf:39:cc: e0:34:4a:db:26:64:a8:ca:e3:a0:20:60:48:52:c0:ee:3c:73: 3e:16:26:0e:7f:a1:e4:c8:bf:e4:11:ed:38:c2:fe:54:38:1d: 5b:14:bc:2e:11:00:f6:5f:a7:0d:41:28:83:c8:8c:af:1a:d9: 79:a4:0a:f9:84:c4:9e:16:a6:23:b9:21:e2:fd:e8:38:0c:ff: 1b:df:d3:0f:a2:b6:6e:9d:e5:04:00:b1:a5:a3:27:7e:39:31: b5:cf:72:ec:86:76:df:39:b2:78:b3:c7:49:e2:15:aa:a9:e2: 88:b7:d1:05:77:6a:90:cc:48:0d:a8:36:aa:a1:71:a8:5e:49: 32:f3:80:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKDU4MEU0NjZCN0Q0RkE4NjQ5RDJFMEIyNzM3NUVBMjg2 QzZDNTQ1ODQwHhcNMjQxMTI0MTY0OTA3WhcNMjQxMjAxMTY0OTA3WjAYMRYwFAYD VQQDEw02NzQzNTkwMy1iYTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSW0YWxHli0/T87L0RytKkofm7eB1NTeVMD7jV2QOy63mCzPNrr67jMcThcF sXhAemtOVNxqRIcOp4dhRZHIZ8GGDRl/KMggRgHwAcTNRJtDXR+hVoaxRf1yptHL ueR/ZVpUKRgbFmZP/bKZpo39M2/9Cy9PBQr7F0pmCmgGI5/cERlZTqHfLR7NFOv+ YoB1AywNY7kOvCegXXVNES2YIuKYk52+ur0k5vmWTT04Ns8zCWvcT08ncxgim1cF YeOBtecq1YtFbg+zPrn9HvBOdXlE5mvLHScpcKmMBkpyIE6aPofaLOv9eRGTgI82 ltoUChovUR5GaDTjoSIRN66FywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVrD41Z wyVIDUdadj2J9VzvbEuWMB8GA1UdIwQYMBaAFFgORmt9T6hknS4LJzdeoobGxUWE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS8zMjZFQjBCNDhE RUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFHU2RMZ3NuTjE2aWhzYkZS WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1dBNUdhMzFQcUdTZExnc25OMTZpaHNiRlJZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0IxNS8zMjZFQjBCNDhERUIxMUVEOTNGQUFEMEZDNEY5QUUwMi9XQTVHYTMxUHFH U2RMZ3NuTjE2aWhzYkZSWVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV2PWI4gF8twTXyu7DYwPXoiZlrmzD8nFilMRY1GSxbXGOt1fBq+/b +Mqlm/w5CrXnhq+gmobi9LND+h1TUqJmHX1mrXBpiQeRPMGdUhnSzLsfxnyYVNrN gO11ryQNiuVjgQAfQns1BtthPeKTeaxpmx9exFNK3fKzKRrPOczgNErbJmSoyuOg IGBIUsDuPHM+FiYOf6HkyL/kEe04wv5UOB1bFLwuEQD2X6cNQSiDyIyvGtl5pAr5 hMSeFqYjuSHi/eg4DP8b39MPorZuneUEALGloyd+OTG1z3LshnbfObJ4s8dJ4hWq qeKIt9EFd2qQzEgNqDaqoXGoXkky84AK -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org