$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft File: wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft (raw, json) Hash identifier: 0rN5wgbRQD3NEEAh/SxnmDqapmYOLpyJCyk/CypV3yg= Subject key identifier: 4B:AC:A1:77:E8:1C:98:BB:C9:9C:C0:5F:BE:AC:85:6B:50:28:8C:BA Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft Manifest number: 3E Signing time: Thu 21 Nov 2024 05:32:30 +0000 Manifest this update: Thu 21 Nov 2024 05:32:30 +0000 Manifest next update: Thu 28 Nov 2024 05:32:30 +0000 Files and hashes: 1: wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl (hash: Me4pxuSrjTIROlYybiBA1/x2sRxyGLbVjKYkNfBNTLE=) 2: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (hash: EOPx00rRZjGS/73Br0xTrWoW0kA4+3+SpewBHZe+BK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Nov 21 05:32:30 2024 GMT Not After : Nov 28 05:32:30 2024 GMT Subject: CN=673ec5ee-6cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:82:6f:cb:44:ad:7e:84:18:71:f0:3a:db:14: 3a:aa:b0:a5:2d:b6:35:69:ec:27:c5:b0:8b:09:e8: 94:2f:ab:3d:a5:f5:39:08:c7:37:b3:23:fa:4c:ce: f5:ac:21:e4:de:dd:21:e5:39:51:cd:9c:8c:52:32: d8:b6:11:d8:78:32:be:fa:7d:ba:c6:81:f2:5e:4d: fe:2f:9a:3a:f2:77:32:35:45:71:89:cb:a6:9b:30: 49:40:16:0b:0c:0d:5f:a1:c2:0e:46:03:7e:c2:0f: cd:8c:8f:10:a7:21:88:68:a0:22:ea:44:ad:59:17: 70:e1:ca:81:8b:05:dc:ab:3d:1f:01:42:0e:e8:45: cc:08:9d:9d:69:bc:98:62:2f:c2:5c:18:3a:0e:47: ba:bb:37:79:7f:b8:a5:68:be:f4:d7:a3:70:9d:dc: 1f:6d:e4:e0:c5:ce:15:03:99:93:d7:4f:89:07:1c: 0f:59:bf:8c:70:25:a9:1c:bb:01:4c:c1:b0:e4:35: 8b:72:05:77:6b:93:a8:45:a1:e2:0d:73:4e:14:b1: 90:d8:7f:c9:c0:01:0a:a2:12:ef:22:de:3f:ed:60: 58:0b:02:85:02:44:e9:5f:48:fb:fc:ba:1c:06:3f: 3d:50:aa:4b:35:13:5e:75:03:63:d7:99:e2:66:2b: e7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AC:A1:77:E8:1C:98:BB:C9:9C:C0:5F:BE:AC:85:6B:50:28:8C:BA X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f4:7b:05:a6:8b:94:26:c9:0c:d3:33:86:34:23:5f:f9:a8: e6:8f:d4:84:81:72:a8:56:14:18:b0:2c:b1:f5:66:88:ce:80: 0e:1b:0e:2c:53:27:69:ea:dd:87:b3:b4:72:22:9a:7d:30:a9: 37:96:f1:f9:29:a5:62:b5:28:bb:f5:7d:f4:f3:b4:09:c3:88: eb:2d:eb:85:9f:ad:d6:bb:4a:3b:f1:04:68:e7:3e:1d:b6:78: a0:b9:e5:8b:95:25:af:81:1c:e6:f2:b0:c8:60:9a:3c:62:8e: 90:ad:22:aa:31:ac:bf:83:79:bf:9e:e3:80:10:b2:6c:63:d4: 44:52:af:02:55:ff:f4:27:7c:71:2a:70:b0:ae:d8:0b:e7:8d: bb:1d:36:14:08:f0:ba:b1:d9:58:4f:23:b1:58:06:a7:8b:e4: 5d:f5:d2:56:17:21:a5:9c:70:4e:6d:54:5e:3c:cd:5e:23:57: 9f:dc:d6:1f:fe:a7:76:28:11:b9:23:07:24:9f:c7:13:70:cb: 7e:9f:ad:18:20:42:07:e4:13:a2:bd:e9:38:12:55:cb:c3:6a: 1c:7e:6e:a3:ce:bf:2c:09:52:74:04:8d:27:a5:5a:7e:c5:73: fc:c1:47:2f:87:e1:dc:77:ff:b8:b4:64:6e:65:87:3f:de:7f: 1f:b5:6d:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDFGOTExMC8GA1UEBRMoQzI3QUUxRDE2NDcyOUY0M0Q5RTBGQTY0QkU1MUQwQjZB RTA5RUI5OTAeFw0yNDExMjEwNTMyMzBaFw0yNDExMjgwNTMyMzBaMBgxFjAUBgNV BAMTDTY3M2VjNWVlLTZjYjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDagm/LRK1+hBhx8DrbFDqqsKUttjVp7CfFsIsJ6JQvqz2l9TkIxzezI/pMzvWs IeTe3SHlOVHNnIxSMti2Edh4Mr76fbrGgfJeTf4vmjrydzI1RXGJy6abMElAFgsM DV+hwg5GA37CD82MjxCnIYhooCLqRK1ZF3DhyoGLBdyrPR8BQg7oRcwInZ1pvJhi L8JcGDoOR7q7N3l/uKVovvTXo3Cd3B9t5ODFzhUDmZPXT4kHHA9Zv4xwJakcuwFM wbDkNYtyBXdrk6hFoeINc04UsZDYf8nAAQqiEu8i3j/tYFgLAoUCROlfSPv8uhwG Pz1Qqks1E151A2PXmeJmK+czAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS6yhd+gc mLvJnMBfvqyFa1AojLowHwYDVR0jBBgwFoAUwnrh0WRyn0PZ4PpkvlHQtq4J65kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMUY5LzQwMkVEMjcyNEFD RjExRUZCODIxOEUxNUM0RjlBRTAyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd25yaDBXUnluMFBaNFBwa3ZsSFF0cTRKNjVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MUY5LzQwMkVEMjcyNEFDRjExRUZCODIxOEUxNUM0RjlBRTAyL3ducmgwV1J5bjBQ WjRQcGt2bEhRdHE0SjY1ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB/0ewWmi5QmyQzTM4Y0I1/5qOaP1ISBcqhWFBiwLLH1ZojOgA4bDixT J2nq3YeztHIimn0wqTeW8fkppWK1KLv1ffTztAnDiOst64Wfrda7SjvxBGjnPh22 eKC55YuVJa+BHObysMhgmjxijpCtIqoxrL+Deb+e44AQsmxj1ERSrwJV//QnfHEq cLCu2AvnjbsdNhQI8Lqx2VhPI7FYBqeL5F310lYXIaWccE5tVF48zV4jV5/c1h/+ p3YoEbkjBySfxxNwy36frRggQgfkE6K96TgSVcvDahx+bqPOvywJUnQEjSelWn7F c/zBRy+H4dx3/7i0ZG5lhz/efx+1bZw= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org