$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft File: WF3cT9n54xQAXzcZj9HiLmgknes.mft (raw, json) Hash identifier: KKOmPDncREHHzkglMxF19PLqxm6hoaxyJQbSuFbkdM8= Subject key identifier: AE:E7:FF:09:89:01:3F:5B:8B:9B:BE:10:1E:7A:11:FA:B7:C4:7A:3F Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 03D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft Manifest number: 03D5 Signing time: Thu 19 Sep 2024 00:28:56 +0000 Manifest this update: Thu 19 Sep 2024 00:28:55 +0000 Manifest next update: Thu 26 Sep 2024 00:28:55 +0000 Files and hashes: 1: WF3cT9n54xQAXzcZj9HiLmgknes.crl (hash: Jr2D/o0TnL53SqAQntevuifIqjmhDoZez4fxvYajyU4=) 2: 5431D022524211ECA52D990FC4F9AE02.roa (hash: QBD6YJv6MqaQvb/fyqpzOOca05ASQtdQe3enzaytMzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Sep 2024 23:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 985 (0x3d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Sep 19 00:28:55 2024 GMT Not After : Sep 26 00:28:55 2024 GMT Subject: CN=66eb7048-d5a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:11:47:a6:49:c9:4d:c8:38:51:03:46:0c:76: 22:d6:f3:cd:25:20:13:96:41:b9:8d:e6:dd:4c:e3: 2a:36:bb:b0:e4:89:cc:97:33:56:1a:11:8e:0e:f1: 3f:5a:5b:14:c8:bd:0c:ee:3e:6e:ed:fc:74:47:09: 6a:d1:29:ef:86:59:49:d0:67:e6:91:b8:65:e5:ce: 84:68:bc:e4:08:97:8a:e8:13:1b:03:6f:48:ef:40: e8:0f:a9:d0:dc:3d:64:b7:bc:0c:56:19:4f:27:ce: 90:e3:21:0d:36:29:73:ba:91:3a:fb:dc:57:f7:8c: 63:75:d4:e3:1d:55:82:50:ce:dc:1c:27:8e:78:c0: ea:18:6e:71:35:7e:4e:35:6d:15:f8:05:12:e8:c3: f9:4d:53:7b:7a:c3:84:3f:67:fc:25:dc:dc:5a:6c: d0:25:b6:a6:e7:8b:4e:20:6c:f6:af:8e:c6:01:80: da:5d:49:e0:37:27:c4:4f:be:a7:f2:a9:c2:e5:ef: 7e:48:d7:12:a6:66:4d:73:3c:66:c1:ef:12:b2:6c: a2:dc:56:e8:78:cd:4c:af:1a:c8:9b:ca:4c:84:77: ca:2b:12:a6:f1:4c:a3:8b:fd:e2:d4:34:b0:77:e6: 54:14:c0:45:d7:e9:fc:5d:79:1b:09:22:d1:59:17: 07:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E7:FF:09:89:01:3F:5B:8B:9B:BE:10:1E:7A:11:FA:B7:C4:7A:3F X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:c8:25:46:c6:a2:0a:dc:8f:b7:2a:6b:ee:0c:97:53:ab:21: 65:8a:89:c0:7b:1a:25:10:ed:07:e9:91:23:e5:26:5d:68:bf: 1e:72:97:be:ad:0a:57:1b:f4:7c:3d:9e:01:ed:e8:81:c4:88: 9a:6c:2a:04:25:37:e8:52:74:60:76:97:3f:76:52:64:2a:2d: 6b:d5:4b:ed:48:6d:4a:72:94:dd:b4:7d:50:cf:4e:e2:47:03: f0:98:37:18:9d:8a:a9:ce:70:74:ba:b8:b0:7c:e6:81:2b:b3: 48:41:f0:37:66:47:9c:b6:81:a0:40:06:1b:c8:0a:49:71:da: 3d:3e:e5:81:6b:81:46:a3:a7:05:6c:33:f1:60:c3:9a:c4:ad: 00:43:ef:95:08:6a:67:cf:22:1b:64:2b:3b:6c:38:69:49:5b: e8:42:f1:81:ca:2a:f0:2c:45:7a:c5:aa:34:e8:59:ed:0a:3b: 52:29:aa:f4:47:6b:3b:b0:da:dd:7d:0c:ea:67:0b:ec:89:12: 20:79:89:02:72:9f:03:29:7f:e5:7e:e9:d5:65:df:7c:3e:bf: a3:d7:a0:7c:3e:10:98:52:61:35:87:c5:cb:04:29:03:f9:13: 9b:44:c2:14:24:78:66:27:be:2d:44:33:26:62:e6:a7:43:3d: 21:b6:19:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjQwOTE5MDAyODU1WhcNMjQwOTI2MDAyODU1WjAYMRYwFAYD VQQDEw02NmViNzA0OC1kNWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRFHpknJTcg4UQNGDHYi1vPNJSATlkG5jebdTOMqNruw5InMlzNWGhGODvE/ WlsUyL0M7j5u7fx0Rwlq0SnvhllJ0Gfmkbhl5c6EaLzkCJeK6BMbA29I70DoD6nQ 3D1kt7wMVhlPJ86Q4yENNilzupE6+9xX94xjddTjHVWCUM7cHCeOeMDqGG5xNX5O NW0V+AUS6MP5TVN7esOEP2f8JdzcWmzQJbam54tOIGz2r47GAYDaXUngNyfET76n 8qnC5e9+SNcSpmZNczxmwe8Ssmyi3FboeM1MrxrIm8pMhHfKKxKm8Uyji/3i1DSw d+ZUFMBF1+n8XXkbCSLRWRcHCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7n/wmJ AT9bi5u+EB56Efq3xHo/MB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODcxQS8wNUJEMEYzMDUyNDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4 UUFYemNaajlIaUxtZ2tuZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChyCVGxqIK3I+3KmvuDJdTqyFlionAexolEO0H6ZEj5SZdaL8ecpe+ rQpXG/R8PZ4B7eiBxIiabCoEJTfoUnRgdpc/dlJkKi1r1UvtSG1KcpTdtH1Qz07i RwPwmDcYnYqpznB0uriwfOaBK7NIQfA3ZkectoGgQAYbyApJcdo9PuWBa4FGo6cF bDPxYMOaxK0AQ++VCGpnzyIbZCs7bDhpSVvoQvGByirwLEV6xao06FntCjtSKar0 R2s7sNrdfQzqZwvsiRIgeYkCcp8DKX/lfunVZd98Pr+j16B8PhCYUmE1h8XLBCkD +RObRMIUJHhmJ74tRDMmYuanQz0hthn2 -----END CERTIFICATE-----Generated at Thu Sep 19 01:12:59 2024 by rpki-client on console-fra.rpki-client.org