$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft File: dEWTNjfMowmkwWGr_t-HecsqsT8.mft (raw, json) Hash identifier: j8A1qMXcMO3AMJTZ7gVP+SkewRjNJ99QBoprZg7tn4s= Subject key identifier: 9A:DE:87:A4:8F:16:DF:C3:A9:0C:FB:3A:70:07:B3:D0:70:6E:E5:E1 Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F Certificate issuer: /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Certificate serial: 3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft Manifest number: 3F Signing time: Sat 15 Feb 2025 07:08:17 +0000 Manifest this update: Sat 15 Feb 2025 07:08:16 +0000 Manifest next update: Sat 22 Feb 2025 07:08:16 +0000 Files and hashes: 1: dEWTNjfMowmkwWGr_t-HecsqsT8.crl (hash: VKq7ZiasCe5f1seiXGKSRqex983AnqCU+u3v/Z8TXC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C Validity Not Before: Feb 15 07:08:16 2025 GMT Not After : Feb 22 07:08:16 2025 GMT Subject: CN=67b03d61-190e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ac:dd:ed:73:2e:bc:cd:9f:8c:a0:22:84:0a: 40:ed:9c:4b:c6:88:c1:fe:74:7c:85:ae:c7:1d:2e: fa:46:af:06:42:f5:a5:ba:1b:7b:91:91:ba:1c:cc: bc:3b:48:ee:16:72:27:0a:0e:09:a5:b5:29:0d:b0: dc:2f:88:7f:59:42:ea:75:98:5e:98:2a:45:13:ad: e5:b8:c1:30:7b:89:e2:69:b6:37:e6:97:2f:ec:19: 73:39:82:3e:12:ca:a4:a4:26:94:a4:01:ed:67:1e: 87:f2:8b:eb:12:61:79:e4:22:79:68:26:d3:0a:b1: 00:ff:6d:1c:cc:16:06:22:8b:8e:e8:5c:ff:e6:5f: 77:d3:24:9d:e4:01:89:bf:75:6e:18:d7:a0:41:5b: f5:46:04:80:c9:94:45:f4:36:72:9c:94:23:cc:3e: d2:4a:b6:b1:a3:cc:e8:d1:0c:c7:22:b5:df:f6:07: 4f:92:78:8d:b4:18:27:0e:e3:70:0f:0d:1f:34:c7: 2d:a5:b6:c2:26:b1:45:37:47:bf:89:3c:82:97:0e: ad:ea:c6:3e:a7:8c:77:0c:72:9c:e5:c9:7c:40:1c: 1e:94:f3:ef:31:af:90:48:2b:d1:bd:0d:50:05:5a: 95:f9:16:78:57:8b:88:ea:e7:b8:3c:c9:20:13:d9: 7d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DE:87:A4:8F:16:DF:C3:A9:0C:FB:3A:70:07:B3:D0:70:6E:E5:E1 X509v3 Authority Key Identifier: keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:25:6f:a0:87:0a:a1:46:2b:a3:3c:47:75:c5:6d:f7:a0:20: 1f:04:25:2b:69:1c:ca:bc:5e:d7:72:d6:bf:46:3c:82:d1:2b: 19:1d:69:b9:56:09:19:0a:70:98:bd:9b:5d:e8:fe:df:5c:09: b5:95:e3:73:3d:7c:31:e6:26:a0:76:bb:f9:ec:41:7e:c5:ed: c2:ab:a3:4a:49:9b:0b:30:05:21:75:f1:2b:1d:8d:da:8b:e2: 1b:32:bf:3f:ef:f2:8f:be:fc:e5:90:b9:d0:7d:ac:12:0b:f5: b4:71:bf:86:ca:ac:b6:31:30:c3:14:1e:90:35:56:90:de:4a: 2e:62:2a:ee:4a:d9:1c:67:58:28:1c:a7:cc:40:7f:c8:9c:30: 43:a8:f9:c7:39:d4:ef:ee:b3:ec:53:26:d8:75:74:18:09:a8: 93:47:56:e5:c1:de:d3:ab:08:ba:04:e2:e1:d4:59:2d:6d:5c: 72:84:83:89:2e:bf:e0:83:31:42:62:ef:e4:28:cb:02:4c:f9: 50:f1:ea:ab:4e:24:11:8c:6b:79:2e:83:8a:46:8c:95:70:51: 30:47:30:c2:8c:d2:dc:1f:79:86:83:3f:99:34:36:4c:d9:82: fb:fc:37:1b:00:e2:1c:44:8e:d3:2a:86:60:13:93:49:45:d8: a6:70:a6:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTUzQzExMC8GA1UEBRMoNzQ0NTkzMzYzN0NDQTMwOUE0QzE2MUFCRkVERjg3NzlD QjJBQjEzRjAeFw0yNTAyMTUwNzA4MTZaFw0yNTAyMjIwNzA4MTZaMBgxFjAUBgNV BAMTDTY3YjAzZDYxLTE5MGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClrN3tcy68zZ+MoCKECkDtnEvGiMH+dHyFrscdLvpGrwZC9aW6G3uRkboczLw7 SO4WcicKDgmltSkNsNwviH9ZQup1mF6YKkUTreW4wTB7ieJptjfmly/sGXM5gj4S yqSkJpSkAe1nHofyi+sSYXnkInloJtMKsQD/bRzMFgYii47oXP/mX3fTJJ3kAYm/ dW4Y16BBW/VGBIDJlEX0NnKclCPMPtJKtrGjzOjRDMcitd/2B0+SeI20GCcO43AP DR80xy2ltsImsUU3R7+JPIKXDq3qxj6njHcMcpzlyXxAHB6U8+8xr5BIK9G9DVAF WpX5FnhXi4jq57g8ySAT2X3/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmt6HpI8W 38OpDPs6cAez0HBu5eEwHwYDVR0jBBgwFoAUdEWTNjfMowmkwWGr/t+HecsqsT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFNTNDLzI5Qjg2OTk0OTAz QTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dta3dXR3JfdC1IZWNzcXNU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEVXVE5qZk1vd21rd1dHcl90LUhlY3Nxc1Q4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF NTNDLzI5Qjg2OTk0OTAzQTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dt a3dXR3JfdC1IZWNzcXNUOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGIlb6CHCqFGK6M8R3XFbfegIB8EJStpHMq8Xtdy1r9GPILRKxkdablW CRkKcJi9m13o/t9cCbWV43M9fDHmJqB2u/nsQX7F7cKro0pJmwswBSF18SsdjdqL 4hsyvz/v8o++/OWQudB9rBIL9bRxv4bKrLYxMMMUHpA1VpDeSi5iKu5K2RxnWCgc p8xAf8icMEOo+cc51O/us+xTJth1dBgJqJNHVuXB3tOrCLoE4uHUWS1tXHKEg4ku v+CDMUJi7+QoywJM+VDx6qtOJBGMa3kug4pGjJVwUTBHMMKM0twfeYaDP5k0NkzZ gvv8NxsA4hxEjtMqhmATk0lF2KZwpoM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:24:43 2025 by rpki-client