$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft File: dEWTNjfMowmkwWGr_t-HecsqsT8.mft (raw, json) Hash identifier: t3y0ursxnQDsfyGt9OyZt+L+9OTjVYKr3PhUP7p7F94= Subject key identifier: E7:3B:90:15:46:2C:55:82:5A:CD:2B:21:0D:05:26:C6:32:13:5D:78 Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F Certificate issuer: /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft Manifest number: 4D Signing time: Thu 13 Mar 2025 11:23:45 +0000 Manifest this update: Thu 13 Mar 2025 11:23:44 +0000 Manifest next update: Thu 20 Mar 2025 11:23:44 +0000 Files and hashes: 1: dEWTNjfMowmkwWGr_t-HecsqsT8.crl (hash: HLm9pSeNWkZUI7FUQrDIdlgPJiZ5j8wF9lI7PCF0tms=) 2: 9E3D544AFFFD11EF8D8A924EC4F9AE02.roa (hash: kvDpEJ4vNqB5v/40TPE8rSrj+LHjgO0UCi0Xf8q1/Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 11:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C Validity Not Before: Mar 13 11:23:44 2025 GMT Not After : Mar 20 11:23:44 2025 GMT Subject: CN=67d2c041-4be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:59:1d:16:ef:6f:00:ac:dd:d3:17:89:66:f7: 8a:58:ed:b1:5c:6f:15:8b:20:36:00:30:17:89:a3: b3:2a:4a:da:8a:de:c7:17:a9:f1:2d:98:77:bf:f6: 1a:8e:37:77:5e:2c:e8:0f:4f:3c:0e:e8:59:a5:41: 49:9c:d7:37:ff:29:b1:e9:35:f1:ea:f0:d1:47:a7: 0f:c0:e2:55:62:1c:fc:1d:3e:28:7c:a0:99:bb:b0: 00:a7:b0:ae:9f:9d:d7:96:0d:b4:92:6c:02:d5:73: f5:76:7d:8d:c8:a1:db:48:25:a5:cf:d6:9c:2d:fa: 8b:30:9d:fe:33:f6:23:fc:09:31:1c:6a:6c:74:8c: 06:b5:0b:af:97:1a:8e:d5:07:04:8c:e6:82:d7:b7: e7:70:a2:36:db:bd:5e:a7:16:0f:ba:b2:ea:70:55: 2f:88:e7:29:16:1b:21:a5:01:6a:91:48:82:e4:83: 73:d8:1a:eb:00:c7:ca:26:88:a2:13:c1:c6:05:39: d8:c4:c6:3f:a6:63:2d:83:6c:c2:e4:2f:7e:a0:ca: a8:af:69:fd:ff:fb:73:fa:6d:3c:3c:28:83:24:bc: aa:86:39:49:59:54:55:fd:1e:39:e5:13:36:92:17: 2b:35:f9:0c:22:b2:34:10:6c:be:e4:bb:4a:96:4b: a2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3B:90:15:46:2C:55:82:5A:CD:2B:21:0D:05:26:C6:32:13:5D:78 X509v3 Authority Key Identifier: keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:08:f7:1d:de:5e:66:3e:86:ad:58:ba:0a:66:8b:58:11:49: 25:93:23:a0:0c:1e:0b:2a:91:3c:4f:c5:be:93:65:0a:68:37: de:fa:79:d8:6a:63:fd:bb:f3:30:9c:7b:16:59:1e:8c:67:09: 0d:05:e3:96:ce:c5:75:b1:a8:24:b2:ca:c6:5f:62:12:92:11: e7:95:57:03:a6:80:21:00:a0:c1:5b:bb:71:67:a7:13:6c:6f: 30:1a:fd:64:ab:5f:df:d4:99:2c:13:22:1e:50:bf:fd:41:44: 38:69:67:c0:ea:c0:45:b3:07:0b:50:f9:f6:bf:d1:06:0d:ba: 91:d2:5e:ad:eb:22:b5:a8:69:eb:f5:22:e5:0d:07:84:61:c1: 7f:5f:ec:c1:6c:36:dd:41:b0:61:8a:d5:ba:64:a8:b1:d1:e8: 32:cd:ba:fe:34:ac:27:80:cd:7b:75:f6:9b:c1:fc:45:ad:58: f7:fd:36:af:7a:3a:a3:0c:f0:cf:27:02:7e:03:d1:f0:95:82: 74:77:a9:71:f5:ed:1f:d4:e7:d8:f9:34:63:9f:2c:4e:0a:30: 94:21:34:aa:b1:f1:0e:a7:d2:b7:9c:fd:ff:09:13:8c:3f:ad: ac:62:31:58:61:bf:c2:a5:4c:a0:65:af:8a:0a:98:cd:a1:65: fb:3b:d4:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTUzQzExMC8GA1UEBRMoNzQ0NTkzMzYzN0NDQTMwOUE0QzE2MUFCRkVERjg3NzlD QjJBQjEzRjAeFw0yNTAzMTMxMTIzNDRaFw0yNTAzMjAxMTIzNDRaMBgxFjAUBgNV BAMTDTY3ZDJjMDQxLTRiZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzWR0W728ArN3TF4lm94pY7bFcbxWLIDYAMBeJo7MqStqK3scXqfEtmHe/9hqO N3deLOgPTzwO6FmlQUmc1zf/KbHpNfHq8NFHpw/A4lViHPwdPih8oJm7sACnsK6f ndeWDbSSbALVc/V2fY3IodtIJaXP1pwt+oswnf4z9iP8CTEcamx0jAa1C6+XGo7V BwSM5oLXt+dwojbbvV6nFg+6supwVS+I5ykWGyGlAWqRSILkg3PYGusAx8omiKIT wcYFOdjExj+mYy2DbMLkL36gyqivaf3/+3P6bTw8KIMkvKqGOUlZVFX9HjnlEzaS Fys1+QwisjQQbL7ku0qWS6LjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5zuQFUYs VYJazSshDQUmxjITXXgwHwYDVR0jBBgwFoAUdEWTNjfMowmkwWGr/t+HecsqsT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFNTNDLzI5Qjg2OTk0OTAz QTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dta3dXR3JfdC1IZWNzcXNU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEVXVE5qZk1vd21rd1dHcl90LUhlY3Nxc1Q4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF NTNDLzI5Qjg2OTk0OTAzQTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dt a3dXR3JfdC1IZWNzcXNUOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG0I9x3eXmY+hq1Yugpmi1gRSSWTI6AMHgsqkTxPxb6TZQpoN976edhq Y/278zCcexZZHoxnCQ0F45bOxXWxqCSyysZfYhKSEeeVVwOmgCEAoMFbu3FnpxNs bzAa/WSrX9/UmSwTIh5Qv/1BRDhpZ8DqwEWzBwtQ+fa/0QYNupHSXq3rIrWoaev1 IuUNB4RhwX9f7MFsNt1BsGGK1bpkqLHR6DLNuv40rCeAzXt19pvB/EWtWPf9Nq96 OqMM8M8nAn4D0fCVgnR3qXH17R/U59j5NGOfLE4KMJQhNKqx8Q6n0rec/f8JE4w/ raxiMVhhv8KlTKBlr4oKmM2hZfs71K8= -----END CERTIFICATE-----Generated at Thu Mar 13 21:31:01 2025 by rpki-client