$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft File: dEWTNjfMowmkwWGr_t-HecsqsT8.mft (raw, json) Hash identifier: t/K7cROtF99ILcdb4CKyMJAFvGkZGaXzLKqjpp02U7A= Subject key identifier: 44:D5:3C:3D:4C:4D:56:DA:18:DB:D6:A4:18:F0:06:B8:D7:8B:B1:5E Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F Certificate issuer: /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Certificate serial: 03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft Manifest number: 03 Signing time: Wed 23 Oct 2024 05:23:51 +0000 Manifest this update: Wed 23 Oct 2024 05:23:51 +0000 Manifest next update: Wed 30 Oct 2024 05:23:51 +0000 Files and hashes: 1: dEWTNjfMowmkwWGr_t-HecsqsT8.crl (hash: 7rZkhBMnXLEi6CPPp+5piTZfYyLJrk9+DY66BEg8kFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Validity Not Before: Oct 23 05:23:51 2024 GMT Not After : Oct 30 05:23:51 2024 GMT Subject: CN=67188867-577d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:31:07:9e:ad:55:07:e2:db:59:54:6e:30:75: 29:55:af:88:f7:75:23:9d:b5:e8:5f:e0:b8:07:76: 32:6f:f9:1c:aa:0e:32:c0:a7:28:cb:74:38:57:8b: 70:82:e7:c1:93:f1:27:95:a7:83:5b:1f:d8:8f:06: 34:da:17:f9:70:4f:69:a3:9f:d2:73:92:30:71:a2: a3:87:bc:83:f6:99:1e:58:81:93:e5:78:5a:ff:9a: 02:6c:7f:28:c9:d9:94:5f:ca:ec:65:8c:d3:f1:ac: 2d:24:68:c9:a6:38:ac:2e:3e:eb:15:79:87:27:8f: 1d:b3:c7:39:48:9b:f4:a4:c5:c2:60:55:5a:5e:64: 62:90:be:d7:39:2a:5b:08:f5:81:b6:57:ed:8c:ff: 7d:44:90:5b:9b:91:64:6e:18:d9:4b:6e:5a:29:64: f2:65:81:9c:5d:ee:88:92:42:a5:43:c1:aa:a4:db: 71:c4:63:b2:af:7e:2f:8a:e2:ee:85:74:25:df:29: 4a:89:a7:19:e6:4a:d6:96:dc:25:9e:bc:fb:03:45: 68:7f:c1:e7:8a:1a:e2:ab:55:ac:be:de:2d:33:63: 77:42:ca:95:57:18:9c:ef:a9:0c:b6:5a:45:2b:26: 15:e2:42:36:83:79:43:a4:cf:27:0d:8b:47:8f:96: b5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:D5:3C:3D:4C:4D:56:DA:18:DB:D6:A4:18:F0:06:B8:D7:8B:B1:5E X509v3 Authority Key Identifier: keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:33:1c:9d:30:49:b7:88:2b:b8:0c:92:9d:1a:a1:7e:37:17: be:f4:33:1e:f0:4e:de:61:92:d9:d8:dc:18:ac:9d:ca:2c:7f: 25:7d:2b:39:ef:f9:ed:00:2f:86:4d:bc:74:40:33:e0:0a:1b: b2:a6:f2:be:93:a4:2a:f0:3f:a5:81:ba:f4:ca:ef:0d:09:68: 5b:6a:53:ed:f2:bf:d6:61:1e:f7:61:d4:c6:f8:10:bc:9d:2e: a8:11:71:52:eb:48:2e:8e:e9:79:27:da:4a:3b:fb:e9:48:05: 7c:57:cb:06:a6:2d:b2:de:5b:90:0f:03:19:c5:f1:5e:08:b9: 1d:4b:25:ef:05:35:5a:ea:c7:00:93:55:2f:8e:88:b9:97:f4: 9f:fb:71:9c:19:dd:78:45:ef:94:a7:73:18:7b:27:9f:59:b5: ef:e7:4d:ec:b2:5f:88:68:12:85:e0:ab:4a:54:9d:63:cc:0e: 7e:63:37:94:f6:54:1a:c3:d2:c0:a1:59:3a:ec:33:d7:57:f5: 17:fe:cb:53:0a:17:f2:c0:55:3e:ab:5d:e1:e6:20:b7:59:18: 23:4f:62:46:7e:f6:c7:17:0d:9c:35:9f:1b:c9:9b:09:f6:9e: ef:89:54:64:13:19:41:3e:9f:2a:4e:bb:a2:33:8f:dc:18:5d: 37:8a:82:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTUzQzExMC8GA1UEBRMoNzQ0NTkzMzYzN0NDQTMwOUE0QzE2MUFCRkVERjg3NzlD QjJBQjEzRjAeFw0yNDEwMjMwNTIzNTFaFw0yNDEwMzAwNTIzNTFaMBgxFjAUBgNV BAMTDTY3MTg4ODY3LTU3N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsMQeerVUH4ttZVG4wdSlVr4j3dSOdtehf4LgHdjJv+RyqDjLApyjLdDhXi3CC 58GT8SeVp4NbH9iPBjTaF/lwT2mjn9JzkjBxoqOHvIP2mR5YgZPleFr/mgJsfyjJ 2ZRfyuxljNPxrC0kaMmmOKwuPusVeYcnjx2zxzlIm/SkxcJgVVpeZGKQvtc5KlsI 9YG2V+2M/31EkFubkWRuGNlLblopZPJlgZxd7oiSQqVDwaqk23HEY7Kvfi+K4u6F dCXfKUqJpxnmStaW3CWevPsDRWh/weeKGuKrVay+3i0zY3dCypVXGJzvqQy2WkUr JhXiQjaDeUOkzycNi0ePlrWvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURNU8PUxN VtoY29akGPAGuNeLsV4wHwYDVR0jBBgwFoAUdEWTNjfMowmkwWGr/t+HecsqsT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFNTNDLzI5Qjg2OTk0OTAz QTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dta3dXR3JfdC1IZWNzcXNU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEVXVE5qZk1vd21rd1dHcl90LUhlY3Nxc1Q4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF NTNDLzI5Qjg2OTk0OTAzQTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dt a3dXR3JfdC1IZWNzcXNUOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF4zHJ0wSbeIK7gMkp0aoX43F770Mx7wTt5hktnY3BisncosfyV9Kznv +e0AL4ZNvHRAM+AKG7Km8r6TpCrwP6WBuvTK7w0JaFtqU+3yv9ZhHvdh1Mb4ELyd LqgRcVLrSC6O6Xkn2ko7++lIBXxXywamLbLeW5APAxnF8V4IuR1LJe8FNVrqxwCT VS+OiLmX9J/7cZwZ3XhF75Sncxh7J59Zte/nTeyyX4hoEoXgq0pUnWPMDn5jN5T2 VBrD0sChWTrsM9dX9Rf+y1MKF/LAVT6rXeHmILdZGCNPYkZ+9scXDZw1nxvJmwn2 nu+JVGQTGUE+nypOu6Izj9wYXTeKgqg= -----END CERTIFICATE-----Generated at Wed Oct 23 06:26:02 2024 by rpki-client on console-fra.rpki-client.org