$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft File: 2CIvXKRzliJE_BNBFXEOvtXjlWA.mft (raw, json) Hash identifier: XtHv0XkrdpsnHTf3j3eXiWKsyJgYipzyGpF/zBGbRYI= Subject key identifier: 94:1E:5B:54:05:5B:4F:53:53:FE:F7:C9:9C:CF:3E:F8:52:AD:A9:28 Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0B48 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft Manifest number: 0B43 Signing time: Sat 18 May 2024 18:52:09 +0000 Manifest this update: Sat 18 May 2024 18:52:09 +0000 Manifest next update: Sat 25 May 2024 18:52:09 +0000 Files and hashes: 1: 2CIvXKRzliJE_BNBFXEOvtXjlWA.crl (hash: cjffft3era11wOo2MQrgWppBMzH1Xk5fJ49LrOWLJ6U=) 2: A4049C06213E11EAAA89A95DC4F9AE02.roa (hash: XqNcL9YfvPxJbDsy1jbRzM9OJH/0mTt3c6WrfOsRgVU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: May 18 18:52:09 2024 GMT Not After : May 25 18:52:09 2024 GMT Subject: CN=6648f8d9-45b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:28:b0:9b:b5:eb:08:70:16:6d:c3:60:33:d7: ab:92:8f:b9:14:d8:d8:fa:f7:c0:0a:dd:d7:8b:8d: 41:b8:c4:23:30:cb:20:6b:a5:61:d7:19:b7:b4:af: a2:08:f8:34:a9:3f:3f:da:af:5b:10:78:de:e8:d3: 0d:dc:93:58:c9:46:c6:8a:fd:be:4d:03:fc:07:32: 81:0c:e1:96:f1:5f:16:de:5f:8b:b5:b0:df:2b:e0: 0d:10:ef:b9:bb:3c:9c:0f:49:47:45:a1:b7:6d:be: 23:9f:5d:30:b1:c5:1b:cf:8f:f9:c0:2a:da:d8:ab: 99:a3:e4:27:a2:c4:10:a4:06:02:72:bc:6c:37:80: e9:30:35:bb:28:0a:69:90:e7:0b:60:25:81:e0:e8: c9:d6:23:26:71:21:54:0e:26:d6:15:6a:34:90:ce: 09:0e:fb:32:1c:f2:be:91:8d:6e:40:07:b4:cb:fb: 8e:74:94:a5:b3:d5:ef:dc:9f:5e:04:82:ad:76:ad: ae:b8:24:6d:76:5f:27:aa:45:7c:17:d8:ca:d2:7c: f1:f8:d7:50:b0:fa:72:c1:e2:a5:33:ae:53:f7:0c: f1:c2:1e:6f:70:1a:c1:42:5d:d2:90:1d:c1:e4:e7: 98:64:60:87:c5:24:81:6a:e7:f2:1e:cd:d8:b8:1d: 4a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:1E:5B:54:05:5B:4F:53:53:FE:F7:C9:9C:CF:3E:F8:52:AD:A9:28 X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:32:a1:b6:6d:0f:33:83:3d:d2:2e:c4:12:74:7e:72:c2:f8: 3c:cf:9b:f1:a4:42:85:6b:e2:37:a9:03:b2:97:b2:45:4a:9f: d4:a9:af:6a:6c:41:a4:0a:b1:5b:a8:49:43:eb:1c:b0:49:25: bf:da:bc:c7:73:9c:9f:c6:b6:9f:31:dd:15:0d:00:d9:3f:5a: f9:17:f9:90:15:a4:89:86:56:12:28:95:0f:93:c4:48:6f:6a: b2:71:a4:73:98:ba:cb:ee:08:08:9d:57:c4:d8:a6:89:09:51: 6e:5e:c2:60:f5:44:d8:9c:00:00:41:a2:b5:ae:85:82:69:ec: b4:f9:5b:5d:fa:a9:45:98:15:7c:5f:d1:ba:75:d1:f6:54:24: c3:91:79:83:66:18:26:31:1f:c5:73:36:4a:79:07:b4:5a:ac: 8e:e1:d0:96:c7:fb:b2:f5:5a:68:9b:61:bb:fc:05:40:b0:5a: 34:d6:69:97:00:5d:00:52:07:4a:fd:73:4d:dc:91:af:5b:82: 1e:34:fc:1c:24:28:9a:6b:c2:01:ec:42:8d:85:1a:96:40:65: 78:29:b4:28:79:53:02:35:3d:0d:0a:5d:29:a4:f9:cf:5d:0b: de:1d:c2:c7:39:c9:de:cf:07:63:60:75:f2:32:20:4e:3a:78: 6d:dc:a1:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjQwNTE4MTg1MjA5WhcNMjQwNTI1MTg1MjA5WjAYMRYwFAYD VQQDEw02NjQ4ZjhkOS00NWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtyiwm7XrCHAWbcNgM9erko+5FNjY+vfACt3Xi41BuMQjMMsga6Vh1xm3tK+i CPg0qT8/2q9bEHje6NMN3JNYyUbGiv2+TQP8BzKBDOGW8V8W3l+LtbDfK+ANEO+5 uzycD0lHRaG3bb4jn10wscUbz4/5wCra2KuZo+QnosQQpAYCcrxsN4DpMDW7KApp kOcLYCWB4OjJ1iMmcSFUDibWFWo0kM4JDvsyHPK+kY1uQAe0y/uOdJSls9Xv3J9e BIKtdq2uuCRtdl8nqkV8F9jK0nzx+NdQsPpyweKlM65T9wzxwh5vcBrBQl3SkB3B 5OeYZGCHxSSBaufyHs3YuB1KwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQeW1QF W09TU/73yZzPPvhSrakoMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC9DNjk0ODIzNjEwRTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxp SkVfQk5CRlhFT3Z0WGpsV0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIMqG2bQ8zgz3SLsQSdH5ywvg8z5vxpEKFa+I3qQOyl7JFSp/Uqa9q bEGkCrFbqElD6xywSSW/2rzHc5yfxrafMd0VDQDZP1r5F/mQFaSJhlYSKJUPk8RI b2qycaRzmLrL7ggInVfE2KaJCVFuXsJg9UTYnAAAQaK1roWCaey0+Vtd+qlFmBV8 X9G6ddH2VCTDkXmDZhgmMR/FczZKeQe0WqyO4dCWx/uy9Vpom2G7/AVAsFo01mmX AF0AUgdK/XNN3JGvW4IeNPwcJCiaa8IB7EKNhRqWQGV4KbQoeVMCNT0NCl0ppPnP XQveHcLHOcnezwdjYHXyMiBOOnht3KG9 -----END CERTIFICATE-----Generated at Sat May 18 19:21:03 2024 by rpki-client on console-fra.rpki-client.org