$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: ushUtfctR//Kq6jTyhZKlKu7KnnxlUCKZRBzRvLVqi0= Subject key identifier: F8:62:00:8B:51:E5:5F:89:D8:5C:B3:60:17:9E:DF:B3:BD:61:9B:85 Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0B16 Signing time: Fri 31 May 2024 20:31:30 +0000 Manifest this update: Fri 31 May 2024 20:31:29 +0000 Manifest next update: Fri 07 Jun 2024 20:31:29 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: qE7AoWymwHFvkcfLw+XCWO2l64yKpHqgdR/L6xjTN+Y=) 2: 2CD5AAF8060311EBBE15EA18C4F9AE02.roa (hash: mW8L1FLDXuwnCDk5B3rFgpB45GljzNSPgwbjM/e2Wu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: May 31 20:31:29 2024 GMT Not After : Jun 7 20:31:29 2024 GMT Subject: CN=665a33a2-6c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3e:99:d1:67:4b:fa:ad:48:dd:3c:e0:98:05: 3c:d1:e0:f2:08:ad:1b:0e:cd:3a:cd:f9:1d:5d:50: ae:ac:08:27:5c:c1:19:3e:69:aa:3e:5a:a8:9d:cc: 75:2a:72:3b:07:b5:d5:73:49:87:a1:59:ec:95:3e: 40:38:05:03:3d:21:e0:9b:4f:49:73:bb:48:36:e5: 01:5b:24:d9:32:dd:6a:ce:c6:a8:f2:7d:df:8c:3d: cc:f7:9e:49:33:73:c7:5a:bf:5c:83:0e:bf:53:2a: 5e:19:c0:b3:e9:bc:77:0c:7c:c2:a7:03:c4:8b:98: 1b:04:9b:7f:e4:1c:66:84:6c:f4:af:c1:ae:96:05: 0e:fe:e5:4c:0d:1b:7c:98:4c:4d:ef:45:51:ca:27: c2:8e:d2:49:d0:d1:92:0e:07:08:98:c4:74:a0:0a: 4e:97:78:d3:fc:55:45:a4:2d:76:ff:74:72:e0:9d: 1a:4b:da:66:1e:ce:02:b0:44:65:4d:3b:be:ad:5d: 80:c5:fc:6b:9c:de:b0:da:95:35:d7:ee:8c:a2:16: 62:50:8c:b7:5b:5d:93:d5:ca:5b:00:5f:c2:60:6a: ba:ae:ad:64:1b:4f:62:cb:7c:82:fa:e5:7e:71:10: a9:41:ac:96:95:a8:e4:3a:66:ed:be:75:67:71:99: 90:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:62:00:8B:51:E5:5F:89:D8:5C:B3:60:17:9E:DF:B3:BD:61:9B:85 X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:99:23:16:f4:6d:95:73:ea:d7:79:a1:50:a8:86:fc:ee:92: 30:49:cf:69:c8:37:5c:21:92:1e:16:2e:4d:1e:b2:2f:27:2f: 45:4a:90:aa:8a:75:a9:72:2e:46:a2:0b:ac:33:fa:68:45:06: 11:68:da:52:7e:34:cd:df:6d:48:aa:42:15:5d:e7:47:ab:c1: d2:dc:10:6a:bc:b0:be:4e:6a:28:9d:de:a8:84:54:a7:c0:1f: 81:88:21:69:bf:ca:5e:30:8c:b6:e9:3e:52:31:b8:ed:ee:46: b1:94:ab:a9:9f:ef:20:df:73:5c:31:39:2e:12:f3:91:1f:6d: 3a:30:e3:cd:10:fc:7c:15:44:a7:79:36:1e:c6:a6:0e:af:6b: 7d:aa:92:59:8b:d2:3e:9a:35:94:64:ef:83:3a:34:46:5d:bd: af:e6:65:59:ac:00:5d:1e:92:ec:55:81:a4:5a:97:a2:85:b6: 59:75:91:63:6f:39:a8:5f:27:56:a2:4b:06:a8:67:e3:4c:a1: 94:95:4a:9f:d0:0b:4c:a5:cd:2e:65:7c:6e:64:47:36:6c:99: e0:01:51:93:c7:49:a5:ce:87:9f:79:e7:b2:ee:11:02:af:ef: 4b:8c:f6:e0:4d:cc:ec:9f:b4:3e:8d:f5:25:5f:81:6c:db:a2: f6:0b:eb:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjQwNTMxMjAzMTI5WhcNMjQwNjA3MjAzMTI5WjAYMRYwFAYD VQQDEw02NjVhMzNhMi02YzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtz6Z0WdL+q1I3TzgmAU80eDyCK0bDs06zfkdXVCurAgnXMEZPmmqPlqoncx1 KnI7B7XVc0mHoVnslT5AOAUDPSHgm09Jc7tINuUBWyTZMt1qzsao8n3fjD3M955J M3PHWr9cgw6/UypeGcCz6bx3DHzCpwPEi5gbBJt/5BxmhGz0r8GulgUO/uVMDRt8 mExN70VRyifCjtJJ0NGSDgcImMR0oApOl3jT/FVFpC12/3Ry4J0aS9pmHs4CsERl TTu+rV2AxfxrnN6w2pU11+6MohZiUIy3W12T1cpbAF/CYGq6rq1kG09iy3yC+uV+ cRCpQayWlajkOmbtvnVncZmQCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhiAItR 5V+J2FyzYBee37O9YZuFMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6mSMW9G2Vc+rXeaFQqIb87pIwSc9pyDdcIZIeFi5NHrIvJy9FSpCq inWpci5GogusM/poRQYRaNpSfjTN321IqkIVXedHq8HS3BBqvLC+Tmoond6ohFSn wB+BiCFpv8peMIy26T5SMbjt7kaxlKupn+8g33NcMTkuEvORH206MOPNEPx8FUSn eTYexqYOr2t9qpJZi9I+mjWUZO+DOjRGXb2v5mVZrABdHpLsVYGkWpeihbZZdZFj bzmoXydWoksGqGfjTKGUlUqf0AtMpc0uZXxuZEc2bJngAVGTx0mlzoefeeey7hEC r+9LjPbgTczsn7Q+jfUlX4Fs26L2C+vP -----END CERTIFICATE-----Generated at Fri May 31 22:13:04 2024 by rpki-client on console-fra.rpki-client.org