$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: f25dbSS4f6UjIsfElmWw1vDFzWEHVCbr5wdxmfz/1K8= Subject key identifier: 2C:0D:F1:50:D0:B5:7F:CD:70:D5:13:D2:D4:69:24:5D:AA:88:80:E8 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: E1 Signing time: Sun 19 May 2024 06:00:10 +0000 Manifest this update: Sun 19 May 2024 06:00:10 +0000 Manifest next update: Sun 26 May 2024 06:00:10 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: KBi9bThO3gOr9Q9reSItEWV+Knyb3cqZrpR7lN2xzzY=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: l8Gj0m9EkG6Fdaxl7SxKrM92rnUZHTkx+j8ukMd+sL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 19 06:00:10 2024 GMT Not After : May 26 06:00:10 2024 GMT Subject: CN=6649956a-f78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:87:8a:14:4c:2a:b4:56:92:39:db:25:c9:dc: 4a:9f:1b:0d:43:b4:1a:d7:2a:19:16:63:8e:c8:29: 27:bc:37:68:57:62:b3:e3:03:4b:a7:30:fc:6e:eb: 8f:bb:51:5f:ce:24:a9:6f:e4:27:69:aa:0e:cc:03: 3d:a4:6f:a7:e4:10:a0:ef:37:b0:7c:69:cc:54:82: 1c:50:02:83:c7:74:fd:0c:7b:de:d8:f3:21:5e:70: f1:09:10:d5:8f:fe:c9:ff:c8:b1:5a:bf:d5:66:bb: 27:9b:fb:9e:a1:63:4d:83:b6:b3:65:cd:c1:1f:cb: 8a:93:4a:3d:8e:97:16:c3:b7:39:ee:99:7b:3a:5b: bc:57:6c:94:b1:1f:61:5a:00:10:2e:ab:2b:48:a7: e8:72:c0:f5:a5:73:77:54:44:ff:0c:d8:c6:25:2f: 63:1c:75:30:b5:3e:d8:28:a7:34:67:1f:a8:8f:e7: 57:77:33:6c:7f:22:09:81:91:e1:41:14:9d:d7:33: 1c:c0:c0:1e:d7:0f:35:60:85:b6:2a:da:c7:3c:1b: 76:c3:42:e7:dc:e7:aa:97:78:d5:04:a3:f0:e4:96: a4:cd:43:9c:c4:44:64:12:0d:12:63:7c:49:08:0a: 19:eb:c4:a3:88:49:38:75:9b:dd:89:a1:23:5b:c0: ae:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:0D:F1:50:D0:B5:7F:CD:70:D5:13:D2:D4:69:24:5D:AA:88:80:E8 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:64:df:00:02:20:50:f1:ef:0a:3f:ae:67:a3:5b:f8:03:2b: 38:93:bc:c9:68:f1:c0:97:7c:ac:90:df:f0:37:d3:38:b3:a2: 39:97:28:94:5e:cc:5e:2c:12:83:35:83:6c:d0:2b:03:74:13: 76:b8:3d:60:38:49:fd:d5:aa:bd:16:3e:10:9c:c2:10:3f:64: 63:f4:e6:44:64:6e:1c:80:f0:9b:18:ce:70:92:48:f9:3a:a9: af:06:36:ef:eb:46:f7:99:03:10:b0:f7:2b:a3:70:86:6a:ed: 8e:05:07:a1:b0:1b:f2:30:2a:54:7a:57:48:b2:5e:67:4c:67: 12:f3:ed:e8:6b:8c:32:44:d5:bf:a5:66:7c:d1:eb:4e:ff:e0: 99:71:fd:de:d8:e1:b9:4d:f2:32:54:4d:84:3e:08:44:63:03: 25:ec:7f:15:45:db:6a:10:14:40:86:57:8b:0f:b0:8d:b2:cd: 5b:48:b2:94:0f:d8:5c:5a:d9:3a:2e:48:26:b5:8d:6a:37:4d: 27:ce:6e:d4:a0:95:41:7d:da:08:1b:c7:de:c8:4f:b6:0d:dd: 64:ca:13:15:ed:c7:87:6f:f5:40:f0:c3:1c:83:07:1c:5e:05: 83:56:a2:72:44:9b:f4:7a:00:1b:f0:36:4d:90:af:6d:03:72: 64:a6:90:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjQwNTE5MDYwMDEwWhcNMjQwNTI2MDYwMDEwWjAYMRYwFAYD VQQDEw02NjQ5OTU2YS1mNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYeKFEwqtFaSOdslydxKnxsNQ7Qa1yoZFmOOyCknvDdoV2Kz4wNLpzD8buuP u1FfziSpb+QnaaoOzAM9pG+n5BCg7zewfGnMVIIcUAKDx3T9DHve2PMhXnDxCRDV j/7J/8ixWr/VZrsnm/ueoWNNg7azZc3BH8uKk0o9jpcWw7c57pl7Olu8V2yUsR9h WgAQLqsrSKfocsD1pXN3VET/DNjGJS9jHHUwtT7YKKc0Zx+oj+dXdzNsfyIJgZHh QRSd1zMcwMAe1w81YIW2KtrHPBt2w0Ln3Oeql3jVBKPw5JakzUOcxERkEg0SY3xJ CAoZ68SjiEk4dZvdiaEjW8CuyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwN8VDQ tX/NcNUT0tRpJF2qiIDoMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrZN8AAiBQ8e8KP65no1v4Ays4k7zJaPHAl3yskN/wN9M4s6I5lyiU XsxeLBKDNYNs0CsDdBN2uD1gOEn91aq9Fj4QnMIQP2Rj9OZEZG4cgPCbGM5wkkj5 OqmvBjbv60b3mQMQsPcro3CGau2OBQehsBvyMCpUeldIsl5nTGcS8+3oa4wyRNW/ pWZ80etO/+CZcf3e2OG5TfIyVE2EPghEYwMl7H8VRdtqEBRAhleLD7CNss1bSLKU D9hcWtk6LkgmtY1qN00nzm7UoJVBfdoIG8feyE+2Dd1kyhMV7ceHb/VA8MMcgwcc XgWDVqJyRJv0egAb8DZNkK9tA3JkppAm -----END CERTIFICATE-----Generated at Sun May 19 07:40:39 2024 by rpki-client on console-fra.rpki-client.org