$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: 1vxR5ZOcJFDy4GxBSxqRWLP6GGa79m2f3BdK/aTxyok= Subject key identifier: 3E:60:BA:3E:EA:44:6B:4A:F5:D2:B6:7B:6C:63:C4:A1:10:5B:0F:06 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0AC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0ABB Signing time: Sat 18 May 2024 20:07:53 +0000 Manifest this update: Sat 18 May 2024 20:07:53 +0000 Manifest next update: Sat 25 May 2024 20:07:53 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: YrtD5jztTr4Q+Og6rUwCug2qqThCuA11Z6HidJmbIlQ=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: QZ3wK9JvZw5jGFht0yCLYyrcYMQS8ULZWSvBoaszAK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: May 18 20:07:53 2024 GMT Not After : May 25 20:07:53 2024 GMT Subject: CN=66490a99-d238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:03:4c:c0:62:5f:53:85:a2:86:2b:e5:27:82: 96:fd:ed:05:17:c6:34:a3:9c:0e:2e:ef:69:75:f5: de:e3:ce:f8:6c:9f:f0:95:0c:de:14:f8:b1:03:a8: 7e:75:47:61:2c:a4:ac:61:73:b7:1a:2a:47:b9:f9: f4:90:6e:4c:42:02:ad:0f:4b:9e:5a:00:08:d5:44: ea:6b:a4:d6:5d:e9:c1:70:b7:a3:2c:63:f4:77:61: d4:3f:b6:02:be:6e:3d:7f:42:3b:d9:21:2a:ff:7a: 2a:7d:e3:76:56:d3:66:a2:b3:cc:49:85:5e:c6:aa: 33:1f:da:74:ed:a2:e3:11:8c:25:7d:3d:07:f4:a3: ab:96:24:07:1f:a4:c7:80:0e:5a:5e:2e:b7:b0:9a: 1d:41:5e:ad:05:d8:60:2c:23:43:44:8f:13:ad:5a: d2:0e:29:ce:7d:9f:6d:9f:83:54:e5:cd:38:90:ed: c7:33:2e:59:9b:02:a2:f2:f5:56:d6:6b:67:c5:d6: 47:15:d9:d2:90:73:95:7c:21:2c:ed:03:e9:5c:ff: 5b:22:66:23:da:cd:d8:b5:3e:09:97:82:28:42:3a: e0:da:a5:8a:4d:d8:c6:33:39:90:6a:13:7c:41:4f: dd:67:f2:a2:8c:5a:0a:78:0a:3c:18:26:98:e7:b0: 74:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:60:BA:3E:EA:44:6B:4A:F5:D2:B6:7B:6C:63:C4:A1:10:5B:0F:06 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:b7:0c:47:4a:5f:57:bf:d5:73:18:1a:74:72:07:01:ea:ff: eb:86:f7:ca:ed:bc:28:d8:8b:76:93:82:36:13:a1:a0:95:1b: 96:34:83:73:33:39:72:b2:04:3a:23:d5:b0:47:d8:87:3b:34: 4e:66:7a:f0:89:2d:d8:2a:46:10:93:e8:41:31:3b:96:83:f6: 8f:0a:b4:6c:bd:a5:d4:7a:ec:66:cd:87:7a:b6:c8:36:e6:e6: e6:c4:bd:d5:44:b3:97:11:2c:10:be:93:02:09:ab:95:e1:20: 31:63:7a:c1:6d:6a:ce:00:38:6f:6f:02:53:70:8d:17:97:eb: 96:79:50:14:04:9f:af:8b:53:13:4e:47:61:65:c9:b3:54:28: 48:92:e3:89:01:92:70:b9:bc:9f:c3:38:23:e0:40:9b:0d:b8: 00:23:23:13:3b:62:56:72:b1:6a:d5:bf:2e:75:e3:bb:01:5d: 5e:e7:ea:03:1a:d7:b2:55:14:ee:17:76:01:51:c9:84:e7:bb: a4:03:1b:87:7e:6c:05:83:71:a8:8c:27:00:6e:3d:df:a5:3f: 5d:03:87:3b:21:db:15:2a:a7:fb:2d:66:fe:b8:17:9b:94:18: df:29:ab:20:94:1f:44:99:f5:bb:a1:cb:2b:d5:77:fd:e9:ab: 53:98:20:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjQwNTE4MjAwNzUzWhcNMjQwNTI1MjAwNzUzWjAYMRYwFAYD VQQDEw02NjQ5MGE5OS1kMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwNMwGJfU4WihivlJ4KW/e0FF8Y0o5wOLu9pdfXe4874bJ/wlQzeFPixA6h+ dUdhLKSsYXO3GipHufn0kG5MQgKtD0ueWgAI1UTqa6TWXenBcLejLGP0d2HUP7YC vm49f0I72SEq/3oqfeN2VtNmorPMSYVexqozH9p07aLjEYwlfT0H9KOrliQHH6TH gA5aXi63sJodQV6tBdhgLCNDRI8TrVrSDinOfZ9tn4NU5c04kO3HMy5ZmwKi8vVW 1mtnxdZHFdnSkHOVfCEs7QPpXP9bImYj2s3YtT4Jl4IoQjrg2qWKTdjGMzmQahN8 QU/dZ/KijFoKeAo8GCaY57B0ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5guj7q RGtK9dK2e2xjxKEQWw8GMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6twxHSl9Xv9VzGBp0cgcB6v/rhvfK7bwo2It2k4I2E6GglRuWNINz MzlysgQ6I9WwR9iHOzROZnrwiS3YKkYQk+hBMTuWg/aPCrRsvaXUeuxmzYd6tsg2 5ubmxL3VRLOXESwQvpMCCauV4SAxY3rBbWrOADhvbwJTcI0Xl+uWeVAUBJ+vi1MT TkdhZcmzVChIkuOJAZJwubyfwzgj4ECbDbgAIyMTO2JWcrFq1b8udeO7AV1e5+oD GteyVRTuF3YBUcmE57ukAxuHfmwFg3GojCcAbj3fpT9dA4c7IdsVKqf7LWb+uBeb lBjfKasglB9EmfW7ocsr1Xf96atTmCB3 -----END CERTIFICATE-----Generated at Sat May 18 21:31:29 2024 by rpki-client on console-ams.rpki-client.org