$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: 5iP/E9jPSfTPrElbjjHfXjvy+oBjN3sT5+qtwE3qBXc= Subject key identifier: BE:89:57:3D:00:0B:AF:04:47:4B:E8:F3:16:D2:0B:4F:9B:0A:91:30 Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 06CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 06C7 Signing time: Sat 18 May 2024 23:00:34 +0000 Manifest this update: Sat 18 May 2024 23:00:34 +0000 Manifest next update: Sat 25 May 2024 23:00:34 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: EOQf6aSqJMMIV5RwcvU0UT6WD3FwbX6bGb1O3xJCAnE=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: gbzQKBwFAV/QVtRGQ1XjoisEC6G6KDgdJdLY0qtEDRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: May 18 23:00:34 2024 GMT Not After : May 25 23:00:34 2024 GMT Subject: CN=66493312-7729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c6:3f:aa:b9:13:4f:88:48:69:44:90:82:20: 4e:99:a1:73:9a:91:7c:6b:1f:28:83:30:59:fc:04: 96:33:0a:8a:7e:cf:7f:7d:c6:e9:4f:ba:4f:9d:a0: ba:f0:0a:c4:4c:13:90:56:d4:d9:e3:8a:8c:d3:99: dc:15:49:50:e7:56:7b:18:93:53:20:5d:2d:09:94: db:6a:9b:44:82:25:0a:a5:e9:e3:3e:bf:78:15:96: ff:da:11:32:b5:aa:9b:d7:32:5a:51:98:86:8e:3f: 82:d5:08:9a:ac:90:57:07:fc:f3:3a:47:6b:06:64: 55:f2:a8:05:8f:8c:cf:13:4c:5d:4b:0b:2f:46:f7: e4:b9:d7:87:91:a5:3d:21:1e:e1:65:fd:a6:2d:9c: b7:6c:53:15:e5:f1:26:98:b1:01:40:dd:17:34:c6: 6e:0d:b0:91:5e:68:03:2e:ae:89:ef:48:79:11:97: 9a:3b:6a:9e:39:d9:f7:c7:ff:2c:80:51:1f:69:9a: 46:5a:b3:14:9b:d1:16:c7:95:3e:81:a1:78:e8:d1: b1:36:f0:40:14:cf:f7:0a:f4:ed:e0:d2:89:e2:a0: a9:8a:fc:84:e6:aa:98:a2:dd:93:bb:ba:43:08:dd: 37:dc:79:93:8f:6c:19:1b:4e:b7:2d:d6:e2:4c:33: 86:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:89:57:3D:00:0B:AF:04:47:4B:E8:F3:16:D2:0B:4F:9B:0A:91:30 X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:81:e7:8c:62:38:d3:10:f8:89:cf:3f:bc:0c:97:5f:1d:e1: cc:50:a4:6f:8a:99:7f:3b:c6:d6:35:93:c1:8d:85:b6:e5:cd: be:2f:2f:a4:79:f8:c2:18:d7:e9:27:7d:e7:d6:29:90:98:ca: 8b:33:17:95:b2:f5:4d:d2:49:f7:7e:d7:db:5c:8c:03:b2:9a: 80:c9:db:ab:57:de:50:7f:72:8e:86:08:ee:4a:c4:97:80:30: 27:72:b6:04:e6:40:56:8e:9f:a8:04:9d:f7:d6:5f:15:b7:f4: 5c:fa:37:ff:8c:50:9b:84:2c:cf:36:42:95:e1:ab:7d:47:c2: 18:b3:ea:f3:b8:71:67:81:6c:7d:14:0b:e8:ee:44:e1:0c:94: 84:cf:6e:97:dc:73:d1:87:d4:36:db:c2:00:49:d1:fc:ed:6c: aa:9c:16:25:e7:7a:33:75:49:25:ab:2e:4f:8e:9c:5b:50:0d: 12:17:ed:4e:d4:fe:e9:cb:fa:23:f9:fa:60:2d:9e:f7:01:54: 37:89:5c:48:8f:c0:0f:8a:7e:f9:4a:f2:8e:7a:5b:97:98:cb: b7:ee:01:8b:8e:47:03:bd:51:1c:29:6c:ef:70:cb:18:7c:d7: 40:87:1b:7e:53:db:4b:8f:da:a9:0c:80:13:17:f7:81:67:d7: fb:ed:1c:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjQwNTE4MjMwMDM0WhcNMjQwNTI1MjMwMDM0WjAYMRYwFAYD VQQDEw02NjQ5MzMxMi03NzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MY/qrkTT4hIaUSQgiBOmaFzmpF8ax8ogzBZ/ASWMwqKfs9/fcbpT7pPnaC6 8ArETBOQVtTZ44qM05ncFUlQ51Z7GJNTIF0tCZTbaptEgiUKpenjPr94FZb/2hEy taqb1zJaUZiGjj+C1QiarJBXB/zzOkdrBmRV8qgFj4zPE0xdSwsvRvfkudeHkaU9 IR7hZf2mLZy3bFMV5fEmmLEBQN0XNMZuDbCRXmgDLq6J70h5EZeaO2qeOdn3x/8s gFEfaZpGWrMUm9EWx5U+gaF46NGxNvBAFM/3CvTt4NKJ4qCpivyE5qqYot2Tu7pD CN033HmTj2wZG063LdbiTDOG5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6JVz0A C68ER0vo8xbSC0+bCpEwMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJgeeMYjjTEPiJzz+8DJdfHeHMUKRvipl/O8bWNZPBjYW25c2+Ly+k efjCGNfpJ33n1imQmMqLMxeVsvVN0kn3ftfbXIwDspqAydurV95Qf3KOhgjuSsSX gDAncrYE5kBWjp+oBJ331l8Vt/Rc+jf/jFCbhCzPNkKV4at9R8IYs+rzuHFngWx9 FAvo7kThDJSEz26X3HPRh9Q228IASdH87WyqnBYl53ozdUklqy5PjpxbUA0SF+1O 1P7py/oj+fpgLZ73AVQ3iVxIj8APin75SvKOeluXmMu37gGLjkcDvVEcKWzvcMsY fNdAhxt+U9tLj9qpDIATF/eBZ9f77RxB -----END CERTIFICATE-----Generated at Sun May 19 00:30:18 2024 by rpki-client on console-ams.rpki-client.org