$ rpki-client -vvf rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft File: cmIg2YvMfcZqPM83Z36go9sJDaQ.mft (raw, json) Hash identifier: BhsSMtPxoK9xnOGe4EF0A3DR6L3ViodkAYj2fxEkhvE= Subject key identifier: 66:EE:38:FC:6B:CC:5B:70:4B:81:D4:40:96:85:D5:DA:93:80:9C:9E Authority key identifier: 72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 Certificate issuer: /CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Certificate serial: 0B09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft Manifest number: 0B01 Signing time: Thu 18 Apr 2024 19:58:14 +0000 Manifest this update: Thu 18 Apr 2024 19:58:14 +0000 Manifest next update: Thu 25 Apr 2024 19:58:14 +0000 Files and hashes: 1: cmIg2YvMfcZqPM83Z36go9sJDaQ.crl (hash: M92sXIQ4x88FoRDoJcDTgpakPQO6M0FD1eVD72yXSno=) 2: 2CD5AAF8060311EBBE15EA18C4F9AE02.roa (hash: mW8L1FLDXuwnCDk5B3rFgpB45GljzNSPgwbjM/e2Wu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 19:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AE22/serialNumber=726220D98BCC7DC66A3CCF37677EA0A3DB090DA4 Validity Not Before: Apr 18 19:58:14 2024 GMT Not After : Apr 25 19:58:14 2024 GMT Subject: CN=66217b56-b275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b7:b3:75:cf:22:1f:4e:3a:e8:fe:eb:8e:9f: 9c:ed:7b:0c:38:f5:97:a5:5b:9c:f1:bb:71:ad:eb: ba:df:34:7d:7e:11:fe:8a:81:8d:25:38:43:04:73: a6:e4:8d:eb:29:80:67:dd:22:ef:a0:eb:04:f1:81: ab:ce:aa:39:84:4f:99:d6:33:15:15:d6:32:e4:f6: a1:8e:ef:6b:93:c1:8a:8a:58:6a:a9:c0:77:f0:d8: 71:dd:48:ff:b0:76:c7:2a:3f:02:f0:64:5f:4c:c3: 34:47:07:95:11:f9:a2:ba:c8:36:21:c7:39:ef:a4: b5:d9:12:3d:e6:95:e8:20:02:e6:b0:37:01:89:cc: 8d:67:a4:76:92:1b:f6:83:9e:3c:d0:4c:e2:1b:57: 3b:f7:58:7e:6f:ac:fb:c1:b9:ee:53:2b:a8:36:48: 3b:8c:de:f2:26:d9:a3:04:d2:01:e1:03:2a:19:3e: 3b:78:cf:1d:83:04:26:fc:70:a6:79:21:34:bf:8f: bb:a5:ff:9e:62:65:3f:c8:ae:00:7b:0a:92:69:ab: 13:57:8a:13:2f:cc:d4:c5:db:9e:20:f2:1c:db:54: 3d:a0:70:e7:04:0c:b3:be:85:0a:b1:62:bf:f7:58: 73:df:fa:0c:1f:54:90:d5:e6:fb:53:09:ed:b5:71: 57:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:EE:38:FC:6B:CC:5B:70:4B:81:D4:40:96:85:D5:DA:93:80:9C:9E X509v3 Authority Key Identifier: keyid:72:62:20:D9:8B:CC:7D:C6:6A:3C:CF:37:67:7E:A0:A3:DB:09:0D:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cmIg2YvMfcZqPM83Z36go9sJDaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AE22/B178439E1BBF11EAB6A74F71C4F9AE02/cmIg2YvMfcZqPM83Z36go9sJDaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:2f:d2:72:1e:fd:98:12:ad:0c:7f:6d:0c:97:fc:a2:87:72: 95:9c:90:66:f8:8d:87:9e:c8:f3:16:70:4f:5e:39:5a:8c:b8: 52:e0:b8:42:b9:d0:66:11:c8:9d:12:95:50:0b:6f:70:9b:df: 46:fe:b9:34:aa:cf:5f:2d:13:61:2c:5c:38:e4:5e:04:59:0d: b8:04:b3:28:cc:2d:08:e4:11:2e:4d:62:55:ba:24:c1:18:9c: ce:05:d6:75:81:aa:27:28:2d:ae:e5:89:d8:71:28:f1:e8:4e: 85:ca:c5:85:bc:d0:10:76:0f:7f:f6:63:70:ab:2d:3a:bd:76: 30:7b:92:c2:6a:5c:0a:25:0f:74:84:c0:6a:18:a1:21:d8:d8: 38:7e:24:17:d3:6d:ea:12:9d:4d:8e:08:2c:e4:90:f1:a5:fb: 5d:3a:a1:8c:de:ed:59:89:8a:f2:c8:87:9e:0f:2a:8a:57:6a: 13:ab:ef:c7:8b:48:5c:8a:bd:d5:3d:92:25:b9:43:9f:e7:2c: 1e:9e:1b:46:97:85:78:ec:5c:ec:03:ba:b1:4f:74:f0:42:77: 2d:f0:54:dc:48:5d:a8:e5:70:57:ab:41:87:7c:c2:7c:65:38: e4:68:eb:63:3b:a6:e5:ce:06:0d:7f:92:99:61:fb:bb:a5:cd: 3f:98:10:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFFMjIxMTAvBgNVBAUTKDcyNjIyMEQ5OEJDQzdEQzY2QTNDQ0YzNzY3N0VBMEEz REIwOTBEQTQwHhcNMjQwNDE4MTk1ODE0WhcNMjQwNDI1MTk1ODE0WjAYMRYwFAYD VQQDEw02NjIxN2I1Ni1iMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Lezdc8iH0466P7rjp+c7XsMOPWXpVuc8btxreu63zR9fhH+ioGNJThDBHOm 5I3rKYBn3SLvoOsE8YGrzqo5hE+Z1jMVFdYy5Pahju9rk8GKilhqqcB38Nhx3Uj/ sHbHKj8C8GRfTMM0RweVEfmiusg2Icc576S12RI95pXoIALmsDcBicyNZ6R2khv2 g5480EziG1c791h+b6z7wbnuUyuoNkg7jN7yJtmjBNIB4QMqGT47eM8dgwQm/HCm eSE0v4+7pf+eYmU/yK4AewqSaasTV4oTL8zUxdueIPIc21Q9oHDnBAyzvoUKsWK/ 91hz3/oMH1SQ1eb7UwnttXFXMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbuOPxr zFtwS4HUQJaF1dqTgJyeMB8GA1UdIwQYMBaAFHJiINmLzH3GajzPN2d+oKPbCQ2k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUUyMi9CMTc4NDM5RTFC QkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZjWnFQTTgzWjM2Z285c0pE YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NtSWcyWXZNZmNacVBNODNaMzZnbzlzSkRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUUyMi9CMTc4NDM5RTFCQkYxMUVBQjZBNzRGNzFDNEY5QUUwMi9jbUlnMll2TWZj WnFQTTgzWjM2Z285c0pEYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxL9JyHv2YEq0Mf20Ml/yih3KVnJBm+I2HnsjzFnBPXjlajLhS4LhC udBmEcidEpVQC29wm99G/rk0qs9fLRNhLFw45F4EWQ24BLMozC0I5BEuTWJVuiTB GJzOBdZ1gaonKC2u5YnYcSjx6E6FysWFvNAQdg9/9mNwqy06vXYwe5LCalwKJQ90 hMBqGKEh2Ng4fiQX023qEp1Njggs5JDxpftdOqGM3u1ZiYryyIeeDyqKV2oTq+/H i0hcir3VPZIluUOf5ywenhtGl4V47FzsA7qxT3TwQnct8FTcSF2o5XBXq0GHfMJ8 ZTjkaOtjO6blzgYNf5KZYfu7pc0/mBCW -----END CERTIFICATE-----Generated at Thu Apr 18 22:03:39 2024 by rpki-client on console-fra.rpki-client.org