$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft File: CViGFDhyEOi2mtPDGnNhnXVe0MA.mft (raw, json) Hash identifier: rvcgeAw/g6VDqAH7N4NE5A2vie4Mw+0ZTVubzAlatcs= Subject key identifier: 4E:8E:0C:F4:90:D7:B1:18:95:7D:EE:FB:E0:33:BA:D8:18:A4:B3:2D Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft Manifest number: 59 Signing time: Wed 15 May 2024 07:52:23 +0000 Manifest this update: Wed 15 May 2024 07:52:23 +0000 Manifest next update: Wed 22 May 2024 07:52:23 +0000 Files and hashes: 1: CViGFDhyEOi2mtPDGnNhnXVe0MA.crl (hash: Lh02travXzfqmQWFrcDofASZyJAd42g0Tg2aEtDtc9k=) 2: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (hash: 8p5oyeJWoCkbAhlsrDLfWLW3ixfy6hkbFthdXEroMts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:52:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: May 15 07:52:23 2024 GMT Not After : May 22 07:52:23 2024 GMT Subject: CN=664469b7-d41f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a4:09:7f:93:d6:2a:da:ce:08:66:c7:e4:93: c8:fa:b4:c0:78:3b:c5:79:64:c9:5d:7e:9b:76:d6: 05:cf:92:7a:7d:81:f4:f7:3d:ef:b5:48:10:38:8e: d2:ad:23:cb:3a:43:69:bd:86:44:28:ca:a5:8a:2e: 94:78:21:7a:b4:28:bb:eb:15:e8:54:69:53:e5:97: 73:17:72:21:8c:bb:60:78:7f:de:13:a6:5f:f9:18: c0:e6:3c:5c:0b:47:0c:98:cc:8a:dd:1c:e1:6a:09: 6f:cc:28:60:d9:39:bf:cb:98:bc:62:d2:df:83:22: 9b:26:94:3b:7f:68:16:86:92:ae:c5:9a:86:53:50: 94:64:c4:85:95:aa:86:28:a5:4a:09:c1:34:b7:6d: 42:b6:4b:7b:52:1f:c6:5d:4b:40:07:33:39:c4:d4: a2:a3:82:d5:68:5d:e5:21:d2:a4:08:ed:54:ad:c6: f5:a3:a1:98:d6:d3:21:2a:89:17:f6:3d:b4:87:47: 21:46:83:80:85:c4:ab:3f:bd:da:da:e3:d8:2c:ed: 15:f0:c6:bb:a9:24:10:0d:54:d3:55:64:7f:93:92: ab:00:eb:8c:6d:38:64:db:ab:6c:92:e8:3b:fc:32: ad:08:40:1e:70:cb:14:1a:6d:91:8d:5d:ff:23:6e: 0f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8E:0C:F4:90:D7:B1:18:95:7D:EE:FB:E0:33:BA:D8:18:A4:B3:2D X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:7d:42:f9:ce:c4:03:bb:74:52:a6:48:3b:00:1b:07:84:76: 24:19:ff:45:f8:10:4a:93:52:ac:2c:fc:c5:5d:98:0f:62:c2: 14:99:bd:97:ec:f8:60:9d:3e:b2:81:3e:6f:7a:6b:4c:17:cc: 48:d2:fe:2c:0d:3e:9c:48:9d:17:89:09:a9:1e:fd:d6:01:d3: b8:51:2d:97:61:88:dd:19:42:b2:b7:5d:04:04:7d:3d:4c:30: 04:f3:e7:d0:bd:fd:24:98:0c:3a:10:93:8f:ad:58:95:65:c8: d4:b5:bc:a9:37:f4:c9:66:e2:0e:5a:63:62:6a:79:32:23:10: 9b:ac:b5:11:ce:65:fa:e4:71:1b:65:d8:8f:56:18:2c:b2:e1: b6:41:27:6e:d1:4f:c0:71:17:1f:7f:8f:a3:fc:8e:35:f6:4c: 1f:a2:51:2a:12:16:16:e6:a4:7b:0d:96:05:6e:27:8f:30:9d: b9:a1:cb:5d:16:cd:91:f3:32:80:8a:43:96:10:d2:ce:17:09: 13:92:1e:8a:a8:c5:ed:ed:d1:4a:b7:ac:74:03:4a:ba:93:e0: 5d:1c:d5:09:a3:1f:6f:6c:39:9c:ec:7f:4a:ad:25:0a:1c:37: 75:19:fe:10:38:a2:51:93:71:3a:8a:9e:70:87:6f:20:0a:45: fa:f2:f9:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0IyMjExMC8GA1UEBRMoMDk1ODg2MTQzODcyMTBFOEI2OUFEM0MzMUE3MzYxOUQ3 NTVFRDBDMDAeFw0yNDA1MTUwNzUyMjNaFw0yNDA1MjIwNzUyMjNaMBgxFjAUBgNV BAMTDTY2NDQ2OWI3LWQ0MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFpAl/k9Yq2s4IZsfkk8j6tMB4O8V5ZMldfpt21gXPknp9gfT3Pe+1SBA4jtKt I8s6Q2m9hkQoyqWKLpR4IXq0KLvrFehUaVPll3MXciGMu2B4f94Tpl/5GMDmPFwL RwyYzIrdHOFqCW/MKGDZOb/LmLxi0t+DIpsmlDt/aBaGkq7FmoZTUJRkxIWVqoYo pUoJwTS3bUK2S3tSH8ZdS0AHMznE1KKjgtVoXeUh0qQI7VStxvWjoZjW0yEqiRf2 PbSHRyFGg4CFxKs/vdra49gs7RXwxrupJBANVNNVZH+TkqsA64xtOGTbq2yS6Dv8 Mq0IQB5wyxQabZGNXf8jbg+rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTo4M9JDX sRiVfe774DO62Biksy0wHwYDVR0jBBgwFoAUCViGFDhyEOi2mtPDGnNhnXVe0MAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDQjIyLzY2MDJFOTc4OENE MTExRUVCNjFGQzYzOEM0RjlBRTAyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1ZpR0ZEaHlFT2kybXRQREduTmhuWFZlME1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRD QjIyLzY2MDJFOTc4OENEMTExRUVCNjFGQzYzOEM0RjlBRTAyL0NWaUdGRGh5RU9p Mm10UERHbk5oblhWZTBNQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB19QvnOxAO7dFKmSDsAGweEdiQZ/0X4EEqTUqws/MVdmA9iwhSZvZfs +GCdPrKBPm96a0wXzEjS/iwNPpxInReJCake/dYB07hRLZdhiN0ZQrK3XQQEfT1M MATz59C9/SSYDDoQk4+tWJVlyNS1vKk39Mlm4g5aY2JqeTIjEJustRHOZfrkcRtl 2I9WGCyy4bZBJ27RT8BxFx9/j6P8jjX2TB+iUSoSFhbmpHsNlgVuJ48wnbmhy10W zZHzMoCKQ5YQ0s4XCROSHoqoxe3t0Uq3rHQDSrqT4F0c1QmjH29sOZzsf0qtJQoc N3UZ/hA4olGTcTqKnnCHbyAKRfry+bg= -----END CERTIFICATE-----Generated at Wed May 15 09:04:09 2024 by rpki-client on console-ams.rpki-client.org