$ rpki-client -vvf rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft File: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft (raw, json) Hash identifier: hez0LX602vSJWhVQu2ibEsuRCejDYyvIbz1GgjhtqLg= Subject key identifier: 37:58:F2:07:59:A2:5B:15:A6:C6:24:C8:B3:BF:48:F7:56:7E:9C:F8 Authority key identifier: 72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A Certificate issuer: /CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Certificate serial: 0CD6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft Manifest number: 0CD0 Signing time: Sat 04 May 2024 18:56:40 +0000 Manifest this update: Sat 04 May 2024 18:56:40 +0000 Manifest next update: Sat 11 May 2024 18:56:40 +0000 Files and hashes: 1: ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl (hash: ZZs1vArtw+n3w05GXh0vFKrQjA24SR3H9d5Vuxxjfrk=) 2: FCFEAA74DB9111E9B70EDD2EC4F9AE02.roa (hash: aXe20RRl6XwAwg/IjyCn/m+o6VBWy+OXN2e0lyF4doc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:56:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3286 (0xcd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D010/serialNumber=722178D591D9859689E4B92F2D0C87FA47E35E0A Validity Not Before: May 4 18:56:40 2024 GMT Not After : May 11 18:56:40 2024 GMT Subject: CN=663684e8-c7f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:e7:23:48:99:2a:02:48:fb:0e:9c:06:66: 02:00:27:1e:84:dd:16:ec:1b:b2:d9:1a:20:48:1c: a6:a0:d7:c8:06:25:78:51:3b:79:bc:f4:2e:43:dc: 77:2d:37:e7:57:44:f5:16:9e:94:01:44:94:68:7a: 2f:0e:27:10:41:e0:34:f4:b5:d9:ad:98:af:79:2b: 55:39:55:26:d8:6f:ad:91:33:d8:5d:cb:60:99:ae: cb:f1:16:73:d8:d1:25:ef:f9:12:7c:8a:e1:59:9c: 8c:46:84:74:01:a2:54:2c:e9:6e:66:c7:50:db:3b: 28:d2:b0:32:0f:17:85:a5:77:f6:a1:dd:b6:f5:5e: 1f:d5:68:ef:18:0d:6d:39:a5:8e:2d:a2:a7:39:94: 82:27:af:68:51:54:de:56:dc:dd:d9:7c:e8:d8:9c: 50:1d:77:1d:2c:2c:60:f0:0d:eb:36:a3:49:48:13: 83:6a:75:6f:bc:cc:a8:f4:21:8a:c3:c9:6e:66:c8: 79:ad:f7:8f:7c:a2:e2:d3:57:2f:2e:13:a3:ba:f7: 2b:84:81:31:48:05:fa:27:8d:99:cc:f3:1e:b3:a8: d9:e9:98:5f:a6:65:cb:0a:d1:f9:23:51:96:1a:2e: a0:fe:78:27:a5:6c:3a:53:5d:37:a0:26:b5:82:f2: d0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:58:F2:07:59:A2:5B:15:A6:C6:24:C8:B3:BF:48:F7:56:7E:9C:F8 X509v3 Authority Key Identifier: keyid:72:21:78:D5:91:D9:85:96:89:E4:B9:2F:2D:0C:87:FA:47:E3:5E:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D010/57B7671AC21C11E984A15D12C4F9AE02/ciF41ZHZhZaJ5LkvLQyH-kfjXgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:f6:4b:ee:c6:c3:d6:43:d3:5e:4d:a1:3c:38:c5:10:f6:d5: f6:a1:2f:5c:9c:64:e3:34:b3:d1:bc:0a:4a:15:d8:f2:1a:1f: b6:06:88:81:ea:c0:73:0a:60:7b:3f:76:47:ac:85:41:37:fa: 85:6f:7d:17:09:4f:a4:48:05:77:06:6e:de:9d:85:19:d8:45: a2:84:37:64:d7:ff:8c:a0:e1:57:9c:48:af:61:42:fe:a4:80: 90:9c:fb:94:a5:0e:18:d6:cd:7d:63:6e:81:04:03:c4:af:2a: 97:e2:00:e9:8e:fd:9b:c7:62:b1:eb:bd:85:2e:55:53:f9:cf: 56:cf:f0:51:f1:d2:73:e8:94:54:21:0e:d0:22:06:59:98:45: 9e:f0:b9:78:cc:fa:00:7a:ce:96:e9:80:85:ab:29:a9:19:cc: df:0b:3c:2f:85:a4:10:d5:6e:56:7f:64:d9:a3:a9:d5:c0:41: f2:58:3e:74:2f:80:fb:a1:97:21:6f:bd:7b:75:f3:08:dd:a3: 79:74:59:ba:cf:df:f7:41:70:1f:e1:6b:b3:87:c4:08:3d:2f: 33:35:73:51:bd:5e:17:93:53:00:fd:1f:e8:24:c7:df:db:69: 45:85:7b:92:67:73:54:20:d6:94:2c:f6:d5:93:fd:b1:8c:bb: 6b:3b:c2:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwMTAxMTAvBgNVBAUTKDcyMjE3OEQ1OTFEOTg1OTY4OUU0QjkyRjJEMEM4N0ZB NDdFMzVFMEEwHhcNMjQwNTA0MTg1NjQwWhcNMjQwNTExMTg1NjQwWjAYMRYwFAYD VQQDEw02NjM2ODRlOC1jN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmTnI0iZKgJI+w6cBmYCACcehN0W7Buy2RogSBymoNfIBiV4UTt5vPQuQ9x3 LTfnV0T1Fp6UAUSUaHovDicQQeA09LXZrZiveStVOVUm2G+tkTPYXctgma7L8RZz 2NEl7/kSfIrhWZyMRoR0AaJULOluZsdQ2zso0rAyDxeFpXf2od229V4f1WjvGA1t OaWOLaKnOZSCJ69oUVTeVtzd2Xzo2JxQHXcdLCxg8A3rNqNJSBODanVvvMyo9CGK w8luZsh5rfePfKLi01cvLhOjuvcrhIExSAX6J42ZzPMes6jZ6ZhfpmXLCtH5I1GW Gi6g/ngnpWw6U103oCa1gvLQRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdY8gdZ olsVpsYkyLO/SPdWfpz4MB8GA1UdIwQYMBaAFHIheNWR2YWWieS5Ly0Mh/pH414K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAxMC81N0I3NjcxQUMy MUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmhaYUo1TGt2TFF5SC1rZmpY Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NpRjQxWkhaaFphSjVMa3ZMUXlILWtmalhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDAxMC81N0I3NjcxQUMyMUMxMUU5ODRBMTVEMTJDNEY5QUUwMi9jaUY0MVpIWmha YUo1TGt2TFF5SC1rZmpYZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb9kvuxsPWQ9NeTaE8OMUQ9tX2oS9cnGTjNLPRvApKFdjyGh+2BoiB 6sBzCmB7P3ZHrIVBN/qFb30XCU+kSAV3Bm7enYUZ2EWihDdk1/+MoOFXnEivYUL+ pICQnPuUpQ4Y1s19Y26BBAPEryqX4gDpjv2bx2Kx672FLlVT+c9Wz/BR8dJz6JRU IQ7QIgZZmEWe8Ll4zPoAes6W6YCFqympGczfCzwvhaQQ1W5Wf2TZo6nVwEHyWD50 L4D7oZchb717dfMI3aN5dFm6z9/3QXAf4Wuzh8QIPS8zNXNRvV4Xk1MA/R/oJMff 22lFhXuSZ3NUINaULPbVk/2xjLtrO8Ky -----END CERTIFICATE-----Generated at Sat May 4 20:37:09 2024 by rpki-client on console-fra.rpki-client.org