$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: V0zurZFR2pDlMlbI4A5khatY5iLG6NzoN7ETsjAj5AA= Subject key identifier: 90:6B:4C:36:86:AF:63:E4:37:8B:DD:96:0C:AF:72:BC:89:9F:80:6C Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: DB Signing time: Tue 07 May 2024 06:03:08 +0000 Manifest this update: Tue 07 May 2024 06:03:07 +0000 Manifest next update: Tue 14 May 2024 06:03:07 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: /31HV6t7f05LO3wz7OYJw+DWFVJRj2WLhp4+EffBzCI=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: l8Gj0m9EkG6Fdaxl7SxKrM92rnUZHTkx+j8ukMd+sL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 7 06:03:07 2024 GMT Not After : May 14 06:03:07 2024 GMT Subject: CN=6639c41b-b7d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d5:37:d7:2e:89:3d:7b:db:e5:70:80:07:1f: 9a:66:0c:8b:69:8f:44:49:da:33:9d:72:dd:dc:54: 72:97:95:b3:de:22:1f:cc:00:f4:e6:cd:cc:9f:fe: 28:b9:59:32:b6:5b:e7:50:0b:aa:98:5a:f8:6a:b0: a6:e7:3e:fb:d5:59:73:fe:24:88:8d:35:ae:b0:58: 39:e4:5c:82:70:33:b3:27:f9:5f:6b:a2:02:7d:5e: 79:24:44:77:26:8d:01:98:68:0b:97:9e:93:b4:a5: 2e:66:7f:ec:44:31:7e:1d:95:ed:55:03:77:1c:f8: 66:67:f1:b4:78:bf:f0:de:57:6a:ac:c7:2f:15:7f: dc:4f:8a:39:e7:e7:d9:85:41:73:7e:d0:81:58:6b: 1b:b6:85:ad:aa:a4:c7:95:6e:0f:fd:92:5f:bd:c4: 6a:8d:39:ad:f5:59:3d:80:63:d7:8e:31:94:08:df: b8:0a:e1:40:2a:3b:0a:49:9d:5e:3a:cb:e3:ba:49: a8:59:d3:30:5c:c1:fd:50:92:1c:08:67:16:40:de: 2c:d9:90:d5:50:89:73:c2:56:ca:1f:b6:6a:bf:6e: cd:c7:fe:fe:f1:b3:a6:d3:3e:5f:4d:13:6c:6f:27: cc:47:ed:4c:59:92:0e:a9:d3:9c:da:75:d3:eb:fa: fd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:6B:4C:36:86:AF:63:E4:37:8B:DD:96:0C:AF:72:BC:89:9F:80:6C X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:73:9b:d3:48:c1:85:a5:3e:16:d6:b4:a4:2c:1e:78:e3:c8: 00:04:03:eb:63:83:be:dd:2f:ee:a6:ab:a1:26:3c:be:87:40: 9e:3d:91:0b:34:59:36:35:44:30:a9:eb:41:10:b8:31:da:df: 97:e5:09:49:6a:de:a7:51:b7:68:91:29:56:14:52:a4:13:d8: aa:12:db:80:1a:0a:8f:83:48:f0:39:eb:6e:14:af:61:8f:ec: 86:8f:15:71:5f:6f:eb:08:19:94:08:a7:b3:e5:7d:9c:a1:d3: 24:75:20:0e:af:00:59:2c:3d:82:17:58:08:c3:db:46:90:6e: f1:45:d5:6e:85:15:de:f2:27:dd:89:43:4d:2c:4b:e5:5d:2a: 1c:2b:31:b6:13:82:3b:76:3a:f1:92:74:10:6a:05:77:13:a2: f9:99:96:0f:4d:55:7a:03:eb:81:03:78:9d:8a:19:ed:53:bd: 7d:5f:59:88:58:cd:00:d0:85:84:ca:6b:5e:88:71:f5:ba:d8: 4a:7d:f8:82:50:d3:f3:37:0b:19:28:80:d4:79:c4:b4:1d:e5: 5a:8a:65:0f:03:d0:5e:d9:a6:07:fb:21:f4:f5:4a:c5:ac:4b: 35:9e:8c:6c:fa:ef:ea:22:08:ec:a3:9e:3a:08:b1:26:bd:93: 65:f7:75:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjQwNTA3MDYwMzA3WhcNMjQwNTE0MDYwMzA3WjAYMRYwFAYD VQQDEw02NjM5YzQxYi1iN2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdU31y6JPXvb5XCABx+aZgyLaY9ESdoznXLd3FRyl5Wz3iIfzAD05s3Mn/4o uVkytlvnUAuqmFr4arCm5z771Vlz/iSIjTWusFg55FyCcDOzJ/lfa6ICfV55JER3 Jo0BmGgLl56TtKUuZn/sRDF+HZXtVQN3HPhmZ/G0eL/w3ldqrMcvFX/cT4o55+fZ hUFzftCBWGsbtoWtqqTHlW4P/ZJfvcRqjTmt9Vk9gGPXjjGUCN+4CuFAKjsKSZ1e OsvjukmoWdMwXMH9UJIcCGcWQN4s2ZDVUIlzwlbKH7Zqv27Nx/7+8bOm0z5fTRNs byfMR+1MWZIOqdOc2nXT6/r9RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBrTDaG r2PkN4vdlgyvcryJn4BsMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpc5vTSMGFpT4W1rSkLB5448gABAPrY4O+3S/upquhJjy+h0CePZEL NFk2NUQwqetBELgx2t+X5QlJat6nUbdokSlWFFKkE9iqEtuAGgqPg0jwOetuFK9h j+yGjxVxX2/rCBmUCKez5X2codMkdSAOrwBZLD2CF1gIw9tGkG7xRdVuhRXe8ifd iUNNLEvlXSocKzG2E4I7djrxknQQagV3E6L5mZYPTVV6A+uBA3idihntU719X1mI WM0A0IWEymteiHH1uthKffiCUNPzNwsZKIDUecS0HeVaimUPA9Be2aYH+yH09UrF rEs1noxs+u/qIgjso546CLEmvZNl93VE -----END CERTIFICATE-----Generated at Tue May 7 07:01:20 2024 by rpki-client on console-fra.rpki-client.org