$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: PH2P7wI+CUZZ0XqtmP3angb2Nkm4gIBUlADcUbRXuRw= Subject key identifier: B9:00:F0:C6:66:44:EE:7A:8E:58:55:34:6D:10:37:6E:8B:90:C4:22 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0ABC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0AB6 Signing time: Mon 06 May 2024 20:15:07 +0000 Manifest this update: Mon 06 May 2024 20:15:06 +0000 Manifest next update: Mon 13 May 2024 20:15:06 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: Yb93ERI+3e4R3hpiy5QbV0b+X5oAr8wt+TUOL3wEACk=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: QZ3wK9JvZw5jGFht0yCLYyrcYMQS8ULZWSvBoaszAK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2748 (0xabc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: May 6 20:15:06 2024 GMT Not After : May 13 20:15:06 2024 GMT Subject: CN=66393a4a-9345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:cd:55:de:89:4b:07:4a:e6:23:67:d8:31:9a: c7:e7:90:4b:59:1e:08:40:a3:56:42:d8:b3:3d:fc: 26:33:2c:7b:1d:74:f1:10:d6:fe:8e:e6:3c:36:9e: f8:9e:eb:11:ad:a8:3d:2f:e2:08:75:c7:ff:46:0d: d2:22:c0:ce:5f:1d:33:4a:0a:a6:ef:36:82:95:a4: e8:3c:a9:63:76:83:2d:7f:a1:aa:48:f0:50:41:1f: 8b:a5:f8:9b:61:fc:d0:5c:a1:92:93:42:da:ea:23: ef:04:d6:4a:35:82:36:60:69:0c:e8:e4:be:ce:37: e8:41:39:d3:8e:86:c8:42:08:63:75:9b:ec:7e:2a: 8f:50:76:6e:f3:67:5b:c8:ae:75:eb:83:04:b0:25: 15:c5:73:5f:25:3b:51:79:b1:20:f5:e7:1e:c8:2c: ae:c5:4e:eb:4a:03:53:d3:8f:02:c2:35:bd:b0:c9: 17:c7:4c:1a:5e:49:34:a6:07:d8:a3:3c:69:09:42: 69:56:2a:30:26:21:f9:ee:88:76:af:f8:39:65:c0: 3f:29:56:9b:10:8e:ac:9d:fe:92:da:5c:fd:c1:de: fb:fc:57:1f:96:11:e8:13:16:44:55:c6:f8:1e:5c: 08:95:d6:0b:4d:9e:a3:55:0e:3d:6a:71:cf:8e:3d: 9c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:00:F0:C6:66:44:EE:7A:8E:58:55:34:6D:10:37:6E:8B:90:C4:22 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:73:f8:52:c3:05:56:f0:c7:4a:75:38:cb:57:0f:2c:80:57: 8c:77:63:ca:9d:1c:2e:16:85:4e:4b:f7:d7:88:2a:25:62:16: a8:2b:d6:e3:d0:82:a4:ce:5c:eb:07:12:79:a0:6c:db:04:7a: 00:9f:7f:a4:c1:62:88:cd:51:aa:90:57:06:ee:0a:19:5a:48: e6:2c:72:98:be:91:c6:f2:52:72:b5:7f:c0:5d:0c:d9:f5:14: 96:26:7a:42:e7:b0:13:10:ec:99:8a:01:c2:25:e4:01:36:d2: ef:48:a2:6d:e4:75:fc:ee:c4:ba:7f:d2:99:eb:a4:ae:8b:85: 10:c7:df:f7:42:a9:8a:2b:42:9b:4d:00:32:4f:9e:b7:79:7f: 59:ba:93:f7:ed:64:2e:6a:11:0d:9d:6e:55:89:08:d1:3f:82: 09:06:aa:84:9c:e7:5d:f2:63:98:ba:81:7d:ef:2d:48:13:2a: 22:77:08:c2:7b:e9:87:2d:49:a6:62:30:f9:c3:4e:df:36:03: 4a:d3:71:63:ca:94:3a:35:41:48:8b:21:51:81:42:da:d2:07: a6:ce:52:a4:22:8d:2b:6e:a8:e2:11:ac:64:4a:0e:2d:02:11: 11:15:2e:da:8c:98:23:b0:e7:77:b8:c1:13:66:fb:31:df:9a: a7:3a:be:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjQwNTA2MjAxNTA2WhcNMjQwNTEzMjAxNTA2WjAYMRYwFAYD VQQDEw02NjM5M2E0YS05MzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo81V3olLB0rmI2fYMZrH55BLWR4IQKNWQtizPfwmMyx7HXTxENb+juY8Np74 nusRrag9L+IIdcf/Rg3SIsDOXx0zSgqm7zaClaToPKljdoMtf6GqSPBQQR+Lpfib YfzQXKGSk0La6iPvBNZKNYI2YGkM6OS+zjfoQTnTjobIQghjdZvsfiqPUHZu82db yK5164MEsCUVxXNfJTtRebEg9eceyCyuxU7rSgNT048CwjW9sMkXx0waXkk0pgfY ozxpCUJpViowJiH57oh2r/g5ZcA/KVabEI6snf6S2lz9wd77/FcflhHoExZEVcb4 HlwIldYLTZ6jVQ49anHPjj2cFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkA8MZm RO56jlhVNG0QN26LkMQiMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbc/hSwwVW8MdKdTjLVw8sgFeMd2PKnRwuFoVOS/fXiColYhaoK9bj 0IKkzlzrBxJ5oGzbBHoAn3+kwWKIzVGqkFcG7goZWkjmLHKYvpHG8lJytX/AXQzZ 9RSWJnpC57ATEOyZigHCJeQBNtLvSKJt5HX87sS6f9KZ66Sui4UQx9/3QqmKK0Kb TQAyT563eX9ZupP37WQuahENnW5ViQjRP4IJBqqEnOdd8mOYuoF97y1IEyoidwjC e+mHLUmmYjD5w07fNgNK03FjypQ6NUFIiyFRgULa0gemzlKkIo0rbqjiEaxkSg4t AhERFS7ajJgjsOd3uMETZvsx35qnOr50 -----END CERTIFICATE-----Generated at Mon May 6 23:05:41 2024 by rpki-client on console-fra.rpki-client.org