$ rpki-client -vvf rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft File: C2HEdIlppE_IPIiCoCV50NWSO2E.mft (raw, json) Hash identifier: CmpWmkliBpYzxp5vIXlLDrtZ7vxT6l+PIL//fBQ00LU= Subject key identifier: E5:94:F8:CA:A9:F0:10:68:00:A5:95:B0:B1:F6:82:C0:9E:72:06:53 Authority key identifier: 0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 Certificate issuer: /CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft Manifest number: C7 Signing time: Wed 01 May 2024 06:45:13 +0000 Manifest this update: Wed 01 May 2024 06:45:12 +0000 Manifest next update: Wed 08 May 2024 06:45:12 +0000 Files and hashes: 1: C2HEdIlppE_IPIiCoCV50NWSO2E.crl (hash: mU9fm0vjCQSCHCSeAPMKSjCZlzgEJSnUhcTP8Ty9xPM=) 2: CDC7FD82EFFA11EE85969E48C4F9AE02.roa (hash: 4g0e3wgrwHtYjc4W6AoaBHcA6TKfcTKtEdmlDKaxkIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:37:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B092/serialNumber=0B61C4748969A44FC83C8882A02579D0D5923B61 Validity Not Before: May 1 06:45:12 2024 GMT Not After : May 8 06:45:12 2024 GMT Subject: CN=6631e4f9-8b25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:70:81:ec:bb:fa:5c:d1:1e:48:f0:f1:87: 0b:e6:05:41:23:c4:bb:ca:55:27:4d:24:04:aa:a3: dc:29:50:08:76:49:f6:a2:88:ee:d9:7e:d3:d2:50: 91:93:7f:76:43:1e:85:13:bd:41:91:8c:0f:d4:c5: 60:ea:7b:55:6b:71:f5:1f:ca:bf:44:a7:35:a6:9b: 7e:46:74:82:b6:56:62:f7:89:eb:7f:48:ce:ac:0f: 7f:40:c6:ae:b4:4d:34:ce:1f:93:2b:96:93:5c:44: d9:bf:82:7d:88:74:3e:5f:6d:fa:52:55:d4:d2:11: dc:d7:19:96:b4:a4:7f:31:ef:3e:41:8d:0f:b5:8b: 17:7e:fc:80:df:14:ae:c6:5e:6c:21:a3:db:6c:c6: e7:cb:03:10:ee:fe:e2:09:79:12:5d:7d:b5:b6:fc: 85:a2:a1:60:0a:dc:68:eb:ed:94:ec:86:58:b3:e2: a9:a8:c1:dc:57:06:18:7f:72:00:a7:85:5f:aa:af: b6:e3:61:33:b8:48:8a:e2:9f:e2:18:df:ab:81:69: 8d:7c:fd:eb:af:75:9e:12:37:65:76:f1:a1:76:3f: 14:d1:33:a9:7c:24:f6:ae:73:19:f2:9c:f6:8c:99: 28:cb:d5:f7:7d:2b:99:12:1f:8c:da:28:88:9a:3d: 29:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:94:F8:CA:A9:F0:10:68:00:A5:95:B0:B1:F6:82:C0:9E:72:06:53 X509v3 Authority Key Identifier: keyid:0B:61:C4:74:89:69:A4:4F:C8:3C:88:82:A0:25:79:D0:D5:92:3B:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2HEdIlppE_IPIiCoCV50NWSO2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B092/28230996EE2311EDBABE2A5DC4F9AE02/C2HEdIlppE_IPIiCoCV50NWSO2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:38:83:0f:25:39:33:55:de:32:75:ec:19:57:9a:a6:8a:f6: 6f:5e:48:80:f8:25:f3:b8:0f:c3:a6:b4:0f:bc:c4:ef:0d:c3: 0f:a8:dc:18:23:a3:3d:e8:f2:de:52:bc:7a:33:0f:dd:ce:6e: b9:94:66:35:4a:86:6d:38:65:3c:da:77:0f:08:3c:19:b8:74: 04:4d:7d:a8:90:1e:92:e8:c2:48:0f:a8:f2:c7:f0:5d:e5:a7: a1:3c:78:a2:7a:73:cf:79:f1:f0:c5:dd:bf:78:e0:54:78:f9: 34:01:c1:6c:b7:e0:fb:c6:4c:19:6a:ea:9b:f3:b5:fc:b4:53: 9a:04:31:17:c6:87:d5:0b:ef:87:c1:6b:5e:11:c3:e8:45:1a: 77:4d:e3:bb:e5:b9:e2:2a:97:7a:5c:2d:c7:9b:ca:f6:3b:46: 91:81:00:b8:1d:5a:d2:0d:96:95:ce:2f:77:8f:6b:f5:33:eb: cb:d0:6c:2b:32:8e:3b:24:96:01:67:21:07:5b:2d:89:54:0f: 7c:1f:d4:0f:13:ff:32:6b:bf:4b:76:33:a6:82:a1:ab:1b:1a: d7:27:0e:f1:8c:c2:6b:99:3a:5d:3b:c0:22:f6:3d:74:c0:c2: 27:51:5c:bb:36:8d:0a:44:e0:51:3b:08:28:80:3e:54:b4:8c: 4d:57:71:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IwOTIxMTAvBgNVBAUTKDBCNjFDNDc0ODk2OUE0NEZDODNDODg4MkEwMjU3OUQw RDU5MjNCNjEwHhcNMjQwNTAxMDY0NTEyWhcNMjQwNTA4MDY0NTEyWjAYMRYwFAYD VQQDEw02NjMxZTRmOS04YjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0twgey7+lzRHkjw8YcL5gVBI8S7ylUnTSQEqqPcKVAIdkn2ooju2X7T0lCR k392Qx6FE71BkYwP1MVg6ntVa3H1H8q/RKc1ppt+RnSCtlZi94nrf0jOrA9/QMau tE00zh+TK5aTXETZv4J9iHQ+X236UlXU0hHc1xmWtKR/Me8+QY0PtYsXfvyA3xSu xl5sIaPbbMbnywMQ7v7iCXkSXX21tvyFoqFgCtxo6+2U7IZYs+KpqMHcVwYYf3IA p4Vfqq+242EzuEiK4p/iGN+rgWmNfP3rr3WeEjdldvGhdj8U0TOpfCT2rnMZ8pz2 jJkoy9X3fSuZEh+M2iiImj0pcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWU+Mqp 8BBoAKWVsLH2gsCecgZTMB8GA1UdIwQYMBaAFAthxHSJaaRPyDyIgqAledDVkjth MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjA5Mi8yODIzMDk5NkVF MjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBFX0lQSWlDb0NWNTBOV1NP MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MySEVkSWxwcEVfSVBJaUNvQ1Y1ME5XU08yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjA5Mi8yODIzMDk5NkVFMjMxMUVEQkFCRTJBNURDNEY5QUUwMi9DMkhFZElscHBF X0lQSWlDb0NWNTBOV1NPMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxOIMPJTkzVd4ydewZV5qmivZvXkiA+CXzuA/DprQPvMTvDcMPqNwY I6M96PLeUrx6Mw/dzm65lGY1SoZtOGU82ncPCDwZuHQETX2okB6S6MJID6jyx/Bd 5aehPHiienPPefHwxd2/eOBUePk0AcFst+D7xkwZauqb87X8tFOaBDEXxofVC++H wWteEcPoRRp3TeO75bniKpd6XC3Hm8r2O0aRgQC4HVrSDZaVzi93j2v1M+vL0Gwr Mo47JJYBZyEHWy2JVA98H9QPE/8ya79LdjOmgqGrGxrXJw7xjMJrmTpdO8Ai9j10 wMInUVy7No0KROBROwgogD5UtIxNV3Et -----END CERTIFICATE-----Generated at Wed May 1 07:55:39 2024 by rpki-client on console-fra.rpki-client.org