$ rpki-client -vvf rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft File: CIaR8feL2c7-2A021lDWd2emvbA.mft (raw, json) Hash identifier: DdCvKlKoVVhwwG9/sLBWFnPvwVmukN6NiYGrt1RyG4c= Subject key identifier: C2:2A:E7:30:D4:D8:A0:05:82:CF:A4:1F:9E:19:15:EB:4D:75:6B:5B Authority key identifier: 08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 Certificate issuer: /CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Certificate serial: 06C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft Manifest number: 06BF Signing time: Tue 30 Apr 2024 23:21:37 +0000 Manifest this update: Tue 30 Apr 2024 23:21:37 +0000 Manifest next update: Tue 07 May 2024 23:21:37 +0000 Files and hashes: 1: CIaR8feL2c7-2A021lDWd2emvbA.crl (hash: RkoNNmcXhgd705htxgwClEoa6Kcl+xpBmhYpsB6CT/0=) 2: F126F04A11A911EBB5A4DD83C4F9AE02.roa (hash: gbzQKBwFAV/QVtRGQ1XjoisEC6G6KDgdJdLY0qtEDRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1731 (0x6c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DA4A/serialNumber=088691F1F78BD9CEFED80D36D650D67767A6BDB0 Validity Not Before: Apr 30 23:21:37 2024 GMT Not After : May 7 23:21:37 2024 GMT Subject: CN=66317d01-059e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3c:0a:27:5a:a6:35:5e:d7:8d:69:d3:94:e9: d7:5e:d5:43:de:3c:bb:ff:a9:8d:86:fd:68:98:d9: fb:8f:9a:ee:fc:a1:59:b3:7a:91:a4:39:4f:43:21: ff:65:95:48:3d:f6:f5:b5:78:68:95:50:9a:f2:7b: a1:f4:5c:ba:2a:ee:9e:86:2d:d0:8d:3d:6a:8e:e0: 19:41:f0:4f:4a:6b:f8:12:f3:42:01:9e:61:1a:04: 2e:ed:90:02:2f:06:e4:45:a5:94:ad:b1:c8:26:0a: f0:ef:d5:bf:54:8d:2f:4a:37:f5:a0:bd:44:c2:08: 75:2f:39:59:ed:31:2a:de:7b:22:84:95:ea:45:5a: d7:28:26:52:c7:12:97:00:0e:11:44:2b:28:dd:08: 9b:44:91:2f:16:be:fb:ee:1c:40:32:9d:3a:ba:f9: 05:95:b3:04:ea:5c:50:7e:b6:8d:ca:c9:44:5b:f4: 73:5f:b3:b8:93:35:7d:6f:84:0d:5a:74:e2:48:d1: b0:97:73:77:d5:eb:e7:d7:ad:8c:8b:49:c5:1b:2f: 99:ce:2d:4b:c4:89:7e:01:07:2e:4c:58:a6:3d:75: 66:42:22:9a:43:d4:75:7b:28:ed:d1:0c:7f:c6:f8: 75:8f:7a:d2:67:5b:3a:f4:70:d3:b4:64:d9:12:06: 88:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2A:E7:30:D4:D8:A0:05:82:CF:A4:1F:9E:19:15:EB:4D:75:6B:5B X509v3 Authority Key Identifier: keyid:08:86:91:F1:F7:8B:D9:CE:FE:D8:0D:36:D6:50:D6:77:67:A6:BD:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CIaR8feL2c7-2A021lDWd2emvbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DA4A/051DAF5A0DC511EB9C6BBD1CC4F9AE02/CIaR8feL2c7-2A021lDWd2emvbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:9d:c3:b1:7e:4a:e2:35:f1:a9:23:9f:ad:7c:08:33:37:44: 17:a7:3e:72:5e:3f:e8:33:4e:50:59:3e:65:7d:53:fd:52:9e: 04:a6:26:f0:3d:c1:31:68:9e:d6:ca:d7:56:29:a9:44:f5:c7: 96:da:f3:91:02:8a:84:f0:5f:b2:de:d2:81:bb:5e:bf:be:fe: 57:1e:d2:79:60:2d:d1:bc:ba:07:0d:a1:46:80:a4:71:56:cc: 08:05:a9:46:3b:76:ce:02:f9:22:6f:c9:ef:68:69:71:9c:96: 41:1a:cb:88:ec:0b:d6:fe:84:78:07:27:1b:2f:8b:f6:45:4d: 93:3c:60:b2:23:9f:ac:6a:5c:6f:ad:7a:0d:1f:30:fe:ca:e7: 26:f4:04:ec:f5:56:08:b0:bf:d9:27:43:16:a9:2a:6b:07:a8: 41:0f:7c:29:f9:f5:08:f1:06:39:90:a0:ec:14:22:1b:d6:04: a5:64:45:18:9a:e2:9c:77:c6:a1:ed:a5:3e:2a:63:45:e5:32: 0e:f0:1e:eb:92:b3:7d:b2:24:28:de:f0:b8:68:9d:c6:65:06: ed:f8:bc:84:58:fd:2a:c3:8d:1d:cd:d2:25:bc:df:73:ed:68: 4a:af:09:88:6e:ab:12:bf:2c:ca:ef:44:aa:d8:80:bc:79:fc: eb:ee:0b:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RBNEExMTAvBgNVBAUTKDA4ODY5MUYxRjc4QkQ5Q0VGRUQ4MEQzNkQ2NTBENjc3 NjdBNkJEQjAwHhcNMjQwNDMwMjMyMTM3WhcNMjQwNTA3MjMyMTM3WjAYMRYwFAYD VQQDEw02NjMxN2QwMS0wNTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjwKJ1qmNV7XjWnTlOnXXtVD3jy7/6mNhv1omNn7j5ru/KFZs3qRpDlPQyH/ ZZVIPfb1tXholVCa8nuh9Fy6Ku6ehi3QjT1qjuAZQfBPSmv4EvNCAZ5hGgQu7ZAC LwbkRaWUrbHIJgrw79W/VI0vSjf1oL1Ewgh1LzlZ7TEq3nsihJXqRVrXKCZSxxKX AA4RRCso3QibRJEvFr777hxAMp06uvkFlbME6lxQfraNyslEW/RzX7O4kzV9b4QN WnTiSNGwl3N31evn162Mi0nFGy+Zzi1LxIl+AQcuTFimPXVmQiKaQ9R1eyjt0Qx/ xvh1j3rSZ1s69HDTtGTZEgaIEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIq5zDU 2KAFgs+kH54ZFetNdWtbMB8GA1UdIwQYMBaAFAiGkfH3i9nO/tgNNtZQ1ndnpr2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REE0QS8wNTFEQUY1QTBE QzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJjNy0yQTAyMWxEV2QyZW12 YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NJYVI4ZmVMMmM3LTJBMDIxbERXZDJlbXZiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REE0QS8wNTFEQUY1QTBEQzUxMUVCOUM2QkJEMUNDNEY5QUUwMi9DSWFSOGZlTDJj Ny0yQTAyMWxEV2QyZW12YkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhncOxfkriNfGpI5+tfAgzN0QXpz5yXj/oM05QWT5lfVP9Up4Epibw PcExaJ7WytdWKalE9ceW2vORAoqE8F+y3tKBu16/vv5XHtJ5YC3RvLoHDaFGgKRx VswIBalGO3bOAvkib8nvaGlxnJZBGsuI7AvW/oR4BycbL4v2RU2TPGCyI5+salxv rXoNHzD+yucm9ATs9VYIsL/ZJ0MWqSprB6hBD3wp+fUI8QY5kKDsFCIb1gSlZEUY muKcd8ah7aU+KmNF5TIO8B7rkrN9siQo3vC4aJ3GZQbt+LyEWP0qw40dzdIlvN9z 7WhKrwmIbqsSvyzK70Sq2IC8efzr7gv9 -----END CERTIFICATE-----Generated at Tue Apr 30 23:52:29 2024 by rpki-client on console-ams.rpki-client.org