$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft File: C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft (raw, json) Hash identifier: 5RzqNLGQCQj/kOGV4GyTqx6afaeGCzDiqtKm/kdjNM8= Subject key identifier: A9:DB:F8:33:83:77:C3:FD:02:93:F4:C0:A9:5F:A2:C6:AE:CA:92:5B Authority key identifier: 0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 Certificate issuer: /CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Certificate serial: 23E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft Manifest number: 23CC Signing time: Fri 26 Apr 2024 16:07:25 +0000 Manifest this update: Fri 26 Apr 2024 16:07:24 +0000 Manifest next update: Fri 03 May 2024 16:07:24 +0000 Files and hashes: 1: C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl (hash: ocHqxYAojGYhryLDvR2e3ALjchA0wNaA9u0FlqkIL80=) 2: EBC23D9A041E11ECA959B779C4F9AE02.roa (hash: +yB6X4sI41mJC1GZElh1eqYzjhAxtA3zt3+jtncGoEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 16:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9184 (0x23e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43F4/serialNumber=0B63E63A5FA3B2E3CCB9930E8F6C8CECC2458B45 Validity Not Before: Apr 26 16:07:24 2024 GMT Not After : May 3 16:07:24 2024 GMT Subject: CN=662bd13d-6aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9b:b4:61:f8:19:7f:a8:7b:69:1f:b9:87:a3: ee:9d:3f:cf:f2:b8:f2:ca:f9:3b:a0:d9:73:7a:ec: f7:c2:9b:fc:2c:c4:06:a4:fb:46:c5:4e:4c:ac:e9: 8c:2e:68:78:bd:4c:33:51:3f:cd:1b:ba:79:3b:ef: 07:0e:e7:6e:48:a2:e8:8e:36:00:a2:e7:67:5c:06: db:1b:1c:05:2b:fc:b2:99:65:40:51:0a:e8:4b:e7: 71:51:58:e4:a5:cd:c1:1c:30:c4:fe:d0:7c:7d:af: cd:31:ee:72:eb:b5:ad:6a:52:40:98:ed:fb:da:6c: 12:36:c1:18:78:4e:96:83:7e:25:78:99:3a:e5:ce: 9c:cb:fa:b6:49:03:b7:e6:4d:af:77:e2:fd:e4:07: 11:de:0e:a5:be:bf:f3:56:88:bd:58:42:6b:83:80: b7:8b:03:ed:28:4e:1b:b7:b4:30:f2:aa:af:f4:81: 5c:f3:d8:91:ed:89:77:e4:7f:05:01:36:ea:d8:ac: 71:25:61:0c:80:e9:7f:cf:27:3a:84:b6:8d:72:2c: 0f:4d:f7:67:f4:13:c1:5b:9a:57:50:88:6d:31:d7: 90:bf:8c:f7:e8:30:2e:33:b0:75:43:e5:12:5c:2c: ea:db:53:2b:38:37:21:df:29:87:90:e0:4e:54:84: 90:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DB:F8:33:83:77:C3:FD:02:93:F4:C0:A9:5F:A2:C6:AE:CA:92:5B X509v3 Authority Key Identifier: keyid:0B:63:E6:3A:5F:A3:B2:E3:CC:B9:93:0E:8F:6C:8C:EC:C2:45:8B:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C2PmOl-jsuPMuZMOj2yM7MJFi0U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43F4/17AC2A70419C11E5835FD183C4F9AE02/C2PmOl-jsuPMuZMOj2yM7MJFi0U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:72:20:8c:ae:33:1e:58:49:f8:3a:46:2c:8a:a2:dc:aa:70: 24:d6:8f:9e:1c:97:65:35:88:74:9d:6e:66:ee:d0:18:7e:22: d2:97:14:f5:2c:9d:ee:05:bf:b9:29:b9:3e:af:b2:9e:c0:ad: 3d:18:02:b3:b7:c4:f5:19:c2:04:65:88:35:67:c5:6b:22:61: 48:e0:ca:7d:e9:39:51:15:34:ce:60:a9:59:5b:28:c6:52:eb: e0:65:de:3c:d9:b4:1a:2f:52:96:28:39:a8:2a:2c:4b:85:80: fd:b6:d9:d3:1f:b9:49:07:b0:7f:ed:c2:fb:2f:05:75:1f:0a: 7b:b0:7c:a6:ca:37:d5:67:57:38:9d:18:4c:3d:78:1a:5d:bd: 1c:8c:c4:06:33:28:99:98:2e:6a:be:23:45:83:47:50:ea:89: ce:af:77:46:61:1e:75:fb:49:20:4e:2d:44:20:23:b7:72:48: b3:fc:09:68:16:3f:b8:7c:4d:eb:28:51:22:c3:3f:d9:a4:04: 3f:ec:6a:53:ec:e3:f7:c6:fe:91:9f:11:ae:0d:4d:4c:db:77: 33:09:60:0f:9d:e9:74:d1:2a:d5:cf:ff:dd:96:7c:ec:a0:58: d1:9a:36:c1:1a:35:00:70:3e:80:a3:43:f6:73:9d:ab:d0:3e: 1f:58:c9:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRjQxMTAvBgNVBAUTKDBCNjNFNjNBNUZBM0IyRTNDQ0I5OTMwRThGNkM4Q0VD QzI0NThCNDUwHhcNMjQwNDI2MTYwNzI0WhcNMjQwNTAzMTYwNzI0WjAYMRYwFAYD VQQDEw02NjJiZDEzZC02YWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZu0YfgZf6h7aR+5h6PunT/P8rjyyvk7oNlzeuz3wpv8LMQGpPtGxU5MrOmM Lmh4vUwzUT/NG7p5O+8HDuduSKLojjYAoudnXAbbGxwFK/yymWVAUQroS+dxUVjk pc3BHDDE/tB8fa/NMe5y67WtalJAmO372mwSNsEYeE6Wg34leJk65c6cy/q2SQO3 5k2vd+L95AcR3g6lvr/zVoi9WEJrg4C3iwPtKE4bt7Qw8qqv9IFc89iR7Yl35H8F ATbq2KxxJWEMgOl/zyc6hLaNciwPTfdn9BPBW5pXUIhtMdeQv4z36DAuM7B1Q+US XCzq21MrODch3ymHkOBOVISQKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKnb+DOD d8P9ApP0wKlfosauypJbMB8GA1UdIwQYMBaAFAtj5jpfo7LjzLmTDo9sjOzCRYtF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNGNC8xN0FDMkE3MDQx OUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1UE11Wk1PajJ5TTdNSkZp MFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MyUG1PbC1qc3VQTXVaTU9qMnlNN01KRmkwVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDNGNC8xN0FDMkE3MDQxOUMxMUU1ODM1RkQxODNDNEY5QUUwMi9DMlBtT2wtanN1 UE11Wk1PajJ5TTdNSkZpMFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiciCMrjMeWEn4OkYsiqLcqnAk1o+eHJdlNYh0nW5m7tAYfiLSlxT1 LJ3uBb+5Kbk+r7KewK09GAKzt8T1GcIEZYg1Z8VrImFI4Mp96TlRFTTOYKlZWyjG UuvgZd482bQaL1KWKDmoKixLhYD9ttnTH7lJB7B/7cL7LwV1Hwp7sHymyjfVZ1c4 nRhMPXgaXb0cjMQGMyiZmC5qviNFg0dQ6onOr3dGYR51+0kgTi1EICO3ckiz/Alo Fj+4fE3rKFEiwz/ZpAQ/7GpT7OP3xv6RnxGuDU1M23czCWAPnel00SrVz//dlnzs oFjRmjbBGjUAcD6Ao0P2c52r0D4fWMmJ -----END CERTIFICATE-----Generated at Sun Apr 28 15:52:06 2024 by rpki-client on console-fra.rpki-client.org