$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft File: ChpgX3N8mCCzMTPlo1ecFw0idOw.mft (raw, json) Hash identifier: T+LZzY4hEQhm7ilkz//79x+cSt5y3yaq1Gd4mbzFRcM= Subject key identifier: 25:13:B3:67:A8:02:4F:67:66:06:06:FA:B2:32:5C:7A:1B:F4:E5:C8 Authority key identifier: 0A:1A:60:5F:73:7C:98:20:B3:31:33:E5:A3:57:9C:17:0D:22:74:EC Certificate issuer: /CN=A91BD614/serialNumber=0A1A605F737C9820B33133E5A3579C170D2274EC Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft Manifest number: DB Signing time: Wed 01 May 2024 06:19:46 +0000 Manifest this update: Wed 01 May 2024 06:19:46 +0000 Manifest next update: Wed 08 May 2024 06:19:46 +0000 Files and hashes: 1: ChpgX3N8mCCzMTPlo1ecFw0idOw.crl (hash: WdiZNr7kroM7SmRvvk57G2k2sjDQ0twI1Y25fbXFP9g=) 2: 1E925A56BEE111ED83037109C4F9AE02.roa (hash: TBhcbssExgqFxRfQy6kh4THFtAGhrBLT/uB9I75u5Cc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.crl rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:19:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD614/serialNumber=0A1A605F737C9820B33133E5A3579C170D2274EC Validity Not Before: May 1 06:19:46 2024 GMT Not After : May 8 06:19:46 2024 GMT Subject: CN=6631df02-2b98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c8:4a:d1:3e:cf:77:66:ed:34:cf:95:16:f1: bb:54:3a:c2:84:4b:c4:96:37:0f:3b:fd:79:ea:80: 5b:c0:9b:99:07:e0:4d:44:83:4f:a3:a9:2f:04:50: c0:6f:38:6a:1b:d5:b1:ec:d9:e2:6d:8e:bb:67:ff: 69:82:1b:50:7e:69:3a:fd:13:e2:3f:97:e6:97:8e: a2:c7:44:35:30:1b:6f:64:d9:c5:67:8b:fc:73:dc: 33:53:65:37:21:19:ec:46:c1:b8:b6:f8:ac:9a:6b: e3:2e:fc:85:81:13:70:b3:0e:27:1e:5a:e7:6e:ef: d1:1c:0c:2a:7e:ea:d4:f4:d5:74:ba:bc:18:6b:d2: 85:7c:5b:d0:f9:5e:f2:70:6b:80:bb:63:01:f1:a5: 05:d9:e8:cf:5b:00:9a:07:e4:c8:52:b6:0c:87:b5: 2e:3c:cc:55:15:bc:df:84:06:df:8a:36:91:d0:1c: d0:82:8c:af:09:81:11:af:cf:fb:f2:8d:54:70:90: 46:b7:61:63:8d:43:13:62:eb:ca:44:ec:e5:92:8b: c1:3a:47:e2:f3:41:8b:4a:dd:97:4a:dd:a4:39:af: 13:44:fe:4c:7c:78:8b:a4:5d:b1:dc:17:43:e5:56: c3:df:11:c5:11:4b:63:b1:7f:b8:11:ea:46:84:64: 23:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:13:B3:67:A8:02:4F:67:66:06:06:FA:B2:32:5C:7A:1B:F4:E5:C8 X509v3 Authority Key Identifier: keyid:0A:1A:60:5F:73:7C:98:20:B3:31:33:E5:A3:57:9C:17:0D:22:74:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ChpgX3N8mCCzMTPlo1ecFw0idOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD614/1DF075E2BEDC11ED8E0ADD80C4F9AE02/ChpgX3N8mCCzMTPlo1ecFw0idOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:62:fb:3e:10:c0:37:52:6d:0c:5f:fd:e9:03:29:5c:8c:fe: d0:57:00:ad:ce:80:18:63:ef:7b:bc:02:d6:ab:bb:9f:1d:bc: 5b:7d:d9:06:4c:dd:35:56:30:36:b5:82:bf:fb:63:c3:5c:61: 4a:63:de:94:17:86:e3:44:6a:a5:a9:32:a5:9c:47:67:f1:ad: 56:af:a0:b6:09:e2:31:74:d5:16:ce:f2:e2:16:e0:e2:74:a7: 43:4a:8b:96:83:3e:8c:13:34:4a:dd:89:b4:19:fa:f2:eb:e2: 0d:52:29:d9:4d:a0:0c:b2:86:ef:bf:15:1d:d1:23:70:56:fc: dc:3e:4f:8c:08:91:26:50:43:c1:60:00:1b:b9:52:b0:aa:d7: 0f:49:ba:e2:c6:a8:12:cc:af:f7:9e:f7:a3:ec:1a:01:16:0f: 66:2f:23:40:c3:bd:dd:a8:8a:2d:03:bd:02:9d:0a:85:40:3e: 50:16:c5:ce:a7:a3:20:be:2a:ea:e3:16:ed:1d:3b:75:08:af: 92:4f:b1:85:ae:e9:a1:63:90:d5:74:4d:7a:cd:c8:d2:e7:81: 6c:c0:57:f1:ee:a8:d7:20:0c:b4:6c:eb:46:36:35:2a:ab:a7: 78:ae:0d:46:30:bf:f5:68:ba:83:bc:ba:dd:6b:1f:2f:c6:6c: fa:94:30:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ2MTQxMTAvBgNVBAUTKDBBMUE2MDVGNzM3Qzk4MjBCMzMxMzNFNUEzNTc5QzE3 MEQyMjc0RUMwHhcNMjQwNTAxMDYxOTQ2WhcNMjQwNTA4MDYxOTQ2WjAYMRYwFAYD VQQDEw02NjMxZGYwMi0yYjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApshK0T7Pd2btNM+VFvG7VDrChEvEljcPO/156oBbwJuZB+BNRINPo6kvBFDA bzhqG9Wx7NnibY67Z/9pghtQfmk6/RPiP5fml46ix0Q1MBtvZNnFZ4v8c9wzU2U3 IRnsRsG4tvismmvjLvyFgRNwsw4nHlrnbu/RHAwqfurU9NV0urwYa9KFfFvQ+V7y cGuAu2MB8aUF2ejPWwCaB+TIUrYMh7UuPMxVFbzfhAbfijaR0BzQgoyvCYERr8/7 8o1UcJBGt2FjjUMTYuvKROzlkovBOkfi80GLSt2XSt2kOa8TRP5MfHiLpF2x3BdD 5VbD3xHFEUtjsX+4EepGhGQj2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUTs2eo Ak9nZgYG+rIyXHob9OXIMB8GA1UdIwQYMBaAFAoaYF9zfJggszEz5aNXnBcNInTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDYxNC8xREYwNzVFMkJF REMxMUVEOEUwQUREODBDNEY5QUUwMi9DaHBnWDNOOG1DQ3pNVFBsbzFlY0Z3MGlk T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NocGdYM044bUNDek1UUGxvMWVjRncwaWRPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDYxNC8xREYwNzVFMkJFREMxMUVEOEUwQUREODBDNEY5QUUwMi9DaHBnWDNOOG1D Q3pNVFBsbzFlY0Z3MGlkT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzYvs+EMA3Um0MX/3pAylcjP7QVwCtzoAYY+97vALWq7ufHbxbfdkG TN01VjA2tYK/+2PDXGFKY96UF4bjRGqlqTKlnEdn8a1Wr6C2CeIxdNUWzvLiFuDi dKdDSouWgz6MEzRK3Ym0Gfry6+INUinZTaAMsobvvxUd0SNwVvzcPk+MCJEmUEPB YAAbuVKwqtcPSbrixqgSzK/3nvej7BoBFg9mLyNAw73dqIotA70CnQqFQD5QFsXO p6Mgvirq4xbtHTt1CK+ST7GFrumhY5DVdE16zcjS54FswFfx7qjXIAy0bOtGNjUq q6d4rg1GML/1aLqDvLrdax8vxmz6lDAL -----END CERTIFICATE-----Generated at Wed May 1 07:07:05 2024 by rpki-client on console-fra.rpki-client.org