$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: 7cAnKkhGJjs85BNqJRfyj8ud0Fs2CLCc8f6c3unLB6Q= Subject key identifier: 12:B8:48:86:33:FF:11:42:51:2D:E5:2F:69:A9:21:92:90:36:4F:0F Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: C7 Signing time: Wed 01 May 2024 06:36:04 +0000 Manifest this update: Wed 01 May 2024 06:36:04 +0000 Manifest next update: Wed 08 May 2024 06:36:04 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: aTlxAt2RHhv1UWfNrSPqGZ1caem3bfbulOJz8TaLucI=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: joJ5b4DPS3hMx+b2OPhSlaXN1yXtxvtsJxSUhkzLCCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:36:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: May 1 06:36:04 2024 GMT Not After : May 8 06:36:04 2024 GMT Subject: CN=6631e2d4-a376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:be:51:73:94:a3:7e:36:03:84:96:91:3e:46: 86:1b:ef:94:f8:91:18:0d:ea:b7:5f:77:da:b9:a1: 2a:a7:ca:e5:f3:d6:97:63:18:fc:98:7b:be:a8:cc: cf:b3:35:d5:d1:99:fa:01:7f:0e:de:d3:13:24:3f: b7:42:91:07:a0:e7:b0:e5:41:9e:18:b3:09:ff:67: 97:aa:e7:1d:af:99:fb:86:6e:2b:c3:bf:eb:74:a5: f2:e8:a1:1a:2a:10:21:ca:94:c4:ac:55:30:23:04: 16:02:bb:5d:dd:cd:a2:ef:da:c4:19:6a:1f:e1:2a: 44:e8:d9:b7:af:19:9b:3c:63:36:7c:03:88:7c:ae: 05:cb:db:d4:02:99:ba:d4:f9:7b:d8:99:02:d0:11: 7d:1a:56:96:cf:97:54:1a:2c:95:b1:44:2e:8c:09: 1f:6e:80:58:95:28:6b:06:c0:0d:73:12:79:84:8f: 75:88:27:42:1b:0f:99:72:9b:24:4d:f2:89:be:48: 78:fa:26:51:02:44:c9:68:d4:38:ed:9f:85:1a:0d: 2b:d2:fd:37:ff:a6:fa:14:e0:82:a0:d6:fd:d8:3c: ed:e7:11:9d:55:6d:07:f2:70:af:53:72:60:b3:a0: 6a:95:99:85:57:65:19:75:02:0b:c6:d8:cd:35:72: 07:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B8:48:86:33:FF:11:42:51:2D:E5:2F:69:A9:21:92:90:36:4F:0F X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:47:c6:a2:38:2f:c8:8d:76:af:28:b9:01:79:c5:82:32:55: 50:a4:99:fa:9c:ed:bf:91:bd:29:1b:f6:29:0f:3c:d3:24:77: 63:a5:0c:3d:ef:bd:87:a9:aa:50:99:c7:fd:f2:6a:c4:9b:1e: 3e:b8:b1:c3:5e:5f:4a:45:b0:6c:cd:cf:e3:55:8c:9c:56:9d: 91:3e:d0:b4:d1:9a:8e:bb:a2:ba:3b:5c:45:1a:b6:a0:24:1e: c1:cd:fe:39:55:15:82:61:42:3b:b0:16:da:8a:26:66:7e:3e: 81:66:f0:d5:82:cb:05:43:3d:eb:e2:53:08:ad:9a:12:51:0b: 56:69:ca:26:34:2b:95:3d:92:c2:25:81:2e:1c:70:0c:4e:e5: df:9c:53:ca:57:57:f5:b0:d9:d1:3a:91:47:94:1e:19:84:41: ee:c0:91:99:66:09:d1:b3:a8:1f:a1:18:c1:fe:bc:aa:75:8f: 66:da:f2:81:22:63:42:1b:7d:1c:72:86:51:aa:b3:1f:17:0b: d2:a0:a3:09:71:2a:6b:3e:ac:6e:a9:ce:44:d3:4c:d1:01:a7: 36:8e:d0:d1:84:55:1b:97:c4:02:97:2f:79:18:35:1d:6b:db: 99:af:c6:0f:b0:e6:04:55:9c:05:3a:a4:34:2c:83:62:92:aa: 2b:34:97:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjQwNTAxMDYzNjA0WhcNMjQwNTA4MDYzNjA0WjAYMRYwFAYD VQQDEw02NjMxZTJkNC1hMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu75Rc5SjfjYDhJaRPkaGG++U+JEYDeq3X3fauaEqp8rl89aXYxj8mHu+qMzP szXV0Zn6AX8O3tMTJD+3QpEHoOew5UGeGLMJ/2eXqucdr5n7hm4rw7/rdKXy6KEa KhAhypTErFUwIwQWArtd3c2i79rEGWof4SpE6Nm3rxmbPGM2fAOIfK4Fy9vUApm6 1Pl72JkC0BF9GlaWz5dUGiyVsUQujAkfboBYlShrBsANcxJ5hI91iCdCGw+Zcpsk TfKJvkh4+iZRAkTJaNQ47Z+FGg0r0v03/6b6FOCCoNb92Dzt5xGdVW0H8nCvU3Jg s6BqlZmFV2UZdQILxtjNNXIHgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBK4SIYz /xFCUS3lL2mpIZKQNk8PMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNR8aiOC/IjXavKLkBecWCMlVQpJn6nO2/kb0pG/YpDzzTJHdjpQw9 772HqapQmcf98mrEmx4+uLHDXl9KRbBszc/jVYycVp2RPtC00ZqOu6K6O1xFGrag JB7Bzf45VRWCYUI7sBbaiiZmfj6BZvDVgssFQz3r4lMIrZoSUQtWacomNCuVPZLC JYEuHHAMTuXfnFPKV1f1sNnROpFHlB4ZhEHuwJGZZgnRs6gfoRjB/ryqdY9m2vKB ImNCG30ccoZRqrMfFwvSoKMJcSprPqxuqc5E00zRAac2jtDRhFUbl8QCly95GDUd a9uZr8YPsOYEVZwFOqQ0LINikqorNJeC -----END CERTIFICATE-----Generated at Wed May 1 07:07:05 2024 by rpki-client on console-fra.rpki-client.org