$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft File: Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json) Hash identifier: g7pCjqCNPQ66lGMSSIFTtF15yVkO0ND8Piht9PJcMO4= Subject key identifier: AA:DB:2A:F3:A8:0F:B0:55:A0:B3:48:C2:72:85:D4:A7:0A:70:80:46 Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Certificate serial: 0CB2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft Manifest number: 0CA9 Signing time: Sat 04 May 2024 18:59:07 +0000 Manifest this update: Sat 04 May 2024 18:59:07 +0000 Manifest next update: Sat 11 May 2024 18:59:07 +0000 Files and hashes: 1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: S+LYfyR8ASU9m3yvP1Q9QKtQjzRWcEyOYji+u+qsVi8=) 2: F4B8310CFC3511EB8D17450AC4F9AE02.roa (hash: t+V/SPy1RB4cz7sZMjNkJC4ofU0fDHwsIgWWPZnKtA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3250 (0xcb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Validity Not Before: May 4 18:59:07 2024 GMT Not After : May 11 18:59:07 2024 GMT Subject: CN=6636857b-6b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e7:3f:18:37:9f:a0:76:d9:44:19:0b:20:58: a7:04:14:0d:66:d4:7a:ff:17:fc:a1:b5:25:8c:46: 1a:42:c9:cb:73:ba:af:9d:1b:e3:72:8b:0a:bf:4f: fc:98:3e:67:68:a5:14:67:de:5d:46:da:08:67:19: 4f:e1:18:75:00:c4:2d:5f:7f:de:61:22:06:fd:dd: 66:79:e3:54:99:29:f9:9f:d1:ff:e4:20:72:bd:9d: 34:e8:e7:dd:ba:a0:a2:24:80:a2:81:b1:d6:33:1a: 50:78:eb:0f:76:40:b5:d5:77:25:1d:bd:9a:9d:b1: 90:d4:0e:0b:4d:54:19:d0:9d:09:4b:2e:77:6e:33: 94:c6:ca:89:dc:3b:65:71:1e:f7:ed:87:58:ec:80: 5a:ae:ae:91:50:71:73:b1:f3:9a:61:eb:f9:9d:f1: 8b:55:a8:aa:57:2e:71:d2:2b:2e:ee:97:8a:12:2d: d4:78:12:f6:c3:eb:03:26:3d:f5:9b:a8:39:dc:73: dd:eb:6b:e5:ea:47:5e:2f:e8:ef:8f:e3:c1:48:4f: ea:85:e1:ee:1a:e4:54:6b:29:7b:be:04:70:ab:98: 42:db:f0:9e:54:93:99:ca:15:32:9b:74:02:2a:c6: 8c:88:33:cd:38:e8:83:b5:23:8e:25:54:51:9e:41: 11:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:DB:2A:F3:A8:0F:B0:55:A0:B3:48:C2:72:85:D4:A7:0A:70:80:46 X509v3 Authority Key Identifier: keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:cb:f3:cb:90:2c:f9:b2:af:45:d9:0b:f8:58:12:0d:02:45: 7c:55:2d:ce:80:f4:5d:c5:9b:a4:4f:7a:01:b2:d3:22:f0:5f: 18:9a:7b:0e:e0:a1:2f:54:6f:fb:9a:c6:bc:11:f7:f6:59:bb: 92:b4:9b:42:2d:7f:72:46:a4:8a:b8:dd:15:e1:07:80:da:31: c1:93:f1:4b:be:32:16:f3:79:4c:11:09:8c:68:3a:5a:6d:fe: 5c:4c:dd:e4:36:3a:77:1f:24:d9:b6:e4:47:57:9d:d5:5e:f9: 6f:48:ca:b2:73:f2:f0:8d:4b:2f:90:06:e2:f0:38:0e:3c:60: 6e:ff:7e:60:3a:1e:e6:ed:28:1f:fc:0a:5e:01:5c:d8:1f:b5: 55:08:41:4b:b2:3a:17:ec:d7:42:6f:a4:af:ca:2b:57:f3:43: 56:13:3e:4e:5e:5f:e3:5a:12:30:f5:97:c0:57:1e:a5:cd:6b: ff:fe:8f:d7:c4:0c:fb:c7:0a:72:51:1d:ff:b9:f6:5c:52:3b: fb:39:0e:af:5d:50:7b:7e:a0:48:9e:8b:e0:05:65:16:f3:d4: f9:2a:d4:40:7f:8c:dd:c9:25:52:f4:87:b0:3c:bb:d2:fd:ca: 9a:a6:3f:6d:4f:48:70:4a:de:94:bd:c4:22:b2:1f:9b:0e:98: 0d:3d:96:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4 ODRDRDFCMzMwHhcNMjQwNTA0MTg1OTA3WhcNMjQwNTExMTg1OTA3WjAYMRYwFAYD VQQDEw02NjM2ODU3Yi02YjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+c/GDefoHbZRBkLIFinBBQNZtR6/xf8obUljEYaQsnLc7qvnRvjcosKv0/8 mD5naKUUZ95dRtoIZxlP4Rh1AMQtX3/eYSIG/d1meeNUmSn5n9H/5CByvZ006Ofd uqCiJICigbHWMxpQeOsPdkC11XclHb2anbGQ1A4LTVQZ0J0JSy53bjOUxsqJ3Dtl cR737YdY7IBarq6RUHFzsfOaYev5nfGLVaiqVy5x0isu7peKEi3UeBL2w+sDJj31 m6g53HPd62vl6kdeL+jvj+PBSE/qheHuGuRUayl7vgRwq5hC2/CeVJOZyhUym3QC KsaMiDPNOOiDtSOOJVRRnkER2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrbKvOo D7BVoLNIwnKF1KcKcIBGMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1 ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGy/PLkCz5sq9F2Qv4WBINAkV8VS3OgPRdxZukT3oBstMi8F8YmnsO 4KEvVG/7msa8Eff2WbuStJtCLX9yRqSKuN0V4QeA2jHBk/FLvjIW83lMEQmMaDpa bf5cTN3kNjp3HyTZtuRHV53VXvlvSMqyc/LwjUsvkAbi8DgOPGBu/35gOh7m7Sgf /ApeAVzYH7VVCEFLsjoX7NdCb6SvyitX80NWEz5OXl/jWhIw9ZfAVx6lzWv//o/X xAz7xwpyUR3/ufZcUjv7OQ6vXVB7fqBInovgBWUW89T5KtRAf4zdySVS9IewPLvS /cqapj9tT0hwSt6UvcQish+bDpgNPZbL -----END CERTIFICATE-----Generated at Sat May 4 19:58:44 2024 by rpki-client on console-ams.rpki-client.org