$ rpki-client -vvf rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft File: UKsTEAVD9kbAxVN13vhQXRTzZrg.mft (raw, json) Hash identifier: w5Nj9y5/bOTadVIBoHQsN2keEWjWaglGD6vb7iacGwI= Subject key identifier: 1A:19:19:F5:D9:F2:F0:E5:C7:03:B6:BD:C6:B1:FB:60:7E:D8:60:10 Authority key identifier: 50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 Certificate issuer: /CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Certificate serial: 0A75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft Manifest number: 0A70 Signing time: Sat 18 May 2024 20:17:27 +0000 Manifest this update: Sat 18 May 2024 20:17:26 +0000 Manifest next update: Sat 25 May 2024 20:17:26 +0000 Files and hashes: 1: UKsTEAVD9kbAxVN13vhQXRTzZrg.crl (hash: 3DQasVAc3sbRa6kh7izMKLkm4kvab+IntQ5X0NKejTo=) 2: 74D2ABEE39F811EAA4343534C4F9AE02.roa (hash: iihbxxzXFJmHmXitRWziyO9onMcMt6rFaPwqQf4Yb9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2677 (0xa75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911270F/serialNumber=50AB13100543F646C0C55375DEF8505D14F366B8 Validity Not Before: May 18 20:17:26 2024 GMT Not After : May 25 20:17:26 2024 GMT Subject: CN=66490cd6-044b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6e:07:06:0d:d1:7f:ed:ad:c2:bc:b8:91:55: c8:fb:46:2c:34:be:31:f3:0a:0e:c8:67:e5:b5:18: b3:68:82:c9:12:41:80:93:ba:ae:41:72:4f:ba:b9: f1:49:7e:5f:50:49:c4:71:24:3a:53:0a:10:3d:5c: 01:c9:1f:67:6f:db:65:72:45:aa:8f:34:51:ca:f8: 50:c6:a2:35:1c:c6:97:98:6b:7e:e4:44:5a:f3:a9: c7:7e:e3:60:70:f0:cc:72:3d:94:8f:b6:21:ae:f0: 7c:5c:89:fe:32:54:24:ef:82:b1:f9:28:3c:61:9f: 9a:f7:ab:96:a8:ea:f6:8b:d7:95:e4:97:06:77:d1: b1:5b:70:a8:ba:44:e4:64:05:e2:61:4e:ae:e9:17: 3c:54:b9:15:61:8f:4c:26:f4:ad:e5:23:80:a2:5b: 73:6d:56:67:62:56:a8:6c:a3:a3:91:c2:77:14:7c: 18:c9:db:0d:30:2f:dd:9f:2d:96:eb:41:1d:9c:d8: 08:22:4b:58:c3:ec:c1:ea:1a:34:1c:b5:3e:20:6a: 3e:f0:f8:a8:33:3e:b4:d8:54:6c:ae:73:15:6e:78: 05:cf:9a:65:14:91:1c:6b:88:f3:09:96:60:e2:ef: 6e:d4:38:7f:09:e1:9a:87:06:c1:c5:83:14:d0:d9: c0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:19:19:F5:D9:F2:F0:E5:C7:03:B6:BD:C6:B1:FB:60:7E:D8:60:10 X509v3 Authority Key Identifier: keyid:50:AB:13:10:05:43:F6:46:C0:C5:53:75:DE:F8:50:5D:14:F3:66:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKsTEAVD9kbAxVN13vhQXRTzZrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911270F/05D82EE039F711EA967EBA2EC4F9AE02/UKsTEAVD9kbAxVN13vhQXRTzZrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:8c:b0:9f:3b:9e:13:70:bb:35:3c:86:4b:e8:e0:4e:f1:35: 37:4e:61:13:5b:c9:31:5a:a2:83:2e:e6:54:3c:03:35:29:4f: 7e:ba:1f:97:6a:67:bc:b1:78:fb:6a:79:10:f2:8a:7c:8e:59: df:b9:03:82:4c:74:81:c8:f7:8c:66:83:6f:b4:32:80:fe:cd: df:84:30:d0:f4:18:12:05:2c:1f:a8:af:3d:69:c8:b3:3d:d0: 38:d6:ff:2d:c9:b4:d0:c0:df:ac:13:8f:ad:77:f3:93:2f:7a: 66:f6:b3:87:54:68:63:1e:c7:44:ca:77:8a:76:2f:57:6c:a5: a9:b2:a6:e3:bd:68:b8:c5:a8:73:83:22:bb:91:52:06:8f:55: 9f:8c:78:6e:bb:69:fc:97:6f:99:d5:0e:5e:1b:f5:7f:b1:65: 7e:4a:24:45:67:8f:39:75:7b:b1:c2:a3:98:94:be:1e:3c:42: 95:53:4a:88:f4:7f:16:d8:8d:53:9c:88:d1:b8:bd:98:3f:f4: b0:be:0c:60:a3:c7:89:18:ba:18:c0:50:ce:b0:23:13:85:05: b3:b3:e5:ef:7a:f8:85:13:6d:7c:36:fd:a6:3e:da:59:03:a5: 14:e8:ca:a8:fd:29:35:50:ce:d8:09:77:e5:16:bd:45:82:e2: 04:0a:ea:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MEYxMTAvBgNVBAUTKDUwQUIxMzEwMDU0M0Y2NDZDMEM1NTM3NURFRjg1MDVE MTRGMzY2QjgwHhcNMjQwNTE4MjAxNzI2WhcNMjQwNTI1MjAxNzI2WjAYMRYwFAYD VQQDEw02NjQ5MGNkNi0wNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqW4HBg3Rf+2twry4kVXI+0YsNL4x8woOyGfltRizaILJEkGAk7quQXJPurnx SX5fUEnEcSQ6UwoQPVwByR9nb9tlckWqjzRRyvhQxqI1HMaXmGt+5ERa86nHfuNg cPDMcj2Uj7YhrvB8XIn+MlQk74Kx+Sg8YZ+a96uWqOr2i9eV5JcGd9GxW3CoukTk ZAXiYU6u6Rc8VLkVYY9MJvSt5SOAoltzbVZnYlaobKOjkcJ3FHwYydsNMC/dny2W 60EdnNgIIktYw+zB6ho0HLU+IGo+8PioMz602FRsrnMVbngFz5plFJEca4jzCZZg 4u9u1Dh/CeGahwbBxYMU0NnANwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoZGfXZ 8vDlxwO2vcax+2B+2GAQMB8GA1UdIwQYMBaAFFCrExAFQ/ZGwMVTdd74UF0U82a4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwRi8wNUQ4MkVFMDM5 RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlrYkF4Vk4xM3ZoUVhSVHpa cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLc1RFQVZEOWtiQXhWTjEzdmhRWFJUelpyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjcwRi8wNUQ4MkVFMDM5RjcxMUVBOTY3RUJBMkVDNEY5QUUwMi9VS3NURUFWRDlr YkF4Vk4xM3ZoUVhSVHpacmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQjLCfO54TcLs1PIZL6OBO8TU3TmETW8kxWqKDLuZUPAM1KU9+uh+X ame8sXj7ankQ8op8jlnfuQOCTHSByPeMZoNvtDKA/s3fhDDQ9BgSBSwfqK89aciz PdA41v8tybTQwN+sE4+td/OTL3pm9rOHVGhjHsdEyneKdi9XbKWpsqbjvWi4xahz gyK7kVIGj1WfjHhuu2n8l2+Z1Q5eG/V/sWV+SiRFZ485dXuxwqOYlL4ePEKVU0qI 9H8W2I1TnIjRuL2YP/Swvgxgo8eJGLoYwFDOsCMThQWzs+XveviFE218Nv2mPtpZ A6UU6Mqo/Sk1UM7YCXflFr1FguIECur7 -----END CERTIFICATE-----Generated at Sat May 18 20:48:17 2024 by rpki-client on console-fra.rpki-client.org