$ rpki-client -vvf rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft File: U1n0WpMqsOo84GFn1fzHBltN2IU.mft (raw, json) Hash identifier: +Dff9fPv6tJBZLKl/4DQdhLiWRwqHax8vgCvOunpHe0= Subject key identifier: 11:61:FA:3F:D5:8D:C1:38:39:4A:4D:F1:CC:B0:4E:4B:C9:ED:A6:6B Authority key identifier: 53:59:F4:5A:93:2A:B0:EA:3C:E0:61:67:D5:FC:C7:06:5B:4D:D8:85 Certificate issuer: /CN=A911367F/serialNumber=5359F45A932AB0EA3CE06167D5FCC7065B4DD885 Certificate serial: 0B96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft Manifest number: 0B8B Signing time: Sat 18 May 2024 19:19:56 +0000 Manifest this update: Sat 18 May 2024 19:19:55 +0000 Manifest next update: Sat 25 May 2024 19:19:55 +0000 Files and hashes: 1: U1n0WpMqsOo84GFn1fzHBltN2IU.crl (hash: vJNxG3G/K4J2SLbBgTEBRLXyP5KMcAu66ZKG2/A5FSQ=) 2: 6751E26C415511ECA2FD715CC4F9AE02.roa (hash: a/sC7ETDIVIboPEKOWwxdZFEr4Jd7KezTCrJldPHdYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.crl rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911367F/serialNumber=5359F45A932AB0EA3CE06167D5FCC7065B4DD885 Validity Not Before: May 18 19:19:55 2024 GMT Not After : May 25 19:19:55 2024 GMT Subject: CN=6648ff5b-9185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:33:23:f1:61:30:05:e1:70:75:c8:a8:55:a6: 3b:21:56:c1:0a:60:d9:17:68:f8:b7:ca:60:1a:66: 5c:a4:8c:de:59:cd:ec:95:b0:aa:ca:0b:07:af:ec: 8d:5a:1c:54:e0:19:b7:e4:c7:ae:17:10:b5:48:17: 41:ad:dd:38:59:e1:e4:97:65:f5:68:98:3d:76:d1: fe:bf:f6:7a:7b:ae:ce:5d:3b:15:8d:fa:52:f6:93: fe:bc:7e:70:13:44:52:b6:0e:2e:e7:c1:df:dc:cc: f7:b0:c4:20:e1:6e:cb:a7:e5:a5:6a:e3:eb:5f:e4: 69:6e:d1:11:a3:6d:e7:e7:1a:6b:ee:a3:42:17:27: 5e:ed:ac:2e:cd:f5:f9:63:e1:11:6f:1c:09:18:ff: 73:a6:41:3d:5f:25:e4:17:5d:a2:75:ca:7e:0a:02: b0:de:64:b6:5a:74:d2:fc:be:2e:1b:fb:7e:b5:0f: 84:f0:f4:b6:dc:e0:10:13:df:29:f3:14:d1:46:41: ff:05:d1:14:a2:a1:82:5f:3b:e3:84:ce:0a:fb:2e: bd:7e:19:1a:32:a7:b1:1b:07:79:da:5f:0c:cc:d9: bb:b9:e5:f2:8f:f0:9f:8f:64:6b:62:ff:c5:29:54: f3:ed:71:d8:44:7b:09:35:12:c4:49:a8:32:e2:06: 5f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:61:FA:3F:D5:8D:C1:38:39:4A:4D:F1:CC:B0:4E:4B:C9:ED:A6:6B X509v3 Authority Key Identifier: keyid:53:59:F4:5A:93:2A:B0:EA:3C:E0:61:67:D5:FC:C7:06:5B:4D:D8:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U1n0WpMqsOo84GFn1fzHBltN2IU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911367F/7A94D128046111EA9F0F4042C4F9AE02/U1n0WpMqsOo84GFn1fzHBltN2IU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:42:d2:f1:ad:78:ca:60:34:cf:94:da:2c:4d:27:3c:af:4c: 61:43:3f:bc:18:0d:25:5b:c5:f1:70:ee:90:73:03:a7:8a:10: 03:d5:b6:4c:f5:d6:79:d2:04:f9:61:86:b8:7b:f5:d1:11:d2: a5:ea:1c:9a:eb:73:49:84:05:c8:80:82:18:9a:e1:3c:1b:76: 02:a1:b1:86:70:8e:e6:4a:df:69:2d:3d:9a:51:9b:d0:53:9f: 69:cf:82:92:fb:69:c2:59:0c:7b:99:24:97:b4:f5:14:2b:83: 05:51:7a:65:e0:c7:bd:c8:dc:3b:e2:a4:cc:a5:01:4c:48:0b: 24:83:cd:39:fa:ad:fa:2d:c3:9a:26:dd:3a:f3:30:e6:0a:ec: 98:b0:98:5e:aa:f1:fa:69:dc:26:fa:31:a2:4c:fb:de:53:01: 6d:b6:3d:a6:f7:43:f2:34:01:fb:8d:67:e1:9a:a2:08:ea:4c: b1:ef:f5:f0:33:c7:4a:3d:2c:f1:6c:cb:1e:21:58:39:32:3e: 4a:7b:b2:9f:d4:3d:94:7a:0d:a6:1e:e8:15:b0:09:89:c9:e2: 8f:c5:c1:fb:d3:da:ce:2b:d0:d7:b1:3f:5e:0e:57:a8:8d:3a: e7:72:1d:a2:d8:1d:86:5f:09:9b:a4:a2:18:98:f0:75:94:78: 7a:0e:e3:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM2N0YxMTAvBgNVBAUTKDUzNTlGNDVBOTMyQUIwRUEzQ0UwNjE2N0Q1RkNDNzA2 NUI0REQ4ODUwHhcNMjQwNTE4MTkxOTU1WhcNMjQwNTI1MTkxOTU1WjAYMRYwFAYD VQQDEw02NjQ4ZmY1Yi05MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzMj8WEwBeFwdcioVaY7IVbBCmDZF2j4t8pgGmZcpIzeWc3slbCqygsHr+yN WhxU4Bm35MeuFxC1SBdBrd04WeHkl2X1aJg9dtH+v/Z6e67OXTsVjfpS9pP+vH5w E0RStg4u58Hf3Mz3sMQg4W7Lp+WlauPrX+RpbtERo23n5xpr7qNCFyde7awuzfX5 Y+ERbxwJGP9zpkE9XyXkF12idcp+CgKw3mS2WnTS/L4uG/t+tQ+E8PS23OAQE98p 8xTRRkH/BdEUoqGCXzvjhM4K+y69fhkaMqexGwd52l8MzNm7ueXyj/Cfj2RrYv/F KVTz7XHYRHsJNRLESagy4gZfLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFh+j/V jcE4OUpN8cywTkvJ7aZrMB8GA1UdIwQYMBaAFFNZ9FqTKrDqPOBhZ9X8xwZbTdiF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzY3Ri83QTk0RDEyODA0 NjExMUVBOUYwRjQwNDJDNEY5QUUwMi9VMW4wV3BNcXNPbzg0R0ZuMWZ6SEJsdE4y SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UxbjBXcE1xc09vODRHRm4xZnpIQmx0TjJJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzY3Ri83QTk0RDEyODA0NjExMUVBOUYwRjQwNDJDNEY5QUUwMi9VMW4wV3BNcXNP bzg0R0ZuMWZ6SEJsdE4ySVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXQtLxrXjKYDTPlNosTSc8r0xhQz+8GA0lW8XxcO6QcwOnihAD1bZM 9dZ50gT5YYa4e/XREdKl6hya63NJhAXIgIIYmuE8G3YCobGGcI7mSt9pLT2aUZvQ U59pz4KS+2nCWQx7mSSXtPUUK4MFUXpl4Me9yNw74qTMpQFMSAskg805+q36LcOa Jt068zDmCuyYsJheqvH6adwm+jGiTPveUwFttj2m90PyNAH7jWfhmqII6kyx7/Xw M8dKPSzxbMseIVg5Mj5Ke7Kf1D2Ueg2mHugVsAmJyeKPxcH709rOK9DXsT9eDleo jTrnch2i2B2GXwmbpKIYmPB1lHh6DuN1 -----END CERTIFICATE-----Generated at Sat May 18 19:56:04 2024 by rpki-client on console-fra.rpki-client.org