$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: OuI+XGWwVvrj4TVyOixNkP8+zLruXFcm80fqFETH1DY= Subject key identifier: 0B:84:FE:CF:28:54:DB:C4:7E:46:DD:0D:56:61:C2:16:CE:FE:F2:64 Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0977 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 0966 Signing time: Sat 18 May 2024 21:03:27 +0000 Manifest this update: Sat 18 May 2024 21:03:27 +0000 Manifest next update: Sat 25 May 2024 21:03:27 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: 1ZUKGLQwkU/llFupB/vVpDCfdM4SJTv+xGRyOx+ypyU=) 2: EA7A8118DCCC11ECAFD2715CC4F9AE02.roa (hash: jYfYvo6c9Uctow0tEjbRvX1Vhcvx4MlD93YOip7bp2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2423 (0x977) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: May 18 21:03:27 2024 GMT Not After : May 25 21:03:27 2024 GMT Subject: CN=6649179f-557d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:78:35:9e:d5:59:ea:43:07:61:7f:cd:7e: 09:ab:e8:77:18:34:e9:ec:6e:d8:a4:eb:20:7f:e0: ea:ad:52:e0:5b:b0:41:8e:50:dc:03:28:9d:7e:a2: d3:7c:0a:ec:88:8c:09:a1:d4:0e:e4:9c:8b:af:00: b2:e4:70:76:9f:c8:d4:f6:6c:37:67:10:2e:49:ed: d4:95:62:f6:d8:48:5e:7f:ff:99:9f:6c:72:bb:13: 62:6c:67:a0:32:fd:72:9d:a4:4b:4f:e3:d9:03:6a: f1:f3:6e:e8:0d:08:8a:5d:42:cf:48:86:59:f9:52: 61:f5:05:99:f2:8d:2d:9e:54:ab:78:84:35:c9:04: 28:1a:e1:14:da:d2:15:84:c2:8f:1e:3b:9f:d1:27: e6:c2:e3:9d:85:42:90:01:8b:68:0e:33:b5:29:31: 25:27:b2:4c:f3:a5:57:4a:cc:14:ab:8f:3d:f5:cd: 03:00:78:dc:c2:fc:ea:69:8d:da:1c:c5:9c:6c:1c: d2:47:44:33:42:aa:73:76:b7:a0:69:70:05:af:48: 7c:1f:ee:af:fd:60:80:c3:88:6a:02:79:6e:d7:91: 58:0b:99:06:2f:60:29:64:3d:e3:43:0e:27:3d:2f: 2a:f7:30:29:b2:04:9d:c1:44:b0:39:f7:40:35:6c: 60:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:84:FE:CF:28:54:DB:C4:7E:46:DD:0D:56:61:C2:16:CE:FE:F2:64 X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:47:f2:b8:a0:73:6a:d2:43:1f:46:ff:db:f0:8e:e8:f9:41: d6:5e:81:16:4c:f6:6e:5a:12:7b:89:86:0b:ee:67:c9:9b:a9: 50:ed:4e:42:e9:f4:07:4d:97:f2:8d:35:ae:24:43:86:06:e5: 8f:da:ec:41:c5:3a:2d:5b:e0:15:2e:99:3b:a9:59:68:33:e7: 48:b3:0a:31:73:75:ab:d8:76:15:fa:a4:81:50:75:45:5d:9f: 8a:22:6a:76:29:e7:d6:80:d1:73:d2:79:88:16:86:4a:7e:cc: fb:c5:10:b3:ee:ec:ec:bf:40:ae:ca:73:90:d6:2a:f8:bc:0b: 45:f7:57:4a:dd:57:48:ef:2e:6e:97:ef:03:bc:25:81:f7:41: c5:c2:07:a8:c6:23:74:e2:4e:01:65:7c:21:ed:5d:23:09:84: 37:14:b1:75:e7:8e:74:bd:c9:59:fd:88:58:bc:b1:2a:f0:18: be:49:a5:a0:24:e5:79:37:0d:6d:2c:7b:bc:d8:77:5b:e5:44: 58:1e:41:36:33:2d:d2:83:a2:c0:15:9c:19:82:d2:ab:5e:21: b2:b9:30:b3:b5:7c:b1:8f:ad:b2:74:0b:ba:7d:9f:a7:91:e5: 21:79:76:9a:b9:93:73:a6:60:8e:70:4b:c0:42:f5:2f:7d:e8: 06:03:d2:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjQwNTE4MjEwMzI3WhcNMjQwNTI1MjEwMzI3WjAYMRYwFAYD VQQDEw02NjQ5MTc5Zi01NTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtal4NZ7VWepDB2F/zX4Jq+h3GDTp7G7YpOsgf+DqrVLgW7BBjlDcAyidfqLT fArsiIwJodQO5JyLrwCy5HB2n8jU9mw3ZxAuSe3UlWL22Ehef/+Zn2xyuxNibGeg Mv1ynaRLT+PZA2rx827oDQiKXULPSIZZ+VJh9QWZ8o0tnlSreIQ1yQQoGuEU2tIV hMKPHjuf0SfmwuOdhUKQAYtoDjO1KTElJ7JM86VXSswUq4899c0DAHjcwvzqaY3a HMWcbBzSR0QzQqpzdregaXAFr0h8H+6v/WCAw4hqAnlu15FYC5kGL2ApZD3jQw4n PS8q9zApsgSdwUSwOfdANWxgCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuE/s8o VNvEfkbdDVZhwhbO/vJkMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChR/K4oHNq0kMfRv/b8I7o+UHWXoEWTPZuWhJ7iYYL7mfJm6lQ7U5C 6fQHTZfyjTWuJEOGBuWP2uxBxTotW+AVLpk7qVloM+dIswoxc3Wr2HYV+qSBUHVF XZ+KImp2KefWgNFz0nmIFoZKfsz7xRCz7uzsv0CuynOQ1ir4vAtF91dK3VdI7y5u l+8DvCWB90HFwgeoxiN04k4BZXwh7V0jCYQ3FLF15450vclZ/YhYvLEq8Bi+SaWg JOV5Nw1tLHu82Hdb5URYHkE2My3Sg6LAFZwZgtKrXiGyuTCztXyxj62ydAu6fZ+n keUheXaauZNzpmCOcEvAQvUvfegGA9Kt -----END CERTIFICATE-----Generated at Sat May 18 22:14:02 2024 by rpki-client on console-fra.rpki-client.org