$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC74/F05DC05CEF2911EDBD0C1429C4F9AE02/UT_g6iSLXjH7dHUyPkOVlM8Vaak.mft File: UT_g6iSLXjH7dHUyPkOVlM8Vaak.mft (raw, json) Hash identifier: UDn4jxHaAeOFPNrAnSGxvLuiA+OjXjlAUMPX0zcSGJw= Subject key identifier: 20:DF:0C:D6:A2:B2:B2:D3:0F:53:2F:68:16:C2:6C:B2:F7:AF:88:7C Authority key identifier: 51:3F:E0:EA:24:8B:5E:31:FB:74:75:32:3E:43:95:94:CF:15:69:A9 Certificate issuer: /CN=A912AC74/serialNumber=513FE0EA248B5E31FB7475323E439594CF1569A9 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT_g6iSLXjH7dHUyPkOVlM8Vaak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC74/F05DC05CEF2911EDBD0C1429C4F9AE02/UT_g6iSLXjH7dHUyPkOVlM8Vaak.mft Manifest number: CA Signing time: Sat 01 Jun 2024 07:35:40 +0000 Manifest this update: Sat 01 Jun 2024 07:35:40 +0000 Manifest next update: Sat 08 Jun 2024 07:35:40 +0000 Files and hashes: 1: UT_g6iSLXjH7dHUyPkOVlM8Vaak.crl (hash: byMY0hkKgupAbaebAefD3hHfynIl7IWerIGRniyA5XM=) 2: 0743ABACEF2E11ED84156122C4F9AE02.roa (hash: fIftzQAjdD18Z5q/NSke5TzCF1BvaO6fgVjFmUu5rWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC74/F05DC05CEF2911EDBD0C1429C4F9AE02/UT_g6iSLXjH7dHUyPkOVlM8Vaak.crl rsync://rpki.apnic.net/member_repository/A912AC74/F05DC05CEF2911EDBD0C1429C4F9AE02/UT_g6iSLXjH7dHUyPkOVlM8Vaak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT_g6iSLXjH7dHUyPkOVlM8Vaak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:17:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC74/serialNumber=513FE0EA248B5E31FB7475323E439594CF1569A9 Validity Not Before: Jun 1 07:35:40 2024 GMT Not After : Jun 8 07:35:40 2024 GMT Subject: CN=665acf4c-7d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:12:d0:af:a4:6b:c6:6b:ab:bf:bc:a8:0d: 79:85:11:8c:e1:d7:7f:7f:6a:bf:2b:05:b8:ec:7a: b6:b0:70:d9:20:6d:34:37:d3:c5:58:ac:c5:b0:52: 60:74:d1:f4:fd:9c:82:85:87:a8:01:a4:af:89:23: 82:54:ca:40:93:d4:2e:98:5e:3d:09:c8:23:99:7e: 3e:94:c9:36:91:a1:d4:ce:7e:be:85:48:ed:2c:37: bb:2a:d4:96:b7:91:44:bb:da:9c:6b:7d:08:70:ff: ed:ca:e9:39:8f:7b:57:67:7c:cf:7c:e5:cd:69:64: 92:1b:1c:7e:89:a0:93:08:b1:03:06:bc:65:29:e8: 44:db:29:e0:bd:b6:8a:03:a0:0a:6d:98:36:4a:98: e4:a9:3e:e4:bd:f8:02:96:e7:6d:8c:a0:83:7d:73: c5:ad:26:b7:b9:c3:6a:e8:58:d4:dd:83:58:0b:2c: 6a:33:c1:fa:0f:5f:d7:13:55:3c:87:85:c5:7c:c2: 47:a8:85:4c:6b:90:ad:70:22:8c:37:8c:72:2d:a5: bb:dd:ee:59:b4:10:e8:e0:2a:c0:d2:1e:53:91:4e: 45:5e:c8:5b:eb:7c:3e:a4:98:c6:a8:d4:25:6a:60: 95:b5:b4:c2:d5:59:37:11:f0:42:2e:7e:4f:7a:65: 8d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DF:0C:D6:A2:B2:B2:D3:0F:53:2F:68:16:C2:6C:B2:F7:AF:88:7C X509v3 Authority Key Identifier: keyid:51:3F:E0:EA:24:8B:5E:31:FB:74:75:32:3E:43:95:94:CF:15:69:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC74/F05DC05CEF2911EDBD0C1429C4F9AE02/UT_g6iSLXjH7dHUyPkOVlM8Vaak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UT_g6iSLXjH7dHUyPkOVlM8Vaak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC74/F05DC05CEF2911EDBD0C1429C4F9AE02/UT_g6iSLXjH7dHUyPkOVlM8Vaak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:01:7f:99:8a:ec:d4:d4:25:e1:97:37:d8:bf:8c:42:e0:eb: 0b:6f:52:4e:2b:98:80:e9:81:8c:74:11:ff:b9:66:17:72:08: 73:e0:ea:2b:92:38:41:6a:45:0e:3c:91:3b:2f:56:9a:8a:2a: a0:47:f6:74:bf:22:ff:49:6c:12:31:26:fd:83:96:79:c1:73: e0:39:b9:40:64:4d:d9:06:80:85:e8:6d:6e:cd:5e:ff:17:b7: 0f:27:70:5f:6e:ba:54:f0:03:93:a2:58:0d:b3:c0:46:7e:0e: 07:87:d0:bc:c4:2e:1c:c4:21:b1:bb:73:df:af:7b:0e:ef:c7: 2b:f2:bf:61:dc:ab:23:6e:ae:ce:9f:5a:ff:91:1e:54:34:12: c1:a7:7f:66:b2:9d:a7:03:f6:bc:ab:64:52:92:af:bb:43:87: a5:dc:03:c6:fd:d1:46:1c:f1:27:f9:1b:c9:e6:6b:1e:59:e8: c6:11:a3:72:9e:63:5a:fa:ae:10:dc:4e:90:5f:1b:1d:65:9e: fe:3c:4a:d1:12:9f:81:7d:f6:87:c1:c4:5e:26:4f:44:2c:89: 53:0c:a0:8f:93:20:cb:de:2a:af:3a:b0:71:48:f3:a2:d2:53: 2b:4e:1a:4f:7a:0b:5f:48:f5:ef:b0:36:8e:87:d9:3b:ae:50: 7d:3b:f3:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDNzQxMTAvBgNVBAUTKDUxM0ZFMEVBMjQ4QjVFMzFGQjc0NzUzMjNFNDM5NTk0 Q0YxNTY5QTkwHhcNMjQwNjAxMDczNTQwWhcNMjQwNjA4MDczNTQwWjAYMRYwFAYD VQQDEw02NjVhY2Y0Yy03ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv80S0K+ka8Zrq7+8qA15hRGM4dd/f2q/KwW47Hq2sHDZIG00N9PFWKzFsFJg dNH0/ZyChYeoAaSviSOCVMpAk9QumF49CcgjmX4+lMk2kaHUzn6+hUjtLDe7KtSW t5FEu9qca30IcP/tyuk5j3tXZ3zPfOXNaWSSGxx+iaCTCLEDBrxlKehE2yngvbaK A6AKbZg2SpjkqT7kvfgCludtjKCDfXPFrSa3ucNq6FjU3YNYCyxqM8H6D1/XE1U8 h4XFfMJHqIVMa5CtcCKMN4xyLaW73e5ZtBDo4CrA0h5TkU5FXshb63w+pJjGqNQl amCVtbTC1Vk3EfBCLn5PemWNdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDfDNai srLTD1MvaBbCbLL3r4h8MB8GA1UdIwQYMBaAFFE/4Ooki14x+3R1Mj5DlZTPFWmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM3NC9GMDVEQzA1Q0VG MjkxMUVEQkQwQzE0MjlDNEY5QUUwMi9VVF9nNmlTTFhqSDdkSFV5UGtPVmxNOFZh YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VUX2c2aVNMWGpIN2RIVXlQa09WbE04VmFhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM3NC9GMDVEQzA1Q0VGMjkxMUVEQkQwQzE0MjlDNEY5QUUwMi9VVF9nNmlTTFhq SDdkSFV5UGtPVmxNOFZhYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNAX+ZiuzU1CXhlzfYv4xC4OsLb1JOK5iA6YGMdBH/uWYXcghz4Oor kjhBakUOPJE7L1aaiiqgR/Z0vyL/SWwSMSb9g5Z5wXPgOblAZE3ZBoCF6G1uzV7/ F7cPJ3BfbrpU8AOTolgNs8BGfg4Hh9C8xC4cxCGxu3Pfr3sO78cr8r9h3Ksjbq7O n1r/kR5UNBLBp39msp2nA/a8q2RSkq+7Q4el3APG/dFGHPEn+RvJ5mseWejGEaNy nmNa+q4Q3E6QXxsdZZ7+PErREp+BffaHwcReJk9ELIlTDKCPkyDL3iqvOrBxSPOi 0lMrThpPegtfSPXvsDaOh9k7rlB9O/MN -----END CERTIFICATE-----Generated at Sat Jun 1 08:15:55 2024 by rpki-client on console-ams.rpki-client.org