$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft File: wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft (raw, json) Hash identifier: kOU6eKpP9DeDEnqbNNW0Z96dHcdD8So/IRklH+niotQ= Subject key identifier: FC:57:D8:0E:59:9C:4B:E7:8E:CF:FC:DE:80:6E:62:EF:7E:98:BA:3E Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft Manifest number: 0DF5 Signing time: Thu 16 May 2024 18:37:51 +0000 Manifest this update: Thu 16 May 2024 18:37:51 +0000 Manifest next update: Thu 23 May 2024 18:37:51 +0000 Files and hashes: 1: wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl (hash: qVnu+5XK/iu9xfxxjKY16Gr9CKkQj1kzUnY4HAC0f+0=) 2: E563749EE95211EDA4284D3BC4F9AE02.roa (hash: cKXumGBSaNEhDOCW+Px2ZFG9XlyHMMr33FKaEhpGJ7M=) 3: ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa (hash: 2DySL4ObOCmXyb+PPtfKYhuKGwJyecMzBCKZCiDkN6w=) 4: 21C5EC42C27411ED9C3E8009C4F9AE02.roa (hash: cn8eRj0oCpNU6HWGhqdTOckkgR7WPqDDUTCkzR/Q9R8=) 5: B1FABD6CAFEB11EBB965A648C4F9AE02.roa (hash: NKJhX3Zw2T8VjXKwp117ywoJ8+iUSkOQd4VbQaTma90=) 6: 369A67D4B01B11EEBD075854C4F9AE02.roa (hash: XbK9ZS66lQ8Sh5MzdlkIQKDZwfgQBO6b/QK9xz6pZFM=) 7: 416881CE924011EB8767521BC4F9AE02.roa (hash: pqLESChkdmP/9OVTdbyMMz2k1ZDaIE9YZCoNErEaxrA=) 8: A9630ACCF78011ED829BBD5DC4F9AE02.roa (hash: /1k8cf09XpBT8IXB/KxmxDgDn3BpN9om+/6lhG0uR6Y=) 9: B2B5EE70AFEB11EBB965A648C4F9AE02.roa (hash: 7XR5r74GcilldrrcFfIwt0qfXtc6J6p+OWBLfzFoFfw=) 10: E23B9C48F97D11EDB12DE418C4F9AE02.roa (hash: sriNW2tVnJV2jSVMbNiK9zJcT3+r67WYgA7Qo3J6GfY=) 11: 1A582DBABDCB11ED998A723DC4F9AE02.roa (hash: AJ4MEoVFl8Yoc7cWv7ajIsgfC5XAGoNNmz9nCNaNpao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3679 (0xe5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: May 16 18:37:51 2024 GMT Not After : May 23 18:37:51 2024 GMT Subject: CN=6646527f-6ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:43:36:d2:93:bc:e5:2f:0d:86:0d:03:11:ee: a0:7b:f8:d3:a9:d2:79:b2:b5:23:9b:da:82:8e:8d: f7:19:11:29:bd:57:f0:53:72:b9:0f:ec:db:3a:90: 1d:b0:c1:93:63:66:39:d0:a7:aa:ff:58:65:61:2c: 97:3c:fa:ac:e3:bf:a3:5f:5a:a7:a7:81:86:20:d6: 1a:b0:7f:f0:ba:c3:28:90:0e:4a:bc:69:b6:5b:fa: b3:85:a1:a4:84:5b:7e:52:c5:56:49:89:87:d8:d4: 25:80:c9:c0:18:a3:1a:e9:39:81:67:bf:3e:a9:8d: 1d:e2:da:2e:0f:ad:ee:96:03:af:04:fe:99:a7:66: 69:a9:79:fb:fd:88:11:20:90:e1:a9:4e:75:11:6d: 1d:39:ce:4c:61:e5:7c:17:57:1c:5b:28:1e:d4:49: c7:9e:7b:08:99:aa:af:a5:7b:fb:7a:a0:85:e8:6b: d6:fe:a2:3e:d3:72:75:57:27:66:4c:58:9d:93:36: 9c:39:2c:a6:7f:e9:4f:15:92:21:ff:a1:ec:04:98: 3a:1c:2e:c7:9c:ca:a7:d3:8d:c3:15:d5:c9:8d:d5: 54:ab:94:fa:ae:c6:95:47:10:64:0a:33:17:3e:1f: 40:fa:e6:2a:a2:72:d0:69:d4:fe:d8:54:f4:0d:c1: d1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:57:D8:0E:59:9C:4B:E7:8E:CF:FC:DE:80:6E:62:EF:7E:98:BA:3E X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:a6:e5:32:a3:56:b9:dc:23:50:b7:9b:e0:62:97:e4:e9:ee: a8:32:8b:ce:e3:86:ab:7f:00:96:d2:6f:33:bc:b2:cd:46:3f: 2b:42:96:c8:70:df:8f:13:32:34:8a:ef:43:cc:c8:ea:f2:65: db:b4:1f:00:b7:98:18:3e:c3:86:86:99:0f:fa:aa:bd:4f:6f: cf:3f:7e:f3:19:4f:a1:07:03:b0:87:2f:dc:6f:bf:81:fe:ee: 7f:d9:9a:10:d7:97:63:24:77:59:c3:a1:81:1c:91:9c:1e:a7: 9f:cf:0b:8c:57:37:6c:7e:0f:6d:92:80:fe:5d:b5:3e:2b:a9: 20:a5:98:2c:b9:86:1c:78:04:8b:04:9a:85:d4:be:23:1c:bb: a0:b2:bb:7c:55:89:af:e7:e9:82:a5:c7:8d:bb:e0:bd:8e:22: 58:d5:58:02:4b:d5:41:6f:f9:bd:a8:8a:7d:7b:0f:ab:cb:41: 76:a7:91:22:7e:75:9b:7b:72:79:f5:f9:b5:70:40:6d:26:37: 97:25:56:29:98:c8:65:d8:30:f6:5f:7b:f5:e6:0d:15:12:f8: 4e:1c:f0:36:86:76:49:29:78:7e:34:6b:a1:9c:54:3c:95:6f: 2c:e6:ee:e9:a7:48:dc:eb:73:62:43:88:ca:76:54:24:fd:04: 14:ae:58:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwNTE2MTgzNzUxWhcNMjQwNTIzMTgzNzUxWjAYMRYwFAYD VQQDEw02NjQ2NTI3Zi02YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEM20pO85S8Nhg0DEe6ge/jTqdJ5srUjm9qCjo33GREpvVfwU3K5D+zbOpAd sMGTY2Y50Keq/1hlYSyXPPqs47+jX1qnp4GGINYasH/wusMokA5KvGm2W/qzhaGk hFt+UsVWSYmH2NQlgMnAGKMa6TmBZ78+qY0d4touD63ulgOvBP6Zp2ZpqXn7/YgR IJDhqU51EW0dOc5MYeV8F1ccWyge1EnHnnsImaqvpXv7eqCF6GvW/qI+03J1Vydm TFidkzacOSymf+lPFZIh/6HsBJg6HC7HnMqn043DFdXJjdVUq5T6rsaVRxBkCjMX Ph9A+uYqonLQadT+2FT0DcHRVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxX2A5Z nEvnjs/83oBuYu9+mLo+MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkJGRi9FNDJCRUFDMjkzRjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFB V2kxSVc2UVMydEsxSjNiM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmpuUyo1a53CNQt5vgYpfk6e6oMovO44arfwCW0m8zvLLNRj8rQpbI cN+PEzI0iu9DzMjq8mXbtB8At5gYPsOGhpkP+qq9T2/PP37zGU+hBwOwhy/cb7+B /u5/2ZoQ15djJHdZw6GBHJGcHqefzwuMVzdsfg9tkoD+XbU+K6kgpZgsuYYceASL BJqF1L4jHLugsrt8VYmv5+mCpceNu+C9jiJY1VgCS9VBb/m9qIp9ew+ry0F2p5Ei fnWbe3J59fm1cEBtJjeXJVYpmMhl2DD2X3v15g0VEvhOHPA2hnZJKXh+NGuhnFQ8 lW8s5u7pp0jc63NiQ4jKdlQk/QQUrljP -----END CERTIFICATE-----Generated at Thu May 16 19:10:54 2024 by rpki-client on console-fra.rpki-client.org