$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft File: wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft (raw, json) Hash identifier: +lyTJHZdU6ckAvYJ9/DOJYfyahD/vWFDw2OUEq7EJU4= Subject key identifier: DF:52:FE:D3:2E:BD:34:8C:DF:11:EC:9B:25:15:47:F9:EE:9F:33:76 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft Manifest number: 0DF3 Signing time: Sun 12 May 2024 18:33:50 +0000 Manifest this update: Sun 12 May 2024 18:33:49 +0000 Manifest next update: Sun 19 May 2024 18:33:49 +0000 Files and hashes: 1: wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl (hash: VUdYg8SAzibpDFQpOJX7VnhCExg8PORaUMlqBZ38nws=) 2: E563749EE95211EDA4284D3BC4F9AE02.roa (hash: cKXumGBSaNEhDOCW+Px2ZFG9XlyHMMr33FKaEhpGJ7M=) 3: ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa (hash: 2DySL4ObOCmXyb+PPtfKYhuKGwJyecMzBCKZCiDkN6w=) 4: 21C5EC42C27411ED9C3E8009C4F9AE02.roa (hash: cn8eRj0oCpNU6HWGhqdTOckkgR7WPqDDUTCkzR/Q9R8=) 5: B1FABD6CAFEB11EBB965A648C4F9AE02.roa (hash: NKJhX3Zw2T8VjXKwp117ywoJ8+iUSkOQd4VbQaTma90=) 6: 369A67D4B01B11EEBD075854C4F9AE02.roa (hash: XbK9ZS66lQ8Sh5MzdlkIQKDZwfgQBO6b/QK9xz6pZFM=) 7: 416881CE924011EB8767521BC4F9AE02.roa (hash: pqLESChkdmP/9OVTdbyMMz2k1ZDaIE9YZCoNErEaxrA=) 8: A9630ACCF78011ED829BBD5DC4F9AE02.roa (hash: /1k8cf09XpBT8IXB/KxmxDgDn3BpN9om+/6lhG0uR6Y=) 9: B2B5EE70AFEB11EBB965A648C4F9AE02.roa (hash: 7XR5r74GcilldrrcFfIwt0qfXtc6J6p+OWBLfzFoFfw=) 10: E23B9C48F97D11EDB12DE418C4F9AE02.roa (hash: sriNW2tVnJV2jSVMbNiK9zJcT3+r67WYgA7Qo3J6GfY=) 11: 1A582DBABDCB11ED998A723DC4F9AE02.roa (hash: AJ4MEoVFl8Yoc7cWv7ajIsgfC5XAGoNNmz9nCNaNpao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3677 (0xe5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: May 12 18:33:49 2024 GMT Not After : May 19 18:33:49 2024 GMT Subject: CN=66410b8e-4bb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bf:dc:ee:f2:5a:eb:25:9f:ac:8f:08:9f:3a: 48:5e:55:f9:77:dd:23:41:a6:64:66:ef:cc:4e:b9: 7d:25:f6:a2:fb:91:71:12:97:44:e0:9e:82:ea:6d: 8b:0f:ba:1a:36:b6:0d:84:29:7d:59:f6:df:2f:e9: 98:e4:d2:aa:b6:27:f5:dc:22:2d:8f:38:4e:1a:69: e1:b9:24:5f:f9:c3:de:a2:40:c5:d8:1e:32:d7:36: e1:03:6d:35:e0:e4:00:32:26:a2:67:7d:d3:f2:d0: 82:d7:46:eb:c0:72:f4:39:48:75:1c:39:b8:60:99: fd:a1:11:5d:aa:88:a2:b1:ae:92:88:1e:5e:85:aa: 05:f1:93:ce:99:7c:ef:58:89:d4:86:5c:c6:91:7b: 38:ed:53:0e:91:52:86:5e:6d:76:07:3a:c3:e8:6d: 13:02:8e:f9:0c:35:43:1c:e1:83:47:fa:c9:f7:83: d0:d5:ac:c4:1a:5f:ff:a8:b2:17:b6:60:3c:c1:07: 39:e3:6f:f5:a5:b4:cf:9e:15:05:d6:8b:19:8c:8f: 44:bf:a7:96:a7:2e:ab:eb:5d:60:c4:27:dd:e5:a2: d6:37:fe:5d:d5:6c:77:7b:87:15:7a:91:56:8f:1f: 06:5d:74:ac:fb:fc:de:41:95:11:54:ed:e8:cd:1c: 33:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:52:FE:D3:2E:BD:34:8C:DF:11:EC:9B:25:15:47:F9:EE:9F:33:76 X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:bd:1e:f3:3e:bf:51:b5:1a:4d:c4:ab:e0:9c:ed:23:22:eb: 96:37:7b:6a:f2:6c:8f:6b:db:3c:04:64:a7:99:5d:6d:b4:d5: 29:56:28:ad:ac:94:ca:2a:5c:c6:70:7c:c9:eb:17:94:60:07: 74:39:fa:91:36:cd:41:04:7d:61:b2:1f:23:b5:86:3b:10:0f: 4a:8e:0c:28:78:c2:74:40:ef:be:8f:29:47:d6:4e:8f:39:54: 31:30:05:66:10:f1:c7:d8:bc:74:14:4d:2c:d3:98:c9:82:a3: ee:d8:82:f6:27:d4:7e:ac:ed:90:1b:3b:b0:e7:43:52:b9:f0: 2c:b7:ed:06:15:56:70:0d:d3:30:24:a2:67:4e:f3:e3:ad:5d: cc:c1:dd:8c:f1:a2:e4:e7:4f:3a:6d:8f:18:70:20:24:f9:77: 2a:5c:af:a5:09:6f:ec:06:1d:a4:1b:25:84:50:45:20:76:af: 2b:8d:b5:e6:36:e7:9c:f9:5f:d4:de:39:20:55:4b:66:33:66: fa:e6:01:ef:17:e2:f2:2c:b8:94:49:bb:c9:fe:8a:f9:f0:61: da:33:2d:d7:df:cc:51:fb:e3:9c:74:87:79:39:61:b1:9d:14: 64:ea:89:b6:6c:66:1b:a3:4a:9f:ff:00:a8:c0:ea:e4:f6:4a: dd:a7:c8:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwNTEyMTgzMzQ5WhcNMjQwNTE5MTgzMzQ5WjAYMRYwFAYD VQQDEw02NjQxMGI4ZS00YmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07/c7vJa6yWfrI8InzpIXlX5d90jQaZkZu/MTrl9Jfai+5FxEpdE4J6C6m2L D7oaNrYNhCl9WfbfL+mY5NKqtif13CItjzhOGmnhuSRf+cPeokDF2B4y1zbhA201 4OQAMiaiZ33T8tCC10brwHL0OUh1HDm4YJn9oRFdqoiisa6SiB5ehaoF8ZPOmXzv WInUhlzGkXs47VMOkVKGXm12BzrD6G0TAo75DDVDHOGDR/rJ94PQ1azEGl//qLIX tmA8wQc542/1pbTPnhUF1osZjI9Ev6eWpy6r611gxCfd5aLWN/5d1Wx3e4cVepFW jx8GXXSs+/zeQZURVO3ozRwz4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9S/tMu vTSM3xHsmyUVR/nunzN2MB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkJGRi9FNDJCRUFDMjkzRjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFB V2kxSVc2UVMydEsxSjNiM0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAavR7zPr9RtRpNxKvgnO0jIuuWN3tq8myPa9s8BGSnmV1ttNUpViit rJTKKlzGcHzJ6xeUYAd0OfqRNs1BBH1hsh8jtYY7EA9KjgwoeMJ0QO++jylH1k6P OVQxMAVmEPHH2Lx0FE0s05jJgqPu2IL2J9R+rO2QGzuw50NSufAst+0GFVZwDdMw JKJnTvPjrV3Mwd2M8aLk5086bY8YcCAk+XcqXK+lCW/sBh2kGyWEUEUgdq8rjbXm Nuec+V/U3jkgVUtmM2b65gHvF+LyLLiUSbvJ/or58GHaMy3X38xR++OcdId5OWGx nRRk6om2bGYbo0qf/wCowOrk9krdp8hc -----END CERTIFICATE-----Generated at Sun May 12 20:26:23 2024 by rpki-client on console-ams.rpki-client.org