$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft File: UoaLCQH1W0B4uRpzRRym0iMSyKs.mft (raw, json) Hash identifier: OV5LQXkmdONc39Xz7GRWFP0ijGmantCYAZIneW6fWtE= Subject key identifier: FC:D4:18:CB:CE:47:70:CA:00:52:82:3B:F0:2D:5C:AC:0B:35:BC:98 Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0B4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft Manifest number: 0B3E Signing time: Sat 18 May 2024 19:45:14 +0000 Manifest this update: Sat 18 May 2024 19:45:13 +0000 Manifest next update: Sat 25 May 2024 19:45:13 +0000 Files and hashes: 1: UoaLCQH1W0B4uRpzRRym0iMSyKs.crl (hash: If/v14nmKgZ0MudFQqEH/YAY04Dhl+2/qiJKhpZkI4o=) 2: 399AB6DA4ED511ED84336740C4F9AE02.roa (hash: NRU2JvNS0M4Uvg4ongqQQlvewCogQuS6b+iIncMfjxY=) 3: 3AB1E0D44ED511ED84336740C4F9AE02.roa (hash: a70AVC/m10a0kuUK6//xk3h87UGpBHiNP4PJz3XNpfE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2890 (0xb4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: May 18 19:45:13 2024 GMT Not After : May 25 19:45:13 2024 GMT Subject: CN=6649054a-17a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e8:97:0c:f7:12:4f:07:bb:3d:59:3d:97:92: 80:6a:df:fd:65:51:84:bf:d6:62:84:62:02:42:eb: 26:97:db:2b:4f:2e:2d:90:c4:71:2f:ba:1b:9c:2d: ab:5c:31:66:00:24:de:21:ef:00:8e:d1:84:3c:9e: 1e:fd:49:50:10:4e:59:95:26:c1:89:8e:eb:63:de: b6:a8:22:a9:6a:0e:fb:b6:2b:2c:1c:bf:98:1c:41: e8:1f:ac:ca:6c:6d:c2:d0:ff:f7:29:7c:3a:35:34: 9c:60:ca:d7:fb:34:7d:b7:f1:5b:97:d8:40:f6:8a: e1:6f:98:44:1a:85:96:f5:4d:5c:68:bf:a1:37:0c: 48:4a:3c:a2:c7:d7:87:07:94:c9:74:c4:c8:f0:13: dc:9f:9b:08:04:8e:0d:10:a6:aa:1a:8c:95:60:0d: 0b:88:d8:55:14:9f:b1:dd:e0:9c:ee:fb:b4:14:0f: 03:68:7e:8f:24:4a:7b:f3:c0:69:6b:77:bd:bf:ce: a5:02:bb:ef:ee:5f:63:1b:29:6b:8e:cb:d0:0e:e0: 73:c5:f3:01:ac:f4:6d:6f:8a:73:0a:9c:e2:d9:af: a8:74:58:28:f5:2f:d3:8a:91:5a:79:25:d3:38:19: 74:95:60:3d:29:34:9b:8d:08:b5:36:56:cb:79:54: 7a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:D4:18:CB:CE:47:70:CA:00:52:82:3B:F0:2D:5C:AC:0B:35:BC:98 X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c6:dc:66:6e:2e:1d:d7:0b:27:43:07:a7:c2:fc:1a:23:d3: c4:e2:ef:a1:94:39:c2:ec:6d:a5:d1:47:76:9b:f7:44:95:1c: ce:48:be:90:37:a4:87:74:92:48:04:ea:98:99:ce:06:c3:f4: 0f:79:80:f1:2d:3d:b8:2a:f0:96:3f:20:9b:3e:ed:a0:70:fa: 6f:c7:90:53:85:94:d5:3a:ac:be:1c:61:f9:e6:aa:f8:11:73: 1e:b6:8b:6b:28:8c:3a:5d:83:42:0d:84:b5:47:57:3b:34:b8: f3:65:74:7c:49:a0:bd:52:dc:e6:fe:d2:f8:4f:13:db:ce:51: c0:bb:83:38:bd:15:b5:d5:c4:12:bb:1f:8c:3d:96:d6:0e:1c: 91:27:9f:df:19:05:a3:d2:7f:80:66:ae:01:80:ea:2b:93:9b: 33:9e:a0:ea:af:84:44:63:a4:86:30:0d:a1:fd:a7:08:88:c6: 2a:0e:29:dc:9f:52:9f:0d:78:55:34:a9:a3:de:7d:34:26:5a: e8:65:fc:37:d5:6e:ff:75:dd:cd:c2:f7:8c:68:46:e9:00:6c: 6e:1c:a7:8a:1e:a0:6b:17:ae:06:ce:8e:0d:d2:54:0c:93:ae: 1e:09:5f:08:9a:f5:79:a7:11:aa:f0:b2:97:48:6b:31:36:00: 88:dc:81:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjQwNTE4MTk0NTEzWhcNMjQwNTI1MTk0NTEzWjAYMRYwFAYD VQQDEw02NjQ5MDU0YS0xN2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uiXDPcSTwe7PVk9l5KAat/9ZVGEv9ZihGICQusml9srTy4tkMRxL7obnC2r XDFmACTeIe8AjtGEPJ4e/UlQEE5ZlSbBiY7rY962qCKpag77tissHL+YHEHoH6zK bG3C0P/3KXw6NTScYMrX+zR9t/Fbl9hA9orhb5hEGoWW9U1caL+hNwxISjyix9eH B5TJdMTI8BPcn5sIBI4NEKaqGoyVYA0LiNhVFJ+x3eCc7vu0FA8DaH6PJEp788Bp a3e9v86lArvv7l9jGylrjsvQDuBzxfMBrPRtb4pzCpzi2a+odFgo9S/TipFaeSXT OBl0lWA9KTSbjQi1NlbLeVR6eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzUGMvO R3DKAFKCO/AtXKwLNbyYMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTJCMy8yMEU2N0REODEyRjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcw QjR1UnB6UlJ5bTBpTVN5S3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbxtxmbi4d1wsnQwenwvwaI9PE4u+hlDnC7G2l0Ud2m/dElRzOSL6Q N6SHdJJIBOqYmc4Gw/QPeYDxLT24KvCWPyCbPu2gcPpvx5BThZTVOqy+HGH55qr4 EXMetotrKIw6XYNCDYS1R1c7NLjzZXR8SaC9Utzm/tL4TxPbzlHAu4M4vRW11cQS ux+MPZbWDhyRJ5/fGQWj0n+AZq4BgOork5sznqDqr4REY6SGMA2h/acIiMYqDinc n1KfDXhVNKmj3n00JlroZfw31W7/dd3NwveMaEbpAGxuHKeKHqBrF64Gzo4N0lQM k64eCV8ImvV5pxGq8LKXSGsxNgCI3IHN -----END CERTIFICATE-----Generated at Sat May 18 21:31:27 2024 by rpki-client on console-ams.rpki-client.org