$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: RUIvkktzpmRVzpkOUIWzBiy+CGJ/njE+F95vbVMZrWs= Subject key identifier: FF:2A:AF:BD:4B:85:18:2F:3F:EB:6E:54:B1:0F:E5:1A:91:14:BF:8E Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 03F5 Signing time: Sun 19 May 2024 02:11:54 +0000 Manifest this update: Sun 19 May 2024 02:11:53 +0000 Manifest next update: Sun 26 May 2024 02:11:53 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: v9PIEYqBZCj/gUrILsaaQ841cSJmqMO1sZgYU0v7DR4=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: 5G6YI2kkXdN56VMnX9IV+S4sbfoJ9J7826nrCVQnRZY=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: Kxt0M6y57HoG3pkIV8MsermgKviD0183Bv5ogVFNeV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: May 19 02:11:53 2024 GMT Not After : May 26 02:11:53 2024 GMT Subject: CN=66495fea-1000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:26:a7:ed:e8:dd:d4:62:b9:d5:3a:92:7d:8e: 75:9c:6a:34:78:48:ce:f9:51:25:48:2a:cb:a3:df: 6a:de:14:6f:ae:8a:8b:cd:cc:2d:71:ce:08:a3:ae: c9:7f:89:64:bb:cf:10:56:da:36:25:9b:6a:2e:d9: a1:3c:f1:07:df:d0:df:c5:c1:a2:d0:28:a8:9f:4e: f6:04:be:ba:14:9d:57:51:5c:4d:f1:82:64:15:de: 0d:ea:2b:48:cc:9f:0d:64:2b:cd:39:6d:84:df:d7: 6d:72:60:80:18:be:b5:1f:2f:46:78:8d:7a:85:b3: 83:99:8b:1c:c0:a4:c3:a6:07:ae:42:1c:f0:33:7e: 1a:32:a9:02:3b:d7:6f:e2:6e:69:8d:04:d6:e7:2f: 9d:a7:4b:e0:be:dd:21:c2:ff:98:a8:e5:2b:c1:66: 19:36:37:46:c1:82:2f:65:b1:ae:c5:fb:61:d4:6b: 3e:2e:13:8e:47:2a:4d:cf:f9:58:df:dc:29:51:a5: e9:81:86:d5:26:ae:0e:ad:47:e0:7b:51:00:ed:46: 4c:16:12:fc:eb:cc:5f:46:61:7c:b8:af:28:78:8e: bb:f0:f3:98:ee:7e:b6:c5:b7:1d:14:de:e4:b0:35: 2d:2d:b2:72:52:c9:ad:70:7f:97:aa:0c:64:10:60: b3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2A:AF:BD:4B:85:18:2F:3F:EB:6E:54:B1:0F:E5:1A:91:14:BF:8E X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:3e:13:e5:24:34:a2:9a:8c:6f:9a:f9:34:c5:65:2d:03:1c: be:16:18:f1:10:05:68:e6:8a:87:21:02:12:ed:ed:b6:49:54: 1a:72:2c:ba:da:9f:9b:86:9d:1f:47:f5:8b:d5:dd:c4:ec:f0: 74:86:62:d9:f7:47:d0:82:84:3b:45:a8:eb:b7:b2:f0:30:a5: 0d:6b:a7:bc:8e:69:c7:a8:f1:3e:fd:5f:d5:b5:4b:68:ce:eb: a1:df:73:ad:b7:69:6c:0a:00:99:91:3b:4f:42:14:52:5b:42: eb:8b:bb:a1:db:34:eb:e3:b2:c9:87:bf:5f:5f:cc:6d:63:ac: b4:0e:59:93:df:b4:bf:50:44:96:7e:ef:b3:b0:14:af:57:74: 56:ac:12:db:87:8d:d1:fe:69:6b:14:dd:44:19:94:38:a2:40: ec:fb:2d:49:7f:d5:c9:da:a1:52:7c:b9:6a:ff:8a:c1:b2:e8: 27:8b:9b:6f:66:cf:d4:97:e2:db:a9:f9:e7:a3:0f:2b:35:81: 3e:b8:d3:0d:e0:e3:2a:d4:4a:52:df:cd:ae:de:3d:a1:fa:dd: b7:39:43:7d:29:b4:9a:4f:fc:b9:09:35:1a:e9:27:87:3e:4a: b4:23:f7:c7:63:42:f2:be:ca:ac:e6:b1:de:28:5e:5d:5d:b9: 83:43:50:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjQwNTE5MDIxMTUzWhcNMjQwNTI2MDIxMTUzWjAYMRYwFAYD VQQDEw02NjQ5NWZlYS0xMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ian7ejd1GK51TqSfY51nGo0eEjO+VElSCrLo99q3hRvroqLzcwtcc4Io67J f4lku88QVto2JZtqLtmhPPEH39DfxcGi0Cion072BL66FJ1XUVxN8YJkFd4N6itI zJ8NZCvNOW2E39dtcmCAGL61Hy9GeI16hbODmYscwKTDpgeuQhzwM34aMqkCO9dv 4m5pjQTW5y+dp0vgvt0hwv+YqOUrwWYZNjdGwYIvZbGuxfth1Gs+LhOORypNz/lY 39wpUaXpgYbVJq4OrUfge1EA7UZMFhL868xfRmF8uK8oeI678POY7n62xbcdFN7k sDUtLbJyUsmtcH+XqgxkEGCzpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8qr71L hRgvP+tuVLEP5RqRFL+OMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFPhPlJDSimoxvmvk0xWUtAxy+FhjxEAVo5oqHIQIS7e22SVQaciy6 2p+bhp0fR/WL1d3E7PB0hmLZ90fQgoQ7Rajrt7LwMKUNa6e8jmnHqPE+/V/VtUto zuuh33Ott2lsCgCZkTtPQhRSW0Lri7uh2zTr47LJh79fX8xtY6y0DlmT37S/UESW fu+zsBSvV3RWrBLbh43R/mlrFN1EGZQ4okDs+y1Jf9XJ2qFSfLlq/4rBsugni5tv Zs/Ul+Lbqfnnow8rNYE+uNMN4OMq1EpS382u3j2h+t23OUN9KbSaT/y5CTUa6SeH Pkq0I/fHY0Lyvsqs5rHeKF5dXbmDQ1AS -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org