$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft File: UxLzmab36w3c1RwDn4P3t6R6Xwk.mft (raw, json) Hash identifier: JQg0XRyyRJPZ7rI/XJ7/Rq3nNw0hMg1RhTZtIZBwU1M= Subject key identifier: 7A:8F:2F:43:C6:A9:05:78:BF:D7:63:92:E0:BE:92:2D:FB:AB:F5:CC Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 33F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft Manifest number: 3375 Signing time: Thu 30 May 2024 15:40:17 +0000 Manifest this update: Thu 30 May 2024 15:40:17 +0000 Manifest next update: Thu 06 Jun 2024 15:40:17 +0000 Files and hashes: 1: UxLzmab36w3c1RwDn4P3t6R6Xwk.crl (hash: /k2/ukx03qan7OQz8AVv5wTIeAGD+zYztoh4kx3DhDk=) 2: E48E2E94017211EBA18CC269C4F9AE02.roa (hash: w4MH/ko5vS+JmhaJ2aG5qwufc0c0o1UhxJNFVXz21HI=) 3: 264D14B8015411EB8CBF186EC4F9AE02.roa (hash: Rt36P4l+RJ9cJDcx1ZUR7UFvmSiKt+xCsQytuqE+FuY=) 4: 95B5C59E2DCE11EEB652B16FC4F9AE02.roa (hash: QCrnvrIhopmMc/N16cpZxTCv1QNZeVWx1Qu/cG0grmY=) 5: EB3FE1C61B6411ECAAB1D328C4F9AE02.roa (hash: 0gjytxXMkRGpAfvhAn4DXXB7sM/E6Hqu+qPHX1nuJ0U=) 6: 7350B2AE2BB011EEBF8C0962C4F9AE02.roa (hash: df/e2otzGVTU41NEq7pypuLORhaRyrxt1Fs3RsSYs6k=) 7: 03C522BA8CF211ED8699F014C4F9AE02.roa (hash: 5x0Jjgm4/d/6c5vI/wEeHOfqHTmP7zqOpbfQ2/4+gm8=) 8: E367308E8D8811EDB3C13D6CC4F9AE02.roa (hash: Rw+xZrPE7JfKt33gxLSE4ynedqahF1i+l992xJrn3gE=) 9: 8D6973CE77C311EE90D4BD46C4F9AE02.roa (hash: ndQXYZEDJrYkAW+jASzWJ8tE2xMBarAUb8KkLNaLzOo=) 10: E474AF108D8811EDB3C13D6CC4F9AE02.roa (hash: 4qd2K6kRKLYZ4c94ODZqT6KDm2RQXj8HYq3qQJIs5sM=) 11: 56C4FAF42D4511EAB70F247AC4F9AE02.roa (hash: 3TRCI1Mw7eWktx7seLXU6P5rn8tbh58u6dpjlnqhy5E=) 12: EF1D0466455311E98FA31F68C4F9AE02.roa (hash: W59zPFhzH6srOXFLWboQB5VagZgE+I8u1/bvZ3GwejM=) 13: C2F17AB22DCE11EEA2884670C4F9AE02.roa (hash: 6RV+8EFAwjvBrux8h7BdNlD+hbhZDD26pn+W86CfTqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 15:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13304 (0x33f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: May 30 15:40:17 2024 GMT Not After : Jun 6 15:40:17 2024 GMT Subject: CN=66589de1-db37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:07:42:1a:9f:d0:64:82:71:b1:12:99:82:28: 6a:1f:fa:a0:fd:7d:65:71:26:81:c9:29:89:ed:92: 54:b4:b9:6b:57:94:29:dd:b3:1a:5a:1e:7f:99:eb: ba:ae:21:43:ba:ff:a0:08:9a:a5:3e:5b:16:cc:0a: aa:20:e8:8c:2c:04:d2:b9:53:c1:3f:78:c1:da:90: c1:a9:ab:ac:7f:b5:a5:ad:67:96:48:e2:90:48:3c: 4e:af:80:8a:4f:f6:c4:78:99:80:6a:c6:ab:d9:87: a1:87:29:1a:26:22:dd:d3:25:47:f9:1e:0a:a0:9a: e5:d1:27:44:71:7e:f4:e3:02:5f:28:75:61:3e:d7: 00:21:73:06:1e:78:96:c5:be:0f:63:a9:55:64:66: 48:fb:e8:9d:ad:c5:79:22:7f:e4:aa:91:32:af:cf: 64:d3:b4:55:39:83:92:37:c1:31:9f:52:32:79:90: e1:99:e2:99:2c:f9:1a:af:37:a5:33:e5:f3:dd:16: 54:6f:9d:6c:e1:ce:d4:96:90:d8:50:9e:65:b4:cc: dc:cd:2f:0d:5c:e5:13:f9:db:c8:34:54:dc:58:ae: 93:8b:76:29:79:9a:f4:0f:a6:23:3a:12:23:5e:6d: d3:bb:f4:54:4f:bf:e1:56:15:ab:02:8a:35:96:86: d8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8F:2F:43:C6:A9:05:78:BF:D7:63:92:E0:BE:92:2D:FB:AB:F5:CC X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:51:ea:26:af:b4:c8:55:e5:09:d4:40:9e:89:2a:06:01:d9: aa:55:f1:09:0c:7a:0e:68:64:b6:4e:f8:73:d4:06:7d:e0:23: 94:21:07:be:d7:98:bf:97:d6:43:c0:90:e2:e0:8f:2b:b1:3e: e3:93:da:6f:38:77:e5:6d:71:64:57:ea:a9:ca:fa:a8:5d:87: e6:87:64:b4:6a:38:fa:0a:2f:0f:43:94:46:45:2c:62:6e:54: a3:3c:2e:42:74:1e:23:81:e5:06:03:5c:f8:26:05:87:e1:12: 51:c3:36:06:5b:da:4d:5b:b5:58:ed:2a:63:70:75:a2:28:35: 62:8f:8d:ce:ee:07:34:22:59:a9:1c:d6:85:ef:16:bf:bc:a4: 52:ec:20:ff:26:07:5e:9f:12:f6:46:a2:cf:cf:00:ab:67:df: a2:ba:51:23:d4:23:a7:6a:e7:61:5e:9c:17:b3:1c:95:18:5a: 3d:bb:ed:84:21:4b:ee:b6:6d:de:e3:d9:4d:4f:f4:0b:f2:59: 26:07:83:ed:47:e5:9b:27:91:da:f5:74:6c:d8:e6:3b:96:1e: f4:18:bd:0b:b7:f2:6a:15:b0:b4:0c:95:f7:67:7c:11:00:38: ae:e8:b3:22:24:65:0b:b4:ea:38:54:fb:cb:48:87:8a:0d:52: 29:46:b8:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjQwNTMwMTU0MDE3WhcNMjQwNjA2MTU0MDE3WjAYMRYwFAYD VQQDEw02NjU4OWRlMS1kYjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AdCGp/QZIJxsRKZgihqH/qg/X1lcSaBySmJ7ZJUtLlrV5Qp3bMaWh5/meu6 riFDuv+gCJqlPlsWzAqqIOiMLATSuVPBP3jB2pDBqausf7WlrWeWSOKQSDxOr4CK T/bEeJmAasar2YehhykaJiLd0yVH+R4KoJrl0SdEcX704wJfKHVhPtcAIXMGHniW xb4PY6lVZGZI++idrcV5In/kqpEyr89k07RVOYOSN8Exn1IyeZDhmeKZLPkarzel M+Xz3RZUb51s4c7UlpDYUJ5ltMzczS8NXOUT+dvINFTcWK6Ti3YpeZr0D6YjOhIj Xm3Tu/RUT7/hVhWrAoo1lobYYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqPL0PG qQV4v9djkuC+ki37q/XMMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkM3QS80QzUyOEY3ODQ1MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3 M2MxUndEbjRQM3Q2UjZYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDsUeomr7TIVeUJ1ECeiSoGAdmqVfEJDHoOaGS2Tvhz1AZ94COUIQe+ 15i/l9ZDwJDi4I8rsT7jk9pvOHflbXFkV+qpyvqoXYfmh2S0ajj6Ci8PQ5RGRSxi blSjPC5CdB4jgeUGA1z4JgWH4RJRwzYGW9pNW7VY7SpjcHWiKDVij43O7gc0Ilmp HNaF7xa/vKRS7CD/JgdenxL2RqLPzwCrZ9+iulEj1COnaudhXpwXsxyVGFo9u+2E IUvutm3e49lNT/QL8lkmB4PtR+WbJ5Ha9XRs2OY7lh70GL0Lt/JqFbC0DJX3Z3wR ADiu6LMiJGULtOo4VPvLSIeKDVIpRrhC -----END CERTIFICATE-----Generated at Thu May 30 18:45:57 2024 by rpki-client on console-ams.rpki-client.org