$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: z4AhuHAoEaht6wAlM7jxP1N5OOSVCPYVNoxNbv0XBz4= Subject key identifier: B0:95:E2:DD:0A:50:04:F6:F0:E6:D1:6D:7E:B1:CD:EE:4D:93:CC:88 Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 40 Signing time: Sun 19 May 2024 08:13:55 +0000 Manifest this update: Sun 19 May 2024 08:13:54 +0000 Manifest next update: Sun 26 May 2024 08:13:54 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: 8cooYFDSH0NDE3TKQAb6Fshu8GNo/E3Q/LaV+RZWYJ4=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: j7yQ3MutAQIbhYtrFWB2H4tUIBZNV1HrV9jMJoM2fj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: May 19 08:13:54 2024 GMT Not After : May 26 08:13:54 2024 GMT Subject: CN=6649b4c3-eee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:df:a5:ee:73:38:e1:71:10:40:5a:41:3f:48: b1:90:43:e8:f1:56:43:b4:05:51:94:dd:d7:3e:39: 0b:06:3d:70:bf:6e:79:e9:b2:1b:d0:19:1f:83:40: 69:38:9e:b5:16:49:ca:6a:84:d8:a6:73:f9:76:ed: b5:cc:aa:08:11:ee:c1:e1:ab:08:d6:7c:dc:4f:44: f6:6e:d5:f0:d9:2a:c2:66:53:3d:dd:4b:90:e9:58: 25:aa:82:f6:9b:50:53:24:a3:81:db:f2:7e:e3:6b: 87:6c:9c:1a:fa:e5:ad:47:9f:2a:0d:6e:81:e7:3c: a2:5d:f7:d1:7f:59:15:ae:a4:14:40:63:34:e2:7e: fc:b2:7f:cd:35:cf:1d:ec:8b:85:cf:f3:9a:12:31: b1:80:6b:a0:ca:d8:90:5b:ac:e2:18:04:d5:74:5f: 9d:34:72:1e:d6:5d:6a:6a:82:7b:2c:5a:b5:ae:ad: 06:30:af:34:3f:18:4d:ec:5a:19:3c:bb:f4:9e:bf: 9e:aa:b9:e9:4e:c7:19:20:f2:52:ca:05:14:4d:f6: f6:c5:58:d9:e7:2d:ac:bb:e8:8a:8b:a1:83:dd:7e: 15:26:32:7c:17:8c:97:e6:3e:35:ac:32:e5:dc:28: 63:89:e1:0f:e0:dc:5d:09:7a:9e:61:fa:ac:e3:2f: 9f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:95:E2:DD:0A:50:04:F6:F0:E6:D1:6D:7E:B1:CD:EE:4D:93:CC:88 X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:5f:f3:3a:79:36:cc:5c:15:42:52:ec:b7:f1:cd:8e:ad:53: 7a:32:be:e0:34:87:0f:b2:69:01:f4:c0:13:71:50:a0:30:0b: 45:f7:9f:db:25:df:69:ec:0a:7c:cb:bd:b1:74:71:83:36:21: 6d:9a:a2:83:3f:09:e8:2e:1f:9b:53:a9:95:da:f5:cf:83:3d: 67:a0:20:83:61:a9:d4:e8:0e:d2:6d:91:d4:40:b9:69:c5:8f: 1e:fe:8b:32:15:fc:44:9d:c5:35:ac:d1:49:50:9e:ad:07:2d: c4:d9:9b:cc:56:46:1a:5c:72:38:fa:ca:ac:a3:e6:0f:cb:3e: 41:50:22:a3:26:19:df:54:14:3e:70:05:1c:09:23:1e:51:0c: f7:c0:13:3e:35:c9:de:28:38:d9:ca:1c:e9:24:6e:93:f7:12: 8d:e7:94:10:44:33:03:69:d2:4c:06:9f:39:1a:a5:16:4f:d2: a1:22:08:10:00:9b:20:21:55:81:1f:fb:2c:d4:74:d5:51:cc: 26:b8:c5:71:4a:0f:ff:99:ac:82:a4:7a:8a:48:e9:f0:2f:61: 69:30:e0:bc:37:47:e6:d8:ea:c9:ec:cc:c4:0d:02:52:d3:26: 9a:dc:d1:75:f3:82:a0:b9:f9:11:4e:62:c1:75:c5:07:1f:de: 5f:8c:2c:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTA3MDExMC8GA1UEBRMoNTM5QkI3NkM4QTQzNzlBNERFMzk5QzA1MkQzOEMxQjQ1 M0E2NkYxQjAeFw0yNDA1MTkwODEzNTRaFw0yNDA1MjYwODEzNTRaMBgxFjAUBgNV BAMTDTY2NDliNGMzLWVlZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt36XuczjhcRBAWkE/SLGQQ+jxVkO0BVGU3dc+OQsGPXC/bnnpshvQGR+DQGk4 nrUWScpqhNimc/l27bXMqggR7sHhqwjWfNxPRPZu1fDZKsJmUz3dS5DpWCWqgvab UFMko4Hb8n7ja4dsnBr65a1HnyoNboHnPKJd99F/WRWupBRAYzTifvyyf801zx3s i4XP85oSMbGAa6DK2JBbrOIYBNV0X500ch7WXWpqgnssWrWurQYwrzQ/GE3sWhk8 u/Sev56quelOxxkg8lLKBRRN9vbFWNnnLay76IqLoYPdfhUmMnwXjJfmPjWsMuXc KGOJ4Q/g3F0Jep5h+qzjL5+zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsJXi3QpQ BPbw5tFtfrHN7k2TzIgwHwYDVR0jBBgwFoAUU5u3bIpDeaTeOZwFLTjBtFOmbxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMDcwLzg5QzU1OTdDQkMx MDExRUU4QkVCMTM3QUM0RjlBRTAyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTV1M2JJcERlYVRlT1p3RkxUakJ0Rk9tYnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MDcwLzg5QzU1OTdDQkMxMDExRUU4QkVCMTM3QUM0RjlBRTAyL1U1dTNiSXBEZWFU ZU9ad0ZMVGpCdEZPbWJ4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADBf8zp5NsxcFUJS7LfxzY6tU3oyvuA0hw+yaQH0wBNxUKAwC0X3n9sl 32nsCnzLvbF0cYM2IW2aooM/CeguH5tTqZXa9c+DPWegIINhqdToDtJtkdRAuWnF jx7+izIV/ESdxTWs0UlQnq0HLcTZm8xWRhpccjj6yqyj5g/LPkFQIqMmGd9UFD5w BRwJIx5RDPfAEz41yd4oONnKHOkkbpP3Eo3nlBBEMwNp0kwGnzkapRZP0qEiCBAA myAhVYEf+yzUdNVRzCa4xXFKD/+ZrIKkeopI6fAvYWkw4Lw3R+bY6snszMQNAlLT Jprc0XXzgqC5+RFOYsF1xQcf3l+MLJA= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org