$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft File: R_UMlYv5z1RcYBresE-KBeEB2aU.mft (raw, json) Hash identifier: ss4wy3LA2fNaslZCWQQgsGg3SEtVSssbQdZuwNvnoMA= Subject key identifier: 72:8D:D9:68:D2:35:6D:F2:04:89:6E:E1:55:B6:5A:7F:98:A2:02:D0 Authority key identifier: 47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 Certificate issuer: /CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Certificate serial: 34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft Manifest number: 30 Signing time: Sun 19 May 2024 08:25:23 +0000 Manifest this update: Sun 19 May 2024 08:25:22 +0000 Manifest next update: Sun 26 May 2024 08:25:22 +0000 Files and hashes: 1: R_UMlYv5z1RcYBresE-KBeEB2aU.crl (hash: E/Ed3Oe4j7OhtfU5iV70ZHbo0HoIUBBJ31aumaI8DG0=) 2: 0F778EDCEBB411EE9D86095BC4F9AE02.roa (hash: CylyyzwIG08L70kRCG76cWxCrDSIPb2MuuRknQBCs64=) 3: 0F0A0C72EBB411EE9D86095BC4F9AE02.roa (hash: SQ0tWzqj2x2vx8fy9K7AJ1cebETDa6gFcypKPROA2yk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490/serialNumber=47F50C958BF9CF545C601ADEB04F8A05E101D9A5 Validity Not Before: May 19 08:25:22 2024 GMT Not After : May 26 08:25:22 2024 GMT Subject: CN=6649b773-4e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:93:3a:9d:44:3a:29:72:bd:3c:77:e0:d0:f2: f8:f1:37:d1:39:c9:88:20:02:94:42:0f:bf:30:4a: 36:3f:4a:d7:84:2b:05:63:34:59:21:8a:90:59:2b: c4:19:fc:0f:f6:6c:51:32:33:e3:e2:0d:e8:4f:48: e9:37:5c:60:d1:72:05:3f:4d:78:6b:0f:15:f3:49: b6:fb:03:7e:73:31:d0:fc:51:3f:fb:5f:00:69:fd: f3:b8:31:6d:6a:6e:23:f5:44:22:c0:06:d8:0a:52: 4a:67:94:41:d5:48:ce:be:2c:eb:b5:2c:b9:cc:66: 93:09:4e:fc:e6:4f:cc:b7:c9:7e:9f:3b:ad:9d:76: 09:70:97:d1:78:b2:56:03:fb:87:0c:45:65:37:35: 13:9f:28:83:44:ac:a4:0b:47:8b:b6:47:3d:6a:98: 6e:9a:01:95:2e:c0:ff:47:2f:fc:82:0c:3a:1f:3a: 45:60:c9:cf:fd:fd:7f:d2:1a:12:26:39:d1:b2:1a: 8f:a2:16:09:80:af:70:f3:92:46:e9:6d:6e:4b:00: 17:d9:52:ca:dd:ba:ff:54:01:01:3c:ef:a9:24:69: b5:b7:f8:d9:07:7f:dd:58:05:9b:56:a9:ce:ef:ff: 43:91:e8:99:91:97:51:09:b7:2f:d6:18:16:64:9f: 99:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:8D:D9:68:D2:35:6D:F2:04:89:6E:E1:55:B6:5A:7F:98:A2:02:D0 X509v3 Authority Key Identifier: keyid:47:F5:0C:95:8B:F9:CF:54:5C:60:1A:DE:B0:4F:8A:05:E1:01:D9:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/R_UMlYv5z1RcYBresE-KBeEB2aU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/8F52488ED05411EEAF799F16C4F9AE02/R_UMlYv5z1RcYBresE-KBeEB2aU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:74:9f:96:ff:8c:bb:51:b5:32:73:4a:1a:3b:16:66:ff:bb: de:27:56:e7:52:86:14:fe:d2:7d:bc:d7:52:e3:21:e7:1a:cd: 37:7c:08:a6:77:07:71:20:84:6b:25:49:39:5a:b0:7b:eb:71: 12:0e:f7:92:f3:02:2a:b1:b8:f0:bc:3d:f9:6b:ef:75:76:db: 6b:1c:d3:d6:44:fd:68:49:54:4b:58:a4:9c:50:5d:60:85:3f: f9:72:7d:2f:fa:64:d3:d3:c8:4d:f7:b2:47:4c:ec:13:c7:c3: b1:28:f9:41:61:2c:dc:e1:88:e5:36:1f:17:28:67:0d:ef:0d: 0f:2b:45:e9:bb:d8:61:10:92:cc:23:fe:a7:7e:0d:7f:6b:3b: a7:6a:43:fc:69:f5:46:da:5e:47:6d:8c:f9:07:4f:aa:44:e8: 36:d8:0e:be:cd:a5:16:59:9e:b9:d6:6d:c0:48:c8:ca:38:33: 53:f4:80:eb:a2:c2:ff:d6:26:c7:c8:d5:f5:08:aa:66:bd:1f: ad:d3:64:96:d5:d6:31:2e:b7:8e:5c:eb:95:cb:42:02:fc:99: b6:77:9b:ff:9c:03:04:b4:5c:db:9b:a6:14:be:91:f9:90:49: 9c:ce:3d:9f:67:67:34:15:1d:ce:ed:eb:86:9a:ac:f8:0b:cc: 57:75:e6:e1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzQ5MDExMC8GA1UEBRMoNDdGNTBDOTU4QkY5Q0Y1NDVDNjAxQURFQjA0RjhBMDVF MTAxRDlBNTAeFw0yNDA1MTkwODI1MjJaFw0yNDA1MjYwODI1MjJaMBgxFjAUBgNV BAMTDTY2NDliNzczLTRlMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWkzqdRDopcr08d+DQ8vjxN9E5yYggApRCD78wSjY/SteEKwVjNFkhipBZK8QZ /A/2bFEyM+PiDehPSOk3XGDRcgU/TXhrDxXzSbb7A35zMdD8UT/7XwBp/fO4MW1q biP1RCLABtgKUkpnlEHVSM6+LOu1LLnMZpMJTvzmT8y3yX6fO62ddglwl9F4slYD +4cMRWU3NROfKINErKQLR4u2Rz1qmG6aAZUuwP9HL/yCDDofOkVgyc/9/X/SGhIm OdGyGo+iFgmAr3DzkkbpbW5LABfZUsrduv9UAQE876kkabW3+NkHf91YBZtWqc7v /0OR6JmRl1EJty/WGBZkn5nbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUco3ZaNI1 bfIEiW7hVbZaf5iiAtAwHwYDVR0jBBgwFoAUR/UMlYv5z1RcYBresE+KBeEB2aUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzNDkwLzhGNTI0ODhFRDA1 NDExRUVBRjc5OUYxNkM0RjlBRTAyL1JfVU1sWXY1ejFSY1lCcmVzRS1LQmVFQjJh VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUl9VTWxZdjV6MVJjWUJyZXNFLUtCZUVCMmFVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz NDkwLzhGNTI0ODhFRDA1NDExRUVBRjc5OUYxNkM0RjlBRTAyL1JfVU1sWXY1ejFS Y1lCcmVzRS1LQmVFQjJhVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAZ0n5b/jLtRtTJzSho7Fmb/u94nVudShhT+0n2811LjIecazTd8CKZ3 B3EghGslSTlasHvrcRIO95LzAiqxuPC8Pflr73V222sc09ZE/WhJVEtYpJxQXWCF P/lyfS/6ZNPTyE33skdM7BPHw7Eo+UFhLNzhiOU2HxcoZw3vDQ8rRem72GEQkswj /qd+DX9rO6dqQ/xp9UbaXkdtjPkHT6pE6DbYDr7NpRZZnrnWbcBIyMo4M1P0gOui wv/WJsfI1fUIqma9H63TZJbV1jEut45c65XLQgL8mbZ3m/+cAwS0XNubphS+kfmQ SZzOPZ9nZzQVHc7t64aarPgLzFd15uE= -----END CERTIFICATE-----Generated at Sun May 19 09:32:16 2024 by rpki-client on console-ams.rpki-client.org