$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: l60c5QGVupdbnWOfk62deuccefkdgqSS23CGeobrKfs= Subject key identifier: AA:C7:27:68:73:5A:46:D8:C3:A5:94:F0:C7:0A:EB:0A:5D:93:AF:F2 Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 1FB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 1FA4 Signing time: Thu 30 May 2024 16:36:20 +0000 Manifest this update: Thu 30 May 2024 16:36:20 +0000 Manifest next update: Thu 06 Jun 2024 16:36:20 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: dDfTXvA4UZiLSpR0ws5Ct/yLX+SSMd+pVo/t0m3L/o0=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: WIW1H/NBvXho413cX7adVb3la0lM1cJsxulEulGGn4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 16:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8117 (0x1fb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: May 30 16:36:20 2024 GMT Not After : Jun 6 16:36:20 2024 GMT Subject: CN=6658ab04-3b96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:ea:19:94:ec:d7:14:78:7e:9e:5f:18:46:9d: ea:ea:b7:e1:81:14:7d:3b:1e:5f:65:f1:86:0e:04: 45:4b:db:a4:92:06:2c:5d:9a:b8:29:4a:2a:c3:5c: d9:bb:71:d7:77:cb:66:32:19:b0:98:b7:8e:1f:d8: 05:9a:94:7d:23:b6:e1:87:0d:10:7a:e1:b5:11:c6: f5:2a:4e:72:08:81:f4:5d:9f:4c:8c:95:ef:ce:54: ff:b2:9c:db:c5:a3:5a:9e:5e:3d:29:45:c7:8a:05: 1f:8e:83:4a:4a:3b:f1:7f:6d:31:b6:c7:bb:6c:e0: 75:51:12:e4:e3:20:5f:5a:e8:e2:12:57:fa:04:9d: ef:24:f4:66:28:f8:71:a3:22:43:5c:ba:f1:75:6c: fe:03:7e:74:f9:b7:8c:7e:31:44:63:27:a3:0d:0e: c4:b1:02:22:59:0a:ac:92:00:88:87:86:d6:b0:25: 17:b8:e2:3c:6f:dd:b6:14:b1:a1:d7:03:fb:66:3e: e6:2c:d1:f1:1f:49:db:15:6e:51:b8:43:46:69:8b: 4c:d6:00:3f:31:a2:3a:b5:54:29:dd:31:d5:bb:25: 5f:a3:fe:c7:04:10:cc:3a:6f:71:0e:6e:8a:b2:fa: 93:2c:c5:0b:16:3d:b2:b4:f6:a3:c1:56:91:22:ad: 24:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C7:27:68:73:5A:46:D8:C3:A5:94:F0:C7:0A:EB:0A:5D:93:AF:F2 X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:70:08:c6:b9:ad:25:91:de:7b:40:5a:5d:18:fc:a2:d6:2a: 91:3f:70:5e:58:9a:53:cd:2b:0b:58:53:fa:70:01:ae:09:5d: cb:5b:6a:06:1d:f0:4f:33:f9:8e:f8:f8:59:ba:c9:f4:49:67: 36:a2:e7:e2:0d:f7:3d:2b:89:27:89:66:6b:af:d4:fb:1b:a5: 12:c4:43:43:74:b5:53:e1:ce:97:ba:e2:ed:e1:05:16:86:02: 9f:18:87:1e:0e:2c:02:ae:cc:89:d7:2d:5b:2b:b5:91:cf:6d: da:35:6f:0b:fe:26:11:33:0e:3d:aa:e2:1f:7c:66:2f:cc:ec: c9:ca:e5:c3:72:1c:59:b4:6a:b2:e2:3f:3c:46:f0:a6:b8:12: 53:f4:98:b1:e2:b3:28:4c:2a:95:92:5c:e5:b1:2a:17:c9:21: 53:18:c5:c7:38:98:65:c6:9d:63:4d:5d:99:48:19:6c:56:08: 40:db:a8:a2:eb:75:1d:7b:e8:8c:e7:92:d0:64:c2:1e:45:b9: ab:51:b4:fb:51:fa:2c:b3:3c:2e:ca:7a:42:83:2a:e3:ec:1e: 67:13:9e:a8:08:3d:e0:c9:84:e0:b5:29:95:eb:8b:67:9c:ac: 84:47:a2:d1:6f:c4:8e:70:91:97:bf:f9:1a:c6:49:ab:d1:1d: 8c:57:67:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjQwNTMwMTYzNjIwWhcNMjQwNjA2MTYzNjIwWjAYMRYwFAYD VQQDEw02NjU4YWIwNC0zYjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8+oZlOzXFHh+nl8YRp3q6rfhgRR9Ox5fZfGGDgRFS9ukkgYsXZq4KUoqw1zZ u3HXd8tmMhmwmLeOH9gFmpR9I7bhhw0QeuG1Ecb1Kk5yCIH0XZ9MjJXvzlT/spzb xaNanl49KUXHigUfjoNKSjvxf20xtse7bOB1URLk4yBfWujiElf6BJ3vJPRmKPhx oyJDXLrxdWz+A350+beMfjFEYyejDQ7EsQIiWQqskgCIh4bWsCUXuOI8b922FLGh 1wP7Zj7mLNHxH0nbFW5RuENGaYtM1gA/MaI6tVQp3THVuyVfo/7HBBDMOm9xDm6K svqTLMULFj2ytPajwVaRIq0kxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrHJ2hz WkbYw6WU8McK6wpdk6/yMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMcAjGua0lkd57QFpdGPyi1iqRP3BeWJpTzSsLWFP6cAGuCV3LW2oG HfBPM/mO+PhZusn0SWc2oufiDfc9K4kniWZrr9T7G6USxENDdLVT4c6XuuLt4QUW hgKfGIceDiwCrsyJ1y1bK7WRz23aNW8L/iYRMw49quIffGYvzOzJyuXDchxZtGqy 4j88RvCmuBJT9Jix4rMoTCqVklzlsSoXySFTGMXHOJhlxp1jTV2ZSBlsVghA26ii 63Ude+iM55LQZMIeRbmrUbT7UfosszwuynpCgyrj7B5nE56oCD3gyYTgtSmV64tn nKyER6LRb8SOcJGXv/kaxkmr0R2MV2ed -----END CERTIFICATE-----Generated at Thu May 30 18:33:09 2024 by rpki-client on console-fra.rpki-client.org