$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: Thspxq2D7iqKJ5H0ni0UoUbwfKQbrILzoqWD+NzXajM= Subject key identifier: 8C:C2:F3:AB:25:19:E4:0A:D4:41:5E:33:29:2A:68:96:C6:38:AB:23 Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 05AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 05AA Signing time: Sun 19 May 2024 00:15:52 +0000 Manifest this update: Sun 19 May 2024 00:15:52 +0000 Manifest next update: Sun 26 May 2024 00:15:52 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: BumbRmRkYzNrJ8cc3UuUvAPpritEvgubxtrisaHnKvA=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: HpPML1igM6nukloEviOSwvtkO/Cgiu8ba1tFR5xUQ7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Validity Not Before: May 19 00:15:52 2024 GMT Not After : May 26 00:15:52 2024 GMT Subject: CN=664944b8-c98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c9:01:86:06:23:1c:ea:9a:c6:50:4f:1d:a9: e6:75:15:09:0a:5a:2c:a4:0b:a3:ea:ce:f9:18:8f: 24:98:3c:c2:f4:9a:1b:32:52:44:51:32:14:be:91: 3e:5e:a3:af:e1:39:5c:04:51:24:41:ea:7c:0c:16: 15:3a:c3:50:71:84:36:60:b6:7e:3d:54:58:ac:42: ac:63:2c:e7:98:8f:98:5a:a0:5d:03:60:93:6d:4f: 6a:d0:d8:36:4d:0d:71:e7:69:97:fc:22:bb:9f:7b: 7b:47:d1:2a:c5:9d:e9:20:75:08:18:b2:d2:31:03: 02:b8:d4:63:f0:d4:88:53:67:c5:c7:64:93:94:6f: a4:7e:97:a6:3f:b7:33:4b:78:6c:a9:bd:4b:fd:8c: 2e:18:af:2f:7b:a0:5f:d3:f7:9f:16:5f:bc:91:60: 77:8d:d3:bb:4b:59:90:2d:45:ec:01:45:a2:b6:04: 22:ac:f1:67:2f:50:f2:b3:ac:b4:b9:43:76:76:0f: ff:61:02:6f:7b:05:e6:96:0f:bb:0d:69:7f:88:23: b0:dc:a0:82:e9:26:e6:fe:c8:e9:38:99:1d:6d:14: 7e:39:13:1d:8d:3b:b4:6d:88:d7:da:8b:e2:26:32: a8:e3:e6:d5:19:04:0e:7e:5d:a5:d8:4a:6d:b9:8d: eb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C2:F3:AB:25:19:E4:0A:D4:41:5E:33:29:2A:68:96:C6:38:AB:23 X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:e8:82:08:0f:69:c7:8e:9f:32:1e:f8:fb:c9:81:5d:4d:30: 54:5c:26:75:22:9e:82:c0:88:42:df:87:dd:aa:e6:c1:b1:49: fe:74:5c:33:74:34:cf:a9:a7:79:42:f0:a8:6d:aa:0e:c3:3a: d1:2f:4b:8a:0f:e2:10:68:52:07:1f:70:f1:ed:b7:3f:4c:c0: 01:bf:8f:da:df:59:8f:f8:91:75:f8:a5:ed:db:7f:71:d5:dd: 64:a5:eb:0b:4f:bf:bb:90:45:e1:c7:94:86:00:a0:a1:49:c3: a0:9f:0b:4c:46:d6:c7:d9:56:59:dd:5a:bd:9b:f8:50:a1:ab: b6:5d:6f:5d:89:04:8c:a5:f7:60:6a:a1:84:8f:79:a1:18:b9: 18:f3:2c:d0:dd:93:9e:ad:e9:2f:20:71:d9:ee:fe:31:a0:06: 57:03:9a:70:57:bc:ec:fa:5d:b4:a6:b7:6d:27:eb:aa:8b:ea: 9e:13:19:75:54:8c:8f:54:a8:75:ca:01:27:63:b6:d3:9f:4f: bd:08:ba:ce:ef:cc:53:4f:3a:ab:79:c1:47:e0:aa:6f:6e:c7: 89:a3:71:e1:49:b7:85:86:63:c9:e0:88:52:af:12:cf:5d:6b: 92:91:a9:ea:92:0c:8e:7c:54:af:46:55:ed:34:29:4f:02:b1: 9a:62:5e:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjQwNTE5MDAxNTUyWhcNMjQwNTI2MDAxNTUyWjAYMRYwFAYD VQQDEw02NjQ5NDRiOC1jOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MkBhgYjHOqaxlBPHanmdRUJClospAuj6s75GI8kmDzC9JobMlJEUTIUvpE+ XqOv4TlcBFEkQep8DBYVOsNQcYQ2YLZ+PVRYrEKsYyznmI+YWqBdA2CTbU9q0Ng2 TQ1x52mX/CK7n3t7R9EqxZ3pIHUIGLLSMQMCuNRj8NSIU2fFx2STlG+kfpemP7cz S3hsqb1L/YwuGK8ve6Bf0/efFl+8kWB3jdO7S1mQLUXsAUWitgQirPFnL1Dys6y0 uUN2dg//YQJvewXmlg+7DWl/iCOw3KCC6Sbm/sjpOJkdbRR+ORMdjTu0bYjX2ovi JjKo4+bVGQQOfl2l2EptuY3rLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzC86sl GeQK1EFeMykqaJbGOKsjMB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB16IIID2nHjp8yHvj7yYFdTTBUXCZ1Ip6CwIhC34fdqubBsUn+dFwz dDTPqad5QvCobaoOwzrRL0uKD+IQaFIHH3Dx7bc/TMABv4/a31mP+JF1+KXt239x 1d1kpesLT7+7kEXhx5SGAKChScOgnwtMRtbH2VZZ3Vq9m/hQoau2XW9diQSMpfdg aqGEj3mhGLkY8yzQ3ZOerekvIHHZ7v4xoAZXA5pwV7zs+l20prdtJ+uqi+qeExl1 VIyPVKh1ygEnY7bTn0+9CLrO78xTTzqrecFH4KpvbseJo3HhSbeFhmPJ4IhSrxLP XWuSkanqkgyOfFSvRlXtNClPArGaYl58 -----END CERTIFICATE-----Generated at Sun May 19 00:59:41 2024 by rpki-client on console-fra.rpki-client.org