$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: K/G5VejV9sxLhu2ZiRLe9Pf22Y5IG1fa2CPCt7KdB74= Subject key identifier: FB:56:47:92:F9:AE:D5:E4:CE:EE:01:33:D7:4A:55:94:4A:C1:3F:30 Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0B26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0B17 Signing time: Mon 20 May 2024 05:58:13 +0000 Manifest this update: Mon 20 May 2024 05:58:13 +0000 Manifest next update: Mon 27 May 2024 05:58:13 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: tHLnKnzuABXyS9zpPmh2xJy9eqs/vh+XRJxzJpgOmVQ=) 2: 46C5452E0DD711EF85707821C4F9AE02.roa (hash: 6P120RTOYh1dh3p0j/PnZa8QUh9Ahz+uTKm0Bzmq0rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2854 (0xb26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: May 20 05:58:13 2024 GMT Not After : May 27 05:58:13 2024 GMT Subject: CN=664ae675-6112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:07:a7:af:24:69:61:69:7d:47:8c:93:aa:68: 3f:f2:69:b3:9c:de:74:fb:94:15:1b:a0:e9:9e:cc: 95:f4:3c:5e:46:86:2d:37:71:ce:06:f4:80:53:ad: 19:86:bb:79:55:e7:33:1f:42:ee:04:89:68:ec:f1: 9a:62:74:93:63:3f:9d:0b:55:bf:df:ed:44:07:92: 79:0e:17:41:61:15:54:37:5a:da:24:89:ec:3f:69: 37:3a:a0:2e:a3:26:63:da:55:91:88:4f:d2:0d:77: 36:fc:84:51:43:6b:3e:62:ce:5e:ac:7b:69:61:b7: df:26:4f:36:b3:8b:28:1d:8f:6a:9f:f5:b1:f2:ab: 19:cc:e1:3f:0d:35:b7:3d:b5:8c:6f:b5:65:4d:2a: f9:93:d9:33:e1:92:27:41:7c:cb:a8:f0:25:8d:d3: 84:a8:24:98:0c:02:c5:96:60:5f:94:32:5c:4e:17: cd:e9:55:ed:19:a1:dc:ca:1b:8c:5e:1b:e8:8f:92: 61:0c:7a:f3:24:ba:28:03:43:1b:d1:fd:46:c7:74: 69:b1:12:f1:cd:17:ae:1d:6f:91:18:34:2c:e9:90: 3e:83:de:33:f3:90:6c:7e:b3:1e:71:a5:00:47:d2: 00:3f:81:aa:da:37:ca:1b:b5:a1:ad:7d:59:c5:b6: ba:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:56:47:92:F9:AE:D5:E4:CE:EE:01:33:D7:4A:55:94:4A:C1:3F:30 X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:3f:4e:f8:94:c6:1c:2b:34:4a:ab:03:11:c0:fe:c8:fd:48: 5f:fb:3c:f9:75:63:ed:cf:be:fd:38:ee:42:d5:e6:e5:53:9f: 2a:10:12:eb:b7:66:e5:02:11:19:74:f7:de:c8:30:16:e7:c0: 1b:ba:d6:92:8d:a0:58:bf:b7:9c:a9:75:71:19:7e:aa:07:0a: 9c:3f:63:81:7c:d3:28:ac:c9:ad:a4:55:16:91:09:30:7c:f0: bc:75:b1:26:d1:a7:52:a0:ce:b1:f7:e9:9d:e4:09:0e:7f:ac: 17:bf:52:56:a3:db:fb:7d:c9:c0:16:c0:ca:33:11:90:ac:7c: 4d:98:1e:d2:89:e9:06:92:33:86:3b:b7:49:89:2f:82:2a:9a: df:bb:07:e2:af:56:65:72:fc:46:c4:83:d9:1a:2b:5e:59:81: 38:a3:33:1f:d4:f8:2e:0f:84:2d:40:09:19:dd:07:7b:8e:81: 13:48:39:e3:70:62:84:0e:f5:fd:ad:57:df:51:70:1f:07:f0: 93:18:27:64:7b:c8:a9:f0:1f:1e:e0:c1:ed:f1:d4:64:70:54: 8a:fa:b6:43:97:b5:2a:90:72:0a:49:51:7d:d4:59:57:6c:9b: e0:37:1a:c1:8b:9e:8a:a6:81:0e:b7:f7:27:97:45:6f:14:f7: 8d:0a:ef:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjQwNTIwMDU1ODEzWhcNMjQwNTI3MDU1ODEzWjAYMRYwFAYD VQQDEw02NjRhZTY3NS02MTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0genryRpYWl9R4yTqmg/8mmznN50+5QVG6DpnsyV9DxeRoYtN3HOBvSAU60Z hrt5VeczH0LuBIlo7PGaYnSTYz+dC1W/3+1EB5J5DhdBYRVUN1raJInsP2k3OqAu oyZj2lWRiE/SDXc2/IRRQ2s+Ys5erHtpYbffJk82s4soHY9qn/Wx8qsZzOE/DTW3 PbWMb7VlTSr5k9kz4ZInQXzLqPAljdOEqCSYDALFlmBflDJcThfN6VXtGaHcyhuM Xhvoj5JhDHrzJLooA0Mb0f1Gx3RpsRLxzReuHW+RGDQs6ZA+g94z85BsfrMecaUA R9IAP4Gq2jfKG7WhrX1Zxba6rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtWR5L5 rtXkzu4BM9dKVZRKwT8wMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzP074lMYcKzRKqwMRwP7I/Uhf+zz5dWPtz779OO5C1eblU58qEBLr t2blAhEZdPfeyDAW58AbutaSjaBYv7ecqXVxGX6qBwqcP2OBfNMorMmtpFUWkQkw fPC8dbEm0adSoM6x9+md5AkOf6wXv1JWo9v7fcnAFsDKMxGQrHxNmB7SiekGkjOG O7dJiS+CKprfuwfir1ZlcvxGxIPZGiteWYE4ozMf1PguD4QtQAkZ3Qd7joETSDnj cGKEDvX9rVffUXAfB/CTGCdke8ip8B8e4MHt8dRkcFSK+rZDl7UqkHIKSVF91FlX bJvgNxrBi56KpoEOt/cnl0VvFPeNCu8M -----END CERTIFICATE-----Generated at Mon May 20 06:51:37 2024 by rpki-client on console-ams.rpki-client.org