$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: sCx9sNOmCjuFnHLwa8adG0DEytrRRtuKtbVMRUvO3x4= Subject key identifier: C4:F0:D8:E4:83:8E:B9:BC:2E:C3:FB:30:CF:3B:1F:07:07:CC:68:52 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: AB Signing time: Sun 19 May 2024 06:12:17 +0000 Manifest this update: Sun 19 May 2024 06:12:16 +0000 Manifest next update: Sun 26 May 2024 06:12:16 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: zZOr4uSwct4xjrYGDytoNRIlKaZVOQiXmY7+X/ZT5yw=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: qg93oWWTuAPTiOr/0YJ1p+8YAjeXzMdg4Ry+BJ5sjwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: May 19 06:12:16 2024 GMT Not After : May 26 06:12:16 2024 GMT Subject: CN=66499840-3ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bf:bb:e4:55:cc:75:19:70:bc:f3:5d:88:a1: 5a:85:d4:c3:b6:ed:59:fb:ce:a4:04:84:03:33:e4: 2c:a8:0f:98:62:16:bd:8f:cc:5b:ea:3b:9d:84:04: 6a:24:4e:ae:ec:1b:2d:cb:0f:d5:9d:5a:02:39:19: 74:92:fa:06:27:4e:4d:43:54:19:10:8d:19:95:bd: 79:e3:62:80:49:9e:17:cb:06:3e:f4:65:25:8b:97: a5:5e:aa:17:fa:2e:a5:1a:dd:27:6b:80:c8:18:97: 2f:15:71:3c:3f:2c:5f:e4:8f:bf:2b:e1:5d:54:18: d7:26:bb:84:7a:c1:bf:39:30:5a:9f:b8:49:1a:2e: fc:22:e7:c8:b2:42:6e:32:7f:b5:af:f7:8b:69:d0: 87:fd:16:14:e4:b4:88:0e:b4:85:4a:c8:af:da:4f: 3f:9a:8e:14:6b:e5:cf:ad:dc:35:23:d4:e0:ce:a7: 67:af:54:dc:a1:bc:b1:90:c1:98:e5:03:8a:98:71: cf:bb:1c:5b:55:b1:29:33:ab:45:5b:6d:a5:96:7b: 5c:49:4a:04:31:02:75:f3:13:ff:80:2a:ca:9d:6b: 26:98:28:27:4b:a5:7c:12:f9:b5:c5:b3:b4:1a:23: 05:97:98:29:df:d9:04:75:16:07:db:82:c5:fa:ff: c2:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F0:D8:E4:83:8E:B9:BC:2E:C3:FB:30:CF:3B:1F:07:07:CC:68:52 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:58:d4:c1:b7:2a:b7:53:ed:49:49:25:6a:40:e3:60:53:5a: ca:51:dc:91:9a:05:43:9c:0e:50:87:c9:6d:38:54:f3:8a:94: 54:6c:e8:d4:36:18:56:4a:b9:7d:74:6a:6f:ad:da:ec:f4:98: 0f:4d:d3:47:e0:8a:f6:63:4f:2f:b4:b9:fb:27:28:4f:ca:e5: a3:0b:e2:35:e7:32:cf:97:88:b8:2e:8d:c0:27:2a:21:86:d9: 56:95:90:37:74:a3:a5:4e:f3:4d:3d:87:5f:32:fd:55:92:2b: 30:f1:24:1f:a3:1c:fb:3d:9d:a6:44:da:af:6a:c2:34:f3:27: 6b:06:c2:97:e3:00:29:dd:20:55:32:8c:a1:cf:69:4a:7c:41: a6:cb:9e:98:aa:c5:b1:8c:46:b1:fd:d8:22:db:8f:b5:e9:92: 29:18:89:d8:0f:70:22:0c:de:98:3e:a0:85:47:02:75:bf:1d: 4d:8e:67:fd:e0:f0:cf:f0:6f:e9:4e:af:ae:fe:33:c9:09:c8: a9:b9:c1:38:ab:69:67:82:e4:cc:d6:34:57:7b:29:9a:8e:45: e1:dc:2f:b9:8c:a1:b6:65:f4:93:1b:ce:a7:8c:2a:d3:08:b5: 98:75:77:65:f0:16:85:65:fb:70:b1:0b:aa:cb:30:6e:72:42: ce:5f:e4:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjQwNTE5MDYxMjE2WhcNMjQwNTI2MDYxMjE2WjAYMRYwFAYD VQQDEw02NjQ5OTg0MC0zZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvL+75FXMdRlwvPNdiKFahdTDtu1Z+86kBIQDM+QsqA+YYha9j8xb6judhARq JE6u7Bstyw/VnVoCORl0kvoGJ05NQ1QZEI0Zlb1542KASZ4XywY+9GUli5elXqoX +i6lGt0na4DIGJcvFXE8Pyxf5I+/K+FdVBjXJruEesG/OTBan7hJGi78IufIskJu Mn+1r/eLadCH/RYU5LSIDrSFSsiv2k8/mo4Ua+XPrdw1I9Tgzqdnr1TcobyxkMGY 5QOKmHHPuxxbVbEpM6tFW22llntcSUoEMQJ18xP/gCrKnWsmmCgnS6V8Evm1xbO0 GiMFl5gp39kEdRYH24LF+v/CYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTw2OSD jrm8LsP7MM87HwcHzGhSMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAWNTBtyq3U+1JSSVqQONgU1rKUdyRmgVDnA5Qh8ltOFTzipRUbOjU NhhWSrl9dGpvrdrs9JgPTdNH4Ir2Y08vtLn7JyhPyuWjC+I15zLPl4i4Lo3AJyoh htlWlZA3dKOlTvNNPYdfMv1Vkisw8SQfoxz7PZ2mRNqvasI08ydrBsKX4wAp3SBV Moyhz2lKfEGmy56YqsWxjEax/dgi24+16ZIpGInYD3AiDN6YPqCFRwJ1vx1Njmf9 4PDP8G/pTq+u/jPJCcipucE4q2lnguTM1jRXeymajkXh3C+5jKG2ZfSTG86njCrT CLWYdXdl8BaFZftwsQuqyzBuckLOX+R0 -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org