$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft File: S-UGizexYyUw_1Ijhue3-wGI6eo.mft (raw, json) Hash identifier: F0dHjJWnAfaRC1ZE+wYzPGadt2lu7YhI45ZvoqrhN0E= Subject key identifier: C3:8C:5A:34:FE:17:33:5A:ED:D2:03:14:FF:51:A4:7C:CA:0C:2F:CF Authority key identifier: 4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA Certificate issuer: /CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft Manifest number: 44 Signing time: Sun 19 May 2024 08:07:13 +0000 Manifest this update: Sun 19 May 2024 08:07:13 +0000 Manifest next update: Sun 26 May 2024 08:07:13 +0000 Files and hashes: 1: S-UGizexYyUw_1Ijhue3-wGI6eo.crl (hash: x3leuccKs7xrC/3pfv5zi8lF5OVbhWaMd+WvOQdMJP8=) 2: B979F0F4BE4211EE9D6A1D6CC4F9AE02.roa (hash: 0bfhohRWkw+mHnMOok0JegQjrp5R3WBkt6xVLjqYhaM=) 3: 2DAB7B74BE4211EE970F4140C4F9AE02.roa (hash: 2rZsjl0GWlyH/aquB5nfmeBqtZ6M2FK/78474UsGD0w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3/serialNumber=4BE5068B37B1632530FF522386E7B7FB0188E9EA Validity Not Before: May 19 08:07:13 2024 GMT Not After : May 26 08:07:13 2024 GMT Subject: CN=6649b331-b9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2c:9b:23:58:cc:cf:76:3e:38:bd:92:0e:4d: 7b:25:73:f4:53:46:73:7c:ce:68:7f:05:c9:95:dc: 56:3e:db:8b:b4:a9:06:15:2c:c6:8a:bf:7d:c9:02: 07:80:15:e9:55:2b:1a:57:eb:8a:b4:c4:72:61:8c: 14:7d:cc:03:cc:04:ef:ef:22:a1:3c:6b:8c:43:04: 8d:a2:9b:62:4d:65:c2:62:98:33:d6:8f:83:54:c6: 1a:2e:9c:c9:b9:9e:8b:33:c8:5f:7f:8c:a7:2c:63: da:1a:e8:84:79:00:0b:36:a2:68:84:1a:08:ce:93: f6:f9:ed:63:eb:b9:18:41:a8:34:db:d4:19:ca:dd: f5:41:91:5f:18:b3:f8:3c:74:fc:94:3a:8f:17:d2: 1b:ce:77:df:d2:f0:13:a2:d6:40:59:c4:57:b9:a0: 1d:8e:3c:0b:2f:fb:ce:e7:d0:82:4d:98:33:18:94: 24:55:41:f9:b9:f1:a2:aa:46:75:71:bd:34:d0:90: e7:3e:ff:ce:5d:8b:79:cd:0f:47:20:98:63:a9:b0: 48:32:f9:ff:ff:d6:48:43:ac:f5:cd:74:0a:08:72: a0:91:19:68:df:b6:3b:5e:60:df:57:2f:de:c8:74: 93:19:4f:74:fb:88:74:7a:d3:93:dc:79:81:fa:65: c0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8C:5A:34:FE:17:33:5A:ED:D2:03:14:FF:51:A4:7C:CA:0C:2F:CF X509v3 Authority Key Identifier: keyid:4B:E5:06:8B:37:B1:63:25:30:FF:52:23:86:E7:B7:FB:01:88:E9:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/S-UGizexYyUw_1Ijhue3-wGI6eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/E80F137CB99211EEAB9F1D19C4F9AE02/S-UGizexYyUw_1Ijhue3-wGI6eo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:51:57:48:e8:be:08:54:d9:17:e4:e1:98:d1:4d:59:af:2f: e5:64:2f:d3:89:93:74:95:60:b5:45:f7:c5:f6:ed:57:13:71: 76:df:de:45:0f:52:4a:62:e8:5a:a1:d9:25:77:ef:3f:33:e5: aa:63:94:96:b3:7f:20:4f:0f:48:15:62:70:f9:37:bd:7b:7a: 1e:8b:ab:0a:88:72:35:9c:e7:05:be:34:45:12:4e:12:5f:03: 1f:c3:d4:06:74:ff:5c:77:56:ed:32:ae:e1:da:bf:14:8e:d3: 9d:8c:05:7d:c0:12:df:5f:69:75:9f:6e:23:14:b8:96:78:ad: 59:5a:56:6a:16:db:d0:49:66:c7:1d:b4:1c:91:95:53:ad:16: 6a:f8:70:c7:58:a5:d1:b8:03:dc:34:db:05:6b:37:01:5b:e0: 82:a7:fc:2e:be:e1:1e:66:e6:9d:7d:6c:80:c1:c2:56:72:55: e7:f1:01:59:f5:04:ad:72:6c:b2:fe:26:96:57:7d:65:9e:53: 25:f0:64:63:fa:e4:e5:bc:bd:d8:d2:2b:cd:b8:72:1b:f5:f8: d9:fa:07:14:94:c1:9e:ed:7f:4c:00:c0:bc:d7:fa:a9:21:d6: 46:cc:b5:36:74:89:79:d7:64:cb:07:a1:e5:06:33:fb:3d:66: 8c:b1:23:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkJEMzExMC8GA1UEBRMoNEJFNTA2OEIzN0IxNjMyNTMwRkY1MjIzODZFN0I3RkIw MTg4RTlFQTAeFw0yNDA1MTkwODA3MTNaFw0yNDA1MjYwODA3MTNaMBgxFjAUBgNV BAMTDTY2NDliMzMxLWI5ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrLJsjWMzPdj44vZIOTXslc/RTRnN8zmh/BcmV3FY+24u0qQYVLMaKv33JAgeA FelVKxpX64q0xHJhjBR9zAPMBO/vIqE8a4xDBI2im2JNZcJimDPWj4NUxhounMm5 noszyF9/jKcsY9oa6IR5AAs2omiEGgjOk/b57WPruRhBqDTb1BnK3fVBkV8Ys/g8 dPyUOo8X0hvOd9/S8BOi1kBZxFe5oB2OPAsv+87n0IJNmDMYlCRVQfm58aKqRnVx vTTQkOc+/85di3nND0cgmGOpsEgy+f//1khDrPXNdAoIcqCRGWjftjteYN9XL97I dJMZT3T7iHR605PceYH6ZcBVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUw4xaNP4X M1rt0gMU/1GkfMoML88wHwYDVR0jBBgwFoAUS+UGizexYyUw/1Ijhue3+wGI6eow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQkQzL0U4MEYxMzdDQjk5 MjExRUVBQjlGMUQxOUM0RjlBRTAyL1MtVUdpemV4WXlVd18xSWpodWUzLXdHSTZl by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUy1VR2l6ZXhZeVV3XzFJamh1ZTMtd0dJNmVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcy QkQzL0U4MEYxMzdDQjk5MjExRUVBQjlGMUQxOUM0RjlBRTAyL1MtVUdpemV4WXlV d18xSWpodWUzLXdHSTZlby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABZRV0jovghU2Rfk4ZjRTVmvL+VkL9OJk3SVYLVF98X27VcTcXbf3kUP Ukpi6Fqh2SV37z8z5apjlJazfyBPD0gVYnD5N717eh6LqwqIcjWc5wW+NEUSThJf Ax/D1AZ0/1x3Vu0yruHavxSO052MBX3AEt9faXWfbiMUuJZ4rVlaVmoW29BJZscd tByRlVOtFmr4cMdYpdG4A9w02wVrNwFb4IKn/C6+4R5m5p19bIDBwlZyVefxAVn1 BK1ybLL+JpZXfWWeUyXwZGP65OW8vdjSK824chv1+Nn6BxSUwZ7tf0wAwLzX+qkh 1kbMtTZ0iXnXZMsHoeUGM/s9ZoyxI4Q= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org