$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: wi3Mv6oPkzjaOnraXMK446fJKW70KmygI09v1IC5gvs= Subject key identifier: EF:05:E5:2D:46:2F:9E:66:A2:AF:D8:57:A5:2F:0C:3E:8A:E0:28:82 Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 0115 Signing time: Sun 19 May 2024 05:20:37 +0000 Manifest this update: Sun 19 May 2024 05:20:36 +0000 Manifest next update: Sun 26 May 2024 05:20:36 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: od+BbzoE0fZBKHJNzrkwxrcIOhwTBE9TVqTqAqBzO7Q=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: q95Nnc69ywewB1KRViDRqgU8dhWu4ixX7gxtbwYMk2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: May 19 05:20:36 2024 GMT Not After : May 26 05:20:36 2024 GMT Subject: CN=66498c25-07b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:2d:f1:90:41:ed:a2:3a:59:19:3f:d9:99: 8c:88:19:c1:cf:7b:84:8f:82:fb:fb:0a:3c:61:46: b1:40:d8:88:f6:cb:c7:e9:3e:d4:a3:47:3d:1f:c6: 76:d1:09:1e:d8:37:f6:56:07:51:61:70:c3:45:59: 50:b0:79:33:24:b9:75:88:c6:3d:b3:ca:30:a5:55: c1:e7:fe:57:37:96:62:99:ae:26:68:bf:4e:14:2e: dd:ae:c4:ce:da:ab:c6:ec:d6:43:ef:f7:c5:3d:54: 2e:d1:ff:57:80:3d:71:f4:2f:16:c9:c3:6d:b9:21: 6e:64:45:54:70:79:02:98:f8:0f:28:20:81:1c:d5: e3:d0:e0:b0:3e:cf:14:7d:73:40:c1:53:a6:48:61: 16:07:04:93:f9:fc:1d:f0:8d:38:0f:29:ed:e3:62: 24:b8:7d:e1:8a:ec:83:3e:55:d6:91:5f:de:22:5b: bc:52:5d:3a:b2:50:e6:15:5e:eb:29:41:6b:7e:df: f5:75:d3:e9:6f:1a:aa:8b:65:c4:9e:eb:8e:f6:a9: 6b:a0:d4:92:1b:c0:23:4f:f9:da:19:e3:9e:71:9c: 7a:69:20:93:25:dc:88:2b:8f:10:3c:58:d3:74:5d: 4d:fb:99:7e:74:a1:7f:16:cd:2e:23:94:66:0e:6b: 4c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:05:E5:2D:46:2F:9E:66:A2:AF:D8:57:A5:2F:0C:3E:8A:E0:28:82 X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:e0:f0:f3:d7:69:87:e1:c9:b6:72:e9:86:69:90:e8:9f:0a: b0:7c:bb:2e:f6:a7:a1:07:1a:1a:76:e5:25:8f:2a:ef:ef:25: 14:56:bb:b1:52:d4:2e:1c:66:32:7c:b3:ae:b8:7a:2e:de:bf: b8:d6:25:20:1f:33:07:4b:7d:51:67:21:dc:ac:7e:bc:37:6a: 2d:ab:6a:77:be:bc:b3:c1:a2:ca:4e:bb:4b:32:e8:24:64:f1: 6d:17:83:d9:6a:81:c5:95:03:23:53:15:39:f5:48:3a:f0:5d: b6:d6:de:21:91:5f:db:f8:2a:89:9f:8f:ad:60:29:6c:d5:da: 80:73:02:f7:9f:52:5d:90:80:72:2f:a9:ff:e6:51:fe:01:5e: cb:1a:3d:71:70:af:5e:a4:80:92:dd:9c:64:3d:ce:c7:31:a1: 68:55:c7:4b:a6:4c:5a:b6:fe:89:95:5d:a7:6f:77:57:ae:39: bb:cc:4b:c3:16:46:2f:01:13:bf:f5:6a:4c:b3:bd:69:65:f3: 9b:19:34:33:f2:19:a8:a2:41:46:2b:7a:b4:8e:21:b0:13:5b: d6:06:98:bc:08:78:4d:0f:9f:0f:a6:8f:a0:08:03:cc:4c:0a: b6:e2:87:c4:0e:65:b9:5a:72:e3:31:68:9a:58:ea:78:31:9c: 85:06:0c:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjQwNTE5MDUyMDM2WhcNMjQwNTI2MDUyMDM2WjAYMRYwFAYD VQQDEw02NjQ5OGMyNS0wN2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvU0t8ZBB7aI6WRk/2ZmMiBnBz3uEj4L7+wo8YUaxQNiI9svH6T7Uo0c9H8Z2 0Qke2Df2VgdRYXDDRVlQsHkzJLl1iMY9s8owpVXB5/5XN5Zima4maL9OFC7drsTO 2qvG7NZD7/fFPVQu0f9XgD1x9C8WycNtuSFuZEVUcHkCmPgPKCCBHNXj0OCwPs8U fXNAwVOmSGEWBwST+fwd8I04Dynt42IkuH3hiuyDPlXWkV/eIlu8Ul06slDmFV7r KUFrft/1ddPpbxqqi2XEnuuO9qlroNSSG8AjT/naGeOecZx6aSCTJdyIK48QPFjT dF1N+5l+dKF/Fs0uI5RmDmtMEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8F5S1G L55moq/YV6UvDD6K4CiCMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCM4PDz12mH4cm2cumGaZDonwqwfLsu9qehBxoaduUljyrv7yUUVrux UtQuHGYyfLOuuHou3r+41iUgHzMHS31RZyHcrH68N2otq2p3vryzwaLKTrtLMugk ZPFtF4PZaoHFlQMjUxU59Ug68F221t4hkV/b+CqJn4+tYCls1dqAcwL3n1JdkIBy L6n/5lH+AV7LGj1xcK9epICS3ZxkPc7HMaFoVcdLpkxatv6JlV2nb3dXrjm7zEvD FkYvARO/9WpMs71pZfObGTQz8hmookFGK3q0jiGwE1vWBpi8CHhND58Ppo+gCAPM TAq24ofEDmW5WnLjMWiaWOp4MZyFBgyN -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org