$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft File: u-KUkERtaHB2W05h1-ubIsYARjg.mft (raw, json) Hash identifier: jQn3XSUuYXarUPIVMilxkigbi24DWh9yheHqdcbKe7E= Subject key identifier: 5B:1B:B1:B8:17:99:7F:5A:FB:C9:A8:52:F4:A5:5A:C2:5F:0B:8D:A3 Authority key identifier: BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 Certificate issuer: /CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Certificate serial: 0BAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft Manifest number: 0B95 Signing time: Sat 18 May 2024 19:25:48 +0000 Manifest this update: Sat 18 May 2024 19:25:47 +0000 Manifest next update: Sat 25 May 2024 19:25:47 +0000 Files and hashes: 1: u-KUkERtaHB2W05h1-ubIsYARjg.crl (hash: aYT2b6ebrPQbkZTH1PSAsLCdrXmrwZpbBPJRcXE3hRw=) 2: 8BA504FCB27911EB978CE10AC4F9AE02.roa (hash: YZjjtJ8um0oqlcIvVcIfCcr3lOq83jX0uJTw3FialkY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2988 (0xbac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D83/serialNumber=BBE29490446D6870765B4E61D7EB9B22C6004638 Validity Not Before: May 18 19:25:47 2024 GMT Not After : May 25 19:25:47 2024 GMT Subject: CN=664900bc-e557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:99:b9:10:57:1a:e9:4f:76:51:1d:a1:67:6a: 7a:47:fd:cb:60:fb:6f:e7:1d:da:2a:5c:76:ae:34: d4:ff:67:e6:ce:e6:68:76:58:6b:d4:47:47:5c:05: 6a:f0:2f:89:e2:ce:d3:4d:a4:37:59:bf:f5:ed:23: 5d:c7:e7:cd:a1:e5:d2:58:a3:bf:f9:9b:7b:68:cd: 6e:e9:d5:9c:36:a0:cc:48:94:c9:e3:46:5c:5c:fb: 7b:63:a1:03:c1:42:c7:f0:26:25:a5:e9:3b:32:13: 74:42:5b:fa:0b:bb:f2:47:76:3f:98:15:db:9d:44: 47:2f:29:29:b7:3e:44:12:da:1b:bc:0b:bc:9d:12: ee:e9:0c:c4:f3:40:d9:a2:03:67:ad:4c:4d:62:4b: 10:9d:d8:55:b7:9e:9e:2c:90:61:47:22:a8:cb:49: a4:3c:3e:93:5c:2f:b3:d1:d4:9a:0f:df:40:f0:25: 6b:68:cf:90:f2:c4:95:19:c3:59:f7:e2:24:56:5a: c7:9f:f8:d2:0c:7f:00:71:bb:10:a9:20:03:e1:1e: 8b:a9:0f:7d:c0:68:04:09:c4:4f:fb:bf:2a:f3:be: 16:80:8f:69:3b:55:38:5a:3d:e0:90:ea:b1:f9:26: b2:15:61:2b:59:e8:9d:62:73:23:f5:15:f9:15:c3: 1f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:1B:B1:B8:17:99:7F:5A:FB:C9:A8:52:F4:A5:5A:C2:5F:0B:8D:A3 X509v3 Authority Key Identifier: keyid:BB:E2:94:90:44:6D:68:70:76:5B:4E:61:D7:EB:9B:22:C6:00:46:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-KUkERtaHB2W05h1-ubIsYARjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D83/149747BE062A11EA8C9A7444C4F9AE02/u-KUkERtaHB2W05h1-ubIsYARjg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:39:cd:df:e6:86:b7:21:35:a3:5d:1a:ac:d5:81:23:5d:f7: 93:89:7c:cf:16:b7:bc:b7:a9:c1:26:d8:e5:18:5a:7f:fd:38: d7:11:0f:58:b5:60:e3:20:4a:45:c6:a4:d6:7b:2b:03:cf:17: 14:01:6e:a4:56:9e:6e:1b:81:8d:15:6c:04:f9:bf:82:84:0b: d0:4c:d3:a9:50:e0:04:02:73:aa:63:4f:6a:75:c9:cd:5f:6d: 0d:be:5b:73:bb:1d:27:08:20:7a:cf:15:19:d2:19:53:ec:d0: fd:b8:82:34:95:a1:ce:f5:a7:3c:0d:24:2b:40:ae:d7:b6:52: 03:30:79:57:df:f2:11:25:4e:ef:fa:d3:08:57:f9:d6:2d:f0: 08:f2:42:4f:d1:38:94:5d:a6:11:fb:d7:48:ae:3a:b2:5b:54: f0:85:c8:9b:6b:ec:5c:bb:3f:0f:2b:b3:89:e8:8d:d4:e7:e0: 24:f7:8f:58:ca:b1:2a:ee:6c:b8:d6:51:e5:7b:04:92:4a:26: 8b:8b:1a:9b:94:bc:85:a9:b7:f3:6a:f7:50:3d:82:08:b5:96: 25:c5:a7:ad:d0:c7:3a:17:6b:b7:c0:23:4f:91:b4:30:2d:78: a3:e6:f6:a2:9c:b7:b4:98:f2:6f:b4:30:f4:3a:4a:6e:3c:c1: 46:25:ac:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEODMxMTAvBgNVBAUTKEJCRTI5NDkwNDQ2RDY4NzA3NjVCNEU2MUQ3RUI5QjIy QzYwMDQ2MzgwHhcNMjQwNTE4MTkyNTQ3WhcNMjQwNTI1MTkyNTQ3WjAYMRYwFAYD VQQDEw02NjQ5MDBiYy1lNTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5m5EFca6U92UR2hZ2p6R/3LYPtv5x3aKlx2rjTU/2fmzuZodlhr1EdHXAVq 8C+J4s7TTaQ3Wb/17SNdx+fNoeXSWKO/+Zt7aM1u6dWcNqDMSJTJ40ZcXPt7Y6ED wULH8CYlpek7MhN0Qlv6C7vyR3Y/mBXbnURHLykptz5EEtobvAu8nRLu6QzE80DZ ogNnrUxNYksQndhVt56eLJBhRyKoy0mkPD6TXC+z0dSaD99A8CVraM+Q8sSVGcNZ 9+IkVlrHn/jSDH8AcbsQqSAD4R6LqQ99wGgECcRP+78q874WgI9pO1U4Wj3gkOqx +SayFWErWeidYnMj9RX5FcMf6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsbsbgX mX9a+8moUvSlWsJfC42jMB8GA1UdIwQYMBaAFLvilJBEbWhwdltOYdfrmyLGAEY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ4My8xNDk3NDdCRTA2 MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFIQjJXMDVoMS11YklzWUFS amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtS1VrRVJ0YUhCMlcwNWgxLXViSXNZQVJqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ4My8xNDk3NDdCRTA2MkExMUVBOEM5QTc0NDRDNEY5QUUwMi91LUtVa0VSdGFI QjJXMDVoMS11YklzWUFSamcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHOc3f5oa3ITWjXRqs1YEjXfeTiXzPFre8t6nBJtjlGFp//TjXEQ9Y tWDjIEpFxqTWeysDzxcUAW6kVp5uG4GNFWwE+b+ChAvQTNOpUOAEAnOqY09qdcnN X20Nvltzux0nCCB6zxUZ0hlT7ND9uII0laHO9ac8DSQrQK7XtlIDMHlX3/IRJU7v +tMIV/nWLfAI8kJP0TiUXaYR+9dIrjqyW1Twhciba+xcuz8PK7OJ6I3U5+Ak949Y yrEq7my41lHlewSSSiaLixqblLyFqbfzavdQPYIItZYlxaet0Mc6F2u3wCNPkbQw LXij5vainLe0mPJvtDD0OkpuPMFGJaz6 -----END CERTIFICATE-----Generated at Sat May 18 20:16:00 2024 by rpki-client on console-ams.rpki-client.org