$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: EgQVRPR/PvV98D7SdkG31hnii2hP3O1SxAiOpugUlxc= Subject key identifier: F9:00:49:0C:B8:EE:02:C7:A2:FA:5A:53:F7:1E:DF:A7:4E:CD:78:95 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 034D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 034A Signing time: Sun 19 May 2024 02:54:55 +0000 Manifest this update: Sun 19 May 2024 02:54:54 +0000 Manifest next update: Sun 26 May 2024 02:54:54 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: Kqg1IrzsjJkeMyNxneTrfbpJgchZV6pWREIfyZHjcr0=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: zQQcO9Z5HxKCWBOp1uM6W0nUAka43I9R2WBzNur81R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 845 (0x34d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: May 19 02:54:54 2024 GMT Not After : May 26 02:54:54 2024 GMT Subject: CN=664969fe-6137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ee:97:d3:57:40:ba:35:2c:19:7d:e0:8a:1d: e8:6f:12:87:bc:3a:d3:9f:47:8e:a9:d6:8c:54:21: cd:fd:23:7e:19:64:f9:80:71:ac:af:b7:28:fc:ba: 29:63:d9:09:da:bf:f0:73:cf:2c:6b:38:55:8a:da: 2d:78:1b:ca:1a:b5:7d:c3:65:dd:d1:39:c5:ee:a5: 41:3c:e1:76:3e:7a:0f:05:f1:b2:eb:a3:25:db:88: 9c:16:2d:92:23:a2:9d:92:b7:67:3c:49:6d:37:f2: 59:01:00:b8:6c:a5:71:1e:b2:77:a0:e9:4b:42:46: 9b:c7:26:9a:dd:78:fa:9c:f8:c9:c7:19:bf:a6:da: 3f:ea:a7:46:07:12:1d:6f:ae:89:51:ae:1c:f0:db: fb:38:cc:2d:8d:34:d6:e6:da:61:70:64:b7:c5:ea: 26:bd:36:f5:2c:79:c4:c3:b9:f0:d2:9f:25:85:e1: 04:c1:03:b2:cd:71:d9:88:ee:ef:90:a0:06:99:53: f8:0c:f2:a7:5d:9f:7d:30:1e:bb:a1:ea:da:ed:15: af:c8:3c:b4:f4:c8:18:12:4b:6e:23:30:73:2d:5e: 5c:f4:dd:c5:2c:51:01:05:4b:8f:bc:6d:66:1f:fe: 57:22:86:7a:8e:0f:24:43:ae:bf:5c:70:d2:c2:cc: 98:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:00:49:0C:B8:EE:02:C7:A2:FA:5A:53:F7:1E:DF:A7:4E:CD:78:95 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:37:8e:2f:bd:90:ba:3b:40:42:31:20:63:75:b8:47:8c:6d: da:d4:35:c9:41:4f:ac:ad:d8:1c:58:a4:22:2e:f3:45:0d:98: 61:f5:f9:f4:14:95:f3:4c:58:1e:a5:f8:f8:2c:0b:a9:e0:2d: e2:61:72:b6:d7:2b:0b:47:19:75:50:02:c5:3b:8a:21:de:6f: 08:7d:c1:2a:21:48:cb:c0:a1:ca:63:ea:d4:47:f1:47:92:7f: f3:81:0b:0f:ed:cb:12:64:43:ff:d8:a1:1a:62:43:6c:75:de: 0b:f5:30:59:77:8c:67:59:d4:d2:23:75:6d:8a:3d:f3:ed:53: 58:2d:b4:2f:64:a8:e1:42:3a:45:07:71:51:7e:fc:20:22:14: 34:31:4c:d6:98:c3:a8:6f:b3:3a:63:54:97:41:24:38:66:e3: e7:47:45:5d:2d:66:12:8e:7a:a3:67:8e:26:9e:15:74:35:d3: bd:2e:74:00:0f:a2:44:dc:76:c8:14:61:c9:d5:05:ad:87:5e: b2:b8:5c:f1:72:78:fb:ba:50:16:4a:94:86:a2:5e:3b:1f:85: 91:db:f3:01:fc:ac:0f:6c:28:87:94:ce:0f:b8:33:24:04:fd: ad:44:95:25:41:a1:1b:d0:92:f7:be:fb:e1:df:af:dd:ab:d2: d2:e4:22:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjQwNTE5MDI1NDU0WhcNMjQwNTI2MDI1NDU0WjAYMRYwFAYD VQQDEw02NjQ5NjlmZS02MTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse6X01dAujUsGX3gih3obxKHvDrTn0eOqdaMVCHN/SN+GWT5gHGsr7co/Lop Y9kJ2r/wc88sazhVitoteBvKGrV9w2Xd0TnF7qVBPOF2PnoPBfGy66Ml24icFi2S I6KdkrdnPEltN/JZAQC4bKVxHrJ3oOlLQkabxyaa3Xj6nPjJxxm/pto/6qdGBxId b66JUa4c8Nv7OMwtjTTW5tphcGS3xeomvTb1LHnEw7nw0p8lheEEwQOyzXHZiO7v kKAGmVP4DPKnXZ99MB67oera7RWvyDy09MgYEktuIzBzLV5c9N3FLFEBBUuPvG1m H/5XIoZ6jg8kQ66/XHDSwsyYVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkASQy4 7gLHovpaU/ce36dOzXiVMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0N44vvZC6O0BCMSBjdbhHjG3a1DXJQU+srdgcWKQiLvNFDZhh9fn0 FJXzTFgepfj4LAup4C3iYXK21ysLRxl1UALFO4oh3m8IfcEqIUjLwKHKY+rUR/FH kn/zgQsP7csSZEP/2KEaYkNsdd4L9TBZd4xnWdTSI3Vtij3z7VNYLbQvZKjhQjpF B3FRfvwgIhQ0MUzWmMOob7M6Y1SXQSQ4ZuPnR0VdLWYSjnqjZ44mnhV0NdO9LnQA D6JE3HbIFGHJ1QWth16yuFzxcnj7ulAWSpSGol47H4WR2/MB/KwPbCiHlM4PuDMk BP2tRJUlQaEb0JL3vvvh36/dq9LS5CJf -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org