$ rpki-client -vvf rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft File: Ul6ia2phflqvwFQjzOWI3hnsWEc.mft (raw, json) Hash identifier: fm3wpz3g7VrD4mLMb2SIra8RX96eyFIbBFPxPGElvps= Subject key identifier: 71:81:B7:9D:D0:76:7D:E9:F9:2D:FF:03:F6:56:02:D1:AA:8D:C2:3D Authority key identifier: 52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 Certificate issuer: /CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft Manifest number: 0205 Signing time: Sun 19 May 2024 04:09:43 +0000 Manifest this update: Sun 19 May 2024 04:09:42 +0000 Manifest next update: Sun 26 May 2024 04:09:42 +0000 Files and hashes: 1: Ul6ia2phflqvwFQjzOWI3hnsWEc.crl (hash: 5lniezZtNT65gjGWrzeXabtbtfysK1vc553uDAsTvVM=) 2: 412DD396EE3B11EC8EE6DA63C4F9AE02.roa (hash: VwCar82xJqfHI1mtsOU8OhoSYrfMDDICzL6WEhBr6u8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975F1/serialNumber=525EA26B6A617E5AAFC05423CCE588DE19EC5847 Validity Not Before: May 19 04:09:42 2024 GMT Not After : May 26 04:09:42 2024 GMT Subject: CN=66497b87-3f1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:82:99:fe:8c:9c:f8:c2:75:e3:da:3a:08:ff: 04:06:d7:b0:8f:fd:20:c7:7f:ad:08:d5:be:41:55: 75:fe:35:a8:09:79:b9:35:2e:fe:a1:cd:70:ee:f1: 47:8b:21:a1:4a:79:64:5c:f6:5f:f4:c5:52:b7:cd: ea:7b:91:f3:8b:e3:70:91:90:69:c2:b3:be:b3:db: 9c:b0:df:99:67:2c:f0:99:fd:1c:1e:41:73:e7:22: 35:19:4b:9b:c6:45:4e:8c:76:fd:4d:14:84:04:81: ee:2d:38:ea:c1:2b:d5:4a:2d:49:bf:89:79:e3:4f: 09:7d:ec:c9:36:75:84:06:fb:41:dd:96:8f:da:2a: 72:dd:a2:0e:93:9f:59:a9:6f:4a:35:2d:2d:e1:64: 59:91:f8:89:0d:88:7c:f6:5d:46:b9:57:b4:b7:3f: 46:ee:76:e9:75:39:70:8f:bf:40:7e:a1:e7:f8:8d: c9:ee:a8:26:9d:5d:14:75:78:13:69:95:8a:72:d8: 37:92:74:8e:07:bf:37:4f:5b:f0:21:9c:3f:a9:0a: 13:0a:cb:2a:1a:34:ab:11:84:09:82:8d:d8:9a:a8: 06:68:b8:db:6e:e5:91:cf:34:ee:42:dd:83:e0:96: 2d:b0:e7:15:23:98:5d:a9:5d:89:b4:bb:7b:26:dd: 27:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:81:B7:9D:D0:76:7D:E9:F9:2D:FF:03:F6:56:02:D1:AA:8D:C2:3D X509v3 Authority Key Identifier: keyid:52:5E:A2:6B:6A:61:7E:5A:AF:C0:54:23:CC:E5:88:DE:19:EC:58:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ul6ia2phflqvwFQjzOWI3hnsWEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975F1/CB66330AEE2C11EC956B2C4FC4F9AE02/Ul6ia2phflqvwFQjzOWI3hnsWEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:37:2f:ad:1d:64:7a:82:44:90:1f:c4:e4:9d:ce:6e:96:11: 43:b3:79:18:45:bd:4a:f6:63:b9:72:92:63:1e:5f:ad:0d:2b: 94:9f:48:76:dd:4d:87:63:d8:4d:3b:3a:ce:07:80:2a:4b:d4: f6:41:b6:91:25:c1:85:4c:09:fc:c0:c3:2c:04:44:00:6c:8a: 6b:5e:85:75:e4:d3:63:99:5d:c6:a2:af:10:fc:27:97:53:f3: 10:54:2a:1f:81:c8:bf:7c:8a:5a:2d:3c:ea:20:9c:11:ec:98: 23:a1:70:51:4a:8b:74:fb:e9:14:3a:49:18:3e:76:0d:e7:d9: 3e:74:01:9a:66:d4:a5:22:82:2d:2e:a1:d3:1f:3a:5c:99:19: 0e:c0:bd:08:e4:79:85:b2:57:62:9a:a4:23:df:4e:da:9f:b7: 8e:3d:ae:47:b7:66:16:f0:c6:b7:07:6f:1f:e6:0c:ec:8e:e2: 76:ca:2b:34:f7:b7:32:47:b7:5c:18:9d:fd:08:eb:3c:22:88: c1:9e:57:fc:40:62:0a:43:5e:e1:9c:dc:e5:a6:9b:e9:10:1b: 65:0b:fa:7d:25:6b:16:0d:dc:9e:71:d2:d3:c0:56:9f:2b:68: 0f:ad:dc:dd:a6:0a:ed:d6:cc:06:7b:19:f8:c3:00:2f:ac:5f: a9:c5:7d:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1RjExMTAvBgNVBAUTKDUyNUVBMjZCNkE2MTdFNUFBRkMwNTQyM0NDRTU4OERF MTlFQzU4NDcwHhcNMjQwNTE5MDQwOTQyWhcNMjQwNTI2MDQwOTQyWjAYMRYwFAYD VQQDEw02NjQ5N2I4Ny0zZjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYKZ/oyc+MJ149o6CP8EBtewj/0gx3+tCNW+QVV1/jWoCXm5NS7+oc1w7vFH iyGhSnlkXPZf9MVSt83qe5Hzi+NwkZBpwrO+s9ucsN+ZZyzwmf0cHkFz5yI1GUub xkVOjHb9TRSEBIHuLTjqwSvVSi1Jv4l5408JfezJNnWEBvtB3ZaP2ipy3aIOk59Z qW9KNS0t4WRZkfiJDYh89l1GuVe0tz9G7nbpdTlwj79AfqHn+I3J7qgmnV0UdXgT aZWKctg3knSOB783T1vwIZw/qQoTCssqGjSrEYQJgo3YmqgGaLjbbuWRzzTuQt2D 4JYtsOcVI5hdqV2JtLt7Jt0nIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGBt53Q dn3p+S3/A/ZWAtGqjcI9MB8GA1UdIwQYMBaAFFJeomtqYX5ar8BUI8zliN4Z7FhH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVGMS9DQjY2MzMwQUVF MkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZscXZ3RlFqek9XSTNobnNX RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsNmlhMnBoZmxxdndGUWp6T1dJM2huc1dFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVGMS9DQjY2MzMwQUVFMkMxMUVDOTU2QjJDNEZDNEY5QUUwMi9VbDZpYTJwaGZs cXZ3RlFqek9XSTNobnNXRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAANy+tHWR6gkSQH8Tknc5ulhFDs3kYRb1K9mO5cpJjHl+tDSuUn0h2 3U2HY9hNOzrOB4AqS9T2QbaRJcGFTAn8wMMsBEQAbIprXoV15NNjmV3Goq8Q/CeX U/MQVCofgci/fIpaLTzqIJwR7JgjoXBRSot0++kUOkkYPnYN59k+dAGaZtSlIoIt LqHTHzpcmRkOwL0I5HmFsldimqQj307an7eOPa5Ht2YW8Ma3B28f5gzsjuJ2yis0 97cyR7dcGJ39COs8IojBnlf8QGIKQ17hnNzlppvpEBtlC/p9JWsWDdyecdLTwFaf K2gPrdzdpgrt1swGexn4wwAvrF+pxX2C -----END CERTIFICATE-----Generated at Sun May 19 05:08:05 2024 by rpki-client on console-ams.rpki-client.org