$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: KfzdwiO+oj0362EHqIqc4PadKC5I76HfQLd6QWsHYGc= Subject key identifier: 50:93:2E:8A:05:05:82:EF:A3:36:AD:CF:1F:79:DA:22:00:36:C8:77 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 33D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 33CE Signing time: Sat 18 May 2024 14:51:55 +0000 Manifest this update: Sat 18 May 2024 14:51:55 +0000 Manifest next update: Sat 25 May 2024 14:51:55 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: UIzB/G6Ivvvdz1k0NGHN5gpA8nRakm4+Q7mLyu9r5mU=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: p/5enCKd4IdLa2Qt15GBcmeM1LZDnnCBtF/+AbP/bxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13270 (0x33d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: May 18 14:51:55 2024 GMT Not After : May 25 14:51:55 2024 GMT Subject: CN=6648c08b-5dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:06:de:13:27:c9:a3:a6:21:6d:25:ff:7c:c6: 0b:ec:8d:ad:81:3a:85:f8:36:31:c1:a4:b7:60:3a: 15:90:b2:03:09:c0:b9:1d:e4:eb:23:29:10:2a:2d: 7a:29:5f:e3:7a:b7:bf:a0:7f:02:17:e7:23:27:a9: 80:30:3b:99:c7:e3:9f:89:36:b4:25:45:5b:9e:7f: 5a:48:03:33:e1:c3:a5:57:04:16:08:52:26:5f:1b: 64:40:83:28:27:be:29:05:99:40:11:d2:8d:66:30: f6:47:9e:c6:c9:f9:0a:8a:b4:f8:39:8d:a7:7c:68: b2:d9:40:53:cb:58:eb:e4:bc:ab:9b:a0:8b:77:ef: 84:80:ee:94:c5:f5:2d:49:17:18:eb:fb:9b:93:8a: a8:02:29:35:69:1a:d3:1f:99:8b:3b:53:3e:7b:f0: 5d:3a:3d:67:d3:c5:47:db:c0:71:af:23:98:0c:cd: bb:4e:3a:be:bb:64:5c:fb:d7:ce:16:f2:bb:16:73: 79:c3:f0:53:4f:7c:1b:f2:50:cc:cb:c5:ca:65:b9: fd:a6:eb:6b:f3:49:a1:52:20:00:f4:2a:8d:d5:02: dc:75:b0:3f:90:88:3b:ad:4c:c7:a4:a4:e5:03:b0: 60:e8:cb:b2:e5:ba:72:94:ce:72:a5:1a:60:b9:a9: 7d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:93:2E:8A:05:05:82:EF:A3:36:AD:CF:1F:79:DA:22:00:36:C8:77 X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:4c:75:55:4f:0c:9d:ee:4d:11:0a:72:a5:91:65:85:7b:61: 0d:d2:9d:ac:ef:0b:aa:51:b5:f5:6a:c7:50:db:7f:ed:0e:cc: a8:11:1e:d8:e8:18:80:9c:3b:2f:4a:3f:1e:fe:55:56:95:9b: 37:4f:e9:8d:25:7f:39:81:49:c0:3d:e9:f2:d6:c5:86:f6:f5: 41:c3:d8:8b:c4:89:1b:9e:37:1f:2d:ad:48:8e:61:9e:c0:44: 65:b5:08:6d:0d:a0:d6:af:85:16:c2:d7:a8:5d:0f:e5:a4:5c: b7:d1:91:6b:26:67:ed:5f:f9:d0:6a:67:30:a6:c8:3a:81:50: eb:e0:7b:4f:9d:c2:45:e0:1f:ea:e9:a9:b3:49:27:e4:2d:b6: 57:54:e1:17:6f:80:50:49:b5:21:d9:bf:ae:43:2d:59:7e:f5: 9f:e1:64:e8:23:2b:df:20:28:4b:46:6e:9f:03:8d:be:36:ba: 26:81:91:03:a6:8f:47:81:53:b5:40:d9:40:75:6d:89:cc:ee: 9e:e1:28:57:f6:40:50:dd:b9:be:d5:bf:21:bc:9b:e2:c6:2c: 5a:5a:cd:18:16:e9:6a:52:f0:03:da:f3:7f:ba:eb:64:55:7e: 11:06:42:c6:94:21:91:e1:e6:49:37:61:62:b7:54:2a:1d:d8: 63:8f:f3:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjQwNTE4MTQ1MTU1WhcNMjQwNTI1MTQ1MTU1WjAYMRYwFAYD VQQDEw02NjQ4YzA4Yi01ZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwbeEyfJo6YhbSX/fMYL7I2tgTqF+DYxwaS3YDoVkLIDCcC5HeTrIykQKi16 KV/jere/oH8CF+cjJ6mAMDuZx+OfiTa0JUVbnn9aSAMz4cOlVwQWCFImXxtkQIMo J74pBZlAEdKNZjD2R57GyfkKirT4OY2nfGiy2UBTy1jr5Lyrm6CLd++EgO6UxfUt SRcY6/ubk4qoAik1aRrTH5mLO1M+e/BdOj1n08VH28BxryOYDM27Tjq+u2Rc+9fO FvK7FnN5w/BTT3wb8lDMy8XKZbn9putr80mhUiAA9CqN1QLcdbA/kIg7rUzHpKTl A7Bg6Muy5bpylM5ypRpgual9iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFCTLooF BYLvozatzx952iIANsh3MB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPTHVVTwyd7k0RCnKlkWWFe2EN0p2s7wuqUbX1asdQ23/tDsyoER7Y 6BiAnDsvSj8e/lVWlZs3T+mNJX85gUnAPeny1sWG9vVBw9iLxIkbnjcfLa1IjmGe wERltQhtDaDWr4UWwteoXQ/lpFy30ZFrJmftX/nQamcwpsg6gVDr4HtPncJF4B/q 6amzSSfkLbZXVOEXb4BQSbUh2b+uQy1ZfvWf4WToIyvfIChLRm6fA42+NromgZED po9HgVO1QNlAdW2JzO6e4ShX9kBQ3bm+1b8hvJvixixaWs0YFulqUvAD2vN/uutk VX4RBkLGlCGR4eZJN2Fit1QqHdhjj/PP -----END CERTIFICATE-----Generated at Sat May 18 15:26:05 2024 by rpki-client on console-fra.rpki-client.org