$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: ZUdkaV1cu3q9BO7MkvUWGewr+cdZ1al1kRJ+GSvF/Ss= Subject key identifier: FB:3A:17:10:58:8C:32:30:5A:DB:9A:C9:10:6F:95:E3:C1:3B:04:AA Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1D3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1D2E Signing time: Sat 18 May 2024 16:30:38 +0000 Manifest this update: Sat 18 May 2024 16:30:37 +0000 Manifest next update: Sat 25 May 2024 16:30:37 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: Q8B4Ytn6wiR6AVKqvoTy9USQ32cgK2K/9d1ohr8laBk=) 2: EF31EA383CCB11EEB6AD691FC4F9AE02.roa (hash: 0TH3pFFeu/tczdDzP7o00s82+D28sOdbS209Bz1AYNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7485 (0x1d3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: May 18 16:30:37 2024 GMT Not After : May 25 16:30:37 2024 GMT Subject: CN=6648d7ad-4336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9d:0a:21:d7:d2:05:85:45:f4:92:54:52:f7: ec:7b:b7:b7:76:ca:11:2a:89:11:88:88:be:c3:8a: 7b:e4:75:ee:d1:d8:2a:36:c4:87:18:ad:94:8e:16: 71:76:8b:20:e5:92:b7:22:6b:c5:cb:34:9a:73:a4: 80:26:45:7f:8c:be:42:97:4a:9b:3a:e5:f9:36:17: 3f:df:06:19:14:98:3f:f1:07:e7:fe:13:33:e6:fd: 28:50:71:8f:91:5a:f5:07:b3:09:99:7b:b8:c1:dc: 10:05:fe:fa:bb:29:e6:8b:4e:2f:c4:d9:3a:3b:99: a5:d4:a9:8f:69:96:63:59:4f:b0:3e:9e:32:86:af: a9:2f:63:32:74:75:ec:9a:a3:45:d8:1d:4c:d1:41: ef:29:d1:89:5e:52:a4:58:26:ef:44:ae:f3:84:43: 51:0f:09:9a:8a:75:a7:a4:49:64:6e:51:26:43:0d: 12:73:be:c4:b4:50:8b:13:de:f7:00:28:53:68:c5: 9e:e6:31:4a:5a:59:e2:cb:f1:d0:2d:dd:2d:0a:94: f3:22:32:0f:d4:a7:9e:ff:a8:27:ca:31:76:86:bc: a4:df:e7:a1:e3:99:bc:30:55:f0:cd:4e:0b:c8:66: 97:ba:bc:5a:b4:1e:03:37:49:41:32:23:b8:5e:f3: 2e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3A:17:10:58:8C:32:30:5A:DB:9A:C9:10:6F:95:E3:C1:3B:04:AA X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:bc:b6:f5:68:1b:50:d6:02:af:ec:b4:82:25:b7:ec:cc:94: 5b:9a:c1:49:dc:4c:99:85:97:e8:8e:78:1a:9a:58:23:55:12: 5b:f7:73:e4:4a:51:89:e8:a8:67:ac:06:5c:ed:38:34:40:6d: d7:31:b2:51:0f:aa:fd:87:12:9f:98:6d:b9:d4:09:d7:1c:54: d6:b6:6c:0c:94:14:b0:c9:92:fc:af:c6:a5:a5:43:c1:d7:b0: 43:8e:2c:04:9c:db:a3:33:03:f6:a8:bd:47:74:22:c6:e8:b3: ba:89:e5:bf:b0:d3:06:ff:fc:00:46:10:45:7b:ec:8d:63:69: 07:6a:bd:7c:03:94:4b:63:a1:13:fc:04:9c:89:da:9d:aa:3c: c9:06:43:e8:77:62:48:0d:b8:cc:2d:6d:0c:3e:28:8c:fb:d8: d2:d4:23:01:5f:81:38:b3:88:3f:61:33:d2:84:5f:c3:1c:78: 88:ff:64:26:8f:b5:db:43:37:86:69:95:2c:9e:6e:8f:cc:93: f9:8e:05:7f:66:63:44:26:ea:26:e3:88:44:54:64:96:ab:9b: 92:b8:98:6b:e0:36:03:04:ad:68:3d:e2:54:76:d7:bc:ad:b8: 3e:cd:03:22:33:1a:6a:c2:96:ca:ba:5a:8a:06:85:2c:6b:59: 11:23:7e:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjQwNTE4MTYzMDM3WhcNMjQwNTI1MTYzMDM3WjAYMRYwFAYD VQQDEw02NjQ4ZDdhZC00MzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZ0KIdfSBYVF9JJUUvfse7e3dsoRKokRiIi+w4p75HXu0dgqNsSHGK2UjhZx dosg5ZK3ImvFyzSac6SAJkV/jL5Cl0qbOuX5Nhc/3wYZFJg/8Qfn/hMz5v0oUHGP kVr1B7MJmXu4wdwQBf76uynmi04vxNk6O5ml1KmPaZZjWU+wPp4yhq+pL2MydHXs mqNF2B1M0UHvKdGJXlKkWCbvRK7zhENRDwmainWnpElkblEmQw0Sc77EtFCLE973 AChTaMWe5jFKWlniy/HQLd0tCpTzIjIP1Kee/6gnyjF2hryk3+eh45m8MFXwzU4L yGaXurxatB4DN0lBMiO4XvMuBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs6FxBY jDIwWtuayRBvlePBOwSqMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVvLb1aBtQ1gKv7LSCJbfszJRbmsFJ3EyZhZfojngamlgjVRJb93Pk SlGJ6KhnrAZc7Tg0QG3XMbJRD6r9hxKfmG251AnXHFTWtmwMlBSwyZL8r8alpUPB 17BDjiwEnNujMwP2qL1HdCLG6LO6ieW/sNMG//wARhBFe+yNY2kHar18A5RLY6ET /AScidqdqjzJBkPod2JIDbjMLW0MPiiM+9jS1CMBX4E4s4g/YTPShF/DHHiI/2Qm j7XbQzeGaZUsnm6PzJP5jgV/ZmNEJuom44hEVGSWq5uSuJhr4DYDBK1oPeJUdte8 rbg+zQMiMxpqwpbKulqKBoUsa1kRI35T -----END CERTIFICATE-----Generated at Sat May 18 17:20:34 2024 by rpki-client on console-ams.rpki-client.org