$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft File: uYUInIuVHhACl2u9XU0d0kGB8Z8.mft (raw, json) Hash identifier: wt3ELrojnBrLaFSQSeL/GLbJbwz35sqNi+luXbd83YM= Subject key identifier: 40:A6:5A:17:8A:A4:0F:E8:02:BF:A0:9E:8D:52:1E:43:B5:F0:58:3F Authority key identifier: B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F Certificate issuer: /CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft Manifest number: 0502 Signing time: Thu 23 May 2024 01:07:12 +0000 Manifest this update: Thu 23 May 2024 01:07:11 +0000 Manifest next update: Thu 30 May 2024 01:07:11 +0000 Files and hashes: 1: uYUInIuVHhACl2u9XU0d0kGB8Z8.crl (hash: XUeLfIr18OGLV5AXNUPCq6K4e/16ARh53rM/r69pM/U=) 2: 432BBA90C1F611EBAD8D7477C4F9AE02.roa (hash: TPYRpzvRiXNOyoidE5VgxmpZ6c8W65redo9B+5PkoyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA3C/serialNumber=B985089C8B951E1002976BBD5D4D1DD24181F19F Validity Not Before: May 23 01:07:11 2024 GMT Not After : May 30 01:07:11 2024 GMT Subject: CN=664e96c0-2c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d0:ac:d2:6c:b0:b0:a2:b4:57:9e:70:17:9d: 9d:9c:56:8f:49:f7:95:e6:cf:b7:03:ff:30:93:cb: 80:79:ff:f0:ff:9e:4d:bd:4d:b8:f8:12:bd:d5:63: 9a:f4:09:9b:4c:90:c6:9f:ca:35:dc:cf:9a:37:bb: 8d:21:18:33:36:4b:24:ee:24:b8:81:1e:70:91:a0: 23:aa:04:03:76:e8:ef:d9:c2:61:13:b1:5c:7b:e6: 1a:84:06:95:41:ee:dd:73:ad:db:f5:2d:4e:b5:90: e7:7e:91:bf:2c:bd:69:02:f1:4b:0f:3a:8f:e8:80: c7:91:7a:92:f3:c7:09:10:a3:20:32:77:55:b6:7c: 8b:fd:a4:6b:42:d4:fd:21:7f:67:f0:62:4b:11:dd: 0f:a4:46:4c:8f:84:8e:92:68:70:c2:c7:16:ac:31: 58:4e:d6:70:7a:2c:ee:5f:98:31:0c:d0:8e:c7:77: ea:30:ba:55:7f:33:7d:88:4e:4a:21:89:c6:4e:66: bf:39:63:37:05:b0:78:9e:47:b5:aa:eb:99:88:e6: 3e:e6:09:34:27:d7:c3:02:6a:90:f3:8c:2e:7e:2c: eb:4f:f4:04:71:ca:07:e8:de:85:c4:bd:b4:c9:44: 2d:e3:68:4a:fc:dc:15:a9:ae:0a:4e:52:d8:6d:92: d5:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A6:5A:17:8A:A4:0F:E8:02:BF:A0:9E:8D:52:1E:43:B5:F0:58:3F X509v3 Authority Key Identifier: keyid:B9:85:08:9C:8B:95:1E:10:02:97:6B:BD:5D:4D:1D:D2:41:81:F1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uYUInIuVHhACl2u9XU0d0kGB8Z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA3C/D83646FEC1F211EB98564174C4F9AE02/uYUInIuVHhACl2u9XU0d0kGB8Z8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:ad:4b:68:0b:c3:6f:5f:7d:ff:fc:bc:ec:5f:3f:aa:ef:66: 05:41:75:a8:af:50:c1:af:c9:4f:06:4e:8d:be:c3:e9:a1:92: b3:0e:42:db:ce:eb:25:c1:4e:5a:e8:5f:f7:b9:fb:90:ae:5d: 30:5d:1b:e2:84:71:11:83:57:23:2b:0b:d9:88:f2:04:65:e3: 61:69:49:77:3e:3a:81:ab:fb:d3:cd:cb:50:fa:a4:b9:0c:f6: ad:cc:5d:28:a7:a3:bb:43:f3:97:a8:0b:c6:45:33:60:a9:95: 98:a9:37:ed:f6:82:e9:45:1d:ea:31:2b:d3:2a:1a:90:f4:d0: 37:98:58:d8:db:4a:a3:bf:f4:e2:35:a5:62:c7:81:2d:92:83: f3:bf:db:67:78:65:1d:e4:85:96:f9:d1:26:d4:38:58:50:cc: 4d:b2:22:dd:39:2b:3c:71:54:30:b3:03:9d:e1:12:c3:b3:dc: a2:9e:ff:67:a4:76:8b:01:2e:18:cb:0b:1a:74:c2:bc:2c:a7: 8b:5e:da:f3:a0:99:57:92:f3:cc:bf:87:93:26:89:3e:1c:07: a2:27:35:76:2f:1d:0e:37:3b:bb:e1:c8:6f:30:d9:ef:00:8f: 8d:b8:80:47:be:86:83:59:35:ad:a5:62:5d:c9:87:67:61:9b: f9:b9:37:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBM0MxMTAvBgNVBAUTKEI5ODUwODlDOEI5NTFFMTAwMjk3NkJCRDVENEQxREQy NDE4MUYxOUYwHhcNMjQwNTIzMDEwNzExWhcNMjQwNTMwMDEwNzExWjAYMRYwFAYD VQQDEw02NjRlOTZjMC0yYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9Cs0mywsKK0V55wF52dnFaPSfeV5s+3A/8wk8uAef/w/55NvU24+BK91WOa 9AmbTJDGn8o13M+aN7uNIRgzNksk7iS4gR5wkaAjqgQDdujv2cJhE7Fce+YahAaV Qe7dc63b9S1OtZDnfpG/LL1pAvFLDzqP6IDHkXqS88cJEKMgMndVtnyL/aRrQtT9 IX9n8GJLEd0PpEZMj4SOkmhwwscWrDFYTtZweizuX5gxDNCOx3fqMLpVfzN9iE5K IYnGTma/OWM3BbB4nke1quuZiOY+5gk0J9fDAmqQ84wufizrT/QEccoH6N6FxL20 yUQt42hK/NwVqa4KTlLYbZLVIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECmWheK pA/oAr+gno1SHkO18Fg/MB8GA1UdIwQYMBaAFLmFCJyLlR4QApdrvV1NHdJBgfGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0EzQy9EODM2NDZGRUMx RjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1VkhoQUNsMnU5WFUwZDBrR0I4 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VZVUluSXVWSGhBQ2wydTlYVTBkMGtHQjhaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Q0EzQy9EODM2NDZGRUMxRjIxMUVCOTg1NjQxNzRDNEY5QUUwMi91WVVJbkl1Vkho QUNsMnU5WFUwZDBrR0I4WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYrUtoC8NvX33//LzsXz+q72YFQXWor1DBr8lPBk6NvsPpoZKzDkLb zuslwU5a6F/3ufuQrl0wXRvihHERg1cjKwvZiPIEZeNhaUl3PjqBq/vTzctQ+qS5 DPatzF0op6O7Q/OXqAvGRTNgqZWYqTft9oLpRR3qMSvTKhqQ9NA3mFjY20qjv/Ti NaVix4EtkoPzv9tneGUd5IWW+dEm1DhYUMxNsiLdOSs8cVQwswOd4RLDs9yinv9n pHaLAS4YywsadMK8LKeLXtrzoJlXkvPMv4eTJok+HAeiJzV2Lx0ONzu74chvMNnv AI+NuIBHvoaDWTWtpWJdyYdnYZv5uTcQ -----END CERTIFICATE-----Generated at Thu May 23 02:40:28 2024 by rpki-client on console-ams.rpki-client.org