$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: 85K3dVGOULdegH9wzSNTGUJAdLc+0QkD0u3C0IeGskw= Subject key identifier: 34:B0:26:54:CF:8F:09:C5:42:68:B6:45:DD:B6:20:11:A7:3A:6F:64 Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 083B Signing time: Sat 18 May 2024 21:51:26 +0000 Manifest this update: Sat 18 May 2024 21:51:26 +0000 Manifest next update: Sat 25 May 2024 21:51:26 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: mQtQAZPmnA9PJxX0vP6fVqHGpwgQtw2w2U+WU0wr8+U=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3T+hS156WeoOexddqYS/Epx6TiPWIS8fDiY/9pM3Sc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: May 18 21:51:26 2024 GMT Not After : May 25 21:51:26 2024 GMT Subject: CN=664922de-40a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a9:78:17:ab:3e:45:d3:3f:ee:b9:3b:3e:7e: 5e:f1:46:18:d5:db:0f:08:6d:3d:94:0d:78:71:de: 4c:52:6e:96:0e:71:a8:64:3e:84:b6:6d:f1:6d:1b: 18:f6:5b:df:07:f8:99:05:05:98:17:b0:fd:27:29: 85:dd:31:44:89:22:07:dd:cb:0a:b4:c2:01:15:40: a4:bb:13:b8:e2:86:ba:9b:29:6b:f2:32:d1:28:b7: ce:ef:1e:09:f5:c0:2e:8c:1d:73:f3:f1:a2:9d:00: 6e:75:ed:99:b6:68:35:c4:1e:b3:65:7d:c1:51:70: 34:20:57:34:6e:af:7f:50:50:f0:ee:06:7e:69:64: ab:27:70:7f:79:eb:34:e3:ba:b4:ab:e0:b7:17:c8: cf:cb:01:b6:df:49:47:21:b0:60:34:28:54:cb:9f: 08:f1:75:36:c6:2a:47:0a:0a:f3:5a:0a:6a:2c:38: 2a:ac:c8:53:a7:2e:58:8c:84:bf:92:65:64:f7:77: 50:7b:a8:56:9d:92:59:a5:78:4c:fd:16:0f:ce:49: 1b:53:02:18:17:01:98:93:10:89:13:97:be:23:d5: 3b:fd:23:86:70:78:d2:39:d2:e2:f3:b8:bf:41:05: c9:61:41:9b:4b:3a:73:11:cc:58:47:91:c1:c1:b0: 20:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B0:26:54:CF:8F:09:C5:42:68:B6:45:DD:B6:20:11:A7:3A:6F:64 X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b9:f9:2e:58:c7:46:d5:a4:07:2e:bc:ce:bb:b6:ed:20:9f: fa:45:c3:31:74:d4:29:dd:e4:d2:49:65:f9:eb:80:88:64:6f: dd:0a:21:e0:bb:e3:99:cf:15:bd:89:9a:24:37:2c:0a:93:33: aa:46:2d:92:e9:81:22:15:58:00:59:75:37:5e:cd:e5:41:ac: 17:6d:80:31:16:99:c7:41:06:25:6f:f5:98:6d:a4:6c:7f:1f: 7b:5e:7b:96:1b:ff:4d:25:80:1c:35:13:83:84:96:4d:25:ab: 25:99:84:d1:36:73:e1:4c:d5:d3:a1:07:82:07:ef:63:8c:e3: 10:2d:10:03:7e:83:2b:85:25:db:0b:ae:64:69:fc:4b:94:ba: 1d:e8:7b:95:a7:a4:26:09:12:bd:5b:a5:f0:00:07:f6:ba:1f: de:a4:eb:00:1e:5b:ea:8a:56:0d:42:ce:52:6c:46:50:9a:85: 89:f0:6b:31:3f:7f:9b:e3:70:59:1f:74:f9:b9:bd:7b:68:81: 6d:8d:85:de:b0:ee:c0:4d:53:5b:ec:73:e7:c5:2b:bb:8d:98: fa:ab:6d:ca:ab:16:bb:43:28:56:b0:a4:22:93:37:46:a4:f3: d4:43:ca:53:cc:76:64:06:cf:48:64:55:da:d4:1e:10:cd:fe: 92:dd:43:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjQwNTE4MjE1MTI2WhcNMjQwNTI1MjE1MTI2WjAYMRYwFAYD VQQDEw02NjQ5MjJkZS00MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKl4F6s+RdM/7rk7Pn5e8UYY1dsPCG09lA14cd5MUm6WDnGoZD6Etm3xbRsY 9lvfB/iZBQWYF7D9JymF3TFEiSIH3csKtMIBFUCkuxO44oa6mylr8jLRKLfO7x4J 9cAujB1z8/GinQBude2Ztmg1xB6zZX3BUXA0IFc0bq9/UFDw7gZ+aWSrJ3B/ees0 47q0q+C3F8jPywG230lHIbBgNChUy58I8XU2xipHCgrzWgpqLDgqrMhTpy5YjIS/ kmVk93dQe6hWnZJZpXhM/RYPzkkbUwIYFwGYkxCJE5e+I9U7/SOGcHjSOdLi87i/ QQXJYUGbSzpzEcxYR5HBwbAgcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSwJlTP jwnFQmi2Rd22IBGnOm9kMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrufkuWMdG1aQHLrzOu7btIJ/6RcMxdNQp3eTSSWX564CIZG/dCiHg u+OZzxW9iZokNywKkzOqRi2S6YEiFVgAWXU3Xs3lQawXbYAxFpnHQQYlb/WYbaRs fx97XnuWG/9NJYAcNRODhJZNJaslmYTRNnPhTNXToQeCB+9jjOMQLRADfoMrhSXb C65kafxLlLod6HuVp6QmCRK9W6XwAAf2uh/epOsAHlvqilYNQs5SbEZQmoWJ8Gsx P3+b43BZH3T5ub17aIFtjYXesO7ATVNb7HPnxSu7jZj6q23Kqxa7QyhWsKQikzdG pPPUQ8pTzHZkBs9IZFXa1B4Qzf6S3UM9 -----END CERTIFICATE-----Generated at Sat May 18 22:27:56 2024 by rpki-client on console-ams.rpki-client.org