$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft File: uo1v5dgowFOZs-GqZY_AWIYf3OA.mft (raw, json) Hash identifier: U4v0T2TLyE92cT896L14u+hVyxbBOFzVHgOuckbhJ4k= Subject key identifier: 4C:C2:0C:7B:FB:6D:0A:02:41:82:A6:9D:5F:7C:7A:DE:AD:CB:78:93 Authority key identifier: BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0 Certificate issuer: /CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0 Certificate serial: 0E6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft Manifest number: 0E63 Signing time: Sat 18 May 2024 18:24:28 +0000 Manifest this update: Sat 18 May 2024 18:24:28 +0000 Manifest next update: Sat 25 May 2024 18:24:28 +0000 Files and hashes: 1: uo1v5dgowFOZs-GqZY_AWIYf3OA.crl (hash: oGrRLI7rXeI7cmdmuvK8fvUmg4eQak5ZubL2MnfchQ8=) 2: 7EA856A6C3F511EEB2610F2FC4F9AE02.roa (hash: 3yC7OemuZRPNNEdNgmdDR23BQyMkj5NMRORnrcAntP4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.crl rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF02/serialNumber=BA8D6FE5D828C05399B3E1AA658FC058861FDCE0 Validity Not Before: May 18 18:24:28 2024 GMT Not After : May 25 18:24:28 2024 GMT Subject: CN=6648f25c-4ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fb:fd:0f:cf:93:26:5b:f6:2b:94:3f:dc:e4: b2:4b:b5:b1:1a:3c:59:b7:36:f6:e3:70:8d:cc:d9: d8:bc:c1:da:44:58:f9:93:97:ac:aa:90:7b:c0:74: c3:3e:1c:d8:9c:32:32:16:6a:51:a6:ec:9c:58:3b: 23:67:f9:4b:3c:8c:94:d2:96:c7:22:b5:a6:cf:a1: 84:b6:5b:5b:a9:10:bf:52:32:0a:21:46:95:bd:c2: 28:b3:59:03:90:87:df:4c:2f:86:7e:18:e2:29:e9: ad:bd:39:e2:df:30:45:54:03:64:31:da:c5:5e:32: c2:e2:4e:ac:97:4d:54:7b:8a:3a:a3:bb:29:f3:c5: ec:53:5f:1d:86:6b:de:39:28:eb:31:9a:07:96:2f: f0:39:c8:5d:58:20:37:8c:96:d1:53:e4:b2:ec:61: 08:d2:df:01:98:b7:56:08:f4:bd:2d:eb:d6:3f:6b: 14:22:ee:18:d8:86:89:ca:14:16:78:8d:d5:13:fb: a6:ca:23:76:2a:2f:af:b5:ae:81:fe:33:2e:67:28: 40:42:a6:d8:37:06:3a:6a:b1:8a:3c:07:7a:22:ef: 57:32:cd:c2:c1:63:a8:02:d1:25:39:d3:7c:fb:2e: 8d:9f:47:63:47:4b:a5:22:0b:07:75:21:40:9c:ff: df:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C2:0C:7B:FB:6D:0A:02:41:82:A6:9D:5F:7C:7A:DE:AD:CB:78:93 X509v3 Authority Key Identifier: keyid:BA:8D:6F:E5:D8:28:C0:53:99:B3:E1:AA:65:8F:C0:58:86:1F:DC:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo1v5dgowFOZs-GqZY_AWIYf3OA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF02/EACD4876764A11E98C87B582C4F9AE02/uo1v5dgowFOZs-GqZY_AWIYf3OA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:f8:2f:0d:b0:cd:1d:c9:90:99:c0:28:39:59:27:c9:6f:b4: 67:65:56:8b:38:a4:be:7f:6e:b6:79:72:20:be:f8:83:aa:56: c3:85:f0:04:45:1e:6b:b4:1b:71:a4:20:14:e0:69:61:ae:e5: 8b:ff:5b:2a:93:55:6c:5f:8b:85:7f:5f:30:d5:0d:5d:b9:80: 28:23:7e:3e:1f:de:37:c5:c8:f2:0b:24:86:86:fd:25:b5:da: e4:21:db:1d:4d:42:23:58:7c:44:8c:1f:d7:a2:8d:e4:34:03: e7:ef:18:bc:34:75:9d:bf:19:b4:e8:7d:c0:d8:3b:7c:dc:41: 63:53:73:5c:e9:82:b9:d9:71:8c:7e:13:14:aa:24:96:68:b7: 27:78:6c:83:64:5d:4c:a7:d7:c7:d1:79:59:d2:bb:97:66:f8: 4e:35:89:31:55:62:81:eb:97:23:31:f3:0a:fd:8d:39:bc:c6: 4d:5a:3f:ce:56:d6:4c:c6:83:8c:b8:93:74:12:43:f1:9c:a8: df:5c:6f:f3:86:eb:7a:36:ce:fc:bf:7f:c1:42:d4:a8:2e:f1: b0:6a:ed:2d:7d:12:88:fa:70:b3:50:18:07:ef:fc:c1:9a:d7: dd:68:ca:d7:e8:c6:e3:6c:73:87:9c:29:48:ed:49:32:fa:33: b9:9f:f9:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGMDIxMTAvBgNVBAUTKEJBOEQ2RkU1RDgyOEMwNTM5OUIzRTFBQTY1OEZDMDU4 ODYxRkRDRTAwHhcNMjQwNTE4MTgyNDI4WhcNMjQwNTI1MTgyNDI4WjAYMRYwFAYD VQQDEw02NjQ4ZjI1Yy00ZWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPv9D8+TJlv2K5Q/3OSyS7WxGjxZtzb243CNzNnYvMHaRFj5k5esqpB7wHTD PhzYnDIyFmpRpuycWDsjZ/lLPIyU0pbHIrWmz6GEtltbqRC/UjIKIUaVvcIos1kD kIffTC+GfhjiKemtvTni3zBFVANkMdrFXjLC4k6sl01Ue4o6o7sp88XsU18dhmve OSjrMZoHli/wOchdWCA3jJbRU+Sy7GEI0t8BmLdWCPS9LevWP2sUIu4Y2IaJyhQW eI3VE/umyiN2Ki+vta6B/jMuZyhAQqbYNwY6arGKPAd6Iu9XMs3CwWOoAtElOdN8 +y6Nn0djR0ulIgsHdSFAnP/fcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzCDHv7 bQoCQYKmnV98et6ty3iTMB8GA1UdIwQYMBaAFLqNb+XYKMBTmbPhqmWPwFiGH9zg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUYwMi9FQUNENDg3Njc2 NEExMUU5OEM4N0I1ODJDNEY5QUUwMi91bzF2NWRnb3dGT1pzLUdxWllfQVdJWWYz T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VvMXY1ZGdvd0ZPWnMtR3FaWV9BV0lZZjNPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUYwMi9FQUNENDg3Njc2NEExMUU5OEM4N0I1ODJDNEY5QUUwMi91bzF2NWRnb3dG T1pzLUdxWllfQVdJWWYzT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3+C8NsM0dyZCZwCg5WSfJb7RnZVaLOKS+f262eXIgvviDqlbDhfAE RR5rtBtxpCAU4GlhruWL/1sqk1VsX4uFf18w1Q1duYAoI34+H943xcjyCySGhv0l tdrkIdsdTUIjWHxEjB/Xoo3kNAPn7xi8NHWdvxm06H3A2Dt83EFjU3Nc6YK52XGM fhMUqiSWaLcneGyDZF1Mp9fH0XlZ0ruXZvhONYkxVWKB65cjMfMK/Y05vMZNWj/O VtZMxoOMuJN0EkPxnKjfXG/zhut6Ns78v3/BQtSoLvGwau0tfRKI+nCzUBgH7/zB mtfdaMrX6MbjbHOHnClI7Uky+jO5n/kJ -----END CERTIFICATE-----Generated at Sat May 18 19:15:25 2024 by rpki-client on console-ams.rpki-client.org