$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft File: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft (raw, json) Hash identifier: A1nzWeIrN3rrIC29/dThE6aX6nQnd/lEL+J6SkQF5UM= Subject key identifier: 02:C0:E3:B8:DF:83:A0:80:22:49:3C:15:CD:A8:63:BC:05:44:35:0E Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3495 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft Manifest number: 3421 Signing time: Sat 18 May 2024 14:26:26 +0000 Manifest this update: Sat 18 May 2024 14:26:26 +0000 Manifest next update: Sat 25 May 2024 14:26:26 +0000 Files and hashes: 1: U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl (hash: cwQ6Ph6L8r1ZQOStgPUE3eteIoERCP1Gb02xmGRglLM=) 2: DF8602D05E5B11ED994E491CC4F9AE02.roa (hash: 2dhQ3K8MGaMwu0r8I8fDfZgoRVZ5dC9imcAxyj18rMs=) 3: D0886954188811EC8E86754FC4F9AE02.roa (hash: PAZN7QfWh8lW2XQ1TN9tRPtcIxPfRgm+e1flrycVW/k=) 4: 0A21D3F48F6311EAB24AC957C4F9AE02.roa (hash: ulNZzsr8Obiu0FGepKcpXxPZyAXhytUnlFRtdLzcd9M=) 5: AB9889725E5E11EDB5361D3BC4F9AE02.roa (hash: B0mnL4xV21BY4qVenKNo154kxzeqzv56GmOcRicqm8w=) 6: 99CF729E221011ED980A6F47C4F9AE02.roa (hash: mwjKtwtE+fNTfwQX3IX0Xz7Ix8UAV8DMDOMwmyykmYc=) 7: 491E49AECDCA11ED8F57D386C4F9AE02.roa (hash: HeHiKiU2am5mAD9ao3AQsTEkTqrsywdKgvFD/DrBQFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13461 (0x3495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: May 18 14:26:26 2024 GMT Not After : May 25 14:26:26 2024 GMT Subject: CN=6648ba92-d796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:26:d1:ef:9e:f0:43:f3:8b:3d:60:f2:f4:5a: 0e:63:a4:57:38:f6:20:f2:39:c9:14:5d:85:62:e0: 7d:b8:03:c5:96:8f:17:08:e2:75:8d:9c:61:54:26: 07:42:1a:5b:18:b2:e7:30:18:51:aa:64:64:35:c1: c1:ad:27:f6:67:59:69:b6:12:2e:72:85:7a:e2:ca: 16:19:a0:fa:fc:71:1c:26:6f:f3:32:24:c0:af:0c: 26:44:43:20:89:6b:8b:99:8a:66:4b:90:75:20:8a: cf:45:61:15:17:8f:fc:4b:4c:31:19:94:2c:8a:9e: b8:86:de:b7:39:3f:52:b6:3a:b6:c2:fb:1f:87:31: 45:8c:a6:f8:0a:88:d6:d2:0c:75:59:2c:dd:4c:0b: f1:fc:55:77:a3:d2:04:75:47:b1:ff:25:9d:be:99: 66:97:17:ab:51:dd:d5:f3:d2:ee:c9:25:5b:08:4b: d1:b4:f2:64:c5:f5:d7:19:bb:cc:aa:91:d8:e7:d4: 58:c0:3e:5d:e1:8d:c6:65:44:b9:58:a3:94:51:80: 07:16:72:26:41:21:ee:d9:12:4c:d5:ab:c8:bb:a8: a3:68:d9:18:0c:6d:cb:bc:90:50:bb:e8:cb:68:fd: 85:3e:88:63:43:42:e1:e0:0f:87:5b:57:59:e8:fa: 7b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C0:E3:B8:DF:83:A0:80:22:49:3C:15:CD:A8:63:BC:05:44:35:0E X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:91:5b:c7:cf:b4:57:60:d5:9b:8f:64:85:c0:a3:d6:85:ea: 24:03:31:ad:90:c5:50:df:06:38:f5:14:39:89:50:89:22:7e: a5:5a:c2:24:05:ae:3b:5b:33:fb:c1:2d:0f:54:04:24:06:f1: 42:b3:ea:e8:28:46:98:38:79:b5:05:d5:c3:39:a3:92:17:72: c4:f8:d9:9e:f7:ed:b9:e3:3d:d6:05:27:7a:87:3e:1d:e6:f7: f5:ce:19:39:1c:8b:2b:48:73:fb:74:62:df:d4:73:be:83:db: 77:34:a3:54:bb:6a:d6:d2:99:38:cc:99:16:a9:4d:c8:00:d9: cd:95:44:3a:1f:ba:73:09:79:f1:64:5e:55:46:78:b4:ab:26: 06:64:3b:48:de:c6:47:8b:bb:e0:7b:fc:f3:58:52:80:9a:20: b8:3d:10:8f:24:bc:27:ce:5d:6d:28:2e:ba:e9:1c:03:0c:59: ee:23:2f:45:0d:2b:2a:9f:d3:6a:97:e3:c8:e3:0f:1d:c9:88: 51:38:b7:e4:fe:44:78:ae:0b:3e:3a:5c:ea:47:73:dd:20:1b: 98:9e:c9:22:eb:3e:56:42:cf:97:34:6d:40:09:1d:6a:63:de: 65:58:0c:82:bf:10:f9:1a:b4:96:bb:f1:3f:6e:bb:61:90:8e: b7:f1:d8:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjQwNTE4MTQyNjI2WhcNMjQwNTI1MTQyNjI2WjAYMRYwFAYD VQQDEw02NjQ4YmE5Mi1kNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ibR757wQ/OLPWDy9FoOY6RXOPYg8jnJFF2FYuB9uAPFlo8XCOJ1jZxhVCYH QhpbGLLnMBhRqmRkNcHBrSf2Z1lpthIucoV64soWGaD6/HEcJm/zMiTArwwmREMg iWuLmYpmS5B1IIrPRWEVF4/8S0wxGZQsip64ht63OT9Stjq2wvsfhzFFjKb4CojW 0gx1WSzdTAvx/FV3o9IEdUex/yWdvplmlxerUd3V89LuySVbCEvRtPJkxfXXGbvM qpHY59RYwD5d4Y3GZUS5WKOUUYAHFnImQSHu2RJM1avIu6ijaNkYDG3LvJBQu+jL aP2FPohjQ0Lh4A+HW1dZ6Pp7nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALA47jf g6CAIkk8Fc2oY7wFRDUOMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NkY0Ny9CNEE4NkMzODFEODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQ cmlsd3lWUS1oSnFRX25OMUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIkVvHz7RXYNWbj2SFwKPWheokAzGtkMVQ3wY49RQ5iVCJIn6lWsIk Ba47WzP7wS0PVAQkBvFCs+roKEaYOHm1BdXDOaOSF3LE+Nme9+254z3WBSd6hz4d 5vf1zhk5HIsrSHP7dGLf1HO+g9t3NKNUu2rW0pk4zJkWqU3IANnNlUQ6H7pzCXnx ZF5VRni0qyYGZDtI3sZHi7vge/zzWFKAmiC4PRCPJLwnzl1tKC666RwDDFnuIy9F DSsqn9Nql+PI4w8dyYhROLfk/kR4rgs+OlzqR3PdIBuYnski6z5WQs+XNG1ACR1q Y95lWAyCvxD5GrSWu/E/brthkI638dhi -----END CERTIFICATE-----Generated at Sat May 18 15:58:25 2024 by rpki-client on console-ams.rpki-client.org