$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft File: ujgt6jovW4xMIgXskp9gG-NP538.mft (raw, json) Hash identifier: bdze8ue5uPfy5wAEv+U0I0BtiOMJi/TMmDD62KayQm0= Subject key identifier: 31:69:59:EE:8A:6E:C4:50:4A:A6:B4:F5:26:F5:19:7A:C8:76:1B:07 Authority key identifier: BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F Certificate issuer: /CN=A91B7B34/serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Certificate serial: 0B84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft Manifest number: 0B7B Signing time: Sat 18 May 2024 19:27:25 +0000 Manifest this update: Sat 18 May 2024 19:27:23 +0000 Manifest next update: Sat 25 May 2024 19:27:23 +0000 Files and hashes: 1: ujgt6jovW4xMIgXskp9gG-NP538.crl (hash: yXdSnw1CFA/8jry8JqXKSGdCFU8gLT7tSZJaBxIawtE=) 2: 52E56FA806C711EA84978821C4F9AE02.roa (hash: hOu5ZeqxYN16DF3xRjjzQeKfwsoZQp+9xHJC5zCyNDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2948 (0xb84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B34/serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Validity Not Before: May 18 19:27:23 2024 GMT Not After : May 25 19:27:23 2024 GMT Subject: CN=6649011c-7eab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:fa:fa:15:55:a4:8b:c8:fc:5a:9d:e4:45: c1:8c:56:fd:d6:ed:46:75:c0:74:95:e4:44:ec:c4: d7:cd:1e:01:8d:59:a7:78:84:5b:2a:b9:b2:f2:a9: 94:6e:e7:ea:d4:70:e0:53:c3:90:2d:ad:46:66:17: 0d:56:83:6f:92:40:96:32:73:b4:ac:71:d2:e4:2d: 96:22:c3:4e:8c:9c:36:a4:a1:ac:a0:4c:95:05:cc: fa:5a:9c:d2:88:56:dd:c1:92:f7:59:68:57:a4:d1: 3a:c3:1d:25:55:13:45:82:5f:22:80:c6:60:dc:8f: c6:3a:11:8f:36:68:60:60:14:3e:9d:ed:c9:29:06: 07:09:b3:98:53:7a:ef:d8:ac:e8:b8:a4:88:a9:f1: f7:3e:52:6d:fb:44:98:d3:ba:a7:21:75:f1:b8:0c: 16:c8:73:f6:24:02:82:e5:c7:07:f5:66:02:72:b7: 65:9a:86:16:8c:ad:5e:fc:d8:43:77:54:ba:71:bf: 9c:4d:e1:e8:34:3f:82:d8:0c:32:4d:c8:21:e0:85: ce:2d:1d:14:9a:38:8b:34:0b:bd:db:ad:0f:ca:c7: 4d:c4:3b:57:bb:c9:94:f8:d3:1e:c8:33:12:b5:af: 9d:16:e8:d7:4b:3b:9e:d1:c6:56:e3:73:77:0b:e0: 3b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:69:59:EE:8A:6E:C4:50:4A:A6:B4:F5:26:F5:19:7A:C8:76:1B:07 X509v3 Authority Key Identifier: keyid:BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:6c:55:67:32:93:06:cd:09:24:3d:13:67:cd:1f:d9:ba:4f: 50:ea:4f:ac:f1:13:09:9c:9a:6f:c3:cf:f9:e0:2c:31:5e:c0: e2:1f:3c:7b:c5:69:7d:3d:fc:6b:8a:e9:49:fb:0a:52:88:3c: ca:05:38:dd:63:4a:fe:29:98:9b:b9:e5:f9:67:a7:7e:c4:0c: 70:a3:29:75:26:10:32:46:f0:09:88:b4:87:2a:1a:75:a4:e6: 50:cf:78:8c:08:ae:cc:d8:b4:2c:7c:53:e6:ed:dc:9c:38:9a: 76:48:c4:bf:6a:fc:73:08:f9:1b:41:00:71:00:3a:53:a6:6d: e9:2b:93:fd:6f:18:9b:4c:48:1c:6d:8d:d9:30:d9:83:e4:aa: bb:5a:94:0a:6b:35:40:74:4f:37:e2:dc:11:35:33:c8:dd:e4: e9:1f:fa:85:a7:72:b1:e0:2a:59:67:e9:c3:7c:57:c7:f2:71: b5:7e:a9:91:e3:37:ef:a3:5c:bc:e8:39:7f:17:ab:e1:51:9b: 61:ae:83:21:4e:76:47:10:3e:8b:12:04:a9:96:e9:16:ca:2a: 03:02:74:d4:c3:43:8b:36:1a:da:dc:34:73:f4:9e:1a:eb:47: 0c:03:54:e9:9d:23:fb:bd:2c:8a:ff:43:b0:10:f6:2f:a6:f0: 18:d0:85:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMzQxMTAvBgNVBAUTKEJBMzgyREVBM0EyRjVCOEM0QzIyMDVFQzkyOUY2MDFC RTM0RkU3N0YwHhcNMjQwNTE4MTkyNzIzWhcNMjQwNTI1MTkyNzIzWjAYMRYwFAYD VQQDEw02NjQ5MDExYy03ZWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsin6+hVVpIvI/Fqd5EXBjFb91u1GdcB0leRE7MTXzR4BjVmneIRbKrmy8qmU bufq1HDgU8OQLa1GZhcNVoNvkkCWMnO0rHHS5C2WIsNOjJw2pKGsoEyVBcz6WpzS iFbdwZL3WWhXpNE6wx0lVRNFgl8igMZg3I/GOhGPNmhgYBQ+ne3JKQYHCbOYU3rv 2KzouKSIqfH3PlJt+0SY07qnIXXxuAwWyHP2JAKC5ccH9WYCcrdlmoYWjK1e/NhD d1S6cb+cTeHoND+C2AwyTcgh4IXOLR0UmjiLNAu9260PysdNxDtXu8mU+NMeyDMS ta+dFujXSzue0cZW43N3C+A70wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFpWe6K bsRQSqa09Sb1GXrIdhsHMB8GA1UdIwQYMBaAFLo4Leo6L1uMTCIF7JKfYBvjT+d/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IzNC9ERUNFM0VCQTA2 QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0eE1JZ1hza3A5Z0ctTlA1 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VqZ3Q2am92VzR4TUlnWHNrcDlnRy1OUDUzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0IzNC9ERUNFM0VCQTA2QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0 eE1JZ1hza3A5Z0ctTlA1MzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZbFVnMpMGzQkkPRNnzR/Zuk9Q6k+s8RMJnJpvw8/54CwxXsDiHzx7 xWl9PfxriulJ+wpSiDzKBTjdY0r+KZibueX5Z6d+xAxwoyl1JhAyRvAJiLSHKhp1 pOZQz3iMCK7M2LQsfFPm7dycOJp2SMS/avxzCPkbQQBxADpTpm3pK5P9bxibTEgc bY3ZMNmD5Kq7WpQKazVAdE834twRNTPI3eTpH/qFp3Kx4CpZZ+nDfFfH8nG1fqmR 4zfvo1y86Dl/F6vhUZthroMhTnZHED6LEgSplukWyioDAnTUw0OLNhra3DRz9J4a 60cMA1TpnSP7vSyK/0OwEPYvpvAY0IXg -----END CERTIFICATE-----Generated at Sat May 18 20:16:06 2024 by rpki-client on console-ams.rpki-client.org