$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft File: udznqYvOfA4oMosTy-q1Qx0PZr0.mft (raw, json) Hash identifier: l700k7S6PIQv6NjJCnC1XcgnTRnd1oK/4oXYswWrMFQ= Subject key identifier: 23:85:54:D0:5B:DA:F3:4C:06:EB:2C:0A:A1:AB:AD:0F:7C:7E:E9:60 Authority key identifier: B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD Certificate issuer: /CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft Manifest number: 02D8 Signing time: Sun 19 May 2024 03:23:08 +0000 Manifest this update: Sun 19 May 2024 03:23:08 +0000 Manifest next update: Sun 26 May 2024 03:23:08 +0000 Files and hashes: 1: udznqYvOfA4oMosTy-q1Qx0PZr0.crl (hash: ARakn7Sy4zB3MvEWqyxQsspTei82wFbD6KbGyyxgykA=) 2: 5FD6BBF27CEB11EDA3D10364C4F9AE02.roa (hash: FeTKcL37y87AiZQuqO53nGkPmfENZeWjr7lrGLOMLWk=) 3: CA86B0DEFC4D11ECA947C41FC4F9AE02.roa (hash: j39oIouyNt6HwKg9AT6DRdXmatC+dHV5URxElCtlOp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0C/serialNumber=B9DCE7A98BCE7C0E28328B13CBEAB5431D0F66BD Validity Not Before: May 19 03:23:08 2024 GMT Not After : May 26 03:23:08 2024 GMT Subject: CN=6649709c-bf55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3d:ec:a5:55:6e:78:c5:56:31:07:ad:be:96: d1:b7:c7:3f:d4:97:b3:36:56:c8:c6:4b:b8:c7:05: 0e:4f:38:7c:a8:05:78:40:35:2e:ed:7d:97:30:be: 04:dd:3e:44:03:1d:ed:39:2b:b1:58:19:19:1d:5e: 73:92:1f:23:52:1a:d7:0e:a8:37:fa:fb:9c:88:19: 28:b9:4f:eb:10:34:26:ed:63:a6:d7:75:d3:10:4a: 42:ac:94:65:63:84:36:80:09:f6:b7:96:64:6b:3a: 86:5f:b5:78:c9:c4:f8:2c:a6:0c:6e:79:36:a4:7b: 28:5f:54:a1:75:ac:0b:3d:be:b1:e5:d4:a2:f3:d7: 31:b2:7c:56:c4:e4:55:53:ce:d6:1c:69:54:7c:79: 3a:ae:79:6c:42:fc:81:a9:1a:f8:8a:7d:c7:e7:ab: 8b:a1:b1:bb:b0:b4:f6:b4:ec:73:c0:8a:b0:ca:d5: 1d:ef:79:90:6f:22:f2:7f:e9:9c:35:0a:d0:de:d3: c2:d4:b9:b1:8d:b5:6e:28:1f:b7:e0:f0:c9:37:a1: 9c:a6:ea:66:75:3f:1d:a6:89:40:52:ff:cb:1d:3d: 16:4e:23:0d:37:29:df:c5:fb:d9:6a:8e:73:73:6c: 10:0d:81:21:92:c9:9b:5d:71:70:42:2c:2e:df:3a: 12:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:85:54:D0:5B:DA:F3:4C:06:EB:2C:0A:A1:AB:AD:0F:7C:7E:E9:60 X509v3 Authority Key Identifier: keyid:B9:DC:E7:A9:8B:CE:7C:0E:28:32:8B:13:CB:EA:B5:43:1D:0F:66:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/udznqYvOfA4oMosTy-q1Qx0PZr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0C/359B8D3E9DFF11ECA4A58848C4F9AE02/udznqYvOfA4oMosTy-q1Qx0PZr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:69:8e:a2:ba:46:23:51:fe:e8:42:e9:ab:58:d6:11:b6:cc: b7:f5:3d:0b:37:e7:a6:1b:b6:a5:b7:97:4f:31:bf:b8:bf:6f: 09:d2:d0:4f:cc:fb:63:ce:66:ce:9d:db:a9:70:ab:e5:78:27: 16:eb:59:bf:01:78:59:6b:51:19:b7:78:90:dd:b7:f7:5e:20: 0c:1a:07:d3:b5:96:3e:0d:ee:2d:0d:dc:63:22:11:45:cb:dc: 7d:02:8e:e3:29:d0:85:96:00:92:e7:d0:f0:ed:54:7a:57:2a: e9:89:49:37:c3:07:b5:19:02:e7:ce:89:d7:b1:04:d9:55:fe: 7d:07:4e:46:69:b9:7f:c0:0d:e6:3b:30:f9:7e:40:09:b2:96: 0a:2e:4f:ec:97:74:10:f8:db:dc:a8:4f:83:ce:1d:f9:00:1f: 59:82:cf:54:4e:51:98:08:da:f5:e6:24:00:dc:e1:8b:f5:41: 14:1b:05:11:76:84:e9:10:93:fd:5d:b7:8f:05:38:39:21:1e: 4a:36:e6:bf:2d:24:b4:fd:5d:4b:e8:a6:2c:11:c6:4c:16:a3: 75:13:58:29:fe:f9:02:6a:ad:c9:f6:ec:2f:f7:1f:03:54:3c: 7f:77:af:cc:23:ed:c3:90:8e:9d:84:a5:a9:53:25:83:f6:3b: eb:f7:a7:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEMxMTAvBgNVBAUTKEI5RENFN0E5OEJDRTdDMEUyODMyOEIxM0NCRUFCNTQz MUQwRjY2QkQwHhcNMjQwNTE5MDMyMzA4WhcNMjQwNTI2MDMyMzA4WjAYMRYwFAYD VQQDEw02NjQ5NzA5Yy1iZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D3spVVueMVWMQetvpbRt8c/1JezNlbIxku4xwUOTzh8qAV4QDUu7X2XML4E 3T5EAx3tOSuxWBkZHV5zkh8jUhrXDqg3+vuciBkouU/rEDQm7WOm13XTEEpCrJRl Y4Q2gAn2t5ZkazqGX7V4ycT4LKYMbnk2pHsoX1ShdawLPb6x5dSi89cxsnxWxORV U87WHGlUfHk6rnlsQvyBqRr4in3H56uLobG7sLT2tOxzwIqwytUd73mQbyLyf+mc NQrQ3tPC1LmxjbVuKB+34PDJN6GcpupmdT8dpolAUv/LHT0WTiMNNynfxfvZao5z c2wQDYEhksmbXXFwQiwu3zoSgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOFVNBb 2vNMBussCqGrrQ98fulgMB8GA1UdIwQYMBaAFLnc56mLznwOKDKLE8vqtUMdD2a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQy8zNTlCOEQzRTlE RkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZBNG9Nb3NUeS1xMVF4MFBa cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vkem5xWXZPZkE0b01vc1R5LXExUXgwUFpyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQy8zNTlCOEQzRTlERkYxMUVDQTRBNTg4NDhDNEY5QUUwMi91ZHpucVl2T2ZB NG9Nb3NUeS1xMVF4MFBacjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbaY6iukYjUf7oQumrWNYRtsy39T0LN+emG7alt5dPMb+4v28J0tBP zPtjzmbOndupcKvleCcW61m/AXhZa1EZt3iQ3bf3XiAMGgfTtZY+De4tDdxjIhFF y9x9Ao7jKdCFlgCS59Dw7VR6VyrpiUk3wwe1GQLnzonXsQTZVf59B05Gabl/wA3m OzD5fkAJspYKLk/sl3QQ+NvcqE+Dzh35AB9Zgs9UTlGYCNr15iQA3OGL9UEUGwUR doTpEJP9XbePBTg5IR5KNua/LSS0/V1L6KYsEcZMFqN1E1gp/vkCaq3J9uwv9x8D VDx/d6/MI+3DkI6dhKWpUyWD9jvr96f9 -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org