$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft File: UlhBQeXpBP16_D4Noo2QCKGvkhI.mft (raw, json) Hash identifier: bafB6L6gVok54nmxWblGDt9OI8jyC3NKiyUi889dll4= Subject key identifier: F7:7C:CF:42:F4:6C:6F:F5:F3:FE:30:52:31:95:C4:58:60:EA:1E:93 Authority key identifier: 52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 Certificate issuer: /CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Certificate serial: 9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft Manifest number: 9B Signing time: Sun 19 May 2024 06:50:06 +0000 Manifest this update: Sun 19 May 2024 06:50:05 +0000 Manifest next update: Sun 26 May 2024 06:50:05 +0000 Files and hashes: 1: UlhBQeXpBP16_D4Noo2QCKGvkhI.crl (hash: lD6122QJvecRX4WBNlNi85Iz4zFFK8OTLTg+N2bMXiw=) 2: 41D133CC2B5911EE85AD762BC4F9AE02.roa (hash: jQ/0lCjJIMkOJNGjS+k508Q8Du2UjlHI8yBfLB/rzdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CCD/serialNumber=52584141E5E904FD7AFC3E0DA28D9008A1AF9212 Validity Not Before: May 19 06:50:05 2024 GMT Not After : May 26 06:50:05 2024 GMT Subject: CN=6649a11e-d7d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d6:e8:5d:d5:5a:60:d6:f0:09:bc:32:99:0d: 5d:38:42:7d:17:42:69:ec:eb:c2:52:39:70:af:82: f9:ba:5b:93:8b:ae:c9:46:44:06:13:8e:e7:fe:4d: 77:ee:45:0a:e5:47:30:7a:ed:4e:4d:26:fd:cf:cd: e8:ec:18:2b:1a:df:87:92:88:57:ad:77:86:17:4a: ce:80:23:6f:13:c5:4e:08:e7:e0:99:83:77:b7:eb: 2d:04:21:22:74:43:98:18:ee:0d:d9:74:f2:e4:4a: 0a:da:ad:c9:5a:c9:c5:b6:15:8b:97:eb:42:b4:6f: d9:37:3f:4d:bf:4a:50:68:44:b6:f1:08:7f:eb:39: 4e:c4:26:bb:54:b2:64:12:e4:a8:0c:29:82:ce:39: 76:50:be:d4:f9:a8:ed:53:23:fd:73:55:c3:c5:66: dd:9e:5e:f0:76:94:76:fe:0b:b2:bd:da:75:4d:a7: a9:15:12:2c:a7:bb:69:39:c1:3d:86:04:f0:8e:48: 27:97:a3:1d:e0:fa:dc:39:62:73:1d:f8:e7:2e:cd: a5:80:f8:62:a7:fd:5e:f1:d3:31:df:ec:98:7a:cb: 8c:8a:b0:ab:86:58:fa:10:cc:b1:19:2b:d3:14:ec: 70:b0:c4:b1:72:49:47:f4:4a:a5:d1:13:93:94:15: 6d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7C:CF:42:F4:6C:6F:F5:F3:FE:30:52:31:95:C4:58:60:EA:1E:93 X509v3 Authority Key Identifier: keyid:52:58:41:41:E5:E9:04:FD:7A:FC:3E:0D:A2:8D:90:08:A1:AF:92:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UlhBQeXpBP16_D4Noo2QCKGvkhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CCD/DC352B5E2B5811EEB7C2DE2AC4F9AE02/UlhBQeXpBP16_D4Noo2QCKGvkhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:10:23:2f:08:b1:90:19:0e:b7:cf:1a:b2:15:ca:fa:65:40: c3:67:09:ab:ec:2a:02:03:11:e8:94:eb:9b:0f:29:ba:a7:a2: f5:ed:08:de:74:1e:9e:fc:4f:14:01:3d:fb:33:71:78:b6:7a: 97:5b:85:fa:9b:1f:c6:58:ea:4f:ed:a9:6d:ef:2d:c4:b2:2a: 14:2b:61:9a:26:8f:6f:34:ea:a2:95:a5:00:aa:41:5a:37:6a: cb:66:f9:a5:6e:30:9a:53:4a:07:d1:8f:d9:b7:6e:ba:c0:57: 52:94:5e:a2:66:2f:e6:4c:16:35:bb:d3:0c:71:cd:b0:27:2d: 8d:a1:dc:7e:2b:4d:c4:39:68:6d:dd:3f:9a:14:a7:bd:3b:28: 4a:01:28:97:ca:9a:ca:9b:f8:07:e5:46:d7:7b:83:70:a1:c3: ac:82:ef:db:3c:e5:61:37:17:2a:b3:32:53:f6:4e:63:60:c1: 31:41:51:c0:bf:d0:09:54:d8:78:4b:88:5a:b7:01:4b:d5:20: 5c:25:3e:43:07:65:fe:6c:91:37:1e:b3:2e:a3:6d:fd:66:c2: 12:6b:81:a3:6e:08:a5:65:c0:28:3a:e3:e5:94:f5:a7:9e:42: 3c:e8:2c:fa:87:59:05:b1:5f:2e:a4:1d:6c:de:49:6b:32:17: f1:32:3f:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQ0QxMTAvBgNVBAUTKDUyNTg0MTQxRTVFOTA0RkQ3QUZDM0UwREEyOEQ5MDA4 QTFBRjkyMTIwHhcNMjQwNTE5MDY1MDA1WhcNMjQwNTI2MDY1MDA1WjAYMRYwFAYD VQQDEw02NjQ5YTExZS1kN2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttboXdVaYNbwCbwymQ1dOEJ9F0Jp7OvCUjlwr4L5uluTi67JRkQGE47n/k13 7kUK5Ucweu1OTSb9z83o7BgrGt+HkohXrXeGF0rOgCNvE8VOCOfgmYN3t+stBCEi dEOYGO4N2XTy5EoK2q3JWsnFthWLl+tCtG/ZNz9Nv0pQaES28Qh/6zlOxCa7VLJk EuSoDCmCzjl2UL7U+ajtUyP9c1XDxWbdnl7wdpR2/guyvdp1TaepFRIsp7tpOcE9 hgTwjkgnl6Md4PrcOWJzHfjnLs2lgPhip/1e8dMx3+yYesuMirCrhlj6EMyxGSvT FOxwsMSxcklH9Eql0ROTlBVt7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPd8z0L0 bG/18/4wUjGVxFhg6h6TMB8GA1UdIwQYMBaAFFJYQUHl6QT9evw+DaKNkAihr5IS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDRC9EQzM1MkI1RTJC NTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQMTZfRDROb28yUUNLR3Zr aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VsaEJRZVhwQlAxNl9ENE5vbzJRQ0tHdmtoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNDRC9EQzM1MkI1RTJCNTgxMUVFQjdDMkRFMkFDNEY5QUUwMi9VbGhCUWVYcEJQ MTZfRDROb28yUUNLR3ZraEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwECMvCLGQGQ63zxqyFcr6ZUDDZwmr7CoCAxHolOubDym6p6L17Qje dB6e/E8UAT37M3F4tnqXW4X6mx/GWOpP7alt7y3EsioUK2GaJo9vNOqilaUAqkFa N2rLZvmlbjCaU0oH0Y/Zt266wFdSlF6iZi/mTBY1u9MMcc2wJy2Nodx+K03EOWht 3T+aFKe9OyhKASiXyprKm/gH5UbXe4NwocOsgu/bPOVhNxcqszJT9k5jYMExQVHA v9AJVNh4S4hatwFL1SBcJT5DB2X+bJE3HrMuo239ZsISa4GjbgilZcAoOuPllPWn nkI86Cz6h1kFsV8upB1s3klrMhfxMj8M -----END CERTIFICATE-----Generated at Sun May 19 07:40:45 2024 by rpki-client on console-fra.rpki-client.org