$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft File: uokBTrxJS2f9iz-C6LOO9vbFck0.mft (raw, json) Hash identifier: fWaEjNlqlqakO0ARExrFtvxLBLvQWZ14rMwMgZkIfMA= Subject key identifier: 1B:E0:AF:9A:D9:34:F3:79:95:26:E9:39:13:8F:97:50:00:33:1C:2D Authority key identifier: BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D Certificate issuer: /CN=A91C4EC7/serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft Manifest number: 3E Signing time: Fri 17 May 2024 08:25:01 +0000 Manifest this update: Fri 17 May 2024 08:25:00 +0000 Manifest next update: Fri 24 May 2024 08:25:00 +0000 Files and hashes: 1: uokBTrxJS2f9iz-C6LOO9vbFck0.crl (hash: 4ryrfx6yWoO5kozqv4yZULPTyiOXtqLSavkQjfJXN8s=) 2: ED352AAEBFE511EEBB3B4D25C4F9AE02.roa (hash: RF60v/sSHyFBd9DX6rUeFztFrcMi4xrRDE9ajqiCa+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4EC7/serialNumber=BA89014EBC494B67FD8B3F82E8B38EF6F6C5724D Validity Not Before: May 17 08:25:00 2024 GMT Not After : May 24 08:25:00 2024 GMT Subject: CN=6647145d-b1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:24:ce:66:79:9c:e3:36:e1:41:6b:4d:a1:91: 56:af:2d:f1:c8:20:9b:68:58:d0:a4:06:af:19:ad: 25:83:8f:9e:f1:d0:a1:39:72:dd:8b:b2:2a:57:e5: 83:e1:e5:21:9e:88:ad:c8:44:d1:1d:16:b0:63:aa: 7b:48:27:0b:21:f8:7b:f8:17:2d:4c:94:aa:73:a9: e7:f2:a9:04:5f:2b:08:a7:fd:2f:ef:c3:5d:35:13: 1d:fb:5b:47:4e:0f:aa:b4:19:17:82:17:f9:39:c8: 35:66:49:b9:5c:15:68:d5:64:53:50:f2:29:f6:26: 10:19:95:a7:68:3b:83:24:5c:f3:66:9b:2b:57:a7: d8:3a:fb:e6:d0:f1:60:6e:c9:b1:6b:1a:5f:4a:09: 2d:62:66:98:81:dd:f9:52:b4:b3:e3:73:30:6f:7e: 39:44:4a:e5:b5:dd:5d:49:1a:7f:18:1b:19:36:b5: c1:3a:03:03:66:49:8d:26:63:07:8b:ec:71:18:b6: 7e:4e:25:58:6f:4c:c5:8f:70:42:d7:dc:ca:ec:4c: 36:8b:63:64:d3:e2:74:57:df:dd:25:02:0d:83:cb: 20:68:55:e0:47:20:4b:56:24:b4:04:84:ba:6c:0f: ef:06:f7:c6:b2:b1:9b:6a:77:42:65:32:49:93:b6: 13:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E0:AF:9A:D9:34:F3:79:95:26:E9:39:13:8F:97:50:00:33:1C:2D X509v3 Authority Key Identifier: keyid:BA:89:01:4E:BC:49:4B:67:FD:8B:3F:82:E8:B3:8E:F6:F6:C5:72:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uokBTrxJS2f9iz-C6LOO9vbFck0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4EC7/75757870BFE511EEAACE4312C4F9AE02/uokBTrxJS2f9iz-C6LOO9vbFck0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:99:4d:95:a3:90:4c:6f:bf:22:1a:1d:3a:27:4b:bb:e8:1b: b2:97:11:1d:1d:8a:f2:63:dd:59:14:00:06:03:69:dd:98:7d: 73:b1:4a:73:61:0e:25:b9:12:cf:9a:fa:83:b6:00:45:1c:09: fa:40:fc:52:fc:72:e7:fa:eb:bb:26:b0:9d:ac:26:7a:df:f9: 11:52:58:4e:25:86:75:ce:17:ca:8a:05:13:0e:78:66:bf:cd: 66:b6:94:49:c1:4f:3e:29:85:e2:d7:6c:42:76:f5:2d:ba:06: 41:5d:ed:9f:33:d1:19:9b:31:79:d5:1c:f0:d4:af:fb:de:b2: 3c:e7:1b:56:d0:6d:ed:11:ca:db:bc:3c:06:2d:df:a9:38:63: 49:d9:e3:e2:7f:f2:32:73:7a:89:b9:5e:dc:90:22:28:91:cd: 2c:8c:f7:f5:7f:34:eb:0a:68:b1:87:5f:99:fa:57:52:10:25: 42:df:55:2a:f1:e9:4f:e1:24:c1:f3:43:cc:ad:18:91:f7:37: f6:56:01:86:dd:86:3e:f3:d3:98:8d:f4:ba:b4:64:65:cd:04: 78:03:64:83:e3:c2:e9:51:69:8e:d2:37:10:0d:6d:b0:3a:ab: aa:f8:39:fc:df:56:fa:fa:0d:af:38:90:a6:83:93:18:97:4a: f6:85:1e:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NEVDNzExMC8GA1UEBRMoQkE4OTAxNEVCQzQ5NEI2N0ZEOEIzRjgyRThCMzhFRjZG NkM1NzI0RDAeFw0yNDA1MTcwODI1MDBaFw0yNDA1MjQwODI1MDBaMBgxFjAUBgNV BAMTDTY2NDcxNDVkLWIxY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAJM5meZzjNuFBa02hkVavLfHIIJtoWNCkBq8ZrSWDj57x0KE5ct2LsipX5YPh 5SGeiK3IRNEdFrBjqntIJwsh+Hv4Fy1MlKpzqefyqQRfKwin/S/vw101Ex37W0dO D6q0GReCF/k5yDVmSblcFWjVZFNQ8in2JhAZladoO4MkXPNmmytXp9g6++bQ8WBu ybFrGl9KCS1iZpiB3flStLPjczBvfjlESuW13V1JGn8YGxk2tcE6AwNmSY0mYweL 7HEYtn5OJVhvTMWPcELX3MrsTDaLY2TT4nRX390lAg2DyyBoVeBHIEtWJLQEhLps D+8G98aysZtqd0JlMkmTthO7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG+Cvmtk0 83mVJuk5E4+XUAAzHC0wHwYDVR0jBBgwFoAUuokBTrxJS2f9iz+C6LOO9vbFck0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0RUM3Lzc1NzU3ODcwQkZF NTExRUVBQUNFNDMxMkM0RjlBRTAyL3Vva0JUcnhKUzJmOWl6LUM2TE9POXZiRmNr MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdW9rQlRyeEpTMmY5aXotQzZMT085dmJGY2swLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 RUM3Lzc1NzU3ODcwQkZFNTExRUVBQUNFNDMxMkM0RjlBRTAyL3Vva0JUcnhKUzJm OWl6LUM2TE9POXZiRmNrMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEKZTZWjkExvvyIaHTonS7voG7KXER0divJj3VkUAAYDad2YfXOxSnNh DiW5Es+a+oO2AEUcCfpA/FL8cuf667smsJ2sJnrf+RFSWE4lhnXOF8qKBRMOeGa/ zWa2lEnBTz4pheLXbEJ29S26BkFd7Z8z0RmbMXnVHPDUr/vesjznG1bQbe0Rytu8 PAYt36k4Y0nZ4+J/8jJzeom5XtyQIiiRzSyM9/V/NOsKaLGHX5n6V1IQJULfVSrx 6U/hJMHzQ8ytGJH3N/ZWAYbdhj7z05iN9Lq0ZGXNBHgDZIPjwulRaY7SNxANbbA6 q6r4OfzfVvr6Da84kKaDkxiXSvaFHsI= -----END CERTIFICATE-----Generated at Fri May 17 10:59:13 2024 by rpki-client on console-ams.rpki-client.org