$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft File: uLVa9atmqP-naRykPaKmtJuiRUA.mft (raw, json) Hash identifier: W55WH4Z0cZdjqsKXfwM41N8kPso8fwVivHABndtxb+U= Subject key identifier: 7C:39:E3:46:7A:3D:AD:45:5C:C6:9A:81:B3:39:FF:09:B8:7F:96:5A Authority key identifier: B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 Certificate issuer: /CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft Manifest number: 0B30 Signing time: Sat 18 May 2024 19:47:30 +0000 Manifest this update: Sat 18 May 2024 19:47:29 +0000 Manifest next update: Sat 25 May 2024 19:47:29 +0000 Files and hashes: 1: uLVa9atmqP-naRykPaKmtJuiRUA.crl (hash: Mbm/2mRp2WpIly/NJmvSzniSXuG0QQZnemaVTfyGHrE=) 2: B3E5DF2A14ED11EAACAB5E5DC4F9AE02.roa (hash: ++rPUSlMpoi9eLFVPVW9RrgE1IucmU2oByp7QGwJQiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5778/serialNumber=B8B55AF5AB66A8FFA7691CA43DA2A6B49BA24540 Validity Not Before: May 18 19:47:29 2024 GMT Not After : May 25 19:47:29 2024 GMT Subject: CN=664905d2-77e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:61:61:fe:97:de:90:7f:f2:b6:ca:20:d0:91: 39:18:84:c8:af:da:2f:c2:f7:33:ee:a5:75:87:bd: 05:62:1b:99:9b:67:2e:de:71:36:6c:29:34:4a:0d: 37:3f:09:39:0e:60:e0:a5:c4:aa:93:83:21:84:ef: 02:96:56:9e:6b:fd:37:54:76:ce:29:30:b8:10:64: f2:18:9d:e5:f1:c7:1a:64:5b:ef:4c:3d:47:70:89: 10:1e:8e:5a:33:52:75:3f:c2:54:b5:ab:62:7f:6c: 1b:cc:33:ed:5f:bc:81:9e:c9:1c:05:6b:7a:60:62: 0f:b6:95:0e:b2:e8:dc:2a:bb:b7:16:85:1e:74:93: 5b:89:24:35:0b:6d:9b:f2:8e:f8:b8:e5:d6:a2:92: dc:e4:0e:9f:35:4c:ed:2e:85:be:32:5d:79:4c:65: e8:76:ff:70:1b:90:52:3d:6a:61:68:aa:ad:91:24: 4e:02:1b:4a:a0:bb:eb:3e:8b:ee:ee:c3:b0:e8:44: 0e:5b:64:13:7c:c2:1e:ae:b6:d1:05:00:b3:dc:24: 7c:3f:50:8b:25:42:36:04:28:8c:6a:46:d7:99:56: 3f:74:04:bf:07:26:1a:d2:08:8c:08:b2:ad:4b:ee: 19:09:97:33:da:33:9d:04:53:23:8c:e0:e5:b0:8b: 19:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:39:E3:46:7A:3D:AD:45:5C:C6:9A:81:B3:39:FF:09:B8:7F:96:5A X509v3 Authority Key Identifier: keyid:B8:B5:5A:F5:AB:66:A8:FF:A7:69:1C:A4:3D:A2:A6:B4:9B:A2:45:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uLVa9atmqP-naRykPaKmtJuiRUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5778/3DDC1AC014EC11EAA8BAAE5AC4F9AE02/uLVa9atmqP-naRykPaKmtJuiRUA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:18:9b:3a:63:4c:f5:03:72:6b:5f:7b:30:4a:b6:fc:60:a9: 67:5f:1e:25:65:58:2a:74:55:1f:16:36:00:07:ee:33:eb:22: 98:e4:d4:a3:81:6f:75:41:85:88:d1:e0:25:14:c4:b9:1a:88: 84:ba:54:7d:6b:4b:78:14:6c:00:61:4f:ef:3d:31:76:04:d5: d0:c1:d5:d0:c0:6a:92:d7:b1:d4:8a:85:94:ee:2b:61:7f:8e: 42:ef:3d:d8:44:5a:84:c5:35:04:84:85:2b:b3:36:ad:a1:71: b1:44:2d:db:c1:e1:7e:49:6b:31:f6:ec:f2:96:0d:b2:eb:f5: 89:a7:e4:51:d1:55:86:fe:10:32:be:57:1b:9f:f4:85:7f:a2: 01:19:e2:5b:6a:66:36:70:3f:49:6b:ba:a2:f2:0f:51:5d:e3: 41:38:03:4c:d6:bc:c9:6c:ed:a9:20:26:e4:51:97:d8:09:c3: e1:d0:0f:39:d7:60:cf:a3:5f:a8:c8:4c:46:76:33:1f:3c:53: 87:a8:b2:53:b5:62:f1:49:5f:70:fb:ea:00:7b:51:bb:32:85: 03:fb:43:d8:ce:de:9b:05:56:fa:09:47:3f:46:40:74:31:5b: 32:65:99:db:ae:f7:53:28:68:d2:04:27:a6:90:b4:3d:bf:ee: 01:f9:40:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3NzgxMTAvBgNVBAUTKEI4QjU1QUY1QUI2NkE4RkZBNzY5MUNBNDNEQTJBNkI0 OUJBMjQ1NDAwHhcNMjQwNTE4MTk0NzI5WhcNMjQwNTI1MTk0NzI5WjAYMRYwFAYD VQQDEw02NjQ5MDVkMi03N2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2Fh/pfekH/ytsog0JE5GITIr9ovwvcz7qV1h70FYhuZm2cu3nE2bCk0Sg03 Pwk5DmDgpcSqk4MhhO8Cllaea/03VHbOKTC4EGTyGJ3l8ccaZFvvTD1HcIkQHo5a M1J1P8JUtatif2wbzDPtX7yBnskcBWt6YGIPtpUOsujcKru3FoUedJNbiSQ1C22b 8o74uOXWopLc5A6fNUztLoW+Ml15TGXodv9wG5BSPWphaKqtkSROAhtKoLvrPovu 7sOw6EQOW2QTfMIerrbRBQCz3CR8P1CLJUI2BCiMakbXmVY/dAS/ByYa0giMCLKt S+4ZCZcz2jOdBFMjjODlsIsZKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw540Z6 Pa1FXMaagbM5/wm4f5ZaMB8GA1UdIwQYMBaAFLi1WvWrZqj/p2kcpD2iprSbokVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTc3OC8zRERDMUFDMDE0 RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQLW5hUnlrUGFLbXRKdWlS VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VMVmE5YXRtcVAtbmFSeWtQYUttdEp1aVJVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTc3OC8zRERDMUFDMDE0RUMxMUVBQThCQUFFNUFDNEY5QUUwMi91TFZhOWF0bXFQ LW5hUnlrUGFLbXRKdWlSVUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyGJs6Y0z1A3JrX3swSrb8YKlnXx4lZVgqdFUfFjYAB+4z6yKY5NSj gW91QYWI0eAlFMS5GoiEulR9a0t4FGwAYU/vPTF2BNXQwdXQwGqS17HUioWU7ith f45C7z3YRFqExTUEhIUrszatoXGxRC3bweF+SWsx9uzylg2y6/WJp+RR0VWG/hAy vlcbn/SFf6IBGeJbamY2cD9Ja7qi8g9RXeNBOANM1rzJbO2pICbkUZfYCcPh0A85 12DPo1+oyExGdjMfPFOHqLJTtWLxSV9w++oAe1G7MoUD+0PYzt6bBVb6CUc/RkB0 MVsyZZnbrvdTKGjSBCemkLQ9v+4B+UD8 -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org