$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft File: UNqjonFb7c_nFOVthUH381hubvc.mft (raw, json) Hash identifier: qVSnIrPaZxE3GiFX8S0+ibjAHcwbxZwezhow8AWNU7c= Subject key identifier: 17:D7:7F:24:B6:9A:66:4E:2E:7E:C5:AA:36:FE:EF:6B:18:0F:EA:6F Authority key identifier: 50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 Certificate issuer: /CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Certificate serial: 0419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft Manifest number: 0413 Signing time: Sun 19 May 2024 02:05:27 +0000 Manifest this update: Sun 19 May 2024 02:05:26 +0000 Manifest next update: Sun 26 May 2024 02:05:26 +0000 Files and hashes: 1: UNqjonFb7c_nFOVthUH381hubvc.crl (hash: Q+gpYySYuv3GwEl+4UVXxoml5iCtHsDHVCYor5apmcQ=) 2: 8E8A375A1FA211EC8159E249C4F9AE02.roa (hash: 83NtINnJ0XNZ6vTmGc8rW9k4w55Iuy/ojcp0bUnHV9s=) 3: 2B6A29201FA011ECB867890CC4F9AE02.roa (hash: vyFYGOEiiDQQjp/VrYSrNLTf+1NxQsyzWw+q9M6sE20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Validity Not Before: May 19 02:05:26 2024 GMT Not After : May 26 02:05:26 2024 GMT Subject: CN=66495e67-f130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:69:28:82:4a:8f:50:e5:ad:ba:cd:c1:7f:c5: d7:fd:69:cb:cc:05:b7:33:cf:80:7c:fd:38:6c:96: 04:2b:ee:9a:fc:00:02:e3:67:3b:9b:c2:07:8b:10: c0:1f:b6:db:32:90:86:28:99:bd:46:bb:a7:68:0a: 1d:95:02:19:8f:29:08:4c:b9:7d:00:d3:d0:16:16: a4:8a:82:83:bc:40:e9:19:f8:88:26:6e:b3:dc:ac: 00:7d:58:00:7b:5e:d3:18:4e:3f:00:61:92:d8:cf: af:6b:73:b8:f4:6d:26:de:90:30:89:e8:28:20:0e: 59:1f:21:64:97:cf:75:ef:d1:83:df:7a:47:ee:ba: 9a:2a:a9:33:dd:5d:cb:07:90:3a:00:ed:49:1f:67: 2d:8c:54:c0:87:17:3a:83:b5:68:57:80:5a:87:f6: 1a:2e:26:81:60:e4:88:0a:cd:1e:9d:e1:53:62:9f: ad:fb:b2:7d:f7:5a:11:ec:3c:d9:b6:29:94:d0:be: 23:5e:89:fd:9e:f5:5c:9c:ee:dc:fe:86:20:34:eb: 7a:16:08:3a:bd:e2:10:42:20:15:44:b4:7b:0f:10: e9:ef:13:f6:25:41:ef:da:91:ca:db:73:95:61:d4: e3:fa:61:64:39:43:08:6a:3b:a2:da:1e:a7:09:90: ab:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D7:7F:24:B6:9A:66:4E:2E:7E:C5:AA:36:FE:EF:6B:18:0F:EA:6F X509v3 Authority Key Identifier: keyid:50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:42:ec:58:3c:6e:46:bb:29:9a:bb:bb:1a:05:7a:ae:90:b5: 88:a7:e4:fb:7d:5f:3b:cd:9b:cd:8c:7f:e6:b5:40:ef:67:ad: bc:d8:5c:c4:eb:ae:8d:29:47:43:b9:2e:d6:bf:4d:4f:0f:1b: e2:ba:08:3a:33:48:55:ae:33:bf:f4:27:67:04:62:4f:e2:95: e6:25:63:3c:0c:c3:5b:63:fc:45:bf:b2:6d:b4:52:9b:bc:8b: d5:34:33:e8:cf:dd:1a:e6:99:56:cd:fc:fa:da:bd:bc:46:aa: c2:c1:a2:03:f6:9c:04:61:dc:79:4c:c3:5d:94:25:83:cd:2a: fc:94:5b:ae:e8:f2:b8:36:a5:2c:ef:fd:2a:1c:2a:59:35:1c: 2b:cf:ec:ba:6e:d8:c6:3f:db:2c:f4:b8:fe:5e:a5:f2:41:eb: bd:2c:fd:c0:39:4f:f7:67:3c:1c:fb:a1:42:3b:02:33:9b:96: 6e:8d:63:0a:4e:44:ee:14:9f:23:fe:36:43:b8:d1:4b:f6:77: 3b:96:cd:b5:dd:75:e4:ac:40:f5:b8:bd:29:12:f1:7c:71:d2: b3:fb:e6:a7:ed:ee:77:e3:83:f7:47:c1:98:d7:7d:63:3f:22: 5b:bd:13:fc:89:c2:f4:47:6d:bb:c2:29:05:c7:bd:13:2d:b0: 02:ab:1b:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCQzQxMTAvBgNVBAUTKDUwREFBM0EyNzE1QkVEQ0ZFNzE0RTU2RDg1NDFGN0Yz NTg2RTZFRjcwHhcNMjQwNTE5MDIwNTI2WhcNMjQwNTI2MDIwNTI2WjAYMRYwFAYD VQQDEw02NjQ5NWU2Ny1mMTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GkogkqPUOWtus3Bf8XX/WnLzAW3M8+AfP04bJYEK+6a/AAC42c7m8IHixDA H7bbMpCGKJm9RrunaAodlQIZjykITLl9ANPQFhakioKDvEDpGfiIJm6z3KwAfVgA e17TGE4/AGGS2M+va3O49G0m3pAwiegoIA5ZHyFkl89179GD33pH7rqaKqkz3V3L B5A6AO1JH2ctjFTAhxc6g7VoV4Bah/YaLiaBYOSICs0eneFTYp+t+7J991oR7DzZ timU0L4jXon9nvVcnO7c/oYgNOt6Fgg6veIQQiAVRLR7DxDp7xP2JUHv2pHK23OV YdTj+mFkOUMIajui2h6nCZCrBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfXfyS2 mmZOLn7Fqjb+72sYD+pvMB8GA1UdIwQYMBaAFFDao6JxW+3P5xTlbYVB9/NYbm73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkJDNC8zQzRCMDEzMjFG OUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdjX25GT1Z0aFVIMzgxaHVi dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOcWpvbkZiN2NfbkZPVnRoVUgzODFodWJ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkJDNC8zQzRCMDEzMjFGOUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdj X25GT1Z0aFVIMzgxaHVidmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5QuxYPG5Guymau7saBXqukLWIp+T7fV87zZvNjH/mtUDvZ6282FzE 666NKUdDuS7Wv01PDxviugg6M0hVrjO/9CdnBGJP4pXmJWM8DMNbY/xFv7JttFKb vIvVNDPoz90a5plWzfz62r28RqrCwaID9pwEYdx5TMNdlCWDzSr8lFuu6PK4NqUs 7/0qHCpZNRwrz+y6btjGP9ss9Lj+XqXyQeu9LP3AOU/3Zzwc+6FCOwIzm5ZujWMK TkTuFJ8j/jZDuNFL9nc7ls213XXkrED1uL0pEvF8cdKz++an7e5344P3R8GY131j PyJbvRP8icL0R227wikFx70TLbACqxs7 -----END CERTIFICATE-----Generated at Sun May 19 02:39:37 2024 by rpki-client on console-fra.rpki-client.org