$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft File: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft (raw, json) Hash identifier: WUKmv6rQHZBXtkvcfHACUowFIWG1gI9T7PyXvy63+zo= Subject key identifier: 01:E1:AB:4B:30:9A:78:D9:1A:53:01:FC:C2:09:01:F0:91:6F:28:A6 Authority key identifier: B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 Certificate issuer: /CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Certificate serial: 0D93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft Manifest number: 0D8B Signing time: Sat 18 May 2024 18:33:53 +0000 Manifest this update: Sat 18 May 2024 18:33:53 +0000 Manifest next update: Sat 25 May 2024 18:33:53 +0000 Files and hashes: 1: uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl (hash: piCu3CgstVcNEM1DyUsDFY8opIvO4XHLTD6bDUNiIXg=) 2: BD22841E9E4911E9A136D25AC4F9AE02.roa (hash: 8XzmEKf9PUqL4rihQQ3dJ1Mo82lmK+/E9P0LLedBuYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3475 (0xd93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1149/serialNumber=B83401CFBC405CFB52FDA0FEBD4A02B7B1CE2762 Validity Not Before: May 18 18:33:53 2024 GMT Not After : May 25 18:33:53 2024 GMT Subject: CN=6648f491-4a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:69:fb:48:76:f1:78:60:ee:e6:38:9f:4c:8a: 6c:f6:85:93:c4:95:14:1b:f2:e8:14:93:34:ff:c3: 1f:ba:78:bb:a6:a7:97:7f:b5:b6:9e:fa:ef:e6:79: 0f:1c:e0:fd:1f:c1:ce:69:72:b9:f5:bb:9d:30:fc: be:71:98:66:b4:ab:f4:f8:68:07:78:bb:18:38:fe: fc:02:d7:e8:5c:94:32:09:44:f4:80:05:2f:63:d1: 83:16:be:c1:f9:84:35:8b:c5:3d:42:f0:ed:c0:1f: 50:58:00:14:5e:53:23:17:6e:77:55:a4:bd:a6:06: c5:be:7a:85:4b:d1:c9:e5:3a:9d:3c:6e:df:2c:10: 75:56:ab:9b:b0:cd:eb:6d:e1:6b:e5:23:1b:bf:fa: 89:70:34:72:67:4d:e2:88:18:f7:e6:8f:28:0c:a5: ce:48:7a:d9:62:40:69:39:bf:eb:73:71:8f:7c:a0: 95:a3:ae:9e:90:82:7d:f0:43:fa:8f:a6:eb:06:f5: 2a:9e:07:a1:67:50:4d:2d:42:63:e7:ba:03:11:92: 14:08:8c:77:cc:6c:4a:32:5e:92:41:a8:05:c2:f3: 21:d1:44:8e:91:81:c6:d1:37:b0:ec:ff:a2:50:24: f5:67:89:0d:37:a4:ec:b8:24:3a:5e:21:d2:50:00: 03:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E1:AB:4B:30:9A:78:D9:1A:53:01:FC:C2:09:01:F0:91:6F:28:A6 X509v3 Authority Key Identifier: keyid:B8:34:01:CF:BC:40:5C:FB:52:FD:A0:FE:BD:4A:02:B7:B1:CE:27:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1149/24BB24CE9E4911E99F8BCC59C4F9AE02/uDQBz7xAXPtS_aD-vUoCt7HOJ2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:2b:31:c0:65:8a:db:63:71:f3:de:20:ee:fd:3c:36:86:06: d2:f6:b5:06:ec:aa:09:7d:e1:88:c3:2a:d9:26:17:80:fa:18: 6a:4f:41:cf:e4:7b:d0:b4:54:d0:f2:9f:8d:04:17:43:19:e0: 95:a2:cb:3b:87:c6:f0:f3:05:ff:d1:94:e2:89:d8:2f:1e:c7: c6:09:13:55:f3:5e:3d:8a:42:66:a7:79:86:ac:a1:31:e4:ad: 6f:89:c2:98:41:85:ed:35:12:87:c3:2b:6c:94:b3:c6:cf:a8: af:90:93:e9:4f:29:a9:a3:56:e2:31:91:bb:9e:7f:1c:39:86: f4:49:61:29:76:b8:04:f8:17:7b:7c:6c:7d:61:d5:2f:4a:b8: 83:2d:1a:1b:d9:4f:f1:32:3e:53:06:bb:3b:8e:25:e7:5c:f3: 96:e2:b0:3f:b7:01:fc:51:07:22:89:f9:38:5d:f7:41:77:ab: ad:10:83:eb:0b:cd:7c:ea:fe:11:93:fb:22:96:82:7b:27:37: 55:c7:91:e1:b7:48:40:e9:d6:25:19:08:86:a5:33:d7:12:34: 91:12:34:22:92:50:5c:b5:70:f4:22:d7:5b:f8:d7:52:0c:6e: e8:1e:28:aa:cf:bf:a8:55:02:ea:ea:a0:13:75:7f:e9:e0:15: 8f:46:8e:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExNDkxMTAvBgNVBAUTKEI4MzQwMUNGQkM0MDVDRkI1MkZEQTBGRUJENEEwMkI3 QjFDRTI3NjIwHhcNMjQwNTE4MTgzMzUzWhcNMjQwNTI1MTgzMzUzWjAYMRYwFAYD VQQDEw02NjQ4ZjQ5MS00YTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGn7SHbxeGDu5jifTIps9oWTxJUUG/LoFJM0/8Mfuni7pqeXf7W2nvrv5nkP HOD9H8HOaXK59budMPy+cZhmtKv0+GgHeLsYOP78AtfoXJQyCUT0gAUvY9GDFr7B +YQ1i8U9QvDtwB9QWAAUXlMjF253VaS9pgbFvnqFS9HJ5TqdPG7fLBB1VqubsM3r beFr5SMbv/qJcDRyZ03iiBj35o8oDKXOSHrZYkBpOb/rc3GPfKCVo66ekIJ98EP6 j6brBvUqngehZ1BNLUJj57oDEZIUCIx3zGxKMl6SQagFwvMh0USOkYHG0Tew7P+i UCT1Z4kNN6TsuCQ6XiHSUAADYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAHhq0sw mnjZGlMB/MIJAfCRbyimMB8GA1UdIwQYMBaAFLg0Ac+8QFz7Uv2g/r1KArexzidi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTE0OS8yNEJCMjRDRTlF NDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQdFNfYUQtdlVvQ3Q3SE9K MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VEUUJ6N3hBWFB0U19hRC12VW9DdDdIT0oySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTE0OS8yNEJCMjRDRTlFNDkxMUU5OUY4QkNDNTlDNEY5QUUwMi91RFFCejd4QVhQ dFNfYUQtdlVvQ3Q3SE9KMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDKzHAZYrbY3Hz3iDu/Tw2hgbS9rUG7KoJfeGIwyrZJheA+hhqT0HP 5HvQtFTQ8p+NBBdDGeCVoss7h8bw8wX/0ZTiidgvHsfGCRNV8149ikJmp3mGrKEx 5K1vicKYQYXtNRKHwytslLPGz6ivkJPpTympo1biMZG7nn8cOYb0SWEpdrgE+Bd7 fGx9YdUvSriDLRob2U/xMj5TBrs7jiXnXPOW4rA/twH8UQciifk4XfdBd6utEIPr C8186v4Rk/siloJ7JzdVx5Hht0hA6dYlGQiGpTPXEjSREjQiklBctXD0Itdb+NdS DG7oHiiqz7+oVQLq6qATdX/p4BWPRo6w -----END CERTIFICATE-----Generated at Sat May 18 19:21:05 2024 by rpki-client on console-fra.rpki-client.org