$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft File: U4JkLr15mg-ChtBlSCntdoQw-eQ.mft (raw, json) Hash identifier: mQopz4PRrFcIwPrzQfL6B47yT9vl93Iu1E4KKJtvm+Y= Subject key identifier: F0:12:B8:5E:82:08:B7:80:DD:9E:29:7B:1A:AB:BC:97:AC:03:C1:0A Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0D90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft Manifest number: 0D8C Signing time: Sat 18 May 2024 18:33:31 +0000 Manifest this update: Sat 18 May 2024 18:33:31 +0000 Manifest next update: Sat 25 May 2024 18:33:31 +0000 Files and hashes: 1: U4JkLr15mg-ChtBlSCntdoQw-eQ.crl (hash: X7EiUnHekAO3CgOdCUWRdK5MBhYmA2Om6oReLxC20cA=) 2: 350711FA881211EE9710F928C4F9AE02.roa (hash: sfPAnXr7xEHdgMJNllmq4r53ptUK/6CUfSS0o5vq3Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3472 (0xd90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: May 18 18:33:31 2024 GMT Not After : May 25 18:33:31 2024 GMT Subject: CN=6648f47b-14f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:9e:f6:45:81:3e:f4:a3:29:39:73:d3:f7: 96:58:d3:92:41:82:03:08:01:36:c1:d3:1f:9b:6b: 9f:95:72:eb:82:eb:4e:80:06:44:21:ac:6a:8a:49: 6e:ad:23:87:88:b8:c6:85:9e:a7:17:aa:b2:e4:c8: cc:8c:f2:e8:d6:df:76:06:b1:c4:bd:25:1c:5a:0b: 4a:0e:3a:61:89:98:e7:84:8e:18:13:4a:71:05:a0: 31:4d:1f:c4:a8:ee:13:1a:ea:74:90:0d:cb:33:a6: 14:2c:8d:f4:45:f1:75:dd:0e:17:ee:a5:a0:25:1a: 48:eb:e0:62:f7:b5:21:83:98:41:bd:ed:8c:e7:f5: 9a:0e:0c:e1:a3:f0:ec:bb:27:d0:93:a0:54:e5:58: 51:2f:05:2a:18:31:9b:9f:6f:94:15:db:d1:45:fa: e4:8f:37:30:42:64:16:17:cc:4f:9e:cc:d2:8e:aa: e7:13:0e:58:02:09:4d:02:a4:d3:e4:fb:44:32:1d: c4:d4:e4:77:d3:a5:82:43:c5:1a:54:d9:8a:17:2e: 1b:3c:a3:6c:6f:ac:cc:61:87:c8:c9:eb:91:ab:7e: e2:63:be:40:0a:9f:ae:52:32:24:0f:b1:a0:27:2f: cc:fa:b5:8a:5d:3a:fe:6b:d8:7c:cc:90:d5:bf:40: f3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:12:B8:5E:82:08:B7:80:DD:9E:29:7B:1A:AB:BC:97:AC:03:C1:0A X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:bd:4f:d3:c8:ec:c5:79:6a:27:63:41:8b:5f:91:83:3a:12: 48:5d:73:1d:fe:a1:44:c7:c8:34:c7:92:64:ab:ff:da:b1:8b: 15:6c:ce:c8:a6:dc:1b:07:f3:7e:fe:fd:25:b0:52:33:6a:7b: 29:5a:36:37:aa:b8:b3:02:ec:d1:8e:3c:6a:49:e5:fc:dc:f5: 5f:fe:a7:2c:99:bc:80:a0:23:cf:77:3e:80:34:bf:f7:b1:0a: e4:45:dc:f4:dc:cc:d4:91:07:19:be:fc:84:6f:36:db:8e:df: 96:62:16:8d:2b:c7:5c:45:da:39:2c:f3:a6:0a:10:7a:d3:68: a6:a1:11:de:15:47:e0:2f:16:bb:53:75:35:ee:8b:33:9e:a1: 81:7c:14:e1:4b:b4:d3:86:6e:30:f8:9a:f8:1b:ef:11:65:57: e0:60:50:5f:e9:49:83:8f:6b:07:0b:e7:3a:a5:fe:ad:bd:68: 27:36:b8:e0:09:4d:f5:5d:1c:30:53:2f:34:d0:22:06:02:bf: d5:a6:03:55:f7:2e:91:28:fc:70:49:46:ec:df:fb:e5:3a:7c: b9:d9:37:6a:00:94:cf:bc:7b:d2:90:4b:29:35:b3:ef:90:28: 8d:b8:46:15:d2:58:50:b4:8c:76:a2:df:0f:01:91:17:a2:26: 5d:99:56:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjQwNTE4MTgzMzMxWhcNMjQwNTI1MTgzMzMxWjAYMRYwFAYD VQQDEw02NjQ4ZjQ3Yi0xNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoqe9kWBPvSjKTlz0/eWWNOSQYIDCAE2wdMfm2uflXLrgutOgAZEIaxqiklu rSOHiLjGhZ6nF6qy5MjMjPLo1t92BrHEvSUcWgtKDjphiZjnhI4YE0pxBaAxTR/E qO4TGup0kA3LM6YULI30RfF13Q4X7qWgJRpI6+Bi97Uhg5hBve2M5/WaDgzho/Ds uyfQk6BU5VhRLwUqGDGbn2+UFdvRRfrkjzcwQmQWF8xPnszSjqrnEw5YAglNAqTT 5PtEMh3E1OR306WCQ8UaVNmKFy4bPKNsb6zMYYfIyeuRq37iY75ACp+uUjIkD7Gg Jy/M+rWKXTr+a9h8zJDVv0DzkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPASuF6C CLeA3Z4pexqrvJesA8EKMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Njg1Ni8yQ0Q0NUZCQTlFMjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1n LUNodEJsU0NudGRvUXctZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAvU/TyOzFeWonY0GLX5GDOhJIXXMd/qFEx8g0x5Jkq//asYsVbM7I ptwbB/N+/v0lsFIzanspWjY3qrizAuzRjjxqSeX83PVf/qcsmbyAoCPPdz6ANL/3 sQrkRdz03MzUkQcZvvyEbzbbjt+WYhaNK8dcRdo5LPOmChB602imoRHeFUfgLxa7 U3U17osznqGBfBThS7TThm4w+Jr4G+8RZVfgYFBf6UmDj2sHC+c6pf6tvWgnNrjg CU31XRwwUy800CIGAr/VpgNV9y6RKPxwSUbs3/vlOny52TdqAJTPvHvSkEspNbPv kCiNuEYV0lhQtIx2ot8PAZEXoiZdmVbT -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org