$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft File: uQQiVZtYxNqonyJNSccf9E-byjQ.mft (raw, json) Hash identifier: 9ruX/IFw1x7DxugThvRBhSZk6o1ENwSg1PSnta0Oi/k= Subject key identifier: CF:AB:D6:15:C7:85:92:30:AF:8D:84:2C:F8:52:6E:0A:6D:4B:35:0F Authority key identifier: B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 Certificate issuer: /CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft Manifest number: EC Signing time: Sun 19 May 2024 05:51:36 +0000 Manifest this update: Sun 19 May 2024 05:51:35 +0000 Manifest next update: Sun 26 May 2024 05:51:35 +0000 Files and hashes: 1: uQQiVZtYxNqonyJNSccf9E-byjQ.crl (hash: WDsVqDWHN7+AUisv8at+VpSZTh5fbtUi9e1bFXA7bG4=) 2: A948EB7AE90A11EEAD95B85FC4F9AE02.roa (hash: lgResqozHMSjBCPcbPjf0wTjzslhaQ7QQ5VEGI72qEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA723/serialNumber=B90422559B58C4DAA89F224D49C71FF44F9BCA34 Validity Not Before: May 19 05:51:35 2024 GMT Not After : May 26 05:51:35 2024 GMT Subject: CN=66499367-0b26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:82:bc:ff:d0:ce:fa:59:ad:db:a2:23:cd:24: 56:4e:20:95:3c:f1:bf:b6:bc:47:c5:19:bc:26:d9: c1:b8:ad:df:1c:32:27:72:f7:6c:05:6b:75:91:dc: 63:fe:da:f1:87:52:19:e1:53:87:50:09:84:a3:12: 92:93:86:1c:a3:2a:90:b7:74:d8:ac:55:c6:ff:6c: 4f:ce:00:61:0a:eb:80:a7:41:b6:e0:67:02:fd:63: 36:1a:8a:a7:7b:24:90:26:5b:a5:37:be:56:34:41: d4:e9:23:62:3c:52:d2:9d:73:ef:fd:e5:70:4d:67: 51:20:b4:1e:3b:57:68:18:35:8d:37:35:d0:60:42: 5b:35:c1:bf:cf:03:a5:b0:c5:2d:49:60:cc:aa:07: af:ce:0a:ae:7c:94:2f:09:5a:3c:29:6a:1b:ac:ab: e5:f6:86:39:74:27:9c:09:be:45:de:dd:84:1c:ac: 73:01:9e:39:cf:27:bd:81:46:4d:92:88:f3:53:0d: 1b:80:ce:4e:ce:76:e5:96:4b:6e:5f:7e:a9:9c:d6: ef:59:28:b5:89:2b:c2:98:48:0b:c0:32:23:ae:1d: 16:31:ba:17:57:3d:78:7c:6c:db:6f:8f:f7:f7:be: fa:09:5e:b8:b6:20:ae:f9:6a:5f:ca:31:4a:b7:c8: 38:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AB:D6:15:C7:85:92:30:AF:8D:84:2C:F8:52:6E:0A:6D:4B:35:0F X509v3 Authority Key Identifier: keyid:B9:04:22:55:9B:58:C4:DA:A8:9F:22:4D:49:C7:1F:F4:4F:9B:CA:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uQQiVZtYxNqonyJNSccf9E-byjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA723/2CD7F5C8B27D11ED8856FA81C4F9AE02/uQQiVZtYxNqonyJNSccf9E-byjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ac:56:d9:bc:92:45:f6:38:30:e2:34:96:1e:53:79:64:28: 9b:3a:c4:31:bd:4c:18:75:60:8a:4f:eb:19:74:a0:92:52:22: e8:17:99:de:09:73:f6:74:60:c8:98:9c:24:ee:3c:e5:25:74: 3c:22:19:e1:d8:2d:13:53:53:c4:37:7d:54:8c:7e:cb:40:98: 0f:2b:ea:17:47:4c:7f:0a:88:00:e0:dd:d6:4d:ff:7f:10:29: 5b:bb:6c:bb:46:0d:c2:1a:38:b2:cd:f9:80:86:ce:43:03:9c: d5:2a:d2:63:91:e4:65:14:2c:9b:6f:4c:0b:ba:2b:58:7a:fd: f7:1e:a6:2f:2a:a2:75:e7:41:71:bd:c9:0c:90:48:79:99:48: 47:b0:53:6a:41:71:37:b7:c3:a9:44:f7:10:e5:54:36:e9:f0: 9e:85:c2:cc:99:68:a1:20:1c:c5:27:88:e3:b8:5e:fd:d8:be: 4c:bb:91:a2:67:01:4f:4a:de:e7:d5:16:0e:6b:bb:1e:7b:d2: f9:1c:2f:80:cf:b4:8a:4b:28:51:55:48:72:a4:8a:c6:18:c5: 48:28:10:76:13:0a:b8:8d:cc:75:59:66:e4:c3:6e:ad:ce:a9: f0:72:ea:25:ff:ec:11:63:05:b2:f4:70:89:fb:3e:d5:bf:03: ca:4c:3d:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3MjMxMTAvBgNVBAUTKEI5MDQyMjU1OUI1OEM0REFBODlGMjI0RDQ5QzcxRkY0 NEY5QkNBMzQwHhcNMjQwNTE5MDU1MTM1WhcNMjQwNTI2MDU1MTM1WjAYMRYwFAYD VQQDEw02NjQ5OTM2Ny0wYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IK8/9DO+lmt26IjzSRWTiCVPPG/trxHxRm8JtnBuK3fHDIncvdsBWt1kdxj /trxh1IZ4VOHUAmEoxKSk4YcoyqQt3TYrFXG/2xPzgBhCuuAp0G24GcC/WM2Goqn eySQJlulN75WNEHU6SNiPFLSnXPv/eVwTWdRILQeO1doGDWNNzXQYEJbNcG/zwOl sMUtSWDMqgevzgqufJQvCVo8KWobrKvl9oY5dCecCb5F3t2EHKxzAZ45zye9gUZN kojzUw0bgM5OznbllktuX36pnNbvWSi1iSvCmEgLwDIjrh0WMboXVz14fGzbb4/3 9776CV64tiCu+WpfyjFKt8g4QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+r1hXH hZIwr42ELPhSbgptSzUPMB8GA1UdIwQYMBaAFLkEIlWbWMTaqJ8iTUnHH/RPm8o0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTcyMy8yQ0Q3RjVDOEIy N0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhOcW9ueUpOU2NjZjlFLWJ5 alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VRUWlWWnRZeE5xb255Sk5TY2NmOUUtYnlqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTcyMy8yQ0Q3RjVDOEIyN0QxMUVEODg1NkZBODFDNEY5QUUwMi91UVFpVlp0WXhO cW9ueUpOU2NjZjlFLWJ5alEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMrFbZvJJF9jgw4jSWHlN5ZCibOsQxvUwYdWCKT+sZdKCSUiLoF5ne CXP2dGDImJwk7jzlJXQ8Ihnh2C0TU1PEN31UjH7LQJgPK+oXR0x/CogA4N3WTf9/ EClbu2y7Rg3CGjiyzfmAhs5DA5zVKtJjkeRlFCybb0wLuitYev33HqYvKqJ150Fx vckMkEh5mUhHsFNqQXE3t8OpRPcQ5VQ26fCehcLMmWihIBzFJ4jjuF792L5Mu5Gi ZwFPSt7n1RYOa7see9L5HC+Az7SKSyhRVUhypIrGGMVIKBB2Ewq4jcx1WWbkw26t zqnwcuol/+wRYwWy9HCJ+z7VvwPKTD3w -----END CERTIFICATE-----Generated at Sun May 19 08:25:11 2024 by rpki-client on console-ams.rpki-client.org