$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft File: UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft (raw, json) Hash identifier: f0922aPzOpZ4w0YdRkolXMJ3hoYanP00rb3rYmpU4zQ= Subject key identifier: 3F:6E:DE:23:36:73:3F:C5:C6:E7:18:E2:10:1E:A4:5E:F8:4B:DB:C0 Authority key identifier: 51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB Certificate issuer: /CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Certificate serial: 21AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft Manifest number: 216B Signing time: Sat 18 May 2024 16:14:33 +0000 Manifest this update: Sat 18 May 2024 16:14:33 +0000 Manifest next update: Sat 25 May 2024 16:14:33 +0000 Files and hashes: 1: UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl (hash: NeLgXc8HjBFYupCquyZbMjZ+CHC89tKeAbW6nCmGcMM=) 2: 6E12CFE0D6D511EEB73F802EC4F9AE02.roa (hash: fu2Y/ef9m4hYpradbNhhquwt+T6O3zblslaEMelPVBA=) 3: 8D93B9E0D8E911EE85D9881FC4F9AE02.roa (hash: AmGEU/vI25utL7crZoKrtfl5OSwvLwWyEhptdWMwqps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8618 (0x21aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA1C/serialNumber=51C2611B461DD511835A5141F8AEE502D3A39AEB Validity Not Before: May 18 16:14:33 2024 GMT Not After : May 25 16:14:33 2024 GMT Subject: CN=6648d3e9-be4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:33:d7:3e:eb:b7:2a:cf:79:a2:9a:9c:f4:79: 41:d8:3a:b1:36:78:35:fa:d5:3b:6f:32:42:38:ee: 63:ff:f1:15:90:a4:01:44:13:9d:6f:c1:a5:e3:c3: 28:3b:81:98:20:7d:ab:92:49:51:81:8a:ad:06:29: 29:06:83:2b:e6:8f:ff:07:e5:e7:98:db:cf:3b:8d: aa:9f:8b:c5:4c:a2:33:c7:80:cb:58:24:a0:bc:3e: 38:3e:27:37:0e:18:e1:62:5b:f4:3d:17:2a:65:c0: d5:53:b5:57:bb:7f:41:8d:ca:17:50:20:20:45:03: 83:f3:9a:d3:e9:0d:9b:7f:95:b7:fb:90:ea:df:26: 84:d8:ea:de:bb:37:8b:77:6f:58:b8:4b:69:ae:6c: 3a:f8:31:ec:ca:2c:a4:de:68:11:df:3f:47:ee:f3: 05:76:d9:4d:c9:ed:63:03:71:45:d2:0c:2e:39:13: c5:80:f0:57:23:da:38:ee:2f:28:a3:ee:05:dc:a1: 02:7d:d4:98:02:2e:f1:e2:7b:84:39:1b:28:44:ba: 9c:73:cc:3c:d4:02:16:cb:9f:7e:6c:c4:f4:57:46: 27:53:93:de:86:b9:8c:11:4f:eb:3d:13:86:5c:9e: 61:02:c9:8d:61:fe:40:a2:61:f4:67:c6:5d:83:72: f6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6E:DE:23:36:73:3F:C5:C6:E7:18:E2:10:1E:A4:5E:F8:4B:DB:C0 X509v3 Authority Key Identifier: keyid:51:C2:61:1B:46:1D:D5:11:83:5A:51:41:F8:AE:E5:02:D3:A3:9A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UcJhG0Yd1RGDWlFB-K7lAtOjmus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA1C/63B214A2C81511E581D20884C4F9AE02/UcJhG0Yd1RGDWlFB-K7lAtOjmus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:09:1f:bf:f3:65:c5:d7:86:e1:b4:62:2b:4b:65:97:58:52: 04:40:3a:10:73:86:54:15:ad:82:ea:19:95:01:52:3a:c3:8b: da:cb:d4:40:ee:3e:ee:c4:26:12:5b:33:e1:2f:f0:8f:a5:fc: 1a:63:b0:1f:4f:ef:f4:b1:29:f9:3d:e2:a1:79:f7:f1:5c:3f: d0:c8:d4:d9:2d:e7:47:2e:25:d6:7d:47:98:ef:77:80:10:45: 13:fb:b7:cf:03:2e:6d:ba:a6:95:eb:6e:7c:ea:3b:50:71:54: 3d:7a:87:e3:e2:c8:0f:61:26:f1:1e:31:0e:a5:92:b5:ff:2a: aa:54:39:3c:76:b6:10:f4:99:8b:48:7a:2f:d6:f1:93:f4:9d: 94:4d:94:44:00:84:4f:d0:82:4b:4d:3a:c0:b6:72:1f:26:36: 4b:25:c5:7e:91:39:c4:32:a3:0f:ac:6a:47:43:19:ac:cb:26: 8b:5f:69:81:e8:f0:27:a6:48:b4:dc:d9:d4:e4:68:0b:e5:8c: a1:15:54:d9:4f:f9:2b:bb:2a:bc:57:18:9e:7e:0a:39:18:95: 2c:52:d7:d5:88:ce:2d:13:52:6b:d6:17:ff:10:43:c0:8b:0e: 71:8c:5c:63:a8:81:af:28:ee:27:bb:c6:bc:9a:9a:be:a0:15: 21:ed:71:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMUMxMTAvBgNVBAUTKDUxQzI2MTFCNDYxREQ1MTE4MzVBNTE0MUY4QUVFNTAy RDNBMzlBRUIwHhcNMjQwNTE4MTYxNDMzWhcNMjQwNTI1MTYxNDMzWjAYMRYwFAYD VQQDEw02NjQ4ZDNlOS1iZTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjPXPuu3Ks95opqc9HlB2DqxNng1+tU7bzJCOO5j//EVkKQBRBOdb8Gl48Mo O4GYIH2rkklRgYqtBikpBoMr5o//B+XnmNvPO42qn4vFTKIzx4DLWCSgvD44Pic3 DhjhYlv0PRcqZcDVU7VXu39BjcoXUCAgRQOD85rT6Q2bf5W3+5Dq3yaE2OreuzeL d29YuEtprmw6+DHsyiyk3mgR3z9H7vMFdtlNye1jA3FF0gwuORPFgPBXI9o47i8o o+4F3KECfdSYAi7x4nuEORsoRLqcc8w81AIWy59+bMT0V0YnU5PehrmMEU/rPROG XJ5hAsmNYf5AomH0Z8Zdg3L2/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9u3iM2 cz/FxucY4hAepF74S9vAMB8GA1UdIwQYMBaAFFHCYRtGHdURg1pRQfiu5QLTo5rr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkExQy82M0IyMTRBMkM4 MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFSR0RXbEZCLUs3bEF0T2pt dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VjSmhHMFlkMVJHRFdsRkItSzdsQXRPam11cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkExQy82M0IyMTRBMkM4MTUxMUU1ODFEMjA4ODRDNEY5QUUwMi9VY0poRzBZZDFS R0RXbEZCLUs3bEF0T2ptdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiCR+/82XF14bhtGIrS2WXWFIEQDoQc4ZUFa2C6hmVAVI6w4vay9RA 7j7uxCYSWzPhL/CPpfwaY7AfT+/0sSn5PeKheffxXD/QyNTZLedHLiXWfUeY73eA EEUT+7fPAy5tuqaV62586jtQcVQ9eofj4sgPYSbxHjEOpZK1/yqqVDk8drYQ9JmL SHov1vGT9J2UTZREAIRP0IJLTTrAtnIfJjZLJcV+kTnEMqMPrGpHQxmsyyaLX2mB 6PAnpki03NnU5GgL5YyhFVTZT/kruyq8Vxiefgo5GJUsUtfViM4tE1Jr1hf/EEPA iw5xjFxjqIGvKO4nu8a8mpq+oBUh7XEE -----END CERTIFICATE-----Generated at Sat May 18 16:57:55 2024 by rpki-client on console-fra.rpki-client.org