$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: Gsxz62MzWSdCB6vH/ZkSWLWbNW0BzFmZBMgoCplZHsw= Subject key identifier: 50:66:33:3F:7C:31:6E:16:80:BA:E8:BA:B5:BB:E3:BF:E2:0A:C3:DC Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 0114 Signing time: Sun 19 May 2024 05:22:35 +0000 Manifest this update: Sun 19 May 2024 05:22:35 +0000 Manifest next update: Sun 26 May 2024 05:22:35 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: EpomgQrdc0HnN7OLQSgXj1zRdFT4FMmQNcbNgOOlPfc=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: yCHbl8QlQbMzjHfu0kPf5s8MBmUK/QILBQq+fNO53wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: May 19 05:22:35 2024 GMT Not After : May 26 05:22:35 2024 GMT Subject: CN=66498c9b-7a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:05:1d:fd:6d:e6:b0:25:96:e0:61:84:15:e2: d6:85:b1:a3:ff:cc:bb:a3:92:65:ad:ce:8d:be:13: 1f:92:fe:ac:ba:29:20:d8:56:eb:0f:79:51:b9:c1: ad:bb:09:de:2c:df:98:15:b5:6a:74:8c:0e:82:76: f4:40:f4:e5:2c:81:87:e6:3a:38:ab:29:bd:97:9a: 16:b6:1f:0e:75:14:a4:8e:d5:0f:b7:bc:3c:fe:99: cc:10:0f:b7:2b:b0:ef:47:fe:7d:38:d8:20:a7:43: 95:a9:df:5b:75:e5:e4:a7:3e:7d:78:fe:51:43:b8: 94:8a:75:d8:6a:57:cb:0b:f1:2e:c4:85:60:9e:2c: 46:81:19:de:7e:1d:9e:01:d8:9c:34:d9:f4:87:05: 9d:73:fc:cf:2a:6e:e1:7c:37:0f:c8:89:14:1b:d2: cd:7e:47:bb:de:e5:f5:04:9b:c7:9e:14:ab:87:f0: f4:28:00:55:8c:f6:67:9e:5f:1c:df:0f:e6:f0:ca: bb:f6:38:68:2a:0f:23:59:bd:cf:32:98:d4:50:82: 38:22:45:51:9b:fa:b8:14:36:28:3f:ea:b1:a7:d3: b3:f1:bb:76:28:3b:4f:ad:be:95:2e:dc:50:1e:76: 1b:58:59:26:8e:93:e2:0f:07:e3:1b:de:94:a9:99: 2e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:66:33:3F:7C:31:6E:16:80:BA:E8:BA:B5:BB:E3:BF:E2:0A:C3:DC X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:da:79:17:dc:c4:95:7c:55:f5:b7:d0:1b:b8:e4:46:43:0f: 52:73:60:eb:73:df:c6:91:45:bc:3a:ee:53:b6:6b:eb:44:18: 11:a9:34:c3:51:34:e2:f9:28:4a:2f:45:f0:ef:09:a1:bb:6c: 4e:d9:81:e5:14:e9:40:8f:3b:1b:d8:72:84:e9:37:7f:aa:cd: 18:c9:97:7e:76:98:07:29:3f:27:51:64:06:28:f1:67:a8:52: 6d:f9:5d:09:7d:3d:5c:d4:c7:80:ae:e4:b8:72:28:b0:0a:8b: 96:ac:61:70:d4:40:af:55:c7:09:27:f9:5b:88:8a:2c:08:0f: 19:99:37:34:d6:71:c3:73:a6:41:1c:e7:a3:c3:18:b6:66:6e: 23:28:4e:58:09:d2:66:59:d6:35:e7:0d:40:47:73:20:fb:02: e5:bb:ce:b6:86:c8:d6:bc:03:f9:26:dd:be:11:d1:f4:83:fa: d4:d4:dd:ea:4d:79:d1:4f:ef:09:c8:85:21:d3:8c:c4:f9:3a: ff:b3:d3:ae:82:f5:fd:e5:7a:c1:4b:6c:5e:3b:b0:c7:4a:8d: 32:f2:fd:21:a6:a2:2e:68:7a:e4:0f:ed:71:a2:a5:13:ab:e6: b1:3a:f0:f2:bc:13:1f:b9:5b:2e:e7:49:8c:f6:20:d8:1a:d7: f9:d1:60:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjQwNTE5MDUyMjM1WhcNMjQwNTI2MDUyMjM1WjAYMRYwFAYD VQQDEw02NjQ5OGM5Yi03YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQUd/W3msCWW4GGEFeLWhbGj/8y7o5Jlrc6NvhMfkv6suikg2FbrD3lRucGt uwneLN+YFbVqdIwOgnb0QPTlLIGH5jo4qym9l5oWth8OdRSkjtUPt7w8/pnMEA+3 K7DvR/59ONggp0OVqd9bdeXkpz59eP5RQ7iUinXYalfLC/EuxIVgnixGgRnefh2e AdicNNn0hwWdc/zPKm7hfDcPyIkUG9LNfke73uX1BJvHnhSrh/D0KABVjPZnnl8c 3w/m8Mq79jhoKg8jWb3PMpjUUII4IkVRm/q4FDYoP+qxp9Oz8bt2KDtPrb6VLtxQ HnYbWFkmjpPiDwfjG96UqZkuRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBmMz98 MW4WgLrourW747/iCsPcMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJ2nkX3MSVfFX1t9AbuORGQw9Sc2Drc9/GkUW8Ou5TtmvrRBgRqTTD UTTi+ShKL0Xw7wmhu2xO2YHlFOlAjzsb2HKE6Td/qs0YyZd+dpgHKT8nUWQGKPFn qFJt+V0JfT1c1MeAruS4ciiwCouWrGFw1ECvVccJJ/lbiIosCA8ZmTc01nHDc6ZB HOejwxi2Zm4jKE5YCdJmWdY15w1AR3Mg+wLlu862hsjWvAP5Jt2+EdH0g/rU1N3q TXnRT+8JyIUh04zE+Tr/s9OugvX95XrBS2xeO7DHSo0y8v0hpqIuaHrkD+1xoqUT q+axOvDyvBMfuVsu50mM9iDYGtf50WCV -----END CERTIFICATE-----Generated at Sun May 19 06:14:37 2024 by rpki-client on console-ams.rpki-client.org