$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: M1SW4oX9E7WF6wjG78UCFmioYj/WhX1KCJE5H7VTaho= Subject key identifier: 05:FE:3B:B3:1C:D8:8C:B4:AB:52:A1:CE:AB:DD:C4:AF:E4:38:C8:33 Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0F1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0F18 Signing time: Sat 18 May 2024 16:02:52 +0000 Manifest this update: Sat 18 May 2024 16:02:51 +0000 Manifest next update: Sat 25 May 2024 16:02:51 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: mhPB7fmmb29pJkppcazI4B3a8Hf656W9NR8E5iasCw0=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: SDh98iAbyAYT6XpKMlKRXt8rrS5NmRdh+7G1qRkcEVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3870 (0xf1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: May 18 16:02:51 2024 GMT Not After : May 25 16:02:51 2024 GMT Subject: CN=6648d12b-4c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ae:fd:46:ab:1b:d0:84:ad:cd:10:52:22:1d: 02:bf:04:4f:f8:44:98:f4:52:4f:76:e2:3b:a2:e0: 56:6e:14:b9:5e:cc:ef:cb:b2:ff:c3:78:9f:e2:db: 63:3b:9b:e3:36:96:0e:0d:43:da:90:43:58:3f:ac: bf:4b:b3:d8:60:25:50:dd:4e:0e:e1:ea:c6:63:cf: 36:98:46:5b:ca:4f:ab:c9:73:60:fe:74:e6:d9:c5: ce:aa:a7:75:42:d6:67:a9:20:cd:db:46:37:b6:c5: a6:95:e5:17:7d:eb:0b:2f:c6:de:60:87:d3:09:ca: 60:e9:ac:55:44:ee:87:ff:1d:2a:5c:46:e3:18:89: 5c:af:e5:87:56:05:9a:02:25:e4:2e:e2:ff:2d:01: b7:17:d2:b7:c3:58:d2:d4:5d:f0:2d:81:c7:ce:f2: cd:ce:09:cf:f1:45:cf:84:6f:ae:1b:53:be:9f:05: de:9a:a5:3c:9d:96:14:68:0e:b5:8b:14:dc:da:9d: 4f:95:6f:55:31:8a:a2:c7:79:9b:1d:e2:c4:83:e6: 7e:68:3e:fd:b4:ac:60:70:ff:5c:5b:d7:8f:df:92: 27:cf:cd:8a:9c:7c:40:f4:c6:79:25:d7:73:cf:84: 2d:7b:c5:75:fb:1d:da:26:e5:41:8f:a7:ea:0b:ec: 2d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:FE:3B:B3:1C:D8:8C:B4:AB:52:A1:CE:AB:DD:C4:AF:E4:38:C8:33 X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:89:0d:d7:f9:28:6e:14:62:bc:ed:7a:a4:cb:b2:34:35:50: f5:cc:f9:0b:6f:d8:da:8c:ad:ae:ca:eb:cd:82:91:72:d0:1e: cc:fe:2f:c7:f1:68:53:58:34:59:fc:71:6d:f0:2d:d8:c2:58: d8:0a:af:81:a0:83:cd:23:e9:a9:e0:33:06:fc:7d:37:d9:c3: 88:08:9a:26:7f:13:c5:fb:3d:72:97:c0:37:9e:b8:51:a9:cb: 66:81:c0:72:fe:97:b2:b1:47:25:c9:d0:25:e6:21:71:a5:87: 0e:57:b9:14:67:81:d4:88:83:b5:da:84:8c:19:32:6c:38:36: cb:ec:c4:f7:d6:2f:31:0b:01:45:69:ea:21:a0:65:00:ce:e7: c4:b2:64:6f:7b:d8:b2:ae:04:95:23:27:ef:44:6a:c9:bc:e2: b1:76:e2:29:7b:c9:83:7f:da:5c:c5:e5:5e:ee:1d:36:af:9d: 40:b9:6c:a7:53:4d:a7:e8:a4:5a:98:36:2a:e3:0f:9c:a0:85: 5a:0a:dd:8a:fa:f0:7e:cc:27:ed:0f:70:25:ea:b3:fe:c2:31: 25:51:8c:09:23:77:c5:5a:17:8f:0c:a5:7c:6a:de:ef:94:c1: 8e:28:8a:89:1b:71:66:ca:66:bd:f9:27:c1:fd:7f:19:63:f1: 51:a2:6f:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjQwNTE4MTYwMjUxWhcNMjQwNTI1MTYwMjUxWjAYMRYwFAYD VQQDEw02NjQ4ZDEyYi00YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK79Rqsb0IStzRBSIh0CvwRP+ESY9FJPduI7ouBWbhS5Xszvy7L/w3if4ttj O5vjNpYODUPakENYP6y/S7PYYCVQ3U4O4erGY882mEZbyk+ryXNg/nTm2cXOqqd1 QtZnqSDN20Y3tsWmleUXfesLL8beYIfTCcpg6axVRO6H/x0qXEbjGIlcr+WHVgWa AiXkLuL/LQG3F9K3w1jS1F3wLYHHzvLNzgnP8UXPhG+uG1O+nwXemqU8nZYUaA61 ixTc2p1PlW9VMYqix3mbHeLEg+Z+aD79tKxgcP9cW9eP35Inz82KnHxA9MZ5Jddz z4Qte8V1+x3aJuVBj6fqC+wt8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAX+O7Mc 2Iy0q1KhzqvdxK/kOMgzMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZiQ3X+ShuFGK87Xqky7I0NVD1zPkLb9jajK2uyuvNgpFy0B7M/i/H 8WhTWDRZ/HFt8C3YwljYCq+BoIPNI+mp4DMG/H032cOICJomfxPF+z1yl8A3nrhR qctmgcBy/peysUclydAl5iFxpYcOV7kUZ4HUiIO12oSMGTJsODbL7MT31i8xCwFF aeohoGUAzufEsmRve9iyrgSVIyfvRGrJvOKxduIpe8mDf9pcxeVe7h02r51AuWyn U02n6KRamDYq4w+coIVaCt2K+vB+zCftD3Al6rP+wjElUYwJI3fFWhePDKV8at7v lMGOKIqJG3Fmyma9+SfB/X8ZY/FRom/K -----END CERTIFICATE-----Generated at Sat May 18 16:57:55 2024 by rpki-client on console-fra.rpki-client.org