$ rpki-client -vvf rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft File: uK3V-E0RutdH--lY1GutO6kTGQM.mft (raw, json) Hash identifier: xDzx0ZEB8ypIRilRUKb9Le7MklOUXMBSXAiPcZIpzCg= Subject key identifier: 97:98:0D:53:D4:A6:5A:E1:62:E8:59:8D:88:23:E2:5A:42:71:3D:F3 Authority key identifier: B8:AD:D5:F8:4D:11:BA:D7:47:FB:E9:58:D4:6B:AD:3B:A9:13:19:03 Certificate issuer: /CN=A91F86D2/serialNumber=B8ADD5F84D11BAD747FBE958D46BAD3BA9131903 Certificate serial: 02CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft Manifest number: 02C5 Signing time: Fri 31 May 2024 04:06:37 +0000 Manifest this update: Fri 31 May 2024 04:06:37 +0000 Manifest next update: Fri 07 Jun 2024 04:06:37 +0000 Files and hashes: 1: uK3V-E0RutdH--lY1GutO6kTGQM.crl (hash: b+AIIL7DBcnOcwMYpKRzEf5Te+cK6h/qm6HlKtzpmpI=) 2: 4F7BE82E397311EDB1F6BE2DC4F9AE02.roa (hash: TIqqrp0emgHvZ/pwNsz30a8tRWqKOYNVX3FKyHMWO4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.crl rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 04:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 717 (0x2cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F86D2/serialNumber=B8ADD5F84D11BAD747FBE958D46BAD3BA9131903 Validity Not Before: May 31 04:06:37 2024 GMT Not After : Jun 7 04:06:37 2024 GMT Subject: CN=66594ccd-bbea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fd:2c:5d:fd:d4:27:45:87:a6:cb:65:32:ca: 39:4a:eb:75:1a:ab:58:67:ec:38:11:e7:d7:0f:85: df:9e:cd:fd:e3:84:f7:51:cf:a2:14:9c:d5:9f:60: 17:b7:ee:2c:bc:8a:72:69:05:b7:2a:1f:3a:2f:8a: ea:fa:41:18:50:fb:ba:75:ff:24:04:3b:97:2b:0d: 14:cf:d4:61:bc:a4:ac:fa:06:25:73:b8:aa:9e:92: 99:b7:bd:77:32:e7:14:a4:cd:f5:1c:ea:b6:10:24: 3e:28:d8:e0:e2:d0:bc:9b:6d:19:b2:9c:94:86:32: 2d:8d:6e:30:41:30:18:06:e8:97:19:00:d8:71:d1: 9f:2a:9b:5c:45:9c:64:26:2f:a2:57:a4:4f:63:5b: 6e:2d:a3:a7:c0:07:d6:cf:7c:b5:d2:2f:81:d4:95: 7d:e9:0e:b0:bd:e3:15:c7:c4:56:84:4a:5b:68:ec: 6a:3f:47:f5:4c:38:06:d4:25:9e:57:83:78:a8:ac: 5e:be:f2:35:ff:86:96:cd:c3:0a:a3:e4:10:11:a4: 2c:b2:70:2f:bf:07:a2:86:93:d0:ec:c6:9d:47:c1: 0b:f2:18:eb:e4:75:3a:54:74:84:f4:f2:8f:1f:35: 26:54:a4:79:38:e6:5a:3e:c3:84:73:9c:df:75:24: be:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:98:0D:53:D4:A6:5A:E1:62:E8:59:8D:88:23:E2:5A:42:71:3D:F3 X509v3 Authority Key Identifier: keyid:B8:AD:D5:F8:4D:11:BA:D7:47:FB:E9:58:D4:6B:AD:3B:A9:13:19:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uK3V-E0RutdH--lY1GutO6kTGQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F86D2/39DDCCDCA97511ECBA5BDC33C4F9AE02/uK3V-E0RutdH--lY1GutO6kTGQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:0c:3f:75:47:aa:a5:16:e1:24:34:88:db:cb:6b:41:24:49: ca:ac:64:37:67:4c:77:4d:7d:85:e1:fc:56:32:71:72:e4:aa: 03:1e:e4:c8:6e:f3:b0:06:df:62:fe:64:1d:fb:0d:6c:5f:ef: 71:aa:04:ad:57:70:0a:2a:81:ec:b2:91:f1:5b:f1:80:74:11: fa:a3:fc:87:61:25:94:f2:90:63:31:f8:ed:ed:91:55:3a:40: 2d:ba:a3:23:25:a7:05:ce:a4:9e:42:b4:95:a0:4a:50:01:9c: 1b:77:d5:95:69:84:5d:3a:da:37:39:66:36:cf:9d:f5:4a:28: 1d:dc:7f:4c:fe:3e:d8:58:81:18:82:5b:73:ca:c6:2c:d2:a0: 7b:d8:0c:43:23:d5:ac:18:04:99:80:f9:55:d0:c6:4a:c6:ff: 87:b7:a0:81:5f:31:72:68:55:13:93:e1:f2:f8:7c:12:06:fe: be:9a:63:1a:b7:5c:92:6d:83:80:74:9e:dd:d8:03:70:bc:ca: fe:65:d0:96:16:13:b0:1f:81:3c:82:6d:d7:50:d2:66:d4:3a: 90:6b:51:3c:93:66:a4:90:02:49:e8:d2:72:8e:d0:1c:de:b1: 28:01:1b:4f:57:01:1f:06:67:bc:ae:f9:6e:95:1d:9b:f5:69: e4:db:83:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg2RDIxMTAvBgNVBAUTKEI4QURENUY4NEQxMUJBRDc0N0ZCRTk1OEQ0NkJBRDNC QTkxMzE5MDMwHhcNMjQwNTMxMDQwNjM3WhcNMjQwNjA3MDQwNjM3WjAYMRYwFAYD VQQDEw02NjU5NGNjZC1iYmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzP0sXf3UJ0WHpstlMso5Sut1GqtYZ+w4EefXD4Xfns3944T3Uc+iFJzVn2AX t+4svIpyaQW3Kh86L4rq+kEYUPu6df8kBDuXKw0Uz9RhvKSs+gYlc7iqnpKZt713 MucUpM31HOq2ECQ+KNjg4tC8m20ZspyUhjItjW4wQTAYBuiXGQDYcdGfKptcRZxk Ji+iV6RPY1tuLaOnwAfWz3y10i+B1JV96Q6wveMVx8RWhEpbaOxqP0f1TDgG1CWe V4N4qKxevvI1/4aWzcMKo+QQEaQssnAvvweihpPQ7MadR8EL8hjr5HU6VHSE9PKP HzUmVKR5OOZaPsOEc5zfdSS+RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeYDVPU plrhYuhZjYgj4lpCcT3zMB8GA1UdIwQYMBaAFLit1fhNEbrXR/vpWNRrrTupExkD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODZEMi8zOUREQ0NEQ0E5 NzUxMUVDQkE1QkRDMzNDNEY5QUUwMi91SzNWLUUwUnV0ZEgtLWxZMUd1dE82a1RH UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLM1YtRTBSdXRkSC0tbFkxR3V0TzZrVEdRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODZEMi8zOUREQ0NEQ0E5NzUxMUVDQkE1QkRDMzNDNEY5QUUwMi91SzNWLUUwUnV0 ZEgtLWxZMUd1dE82a1RHUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADDD91R6qlFuEkNIjby2tBJEnKrGQ3Z0x3TX2F4fxWMnFy5KoDHuTI bvOwBt9i/mQd+w1sX+9xqgStV3AKKoHsspHxW/GAdBH6o/yHYSWU8pBjMfjt7ZFV OkAtuqMjJacFzqSeQrSVoEpQAZwbd9WVaYRdOto3OWY2z531Sigd3H9M/j7YWIEY gltzysYs0qB72AxDI9WsGASZgPlV0MZKxv+Ht6CBXzFyaFUTk+Hy+HwSBv6+mmMa t1ySbYOAdJ7d2ANwvMr+ZdCWFhOwH4E8gm3XUNJm1DqQa1E8k2akkAJJ6NJyjtAc 3rEoARtPVwEfBme8rvlulR2b9Wnk24Oq -----END CERTIFICATE-----Generated at Fri May 31 06:49:30 2024 by rpki-client on console-ams.rpki-client.org