$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft File: U8Dn8GiqHvADoL7ipdUtvInc37g.mft (raw, json) Hash identifier: iKqotKGQ3oJIZZmwAaPP8MNHzScNrwDxrP3XUfyJLOg= Subject key identifier: 9E:1C:AA:FF:AC:BD:8E:77:EA:5B:83:D7:BD:43:76:7E:FA:51:C5:D9 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft Manifest number: 5C Signing time: Wed 15 May 2024 07:53:59 +0000 Manifest this update: Wed 15 May 2024 07:53:59 +0000 Manifest next update: Wed 22 May 2024 07:53:58 +0000 Files and hashes: 1: U8Dn8GiqHvADoL7ipdUtvInc37g.crl (hash: MR8ID/9cN1abl/rFY03aD31eAV4c70z6KU+zw9npi0I=) 2: FEB0698C941C11EE89E27567C4F9AE02.roa (hash: Is45ozchu807HN3ghPPdBfyquiZv3hvaQBbA7UKjIH0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Validity Not Before: May 15 07:53:59 2024 GMT Not After : May 22 07:53:58 2024 GMT Subject: CN=66446a17-6331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:68:35:a0:ad:29:f3:a9:13:2e:b9:10:d3:85: 2c:ad:a3:f9:4e:9d:3a:8f:0b:b7:af:f5:28:d1:b8: 97:bb:6b:98:2e:97:15:5e:f0:86:76:99:a6:32:b0: ab:1f:2c:d2:19:7f:21:5f:f0:ec:f2:05:5f:11:e7: 68:bb:9e:99:5d:6b:e7:20:da:a5:51:d1:a7:5c:8e: 60:01:4b:d2:0d:a3:9e:51:61:32:ee:a4:da:a0:f1: 2b:75:ff:0c:e7:0c:f7:03:44:a6:c7:29:cd:4e:6c: d7:1a:63:45:a9:09:93:3e:09:d4:c0:6a:c4:4e:22: 7a:59:07:68:30:94:8b:c8:50:77:8e:7a:4a:f3:a6: ed:43:f6:4b:13:dc:3c:78:7f:87:f9:b2:04:1a:e7: 21:dd:8c:7a:26:f6:cc:c9:93:ea:91:0f:10:cf:2d: c9:b4:c2:ec:87:6f:21:35:82:6c:0e:26:7d:29:9e: 33:91:81:68:e2:f8:e6:d3:e9:5b:a4:7a:0a:2e:52: 84:e5:15:09:dd:8e:7c:17:92:5b:9c:54:ab:68:95: f2:43:72:35:2f:3a:05:25:83:1c:80:a3:48:3c:29: 6a:ab:5d:8b:37:32:81:79:30:1f:51:a2:13:85:cb: 55:81:da:d0:b1:38:e0:f6:2f:5b:c8:d0:94:ed:dc: 65:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:1C:AA:FF:AC:BD:8E:77:EA:5B:83:D7:BD:43:76:7E:FA:51:C5:D9 X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:30:6e:43:17:14:d9:2a:46:89:28:cf:93:1b:24:6a:c9:23: 5f:9b:1d:37:3c:7d:69:40:de:c7:f1:06:18:df:a3:a7:23:cc: 52:7b:66:74:cd:78:09:98:e4:37:b2:db:4a:f4:95:b2:d3:68: 72:47:9a:46:66:f4:54:d5:d2:a0:47:9a:d2:6d:c2:f3:ec:fb: 5b:f3:7e:0d:a8:91:db:d9:91:52:b8:1a:42:71:8b:e5:da:2e: 7f:85:c9:dc:00:da:d5:67:87:2c:11:23:aa:66:aa:a8:af:a5: b8:6e:c6:82:36:ab:c9:b2:e0:b1:d5:60:66:1c:54:6b:e2:f4: f8:59:29:1a:93:fe:f5:84:01:49:09:76:ec:81:82:b0:8e:b5: ed:e7:af:1d:36:0f:5b:34:4e:91:a5:36:34:c6:ef:0c:47:76: 7c:ae:91:1f:b3:b8:9e:86:23:dc:63:94:9d:f4:b6:53:55:5b: aa:21:ae:38:49:c6:13:65:11:f5:c0:60:18:90:37:42:d7:36: 5a:31:92:e0:99:1d:66:89:83:36:42:be:ca:c3:d1:a7:48:c4: a5:f6:90:09:f1:bc:78:87:d3:90:1a:4f:bb:6f:16:8a:5c:b4: 68:a9:0f:79:b0:90:70:da:77:a0:fe:b8:d6:e7:9f:8c:ca:d4: 1e:fc:3a:45 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MDlBMzExMC8GA1UEBRMoNTNDMEU3RjA2OEFBMUVGMDAzQTBCRUUyQTVENTJEQkM4 OURDREZCODAeFw0yNDA1MTUwNzUzNTlaFw0yNDA1MjIwNzUzNThaMBgxFjAUBgNV BAMTDTY2NDQ2YTE3LTYzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDoaDWgrSnzqRMuuRDThSyto/lOnTqPC7ev9SjRuJe7a5gulxVe8IZ2maYysKsf LNIZfyFf8OzyBV8R52i7nplda+cg2qVR0adcjmABS9INo55RYTLupNqg8St1/wzn DPcDRKbHKc1ObNcaY0WpCZM+CdTAasROInpZB2gwlIvIUHeOekrzpu1D9ksT3Dx4 f4f5sgQa5yHdjHom9szJk+qRDxDPLcm0wuyHbyE1gmwOJn0pnjORgWji+ObT6Vuk egouUoTlFQndjnwXklucVKtolfJDcjUvOgUlgxyAo0g8KWqrXYs3MoF5MB9RohOF y1WB2tCxOOD2L1vI0JTt3GXTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnhyq/6y9 jnfqW4PXvUN2fvpRxdkwHwYDVR0jBBgwFoAUU8Dn8GiqHvADoL7ipdUtvInc37gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEwOUEzLzQzRkI2MkZBOEZF ODExRUU5MkY1Qzc2QUM0RjlBRTAyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVThEbjhHaXFIdkFEb0w3aXBkVXR2SW5jMzdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEw OUEzLzQzRkI2MkZBOEZFODExRUU5MkY1Qzc2QUM0RjlBRTAyL1U4RG44R2lxSHZB RG9MN2lwZFV0dkluYzM3Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEMwbkMXFNkqRokoz5MbJGrJI1+bHTc8fWlA3sfxBhjfo6cjzFJ7ZnTN eAmY5Dey20r0lbLTaHJHmkZm9FTV0qBHmtJtwvPs+1vzfg2okdvZkVK4GkJxi+Xa Ln+FydwA2tVnhywRI6pmqqivpbhuxoI2q8my4LHVYGYcVGvi9PhZKRqT/vWEAUkJ duyBgrCOte3nrx02D1s0TpGlNjTG7wxHdnyukR+zuJ6GI9xjlJ30tlNVW6ohrjhJ xhNlEfXAYBiQN0LXNloxkuCZHWaJgzZCvsrD0adIxKX2kAnxvHiH05AaT7tvFopc tGipD3mwkHDad6D+uNbnn4zK1B78OkU= -----END CERTIFICATE-----Generated at Wed May 15 09:27:27 2024 by rpki-client on console-fra.rpki-client.org