$ rpki-client -vvf rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft File: UZQtJe28pR36Vs4J7TYet6JtvSU.mft (raw, json) Hash identifier: cnsVdjzJSNVS3VWE27ZYL2JyFYlHpm7NNYbykIA44/o= Subject key identifier: A6:CF:CA:73:85:CA:AC:0D:55:F9:66:5C:C1:3C:C9:38:B7:B6:0F:6C Authority key identifier: 51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 Certificate issuer: /CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Certificate serial: 0858 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft Manifest number: 0846 Signing time: Thu 02 May 2024 21:55:25 +0000 Manifest this update: Thu 02 May 2024 21:55:25 +0000 Manifest next update: Thu 09 May 2024 21:55:25 +0000 Files and hashes: 1: UZQtJe28pR36Vs4J7TYet6JtvSU.crl (hash: o9qWIVqUlS2623/tP/Kl/C4PvQOnbEI8Q96uMt2VzeU=) 2: 52FF9944AB9711EAB2C00F5EC4F9AE02.roa (hash: DfBornCihnqvJDCmlU/E5+IqCn/ocOk02OPER/txvU8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2136 (0x858) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AFA4/serialNumber=51942D25EDBCA51DFA56CE09ED361EB7A26DBD25 Validity Not Before: May 2 21:55:25 2024 GMT Not After : May 9 21:55:25 2024 GMT Subject: CN=66340bcd-c0dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:36:e7:c9:af:aa:00:e1:b9:ee:ee:d5:ac:dd: f7:ef:08:b4:23:47:da:3d:fc:ed:fa:c8:74:43:e9: eb:be:60:78:c7:e6:69:c0:62:0c:44:85:c8:02:71: 10:69:df:a9:9e:38:74:57:cb:39:60:c9:9c:5e:a2: d7:58:03:4f:55:c5:3c:20:00:f3:f2:d3:8e:21:45: 94:41:52:91:4f:1c:74:a3:34:74:44:cc:39:13:fd: f2:4f:49:ea:13:de:b4:f7:64:00:6c:a6:36:64:a9: 11:d2:7b:10:14:ab:28:66:23:d0:97:b3:62:39:97: 23:04:22:2c:6b:89:4a:f1:e9:66:14:aa:00:28:91: 16:d5:16:4b:b1:d7:e4:cd:29:6f:42:bc:4b:c5:18: be:ce:47:58:94:84:8f:5e:11:d6:9d:fc:00:45:d7: 5d:79:41:93:61:b4:8f:f8:ef:9f:a9:c9:1d:7c:16: 03:8b:db:df:65:26:71:82:17:e3:ea:fc:5e:f6:2d: 8a:ae:f8:d5:51:8f:7c:8c:8b:fc:a2:0f:63:37:f9: cb:3c:14:c6:a3:0b:91:d9:ee:ba:54:e7:ae:d2:22: a1:d7:2c:ce:27:0c:9e:ea:61:30:e1:95:3d:86:19: 0f:04:fb:cc:43:63:19:a0:f4:a9:b8:9b:6a:98:c8: c6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:CF:CA:73:85:CA:AC:0D:55:F9:66:5C:C1:3C:C9:38:B7:B6:0F:6C X509v3 Authority Key Identifier: keyid:51:94:2D:25:ED:BC:A5:1D:FA:56:CE:09:ED:36:1E:B7:A2:6D:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZQtJe28pR36Vs4J7TYet6JtvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AFA4/B67862FAAB9511EAB2559C5BC4F9AE02/UZQtJe28pR36Vs4J7TYet6JtvSU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:13:14:da:51:22:92:9d:17:4a:62:99:c9:63:ca:bf:c6:16: ed:87:23:da:6b:0f:16:86:3d:8e:6b:ab:31:82:08:59:16:a3: a1:76:16:fc:5c:ad:96:fe:c9:3d:bb:0a:98:fc:c2:c8:68:87: 2e:e5:16:6b:57:7b:39:cd:2d:28:dc:fc:29:31:b1:a5:48:34: bb:d3:d2:39:69:9f:8b:a8:19:76:92:e5:f2:3d:4e:40:85:9d: ac:f8:b7:1e:cd:6e:15:a8:6a:3b:9c:18:2a:ae:75:d6:8e:c5: 05:8a:0b:7d:37:01:04:c0:41:1f:25:a4:a6:42:8e:22:6c:03: a3:46:53:c5:74:44:89:b5:d5:8f:b3:95:12:1f:04:01:dd:de: f7:41:0e:03:02:ea:3c:98:cd:ed:f8:02:82:24:96:42:bf:36: d6:18:cb:c0:4e:20:1d:c1:2a:a2:e8:f7:e3:81:30:a2:9b:f8: 9d:d5:80:fa:cb:cf:e4:9d:35:32:69:b4:a0:ac:9d:b5:13:bf: 8c:0a:5b:ac:96:c2:8d:b0:f2:e4:b2:33:2c:a2:0e:5c:2d:52: dd:46:c1:f5:06:16:12:8e:5f:46:a9:ff:06:b1:c8:15:52:41: fa:cd:e7:d2:a8:97:f9:65:69:df:2d:6f:b5:c7:29:9c:6c:4b: e9:91:07:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGQTQxMTAvBgNVBAUTKDUxOTQyRDI1RURCQ0E1MURGQTU2Q0UwOUVEMzYxRUI3 QTI2REJEMjUwHhcNMjQwNTAyMjE1NTI1WhcNMjQwNTA5MjE1NTI1WjAYMRYwFAYD VQQDEw02NjM0MGJjZC1jMGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTbnya+qAOG57u7VrN337wi0I0faPfzt+sh0Q+nrvmB4x+ZpwGIMRIXIAnEQ ad+pnjh0V8s5YMmcXqLXWANPVcU8IADz8tOOIUWUQVKRTxx0ozR0RMw5E/3yT0nq E96092QAbKY2ZKkR0nsQFKsoZiPQl7NiOZcjBCIsa4lK8elmFKoAKJEW1RZLsdfk zSlvQrxLxRi+zkdYlISPXhHWnfwARdddeUGTYbSP+O+fqckdfBYDi9vfZSZxghfj 6vxe9i2KrvjVUY98jIv8og9jN/nLPBTGowuR2e66VOeu0iKh1yzOJwye6mEw4ZU9 hhkPBPvMQ2MZoPSpuJtqmMjGiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbPynOF yqwNVflmXME8yTi3tg9sMB8GA1UdIwQYMBaAFFGULSXtvKUd+lbOCe02Hreibb0l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUZBNC9CNjc4NjJGQUFC OTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBSMzZWczRKN1RZZXQ2SnR2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VaUXRKZTI4cFIzNlZzNEo3VFlldDZKdHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUZBNC9CNjc4NjJGQUFCOTUxMUVBQjI1NTlDNUJDNEY5QUUwMi9VWlF0SmUyOHBS MzZWczRKN1RZZXQ2SnR2U1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3ExTaUSKSnRdKYpnJY8q/xhbthyPaaw8Whj2Oa6sxgghZFqOhdhb8 XK2W/sk9uwqY/MLIaIcu5RZrV3s5zS0o3PwpMbGlSDS709I5aZ+LqBl2kuXyPU5A hZ2s+LcezW4VqGo7nBgqrnXWjsUFigt9NwEEwEEfJaSmQo4ibAOjRlPFdESJtdWP s5USHwQB3d73QQ4DAuo8mM3t+AKCJJZCvzbWGMvATiAdwSqi6PfjgTCim/id1YD6 y8/knTUyabSgrJ21E7+MCluslsKNsPLksjMsog5cLVLdRsH1BhYSjl9Gqf8GscgV UkH6zefSqJf5ZWnfLW+1xymcbEvpkQeS -----END CERTIFICATE-----Generated at Thu May 2 23:03:10 2024 by rpki-client on console-fra.rpki-client.org