$ rpki-client -vvf rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft File: UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft (raw, json) Hash identifier: 0sD1d87MVuailO1XgykYPP4HysmLqhXSIgMMBKnwfqQ= Subject key identifier: E1:79:42:F0:D0:16:AD:D5:0E:57:4C:9B:47:F2:49:B9:5D:F3:18:11 Authority key identifier: 50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 Certificate issuer: /CN=A913318E/serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft Manifest number: 1D Signing time: Wed 15 May 2024 08:51:58 +0000 Manifest this update: Wed 15 May 2024 08:51:58 +0000 Manifest next update: Wed 22 May 2024 08:51:58 +0000 Files and hashes: 1: UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl (hash: AXV+beh6nTT5Y8HnZ3ZSj/n3tsAidXrjy96ncPQuL1M=) 2: 6EAE50E8EBFA11EEA937307AC4F9AE02.roa (hash: PvnhLROEDT/HF0pg2lWtSI4NudFoUGDhALVvmqWgLCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913318E/serialNumber=500F9200EB86DC5FD06DB786C0CEA452D0CE7230 Validity Not Before: May 15 08:51:58 2024 GMT Not After : May 22 08:51:58 2024 GMT Subject: CN=664477ae-fb70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:47:22:8d:04:52:9f:47:bd:7c:5e:8c:af:04: 5d:18:f3:04:27:8c:76:c5:7c:06:b4:e3:06:ab:23: 05:0e:f6:22:7e:13:77:b8:ad:9e:d7:64:b0:3e:27: 8d:b4:42:d9:66:14:52:ad:09:58:d9:03:0d:ee:8e: 76:c5:81:fe:ea:8e:ee:54:af:bf:21:d0:76:34:9e: 30:dc:d7:8c:31:d4:59:d8:d1:bd:9c:56:f9:2d:ad: 36:e5:d5:ab:e6:4c:47:4f:3b:b4:7d:18:ad:8f:cd: 2e:2c:cb:5a:67:3c:b3:05:eb:2b:33:30:22:5b:87: bc:7c:8d:26:ed:d0:a3:be:6f:29:ab:cd:b3:38:f3: 45:a2:12:34:7b:4f:8c:16:9e:4c:36:11:d8:4b:f3: b6:06:48:6d:11:f8:88:34:22:58:99:73:5d:ef:bd: 2e:11:91:e9:5f:69:0f:04:75:7f:3d:e6:13:2c:a4: 0b:7b:4c:50:38:bf:f9:df:db:e1:cc:cc:67:db:5e: dd:4a:eb:57:ec:dd:48:fd:a2:93:37:57:83:a4:93: 92:c4:61:78:3c:94:4f:9c:15:35:e1:13:03:f9:7c: e9:5b:8e:4d:ac:af:e7:60:8b:7e:c1:df:b4:2f:9a: 68:fd:b4:9d:4d:f0:7e:4e:ab:c8:f6:7d:cb:2a:fc: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:79:42:F0:D0:16:AD:D5:0E:57:4C:9B:47:F2:49:B9:5D:F3:18:11 X509v3 Authority Key Identifier: keyid:50:0F:92:00:EB:86:DC:5F:D0:6D:B7:86:C0:CE:A4:52:D0:CE:72:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UA-SAOuG3F_QbbeGwM6kUtDOcjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913318E/6A90AF84EBF911EE9DA79B77C4F9AE02/UA-SAOuG3F_QbbeGwM6kUtDOcjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a5:eb:28:c4:13:a3:22:0b:80:6a:2e:64:fb:9a:ac:c2:b7: 05:42:8b:7b:33:2f:17:32:e5:f3:bc:bc:bf:18:1f:f7:98:ef: 1d:0c:4f:d6:f2:25:b2:dc:c3:b0:bc:fa:fb:f0:5d:bd:1c:88: e3:23:05:f4:d5:2b:72:29:85:6c:88:ec:a1:26:41:77:31:95: 80:80:09:d8:73:9e:8f:7c:60:55:a3:26:b0:36:73:2a:75:37: 0d:1d:47:21:f2:ad:a4:4d:bf:41:cf:98:53:09:f3:88:3b:ad: ac:d4:90:11:c5:cd:46:9b:c0:25:6a:07:3f:d4:cb:ee:de:b4: 08:cf:29:fd:c3:65:2f:bb:f6:12:fb:af:5e:24:7b:9b:db:10: d5:58:02:b7:f1:c3:dc:ec:bf:0e:c1:4b:a3:8d:60:06:77:a1: cb:09:bd:66:d8:63:89:d1:d0:93:83:48:99:f5:54:b7:e0:d5: 2d:7f:41:3f:61:6e:09:bf:14:22:44:1e:e1:68:21:f9:0a:79: 2c:08:ca:a1:ef:74:c7:a0:06:7b:9c:0b:4f:06:d5:67:b1:e9: c0:f1:82:bf:6d:a8:58:f9:d1:54:5f:a5:b5:c4:a5:27:b2:97: fc:42:d2:31:9f:22:1a:08:99:f8:7c:5f:62:ce:6b:8a:04:33: 9c:4f:3e:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzE4RTExMC8GA1UEBRMoNTAwRjkyMDBFQjg2REM1RkQwNkRCNzg2QzBDRUE0NTJE MENFNzIzMDAeFw0yNDA1MTUwODUxNThaFw0yNDA1MjIwODUxNThaMBgxFjAUBgNV BAMTDTY2NDQ3N2FlLWZiNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyRyKNBFKfR718XoyvBF0Y8wQnjHbFfAa04warIwUO9iJ+E3e4rZ7XZLA+J420 QtlmFFKtCVjZAw3ujnbFgf7qju5Ur78h0HY0njDc14wx1FnY0b2cVvktrTbl1avm TEdPO7R9GK2PzS4sy1pnPLMF6yszMCJbh7x8jSbt0KO+bymrzbM480WiEjR7T4wW nkw2EdhL87YGSG0R+Ig0IliZc13vvS4RkelfaQ8EdX895hMspAt7TFA4v/nf2+HM zGfbXt1K61fs3Uj9opM3V4Okk5LEYXg8lE+cFTXhEwP5fOlbjk2sr+dgi37B37Qv mmj9tJ1N8H5Oq8j2fcsq/OQlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4XlC8NAW rdUOV0ybR/JJuV3zGBEwHwYDVR0jBBgwFoAUUA+SAOuG3F/QbbeGwM6kUtDOcjAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMThFLzZBOTBBRjg0RUJG OTExRUU5REE3OUI3N0M0RjlBRTAyL1VBLVNBT3VHM0ZfUWJiZUd3TTZrVXRET2Nq QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVUEtU0FPdUczRl9RYmJlR3dNNmtVdERPY2pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz MThFLzZBOTBBRjg0RUJGOTExRUU5REE3OUI3N0M0RjlBRTAyL1VBLVNBT3VHM0Zf UWJiZUd3TTZrVXRET2NqQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK2l6yjEE6MiC4BqLmT7mqzCtwVCi3szLxcy5fO8vL8YH/eY7x0MT9by JbLcw7C8+vvwXb0ciOMjBfTVK3IphWyI7KEmQXcxlYCACdhzno98YFWjJrA2cyp1 Nw0dRyHyraRNv0HPmFMJ84g7razUkBHFzUabwCVqBz/Uy+7etAjPKf3DZS+79hL7 r14ke5vbENVYArfxw9zsvw7BS6ONYAZ3ocsJvWbYY4nR0JODSJn1VLfg1S1/QT9h bgm/FCJEHuFoIfkKeSwIyqHvdMegBnucC08G1Wex6cDxgr9tqFj50VRfpbXEpSey l/xC0jGfIhoImfh8X2LOa4oEM5xPPuM= -----END CERTIFICATE-----Generated at Wed May 15 09:27:29 2024 by rpki-client on console-fra.rpki-client.org