$ rpki-client -vvf rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft File: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft (raw, json) Hash identifier: jURfC9uNp28fKTdnsLz+oSvvm7nPpl5YsaZtE7VGRUk= Subject key identifier: 77:9C:3C:0F:40:D7:50:5D:1E:97:BF:AB:CB:83:F4:E8:17:27:37:D1 Authority key identifier: 52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 Certificate issuer: /CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft Manifest number: 016E Signing time: Mon 29 Apr 2024 04:43:54 +0000 Manifest this update: Mon 29 Apr 2024 04:43:54 +0000 Manifest next update: Mon 06 May 2024 04:43:54 +0000 Files and hashes: 1: UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl (hash: mxGKss8Uuw3aTnRln/+bmLfB+a3wvM145CCruLLOF/M=) 2: 417DC83A275511EDAE6C242BC4F9AE02.roa (hash: j3gVUs3S0LdvDTka6mscj+LaFmRsRN9ulfaWeJunJAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 04:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136D7D/serialNumber=5222A1619DFFF04CB097BB516A074CCD1DAFFC78 Validity Not Before: Apr 29 04:43:54 2024 GMT Not After : May 6 04:43:54 2024 GMT Subject: CN=662f258a-9285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:69:ad:a5:ac:ba:77:7a:f4:48:fa:02:cd:2c: 0b:6f:18:64:9c:bb:62:8c:41:f0:ed:29:48:c3:46: 04:14:ca:06:0f:4d:d5:04:77:65:90:59:6a:c5:08: 4e:ca:78:95:83:e3:41:31:39:b1:ba:bf:59:05:68: 25:5c:eb:15:a5:22:4f:68:4f:f7:21:56:8c:96:ed: f2:bc:04:f1:a0:d2:21:95:21:b0:7f:87:66:88:71: 0d:b5:54:05:97:08:57:4c:89:7c:1f:86:47:d1:08: e4:28:74:69:fa:3b:48:28:35:86:95:8f:f0:f1:a7: ac:29:cb:91:55:e7:54:3b:81:33:16:b1:58:5d:31: 0e:8d:b3:c1:96:2e:2d:a2:e7:b0:0c:55:e0:0e:f4: 26:e4:1e:87:a8:4a:cf:16:89:29:0f:96:1f:36:c8: d9:d3:d3:8b:85:e0:da:e2:d9:75:84:f3:b7:01:5f: 97:d9:22:c7:ce:f0:a7:a9:a1:93:97:ae:b2:34:20: a8:4a:a2:28:a9:1e:e5:af:2e:d0:e5:35:fc:55:eb: ae:20:19:37:66:7a:69:ae:75:ba:76:99:9f:c1:0f: ea:c8:bc:d2:37:d6:3d:8c:b7:ed:1e:83:c0:53:8e: b2:53:04:f2:8e:d5:16:ae:64:de:22:6c:22:f6:79: 68:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9C:3C:0F:40:D7:50:5D:1E:97:BF:AB:CB:83:F4:E8:17:27:37:D1 X509v3 Authority Key Identifier: keyid:52:22:A1:61:9D:FF:F0:4C:B0:97:BB:51:6A:07:4C:CD:1D:AF:FC:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136D7D/A339630E275011ED9147B273C4F9AE02/UiKhYZ3_8Eywl7tRagdMzR2v_Hg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:a6:8e:1f:12:54:77:d7:a6:33:ac:d8:38:51:06:d4:16:d0: 4b:95:9c:56:a0:17:6f:c6:22:d0:a8:ed:3e:11:d8:59:39:ca: d3:99:96:12:c5:06:b6:65:f7:fb:4e:42:bc:e6:bc:2b:59:f6: 8e:5d:fd:6a:69:7d:ec:3f:dd:e0:08:e3:fd:83:1f:77:83:1d: 52:3b:f4:c7:62:80:57:eb:d4:c8:5a:23:01:4a:5f:a1:29:22: 41:81:39:fb:04:ed:f3:4b:be:f8:64:c7:7d:ec:c8:ac:0a:d9: 62:bb:10:4b:28:67:e3:79:32:2f:9f:be:22:83:49:b0:2d:20: de:7a:7a:61:8d:aa:25:03:f0:4f:18:90:8e:16:64:42:0d:28: 47:d6:4f:b7:f9:ad:42:70:06:0c:8a:ce:8a:66:6c:d7:3d:be: a9:ac:77:2b:33:fa:a8:28:9c:25:4f:db:59:2c:aa:10:9b:0e: 1a:67:e9:09:af:0c:a5:7d:9e:8e:2b:f4:94:bd:44:75:62:02: b9:ac:cd:65:11:d8:f1:2b:69:40:53:86:3f:f6:98:25:59:c9: be:b8:d2:e4:12:62:78:47:47:ce:8b:d0:b4:aa:12:5d:39:95: e9:bd:19:90:c7:64:51:07:88:0a:9c:15:cb:80:bf:37:30:82: bc:8c:bf:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZEN0QxMTAvBgNVBAUTKDUyMjJBMTYxOURGRkYwNENCMDk3QkI1MTZBMDc0Q0NE MURBRkZDNzgwHhcNMjQwNDI5MDQ0MzU0WhcNMjQwNTA2MDQ0MzU0WjAYMRYwFAYD VQQDEw02NjJmMjU4YS05Mjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mmtpay6d3r0SPoCzSwLbxhknLtijEHw7SlIw0YEFMoGD03VBHdlkFlqxQhO yniVg+NBMTmxur9ZBWglXOsVpSJPaE/3IVaMlu3yvATxoNIhlSGwf4dmiHENtVQF lwhXTIl8H4ZH0QjkKHRp+jtIKDWGlY/w8aesKcuRVedUO4EzFrFYXTEOjbPBli4t ouewDFXgDvQm5B6HqErPFokpD5YfNsjZ09OLheDa4tl1hPO3AV+X2SLHzvCnqaGT l66yNCCoSqIoqR7lry7Q5TX8VeuuIBk3ZnpprnW6dpmfwQ/qyLzSN9Y9jLftHoPA U46yUwTyjtUWrmTeImwi9nlo4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHecPA9A 11BdHpe/q8uD9OgXJzfRMB8GA1UdIwQYMBaAFFIioWGd//BMsJe7UWoHTM0dr/x4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkQ3RC9BMzM5NjMwRTI3 NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhFeXdsN3RSYWdkTXpSMnZf SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VpS2hZWjNfOEV5d2w3dFJhZ2RNelIydl9IZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkQ3RC9BMzM5NjMwRTI3NTAxMUVEOTE0N0IyNzNDNEY5QUUwMi9VaUtoWVozXzhF eXdsN3RSYWdkTXpSMnZfSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIpo4fElR316YzrNg4UQbUFtBLlZxWoBdvxiLQqO0+EdhZOcrTmZYS xQa2Zff7TkK85rwrWfaOXf1qaX3sP93gCOP9gx93gx1SO/THYoBX69TIWiMBSl+h KSJBgTn7BO3zS774ZMd97MisCtliuxBLKGfjeTIvn74ig0mwLSDeenphjaolA/BP GJCOFmRCDShH1k+3+a1CcAYMis6KZmzXPb6prHcrM/qoKJwlT9tZLKoQmw4aZ+kJ rwylfZ6OK/SUvUR1YgK5rM1lEdjxK2lAU4Y/9pglWcm+uNLkEmJ4R0fOi9C0qhJd OZXpvRmQx2RRB4gKnBXLgL83MIK8jL8K -----END CERTIFICATE-----Generated at Mon Apr 29 05:41:29 2024 by rpki-client on console-fra.rpki-client.org