$ rpki-client -vvf rpki.apnic.net/member_repository/A913D657/7167885E42F811EA87424C3DC4F9AE02/uTpsTJBSDd3Jmj02SQW1UjV00yQ.mft File: uTpsTJBSDd3Jmj02SQW1UjV00yQ.mft (raw, json) Hash identifier: Wmdpzp+z8dRdUiHn6pcJgKFDfQ/xkD4KrTYhxpobOZE= Subject key identifier: 0C:74:44:41:7B:2D:15:7C:CB:B6:28:09:16:16:40:6D:E1:F0:86:F2 Authority key identifier: B9:3A:6C:4C:90:52:0D:DD:C9:9A:3D:36:49:05:B5:52:35:74:D3:24 Certificate issuer: /CN=A913D657/serialNumber=B93A6C4C90520DDDC99A3D364905B5523574D324 Certificate serial: 0A4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uTpsTJBSDd3Jmj02SQW1UjV00yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D657/7167885E42F811EA87424C3DC4F9AE02/uTpsTJBSDd3Jmj02SQW1UjV00yQ.mft Manifest number: 0A43 Signing time: Thu 02 May 2024 20:34:56 +0000 Manifest this update: Thu 02 May 2024 20:34:56 +0000 Manifest next update: Thu 09 May 2024 20:34:56 +0000 Files and hashes: 1: uTpsTJBSDd3Jmj02SQW1UjV00yQ.crl (hash: iBI4IUQ7k1Nv/dhH5qjfstSiUuUd8t+GZr1xFR8DD18=) 2: E40F9840431D11EA9772B432C4F9AE02.roa (hash: lJj0lEitjgrqi8XLQtDJNuTNmGXS6tADBUsrYZnfIUE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D657/7167885E42F811EA87424C3DC4F9AE02/uTpsTJBSDd3Jmj02SQW1UjV00yQ.crl rsync://rpki.apnic.net/member_repository/A913D657/7167885E42F811EA87424C3DC4F9AE02/uTpsTJBSDd3Jmj02SQW1UjV00yQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uTpsTJBSDd3Jmj02SQW1UjV00yQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 20:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2635 (0xa4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D657/serialNumber=B93A6C4C90520DDDC99A3D364905B5523574D324 Validity Not Before: May 2 20:34:56 2024 GMT Not After : May 9 20:34:56 2024 GMT Subject: CN=6633f8f0-2990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1f:1b:9d:55:b0:b6:50:d3:09:74:b1:11:ec: a2:20:2c:43:1d:19:bc:4e:08:44:c2:64:db:28:cb: 3d:8b:a2:48:c2:db:66:d6:69:bf:d8:4c:dc:e5:0d: a1:bc:29:57:d2:a4:19:96:0a:ee:39:08:11:9b:57: 63:7a:06:67:8a:5f:2f:de:31:95:81:71:70:4e:02: 77:66:5d:ce:2e:00:6b:16:ee:c6:50:83:ee:5e:49: 03:ff:17:ef:ba:e9:e2:75:9c:17:e3:6d:de:ad:27: 7c:68:62:54:93:97:7e:88:82:2b:53:50:1a:d9:aa: e0:5b:9d:f9:e1:48:60:be:ce:97:33:86:ad:b4:e4: c2:9d:08:d0:2d:4c:ae:ec:fd:7d:4e:d9:22:b3:31: a2:ca:b6:20:ac:e7:03:81:0c:b6:31:5c:28:72:f1: ee:ab:21:d4:74:88:d1:47:bd:bd:7d:77:d9:7b:d5: 77:21:02:ef:13:78:a3:0e:24:0c:22:ab:48:4f:64: 0a:68:6a:eb:28:a5:a8:1b:ce:9c:fb:e0:2a:4e:8e: 5b:8a:5d:0c:8e:ff:03:c4:ae:6d:42:cb:00:49:c0: 2b:df:d4:03:1a:76:68:83:23:c2:10:c2:2c:6c:dc: 34:5f:17:16:ce:19:aa:c8:89:2c:cb:a8:e9:b3:ea: 9f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:74:44:41:7B:2D:15:7C:CB:B6:28:09:16:16:40:6D:E1:F0:86:F2 X509v3 Authority Key Identifier: keyid:B9:3A:6C:4C:90:52:0D:DD:C9:9A:3D:36:49:05:B5:52:35:74:D3:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D657/7167885E42F811EA87424C3DC4F9AE02/uTpsTJBSDd3Jmj02SQW1UjV00yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uTpsTJBSDd3Jmj02SQW1UjV00yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D657/7167885E42F811EA87424C3DC4F9AE02/uTpsTJBSDd3Jmj02SQW1UjV00yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:d9:fc:4c:11:22:c6:3e:0b:e5:0f:e7:b2:05:c0:e3:98:45: 09:24:dc:4e:87:0c:a4:5a:c4:80:69:e5:df:04:b2:84:43:5e: 45:4c:de:13:31:ae:96:5c:78:d8:f3:a8:19:f1:cf:04:eb:c0: dc:99:b7:41:98:37:70:e0:6c:d4:17:d7:1c:c9:36:5f:f4:86: 84:69:1b:3a:cd:86:72:fb:e0:7f:98:31:a8:7e:94:e3:ee:5f: 9a:08:9a:ca:f9:24:17:81:cb:cb:fd:92:3a:95:c5:2e:df:d9: 1a:ed:a3:2b:1a:b7:21:2a:16:8a:7b:17:09:03:dd:8c:99:d2: f2:a3:19:89:89:df:e6:be:cc:2a:62:79:7b:23:99:f1:6b:2f: 73:8e:c4:b8:06:05:51:a8:4d:65:fe:45:c3:b4:b6:a0:03:72: 7f:e2:b9:33:64:60:f9:67:3d:f8:13:30:11:77:f7:07:13:6d: 71:e3:0e:ad:24:94:b3:cf:51:aa:36:0a:86:a0:c8:a6:fc:d0: 50:71:9c:7a:bf:f0:16:ce:81:0a:30:b6:a3:7f:e5:9c:fe:22: 98:6f:84:b8:81:ab:bb:90:a3:67:f1:12:13:9d:3a:0a:71:9d: e2:58:0d:88:30:8d:cf:0a:c7:6e:46:3d:58:ca:ed:79:ea:7b: bb:ab:d5:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q2NTcxMTAvBgNVBAUTKEI5M0E2QzRDOTA1MjBERERDOTlBM0QzNjQ5MDVCNTUy MzU3NEQzMjQwHhcNMjQwNTAyMjAzNDU2WhcNMjQwNTA5MjAzNDU2WjAYMRYwFAYD VQQDEw02NjMzZjhmMC0yOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqB8bnVWwtlDTCXSxEeyiICxDHRm8TghEwmTbKMs9i6JIwttm1mm/2Ezc5Q2h vClX0qQZlgruOQgRm1djegZnil8v3jGVgXFwTgJ3Zl3OLgBrFu7GUIPuXkkD/xfv uunidZwX423erSd8aGJUk5d+iIIrU1Aa2argW5354Uhgvs6XM4attOTCnQjQLUyu 7P19TtkiszGiyrYgrOcDgQy2MVwocvHuqyHUdIjRR729fXfZe9V3IQLvE3ijDiQM IqtIT2QKaGrrKKWoG86c++AqTo5bil0Mjv8DxK5tQssAScAr39QDGnZogyPCEMIs bNw0XxcWzhmqyIksy6jps+qfuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAx0REF7 LRV8y7YoCRYWQG3h8IbyMB8GA1UdIwQYMBaAFLk6bEyQUg3dyZo9NkkFtVI1dNMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDY1Ny83MTY3ODg1RTQy RjgxMUVBODc0MjRDM0RDNEY5QUUwMi91VHBzVEpCU0RkM0ptajAyU1FXMVVqVjAw eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VUcHNUSkJTRGQzSm1qMDJTUVcxVWpWMDB5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDY1Ny83MTY3ODg1RTQyRjgxMUVBODc0MjRDM0RDNEY5QUUwMi91VHBzVEpCU0Rk M0ptajAyU1FXMVVqVjAweVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy2fxMESLGPgvlD+eyBcDjmEUJJNxOhwykWsSAaeXfBLKEQ15FTN4T Ma6WXHjY86gZ8c8E68DcmbdBmDdw4GzUF9ccyTZf9IaEaRs6zYZy++B/mDGofpTj 7l+aCJrK+SQXgcvL/ZI6lcUu39ka7aMrGrchKhaKexcJA92MmdLyoxmJid/mvswq Ynl7I5nxay9zjsS4BgVRqE1l/kXDtLagA3J/4rkzZGD5Zz34EzARd/cHE21x4w6t JJSzz1GqNgqGoMim/NBQcZx6v/AWzoEKMLajf+Wc/iKYb4S4gau7kKNn8RITnToK cZ3iWA2IMI3PCsduRj1Yyu156nu7q9Vu -----END CERTIFICATE-----Generated at Thu May 2 22:13:16 2024 by rpki-client on console-fra.rpki-client.org