$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft File: uko-NN2arQAtSR0TxciM5c3Jk6o.mft (raw, json) Hash identifier: SJM7wxlv4neOtyWIx7EYu3YOVY4onms5CRemYs/vZ/k= Subject key identifier: 5A:8A:7A:1D:68:2D:10:25:0C:FB:AA:75:D8:57:15:58:99:53:1D:22 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 09F3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft Manifest number: 09EE Signing time: Sun 26 May 2024 20:48:13 +0000 Manifest this update: Sun 26 May 2024 20:48:13 +0000 Manifest next update: Sun 02 Jun 2024 20:48:13 +0000 Files and hashes: 1: uko-NN2arQAtSR0TxciM5c3Jk6o.crl (hash: 5imCbgUAuwAjglXm6b8AHRNPe35jrqRZcqEmVwTEwB0=) 2: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (hash: le6qjqCzgyimHjECGdiCiB7624kiepl1Husd+YnK6FA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 14:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2547 (0x9f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: May 26 20:48:13 2024 GMT Not After : Jun 2 20:48:13 2024 GMT Subject: CN=6653a00d-d4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3b:04:16:7f:93:4a:ea:23:20:20:00:5a:e0: ac:87:87:5e:58:aa:46:ae:4b:4f:59:bf:57:4f:7d: 73:9e:98:ae:99:17:39:f1:18:a4:40:f7:e2:1a:73: 91:87:76:33:3a:40:5f:75:43:d9:51:45:0c:e9:3c: 4c:5d:27:d6:be:d5:51:b5:28:aa:8a:43:63:3e:33: 35:46:5a:56:43:cb:be:bb:6d:a7:6d:c5:7f:0a:c1: 36:d9:27:f7:2b:f6:70:38:4d:d3:f6:fe:fe:c7:ae: 5d:77:c5:b6:fd:27:91:3f:41:7c:50:4b:e0:c9:64: b1:31:1a:c2:68:85:b7:21:88:b8:19:1f:0a:6d:84: e0:68:cf:19:a1:c1:f1:43:ea:02:92:81:24:84:a3: 1f:ff:9d:6b:bf:3b:ce:d6:c1:cf:01:eb:cd:06:84: d1:48:63:81:d7:88:ba:43:99:bd:9c:41:db:fa:af: 54:87:e2:5e:7e:e9:f3:11:e7:33:cc:4d:dd:d5:c5: bc:2e:9f:d9:b5:e8:a9:c0:f1:de:f4:d8:1e:e2:b1: 5e:66:8b:a2:94:77:26:58:e6:eb:a8:89:fa:93:92: a5:a9:54:bc:23:0e:3e:83:1a:60:94:f3:fb:ca:9b: d4:34:7f:78:f9:64:65:16:a0:22:34:94:e6:3a:4c: 0e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8A:7A:1D:68:2D:10:25:0C:FB:AA:75:D8:57:15:58:99:53:1D:22 X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:6e:1e:da:2e:72:a2:3c:a7:0d:3b:b3:e5:95:ad:4e:90:a2: c7:1d:dd:bf:09:ba:e8:ee:3a:fe:c6:dc:0b:06:7a:43:e7:b8: 6e:04:48:d1:12:6d:7d:16:53:0b:2e:9a:bf:a3:78:59:4a:5b: 12:bd:c0:94:1c:8c:01:3d:4b:06:1a:34:95:1b:c1:aa:40:54: c1:43:9c:d7:29:a8:89:a4:8d:18:6c:07:36:48:39:a1:a7:33: 8d:db:ee:b2:51:2e:3e:cf:92:76:d0:d8:13:7c:0b:97:96:5b: a6:48:9b:ed:58:33:7f:86:3d:85:7a:77:d7:f5:c6:41:13:f0: e2:a1:9d:cd:33:02:47:87:b5:4f:b3:e6:23:c0:5d:f8:9b:8b: be:9f:e3:ca:b5:fe:e0:f0:2a:4a:ca:91:b9:e5:9e:cf:76:94: c7:7a:aa:8f:47:6f:58:8c:d5:26:fe:39:4d:57:cc:6b:3b:d1: cd:a2:68:4b:e8:6b:3a:45:a6:4f:bd:e5:8c:7a:d8:40:96:fc: 4a:c2:f9:92:0f:da:95:7c:10:23:aa:ec:b3:a3:c3:c1:ad:c4: c1:30:44:87:fb:a2:f4:63:a2:5c:fb:10:60:21:a3:da:74:51: 36:36:bb:92:69:df:78:2e:7e:2b:62:ae:1b:c4:6c:fb:f2:54: 7e:71:63:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjQwNTI2MjA0ODEzWhcNMjQwNjAyMjA0ODEzWjAYMRYwFAYD VQQDEw02NjUzYTAwZC1kNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDsEFn+TSuojICAAWuCsh4deWKpGrktPWb9XT31znpiumRc58RikQPfiGnOR h3YzOkBfdUPZUUUM6TxMXSfWvtVRtSiqikNjPjM1RlpWQ8u+u22nbcV/CsE22Sf3 K/ZwOE3T9v7+x65dd8W2/SeRP0F8UEvgyWSxMRrCaIW3IYi4GR8KbYTgaM8ZocHx Q+oCkoEkhKMf/51rvzvO1sHPAevNBoTRSGOB14i6Q5m9nEHb+q9Uh+JefunzEecz zE3d1cW8Lp/ZteipwPHe9Nge4rFeZouilHcmWObrqIn6k5KlqVS8Iw4+gxpglPP7 ypvUNH94+WRlFqAiNJTmOkwOmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqKeh1o LRAlDPuqddhXFViZUx0iMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjEyNy8zMzdGQkE0NDU0NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJR QXRTUjBUeGNpTTVjM0prNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClbh7aLnKiPKcNO7Plla1OkKLHHd2/Cbro7jr+xtwLBnpD57huBEjR Em19FlMLLpq/o3hZSlsSvcCUHIwBPUsGGjSVG8GqQFTBQ5zXKaiJpI0YbAc2SDmh pzON2+6yUS4+z5J20NgTfAuXllumSJvtWDN/hj2FenfX9cZBE/DioZ3NMwJHh7VP s+YjwF34m4u+n+PKtf7g8CpKypG55Z7PdpTHeqqPR29YjNUm/jlNV8xrO9HNomhL 6Gs6RaZPveWMethAlvxKwvmSD9qVfBAjquyzo8PBrcTBMESH+6L0Y6Jc+xBgIaPa dFE2NruSad94Ln4rYq4bxGz78lR+cWNw -----END CERTIFICATE-----Generated at Sun May 26 21:25:56 2024 by rpki-client on console-fra.rpki-client.org