$ rpki-client -vvf rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft File: U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft (raw, json) Hash identifier: 3CcYw4O0Xf/RLan96rcvYiHRiLdkjqK9jGEYBVPoKck= Subject key identifier: E7:E2:42:DB:40:61:65:36:4E:EF:B9:70:40:7D:85:6C:AE:85:C4:BD Authority key identifier: 53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B Certificate issuer: /CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft Manifest number: 3E Signing time: Wed 15 May 2024 08:24:52 +0000 Manifest this update: Wed 15 May 2024 08:24:51 +0000 Manifest next update: Wed 22 May 2024 08:24:51 +0000 Files and hashes: 1: U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl (hash: l0bLFmcVdOEPZruX/eJG+5/Kx1tdeu4c3ATwM/BwfZU=) 2: 3772F678BC1211EE8C54FD2EC4F9AE02.roa (hash: j7yQ3MutAQIbhYtrFWB2H4tUIBZNV1HrV9jMJoM2fj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 08:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E070/serialNumber=539BB76C8A4379A4DE399C052D38C1B453A66F1B Validity Not Before: May 15 08:24:51 2024 GMT Not After : May 22 08:24:51 2024 GMT Subject: CN=66447153-45a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:bc:bd:1f:51:19:4c:e4:1c:54:6a:46:1c: 61:4f:65:bd:27:0d:f8:f5:61:30:15:8f:7c:86:2e: 0e:25:dc:ff:b1:7b:f7:43:54:3d:25:cc:c6:8a:9a: ca:ae:0e:7d:0b:57:7a:06:b1:81:69:d6:5e:e8:1a: 46:6e:8e:59:8c:d2:56:0d:34:24:bd:15:2a:15:67: 6d:03:68:7d:b5:55:41:6f:9f:0f:ec:a4:61:db:59: 78:2b:cf:90:48:d3:fc:b6:64:df:8e:61:20:07:06: fe:c0:95:7d:d1:26:c1:4b:72:51:ca:81:02:57:7f: 7e:5a:7f:ed:51:1e:e4:b8:a1:f4:a6:0e:09:a5:4b: a7:2f:9f:f1:3a:4c:20:84:0e:f6:71:03:64:00:67: 0f:70:37:84:c9:6f:2e:26:71:ac:ab:6b:dd:f2:02: df:5f:94:92:81:03:06:47:fd:c2:5a:e7:06:23:28: 8e:26:f8:fd:5e:9e:69:f3:0f:d7:3f:15:91:e4:ff: 4c:90:eb:1b:1d:f8:4e:56:16:81:95:d6:b5:90:b2: 01:6c:ef:e5:51:9e:46:8d:b7:97:69:23:eb:cc:1f: df:69:86:83:1b:4d:39:e1:dd:7e:6b:f0:bb:b2:6f: 58:e1:2d:92:cb:7a:eb:17:93:f8:8d:76:fb:73:06: 11:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E2:42:DB:40:61:65:36:4E:EF:B9:70:40:7D:85:6C:AE:85:C4:BD X509v3 Authority Key Identifier: keyid:53:9B:B7:6C:8A:43:79:A4:DE:39:9C:05:2D:38:C1:B4:53:A6:6F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5u3bIpDeaTeOZwFLTjBtFOmbxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E070/89C5597CBC1011EE8BEB137AC4F9AE02/U5u3bIpDeaTeOZwFLTjBtFOmbxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:28:8f:a2:40:f3:ab:87:8f:b9:c3:55:a8:0d:f0:37:12:9e: 49:bc:22:d4:51:81:77:9f:58:6a:de:43:19:60:17:06:2e:ce: d8:dc:49:a9:a1:53:26:72:22:df:e7:44:76:03:23:93:0e:0b: 45:bf:88:9f:ad:82:6a:12:e5:10:21:63:70:51:74:61:09:ea: bb:81:07:28:a1:a8:55:cc:c3:94:59:15:9a:99:c2:76:32:6d: de:c2:59:15:ee:f7:dc:be:0c:3d:d2:51:f2:eb:47:9c:48:2b: 8b:8e:99:e5:20:03:bf:2c:61:0c:f4:c1:e9:5e:77:ac:ec:67: 3a:23:6f:57:12:30:0c:be:a1:e9:d7:0c:78:5c:b7:22:cf:1d: 85:48:d3:ff:52:5d:8c:f0:06:50:55:de:ea:d0:a8:8e:56:34: e0:d2:d6:b0:b1:5c:28:d6:6e:1f:c3:ea:5d:02:6f:76:74:48: 36:8d:f6:58:27:4f:10:1a:32:a6:ff:2f:96:56:ad:07:fa:95: 6e:5b:5a:6f:8b:f7:71:23:e2:4c:80:0b:64:c4:70:1a:b6:8c: af:60:d9:61:5b:c5:ef:5f:9d:72:33:fa:92:7d:9f:33:26:78: 4b:9a:a4:e1:80:6d:b9:4f:38:16:b6:dd:eb:ab:01:7f:f1:71: fe:cc:8f:a5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTA3MDExMC8GA1UEBRMoNTM5QkI3NkM4QTQzNzlBNERFMzk5QzA1MkQzOEMxQjQ1 M0E2NkYxQjAeFw0yNDA1MTUwODI0NTFaFw0yNDA1MjIwODI0NTFaMBgxFjAUBgNV BAMTDTY2NDQ3MTUzLTQ1YTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnsLy9H1EZTOQcVGpGHGFPZb0nDfj1YTAVj3yGLg4l3P+xe/dDVD0lzMaKmsqu Dn0LV3oGsYFp1l7oGkZujlmM0lYNNCS9FSoVZ20DaH21VUFvnw/spGHbWXgrz5BI 0/y2ZN+OYSAHBv7AlX3RJsFLclHKgQJXf35af+1RHuS4ofSmDgmlS6cvn/E6TCCE DvZxA2QAZw9wN4TJby4mcayra93yAt9flJKBAwZH/cJa5wYjKI4m+P1enmnzD9c/ FZHk/0yQ6xsd+E5WFoGV1rWQsgFs7+VRnkaNt5dpI+vMH99phoMbTTnh3X5r8Luy b1jhLZLLeusXk/iNdvtzBhH5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5+JC20Bh ZTZO77lwQH2FbK6FxL0wHwYDVR0jBBgwFoAUU5u3bIpDeaTeOZwFLTjBtFOmbxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMDcwLzg5QzU1OTdDQkMx MDExRUU4QkVCMTM3QUM0RjlBRTAyL1U1dTNiSXBEZWFUZU9ad0ZMVGpCdEZPbWJ4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTV1M2JJcERlYVRlT1p3RkxUakJ0Rk9tYnhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MDcwLzg5QzU1OTdDQkMxMDExRUU4QkVCMTM3QUM0RjlBRTAyL1U1dTNiSXBEZWFU ZU9ad0ZMVGpCdEZPbWJ4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEooj6JA86uHj7nDVagN8DcSnkm8ItRRgXefWGreQxlgFwYuztjcSamh UyZyIt/nRHYDI5MOC0W/iJ+tgmoS5RAhY3BRdGEJ6ruBByihqFXMw5RZFZqZwnYy bd7CWRXu99y+DD3SUfLrR5xIK4uOmeUgA78sYQz0weled6zsZzojb1cSMAy+oenX DHhctyLPHYVI0/9SXYzwBlBV3urQqI5WNODS1rCxXCjWbh/D6l0Cb3Z0SDaN9lgn TxAaMqb/L5ZWrQf6lW5bWm+L93Ej4kyAC2TEcBq2jK9g2WFbxe9fnXIz+pJ9nzMm eEuapOGAbblPOBa23eurAX/xcf7Mj6U= -----END CERTIFICATE-----Generated at Wed May 15 09:27:31 2024 by rpki-client on console-fra.rpki-client.org