$ rpki-client -vvf rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft File: UyQGWmE9LRB4F5xiFjcczGp3UHo.mft (raw, json) Hash identifier: poOz2Tj8VkJK8apMmHr5qUZDNgCyAXBH3Wz4ch0qGQw= Subject key identifier: BC:69:19:C3:BB:58:A0:DD:CF:CB:51:FD:5F:3B:38:E2:50:E3:8B:21 Authority key identifier: 53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A Certificate issuer: /CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft Manifest number: 21 Signing time: Fri 17 May 2024 08:44:48 +0000 Manifest this update: Fri 17 May 2024 08:44:47 +0000 Manifest next update: Fri 24 May 2024 08:44:47 +0000 Files and hashes: 1: UyQGWmE9LRB4F5xiFjcczGp3UHo.crl (hash: YMdy1hyEAYJb/qF4KdDi8k1EodybZ7t28X9irMdk1zc=) 2: 2805F2D6E5B511EEB34EF35AC4F9AE02.roa (hash: 3mOiLmkKHt67b5K3b4t6LJbsgjd5IafkmgGkq4SBWUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 08:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158EC4/serialNumber=5324065A613D2D1078179C6216371CCC6A77507A Validity Not Before: May 17 08:44:47 2024 GMT Not After : May 24 08:44:47 2024 GMT Subject: CN=66471900-3d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0b:4f:65:3a:29:42:ab:ee:54:1e:56:98:6e: 80:be:ca:fc:ea:d7:2a:50:2c:16:84:43:bb:b5:45: 08:c0:87:33:83:1c:c8:74:02:db:b5:64:9d:35:df: 6b:c6:94:a9:30:6b:62:0f:cc:aa:b5:9d:cc:46:c8: 5c:08:12:ad:c5:a4:f4:30:4b:23:a2:dc:1c:81:47: b4:c5:56:b1:87:67:d8:bc:d8:6e:9e:cf:7e:cb:89: 3e:87:df:4f:3e:88:d2:e0:94:e6:9c:76:65:75:67: 77:8b:07:b4:3b:c8:a9:d7:44:21:d7:2d:82:75:df: 02:6a:72:ce:a8:88:43:fc:8d:7f:2c:bf:58:ee:93: 92:81:df:af:9a:87:64:5c:84:29:80:22:82:b2:46: a2:e3:f6:1f:ab:c4:a1:56:bf:9f:0e:84:b1:93:2d: fe:6f:10:0e:7f:8a:2b:4e:6b:a0:a2:76:46:04:03: 9a:ed:cc:3f:66:41:af:53:d6:29:a8:70:d4:37:c2: 01:8b:a9:f2:b3:7b:32:27:70:95:23:bc:81:f3:a6: 98:75:fd:5b:d5:b4:9a:3c:fd:66:58:a5:e5:9f:ec: 96:2c:3f:16:61:ae:6c:c5:db:4e:03:77:a3:70:a0: 99:8e:5a:d4:15:25:fc:be:7a:42:f2:1a:12:71:6e: 83:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:69:19:C3:BB:58:A0:DD:CF:CB:51:FD:5F:3B:38:E2:50:E3:8B:21 X509v3 Authority Key Identifier: keyid:53:24:06:5A:61:3D:2D:10:78:17:9C:62:16:37:1C:CC:6A:77:50:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UyQGWmE9LRB4F5xiFjcczGp3UHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158EC4/45064790E5B111EE9E35C333C4F9AE02/UyQGWmE9LRB4F5xiFjcczGp3UHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0c:7d:ed:63:49:b6:06:76:d5:7d:78:47:4b:fa:c4:9f:d0: 97:4b:3b:1e:14:a2:ce:bd:eb:d2:20:af:ab:10:f8:0d:66:38: 63:4d:a0:df:ad:13:32:cd:eb:04:16:52:a6:63:a1:7b:78:33: c1:83:f1:7e:e6:7b:4a:37:eb:c2:15:0c:fe:e4:e6:fe:56:27: 30:8b:8d:bd:96:9e:3d:02:30:9d:c7:58:fe:f4:02:27:cb:1e: de:77:ff:34:64:4f:46:4f:ba:ba:13:5c:26:ab:40:53:6c:2e: b2:2e:de:79:5e:db:8b:43:51:5e:d3:9c:50:34:17:f9:0e:db: 34:e4:5d:50:7c:74:a5:4f:05:c3:2d:45:33:1d:b5:ef:44:ce: 11:f6:0e:79:41:d3:1c:8c:56:6e:f2:2c:3b:5e:19:f4:49:9b: 05:6a:b6:a9:25:2c:e4:4e:e3:1b:2b:95:05:c3:2a:fc:c6:d5: 9f:03:28:7f:4f:8d:9a:84:a1:a4:60:b2:e2:fe:c8:38:42:cb: ff:1b:f7:b6:17:96:e9:8f:c9:0d:72:42:e5:1b:d3:d1:71:ac: 81:ad:0e:65:73:47:f1:1d:5c:e9:2b:26:73:1b:3c:dd:83:0a: 6e:d9:1a:11:79:86:a8:c6:25:bf:b7:b3:f3:bd:b9:3f:b7:4e: 75:6e:45:1b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OEVDNDExMC8GA1UEBRMoNTMyNDA2NUE2MTNEMkQxMDc4MTc5QzYyMTYzNzFDQ0M2 QTc3NTA3QTAeFw0yNDA1MTcwODQ0NDdaFw0yNDA1MjQwODQ0NDdaMBgxFjAUBgNV BAMTDTY2NDcxOTAwLTNkNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5C09lOilCq+5UHlaYboC+yvzq1ypQLBaEQ7u1RQjAhzODHMh0Atu1ZJ0132vG lKkwa2IPzKq1ncxGyFwIEq3FpPQwSyOi3ByBR7TFVrGHZ9i82G6ez37LiT6H308+ iNLglOacdmV1Z3eLB7Q7yKnXRCHXLYJ13wJqcs6oiEP8jX8sv1juk5KB36+ah2Rc hCmAIoKyRqLj9h+rxKFWv58OhLGTLf5vEA5/iitOa6CidkYEA5rtzD9mQa9T1imo cNQ3wgGLqfKzezIncJUjvIHzpph1/VvVtJo8/WZYpeWf7JYsPxZhrmzF204Dd6Nw oJmOWtQVJfy+ekLyGhJxboMnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvGkZw7tY oN3Py1H9Xzs44lDjiyEwHwYDVR0jBBgwFoAUUyQGWmE9LRB4F5xiFjcczGp3UHow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4RUM0LzQ1MDY0NzkwRTVC MTExRUU5RTM1QzMzM0M0RjlBRTAyL1V5UUdXbUU5TFJCNEY1eGlGamNjekdwM1VI by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVXlRR1dtRTlMUkI0RjV4aUZqY2N6R3AzVUhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 RUM0LzQ1MDY0NzkwRTVCMTExRUU5RTM1QzMzM0M0RjlBRTAyL1V5UUdXbUU5TFJC NEY1eGlGamNjekdwM1VIby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI4Mfe1jSbYGdtV9eEdL+sSf0JdLOx4Uos6969Igr6sQ+A1mOGNNoN+t EzLN6wQWUqZjoXt4M8GD8X7me0o368IVDP7k5v5WJzCLjb2Wnj0CMJ3HWP70AifL Ht53/zRkT0ZPuroTXCarQFNsLrIu3nle24tDUV7TnFA0F/kO2zTkXVB8dKVPBcMt RTMdte9EzhH2DnlB0xyMVm7yLDteGfRJmwVqtqklLORO4xsrlQXDKvzG1Z8DKH9P jZqEoaRgsuL+yDhCy/8b97YXlumPyQ1yQuUb09FxrIGtDmVzR/EdXOkrJnMbPN2D Cm7ZGhF5hqjGJb+3s/O9uT+3TnVuRRs= -----END CERTIFICATE-----Generated at Fri May 17 10:59:10 2024 by rpki-client on console-ams.rpki-client.org