$ rpki-client -vvf rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft File: UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft (raw, json) Hash identifier: FatWnToBb0wOCaekWU/8UHwxJTDH+65tEnCNpnGvOXI= Subject key identifier: 28:F0:96:EF:7A:49:53:99:48:24:00:1F:5A:1E:59:13:27:C8:A2:D7 Authority key identifier: 53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF Certificate issuer: /CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Certificate serial: 1FA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft Manifest number: 1F96 Signing time: Thu 02 May 2024 16:24:30 +0000 Manifest this update: Thu 02 May 2024 16:24:29 +0000 Manifest next update: Thu 09 May 2024 16:24:29 +0000 Files and hashes: 1: UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl (hash: w1qgHO56I/E01+rL9k29zv7Omtr5NIbi7oRBg1NtX3s=) 2: F79267D61E4011E6945BEB0DC4F9AE02.roa (hash: WIW1H/NBvXho413cX7adVb3la0lM1cJsxulEulGGn4Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8103 (0x1fa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159967/serialNumber=5330EEEEB0D0A9535FAC8505E735843AF6CE60AF Validity Not Before: May 2 16:24:29 2024 GMT Not After : May 9 16:24:29 2024 GMT Subject: CN=6633be3e-9d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0a:0f:fb:1d:a3:fd:5f:da:b3:46:e8:18:2e: 5e:31:78:40:03:5d:9b:bc:ce:bc:11:ea:f7:98:a1: fb:9e:7d:4d:90:67:dc:56:56:cb:a0:1a:c3:c3:98: ae:67:38:ad:10:7b:f8:eb:90:a2:2f:05:9a:24:9c: 56:cd:23:ed:4d:1d:19:c0:37:0d:28:8d:74:9b:e8: 82:ec:51:11:c2:52:dc:d0:2c:d7:dc:47:da:14:42: 46:4f:d1:63:d4:d8:5e:d0:f1:dc:a3:dc:db:38:e7: ea:ac:48:bb:84:bb:f3:bd:2d:a9:19:a5:9c:9a:26: e1:49:df:db:9e:44:55:24:7e:7f:ec:bd:f2:89:8b: 22:db:53:9a:00:16:b0:63:1b:56:36:76:dc:34:33: 6f:a5:b2:39:82:2f:9b:a7:9e:ec:06:94:19:54:12: 2a:88:dc:2d:b5:11:6e:5d:21:18:65:82:ed:3f:18: e3:f4:96:ed:a9:88:5b:b5:c7:4c:c8:a8:cb:fa:e7: de:87:c5:0c:2f:a8:ef:5d:a9:3f:9d:af:9e:77:94: 71:0a:90:f2:c6:f4:6e:e6:a4:de:64:6c:7a:29:7c: d6:05:c1:f3:7a:cd:f7:24:d1:57:8b:a5:84:e8:75: f2:d9:24:bc:78:56:af:fb:bb:a3:26:0d:58:f3:cb: 75:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:96:EF:7A:49:53:99:48:24:00:1F:5A:1E:59:13:27:C8:A2:D7 X509v3 Authority Key Identifier: keyid:53:30:EE:EE:B0:D0:A9:53:5F:AC:85:05:E7:35:84:3A:F6:CE:60:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzDu7rDQqVNfrIUF5zWEOvbOYK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159967/0BBF257815A911E6912D423BC4F9AE02/UzDu7rDQqVNfrIUF5zWEOvbOYK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f5:56:7b:34:49:5e:82:d9:c1:f0:3a:54:ab:f1:7d:c3:59: dd:67:47:d5:f3:03:85:24:b2:ce:31:26:ac:65:9f:b1:06:69: b3:5c:71:40:38:2c:1f:59:75:1a:bf:e7:8a:a8:cc:30:3c:9d: ca:1e:71:3a:72:de:74:e0:6b:fb:87:a5:3a:73:dd:a4:99:b3: 65:db:da:bb:56:ff:59:a0:9f:58:76:ab:80:c9:6e:4c:5d:56: 04:ee:0d:80:9c:40:87:4c:a7:5c:8a:b4:21:22:57:4d:dd:4c: 97:70:e3:54:58:76:d5:cf:5c:59:d1:ef:42:8c:0a:9f:98:95: 7d:26:7f:ad:b9:30:b1:24:8f:fe:07:4c:84:68:aa:4d:9f:d5: 3e:8d:65:71:a3:3e:01:03:0b:f9:00:d9:38:1f:fb:ea:00:ec: b2:21:21:93:ac:93:7c:8b:30:eb:b1:c3:4f:14:08:da:8d:c5: fc:9f:14:1b:77:d5:d3:1a:6f:cd:12:f5:5e:7f:33:9e:51:51: 66:f9:01:5e:3a:d2:3a:8d:24:68:bf:ea:72:f8:bb:61:90:0d: e4:10:43:3a:22:eb:c6:4d:a1:91:bd:47:b9:65:15:c4:2e:4f: c8:ce:ed:d5:f3:b4:c1:da:f3:0a:20:de:ff:13:09:86:32:c6: db:11:fa:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5NjcxMTAvBgNVBAUTKDUzMzBFRUVFQjBEMEE5NTM1RkFDODUwNUU3MzU4NDNB RjZDRTYwQUYwHhcNMjQwNTAyMTYyNDI5WhcNMjQwNTA5MTYyNDI5WjAYMRYwFAYD VQQDEw02NjMzYmUzZS05ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AoP+x2j/V/as0boGC5eMXhAA12bvM68Eer3mKH7nn1NkGfcVlbLoBrDw5iu ZzitEHv465CiLwWaJJxWzSPtTR0ZwDcNKI10m+iC7FERwlLc0CzX3EfaFEJGT9Fj 1Nhe0PHco9zbOOfqrEi7hLvzvS2pGaWcmibhSd/bnkRVJH5/7L3yiYsi21OaABaw YxtWNnbcNDNvpbI5gi+bp57sBpQZVBIqiNwttRFuXSEYZYLtPxjj9JbtqYhbtcdM yKjL+ufeh8UML6jvXak/na+ed5RxCpDyxvRu5qTeZGx6KXzWBcHzes33JNFXi6WE 6HXy2SS8eFav+7ujJg1Y88t1SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjwlu96 SVOZSCQAH1oeWRMnyKLXMB8GA1UdIwQYMBaAFFMw7u6w0KlTX6yFBec1hDr2zmCv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTk2Ny8wQkJGMjU3ODE1 QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFWTmZySVVGNXpXRU92Yk9Z SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6RHU3ckRRcVZOZnJJVUY1eldFT3ZiT1lLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTk2Ny8wQkJGMjU3ODE1QTkxMUU2OTEyRDQyM0JDNEY5QUUwMi9VekR1N3JEUXFW TmZySVVGNXpXRU92Yk9ZSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa9VZ7NElegtnB8DpUq/F9w1ndZ0fV8wOFJLLOMSasZZ+xBmmzXHFA OCwfWXUav+eKqMwwPJ3KHnE6ct504Gv7h6U6c92kmbNl29q7Vv9ZoJ9YdquAyW5M XVYE7g2AnECHTKdcirQhIldN3UyXcONUWHbVz1xZ0e9CjAqfmJV9Jn+tuTCxJI/+ B0yEaKpNn9U+jWVxoz4BAwv5ANk4H/vqAOyyISGTrJN8izDrscNPFAjajcX8nxQb d9XTGm/NEvVefzOeUVFm+QFeOtI6jSRov+py+LthkA3kEEM6IuvGTaGRvUe5ZRXE Lk/Izu3V87TB2vMKIN7/EwmGMsbbEfqz -----END CERTIFICATE-----Generated at Thu May 2 17:43:08 2024 by rpki-client on console-fra.rpki-client.org