$ rpki-client -vvf rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft File: UN4cYHM-ori3boQDYJGOHyXEbkM.mft (raw, json) Hash identifier: FoATp2Pef4b1P4iSeEwnyxuOk5SnHBn28EInDGeu0Xw= Subject key identifier: FB:39:E7:C2:F7:74:BE:CA:35:A5:8B:D4:F3:5E:64:D8:A9:7A:3A:1D Authority key identifier: 50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 Certificate issuer: /CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Certificate serial: 0B0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft Manifest number: 0B05 Signing time: Sat 04 May 2024 20:05:40 +0000 Manifest this update: Sat 04 May 2024 20:05:39 +0000 Manifest next update: Sat 11 May 2024 20:05:39 +0000 Files and hashes: 1: UN4cYHM-ori3boQDYJGOHyXEbkM.crl (hash: iYOU8eCmQjryFd9jfKnlE9a/AGz/q+WXKP5/QCXNQKk=) 2: C4F45E681C1311EA91F32F75C4F9AE02.roa (hash: 0qUJ6ILfuI3jiuKsHi19oGoNzwIoea08jxg+uWK47j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2828 (0xb0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916701E/serialNumber=50DE1C60733EA2B8B76E840360918E1F25C46E43 Validity Not Before: May 4 20:05:39 2024 GMT Not After : May 11 20:05:39 2024 GMT Subject: CN=66369513-67ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:16:fb:6d:f4:ca:46:5b:e6:2e:f1:f0:99:55: 46:b0:f9:a0:f1:df:e5:41:ee:5d:10:e4:74:4d:da: 70:ae:13:f6:f0:1a:be:6e:c7:7c:70:be:6f:cb:e9: 24:2d:e8:67:50:c9:4a:c4:00:a0:4e:de:2f:ea:71: 1f:9f:e7:8a:45:bf:ee:5e:8d:35:c8:58:04:d0:98: df:58:12:16:42:e0:ee:9c:6e:ec:d2:5f:5d:96:c0: 36:a7:1d:6b:fe:b4:cf:58:6f:4f:ec:35:af:18:c1: 56:ac:fc:31:41:f3:3e:19:72:4e:42:e5:4b:89:20: 94:df:af:51:25:9d:b1:12:46:b8:5e:55:f4:b8:d6: cb:9e:eb:49:10:26:66:19:5c:cf:94:62:6e:9d:1c: 76:e7:79:e5:8a:fc:99:4f:3c:06:d6:69:ec:09:4a: 51:b2:0e:1a:3d:90:b8:85:aa:90:7d:16:dc:ea:f8: 1d:a9:2a:0b:df:ad:76:93:26:a7:0c:6c:36:18:70: 7f:91:43:93:c1:08:db:9e:9c:d0:94:8d:64:0b:6e: 66:f3:80:1d:2b:4d:83:22:d3:b5:3b:ca:da:0b:9f: 92:b8:6a:f1:6a:92:ae:85:df:13:15:12:8a:ac:3c: a9:d6:09:f7:55:ee:7c:16:0d:d0:44:9b:09:18:67: 55:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:39:E7:C2:F7:74:BE:CA:35:A5:8B:D4:F3:5E:64:D8:A9:7A:3A:1D X509v3 Authority Key Identifier: keyid:50:DE:1C:60:73:3E:A2:B8:B7:6E:84:03:60:91:8E:1F:25:C4:6E:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UN4cYHM-ori3boQDYJGOHyXEbkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916701E/785D7ED21C0811EA8576B151C4F9AE02/UN4cYHM-ori3boQDYJGOHyXEbkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:a4:bc:07:24:f3:f7:50:32:39:bf:78:1d:ae:8c:fa:4f: dc:1f:d4:8d:4e:91:9a:77:0d:ee:7c:a9:e3:75:6e:aa:af:58: 1d:06:55:62:ab:0a:71:3b:54:3f:55:1a:fe:a1:01:f5:b7:62: a0:71:da:c1:0d:89:49:7f:d8:f4:75:ce:c3:86:ad:8e:22:0c: 9b:61:7a:ad:b4:9f:37:a9:cb:d3:49:81:9a:82:e0:ae:f5:b8: 11:5d:f2:0b:6d:5b:75:76:e4:9f:12:84:e5:5d:cc:25:10:f0: 7b:1f:a5:42:c8:0f:47:a3:a9:fa:f1:b8:f7:d8:97:54:52:20: c3:9f:63:f6:8f:e8:99:ed:f0:e7:3f:8a:c7:df:1d:fe:6e:8a: 42:fb:33:e5:9a:18:4d:fd:4f:66:a0:00:d2:8d:ed:3b:ca:c5: 90:9c:7a:fb:f4:57:85:31:45:0a:a8:43:3b:f2:e9:31:21:59: 26:46:93:02:1c:d4:f7:c6:99:19:9d:29:d0:65:45:08:09:5e: a6:47:7b:9b:5e:80:69:b2:1b:90:e2:12:f7:7f:1d:f1:bf:b6: 5a:d6:a9:28:f9:51:d4:a7:64:0e:fe:01:ba:0b:a0:d2:74:ac: d5:c4:86:f9:18:cc:83:b6:2c:ec:f9:a9:89:ab:01:26:d9:a6: b5:33:33:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMUUxMTAvBgNVBAUTKDUwREUxQzYwNzMzRUEyQjhCNzZFODQwMzYwOTE4RTFG MjVDNDZFNDMwHhcNMjQwNTA0MjAwNTM5WhcNMjQwNTExMjAwNTM5WjAYMRYwFAYD VQQDEw02NjM2OTUxMy02N2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBb7bfTKRlvmLvHwmVVGsPmg8d/lQe5dEOR0TdpwrhP28Bq+bsd8cL5vy+kk LehnUMlKxACgTt4v6nEfn+eKRb/uXo01yFgE0JjfWBIWQuDunG7s0l9dlsA2px1r /rTPWG9P7DWvGMFWrPwxQfM+GXJOQuVLiSCU369RJZ2xEka4XlX0uNbLnutJECZm GVzPlGJunRx253nlivyZTzwG1mnsCUpRsg4aPZC4haqQfRbc6vgdqSoL3612kyan DGw2GHB/kUOTwQjbnpzQlI1kC25m84AdK02DItO1O8raC5+SuGrxapKuhd8TFRKK rDyp1gn3Ve58Fg3QRJsJGGdVlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPs558L3 dL7KNaWL1PNeZNipejodMB8GA1UdIwQYMBaAFFDeHGBzPqK4t26EA2CRjh8lxG5D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAxRS83ODVEN0VEMjFD MDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9yaTNib1FEWUpHT0h5WEVi a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VONGNZSE0tb3JpM2JvUURZSkdPSHlYRWJrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzAxRS83ODVEN0VEMjFDMDgxMUVBODU3NkIxNTFDNEY5QUUwMi9VTjRjWUhNLW9y aTNib1FEWUpHT0h5WEVia00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvKS8ByTz91AyOb94Ha6M+k/cH9SNTpGadw3ufKnjdW6qr1gdBlVi qwpxO1Q/VRr+oQH1t2KgcdrBDYlJf9j0dc7Dhq2OIgybYXqttJ83qcvTSYGaguCu 9bgRXfILbVt1duSfEoTlXcwlEPB7H6VCyA9Ho6n68bj32JdUUiDDn2P2j+iZ7fDn P4rH3x3+bopC+zPlmhhN/U9moADSje07ysWQnHr79FeFMUUKqEM78ukxIVkmRpMC HNT3xpkZnSnQZUUICV6mR3ubXoBpshuQ4hL3fx3xv7Za1qko+VHUp2QO/gG6C6DS dKzVxIb5GMyDtizs+amJqwEm2aa1MzMA -----END CERTIFICATE-----Generated at Sat May 4 20:37:09 2024 by rpki-client on console-fra.rpki-client.org