$ rpki-client -vvf rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft File: uftCI-sDug7mzge0ZgIXr69xbV0.mft (raw, json) Hash identifier: w1hUOMgPREgWtSlo7T4hmwuRSAkVcdxPLGGblSdn9ss= Subject key identifier: 6E:D7:57:8A:56:3F:C8:00:FC:3C:D8:3A:79:E3:F6:6F:C5:DC:C9:3E Authority key identifier: B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D Certificate issuer: /CN=A916D5A2/serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Certificate serial: 059E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft Manifest number: 059A Signing time: Wed 01 May 2024 00:41:54 +0000 Manifest this update: Wed 01 May 2024 00:41:53 +0000 Manifest next update: Wed 08 May 2024 00:41:53 +0000 Files and hashes: 1: uftCI-sDug7mzge0ZgIXr69xbV0.crl (hash: g+fMfHFOQ0GAYwor0WGLFUiABCk+/QNyrC5Bkt5GiOc=) 2: 179D126A80BB11EB8827C40AC4F9AE02.roa (hash: CYfBP66AJd1mrtbfe4yzwaO2+r7Y6dCyFs9q2CaK+1U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1438 (0x59e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D5A2/serialNumber=B9FB4223EB03BA0EE6CE07B4660217AFAF716D5D Validity Not Before: May 1 00:41:53 2024 GMT Not After : May 8 00:41:53 2024 GMT Subject: CN=66318fd2-26c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7c:99:47:5e:c4:0b:7e:cb:a6:92:57:f6:84: c4:a5:ee:f0:6a:11:78:4e:29:e5:ae:24:32:5f:3f: 04:61:75:6d:72:6e:e8:11:bc:5c:2d:4f:68:72:b9: 45:b7:8a:93:df:f0:ba:16:2f:0d:8b:ad:8e:b1:5e: 72:8f:67:7d:14:0a:02:98:1f:da:d8:39:7f:34:8c: 53:2e:65:4e:f9:50:09:a5:8c:ad:4c:1e:11:c2:aa: b0:2a:19:50:e4:a9:3d:4e:b0:6c:36:b7:19:92:db: 50:fb:7b:ba:b8:6e:37:e0:c0:43:23:aa:ed:9e:9f: 14:56:0d:e1:78:87:9e:4f:9c:fa:16:b7:9b:07:36: 4f:d2:88:a3:20:21:0e:9e:5b:e4:9e:af:8b:bf:04: 1a:64:9f:30:ca:78:30:e0:31:df:3d:e2:31:b2:25: 7b:78:a8:eb:98:85:5a:ec:ac:93:2d:64:ea:51:f9: b9:3f:51:69:0b:2e:83:ec:76:ef:53:67:b0:3c:24: 36:24:e4:f0:e8:ea:54:bb:ff:de:c7:94:0a:a3:b0: 3b:11:7b:0b:03:3f:e1:ac:6a:48:58:72:66:2f:ba: 97:10:89:0e:5b:04:e1:8e:8f:46:c2:15:62:52:69: 92:71:b1:b9:5a:8f:a9:d2:fa:29:bc:4a:40:61:93: 23:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:D7:57:8A:56:3F:C8:00:FC:3C:D8:3A:79:E3:F6:6F:C5:DC:C9:3E X509v3 Authority Key Identifier: keyid:B9:FB:42:23:EB:03:BA:0E:E6:CE:07:B4:66:02:17:AF:AF:71:6D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uftCI-sDug7mzge0ZgIXr69xbV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D5A2/C21A538680B811EBBEB19E83C4F9AE02/uftCI-sDug7mzge0ZgIXr69xbV0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:68:f1:4b:79:73:c5:e4:13:16:1a:4e:d7:36:21:41:05:86: f8:19:bd:ab:e2:12:a5:d7:4d:ef:de:22:ea:f4:f4:58:13:42: 35:4e:a7:74:31:da:2a:92:30:7e:18:72:e4:e0:26:a0:60:75: 25:cc:55:9b:ba:5a:76:d9:8c:72:14:4a:83:ff:72:02:ff:f1: 0b:bc:99:2c:a4:ec:a0:3f:c4:82:03:1e:a5:4e:f3:8d:bd:87: b8:ee:31:9c:81:95:c8:c0:cc:7a:c4:16:8f:a1:29:4c:9a:f1: 36:55:43:88:94:46:f6:2c:19:18:2c:e4:d2:56:7e:a8:d0:60: fc:32:01:5e:1f:54:b8:ab:67:a6:9a:d8:b7:7e:6e:9c:7a:11: 90:ba:fa:ad:87:c2:ba:cb:1e:ee:e6:af:fd:b7:fc:6c:11:79: 12:4e:98:aa:55:fd:4a:14:59:74:34:06:83:c2:3c:cd:38:8e: 01:e0:70:80:c2:f6:85:31:63:f8:c2:d5:dd:27:6a:be:e8:c9: 19:9e:44:9b:0d:7f:f9:bf:bb:65:1c:7f:c0:9c:95:c1:57:63: 98:ad:59:6e:a0:bb:e3:61:5e:8a:b4:df:4b:0a:c8:46:8b:d8: ca:db:10:b6:42:47:ce:41:f6:b1:cd:a4:f9:fb:95:d7:bf:b5: 19:52:b2:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ1QTIxMTAvBgNVBAUTKEI5RkI0MjIzRUIwM0JBMEVFNkNFMDdCNDY2MDIxN0FG QUY3MTZENUQwHhcNMjQwNTAxMDA0MTUzWhcNMjQwNTA4MDA0MTUzWjAYMRYwFAYD VQQDEw02NjMxOGZkMi0yNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXyZR17EC37LppJX9oTEpe7wahF4TinlriQyXz8EYXVtcm7oEbxcLU9ocrlF t4qT3/C6Fi8Ni62OsV5yj2d9FAoCmB/a2Dl/NIxTLmVO+VAJpYytTB4RwqqwKhlQ 5Kk9TrBsNrcZkttQ+3u6uG434MBDI6rtnp8UVg3heIeeT5z6FrebBzZP0oijICEO nlvknq+LvwQaZJ8wyngw4DHfPeIxsiV7eKjrmIVa7KyTLWTqUfm5P1FpCy6D7Hbv U2ewPCQ2JOTw6OpUu//ex5QKo7A7EXsLAz/hrGpIWHJmL7qXEIkOWwThjo9GwhVi UmmScbG5Wo+p0vopvEpAYZMjywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7XV4pW P8gA/DzYOnnj9m/F3Mk+MB8GA1UdIwQYMBaAFLn7QiPrA7oO5s4HtGYCF6+vcW1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDVBMi9DMjFBNTM4Njgw QjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVnN216Z2UwWmdJWHI2OXhi VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VmdENJLXNEdWc3bXpnZTBaZ0lYcjY5eGJWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDVBMi9DMjFBNTM4NjgwQjgxMUVCQkVCMTlFODNDNEY5QUUwMi91ZnRDSS1zRHVn N216Z2UwWmdJWHI2OXhiVjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNaPFLeXPF5BMWGk7XNiFBBYb4Gb2r4hKl103v3iLq9PRYE0I1Tqd0 MdoqkjB+GHLk4CagYHUlzFWbulp22YxyFEqD/3IC//ELvJkspOygP8SCAx6lTvON vYe47jGcgZXIwMx6xBaPoSlMmvE2VUOIlEb2LBkYLOTSVn6o0GD8MgFeH1S4q2em mti3fm6cehGQuvqth8K6yx7u5q/9t/xsEXkSTpiqVf1KFFl0NAaDwjzNOI4B4HCA wvaFMWP4wtXdJ2q+6MkZnkSbDX/5v7tlHH/AnJXBV2OYrVluoLvjYV6KtN9LCshG i9jK2xC2QkfOQfaxzaT5+5XXv7UZUrIV -----END CERTIFICATE-----Generated at Wed May 1 01:38:27 2024 by rpki-client on console-ams.rpki-client.org