$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft File: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft (raw, json) Hash identifier: gIY88qJVhPQ4rUJQJLaAvDLupEXfYfBoD2YV/poazhs= Subject key identifier: 62:2C:29:00:21:71:EC:28:F3:E3:27:E9:84:99:18:58:C0:1B:F3:12 Authority key identifier: F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF Certificate issuer: /CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft Manifest number: AA Signing time: Fri 17 May 2024 06:19:00 +0000 Manifest this update: Fri 17 May 2024 06:19:00 +0000 Manifest next update: Fri 24 May 2024 06:19:00 +0000 Files and hashes: 1: -UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl (hash: OE4USwD7eoPUy+AdfvkQwi9wSbj33SI3rbrSyz9OFgg=) 2: C3BB51160DAC11EFB00E6B16C4F9AE02.roa (hash: qg93oWWTuAPTiOr/0YJ1p+8YAjeXzMdg4Ry+BJ5sjwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53/serialNumber=F9404AA524D4357E0CCC69C7D40D3E66A2E4E6DF Validity Not Before: May 17 06:19:00 2024 GMT Not After : May 24 06:19:00 2024 GMT Subject: CN=6646f6d4-4d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:81:a0:c8:a7:b2:4d:ea:71:26:ed:72:2f:1a: f8:26:7a:46:a9:d1:03:dc:44:44:59:d7:c9:50:fd: 95:d4:23:15:61:ee:da:9a:b4:67:a9:0e:dd:57:82: 8b:61:f3:c0:31:04:b3:e1:1c:1c:9a:37:17:97:21: de:16:64:76:be:a7:20:aa:a7:fc:06:fb:5d:3b:c0: d0:bb:51:97:06:d5:23:64:04:bd:56:4c:52:63:69: 34:98:de:b5:9f:c7:3d:23:5c:ca:13:a3:0f:27:51: 9b:7b:5f:33:d6:d8:a0:51:9b:06:f8:82:3c:d7:66: b4:98:70:3e:7e:8c:8b:d0:ea:d1:97:f2:2f:66:5f: 5d:59:88:9a:b3:f0:52:e9:f7:48:5e:78:e7:96:66: 22:b4:02:99:b0:97:5c:93:ce:6d:4b:66:1d:f0:1e: 8a:81:db:63:ae:99:5c:3e:d9:05:6f:b8:7b:4e:a0: 84:0c:3e:6b:cc:6f:39:7e:73:5b:99:79:b0:ea:6a: c2:2c:90:e3:46:fc:82:11:62:6b:ef:f0:57:9a:87: 6b:91:8e:92:9f:7e:fa:72:a8:28:ac:d0:a2:98:c9: e1:ef:07:31:c0:5f:27:e4:8c:80:41:17:26:d3:07: 3e:e0:45:ec:7f:46:d2:78:bf:47:ff:4b:71:4b:fa: 5f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:2C:29:00:21:71:EC:28:F3:E3:27:E9:84:99:18:58:C0:1B:F3:12 X509v3 Authority Key Identifier: keyid:F9:40:4A:A5:24:D4:35:7E:0C:CC:69:C7:D4:0D:3E:66:A2:E4:E6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/DB63C9A2117611EE9C559A3EC4F9AE02/-UBKpSTUNX4MzGnH1A0-ZqLk5t8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:45:ca:7d:ac:2d:13:c6:f0:e3:eb:43:8c:9b:b9:0d:0e:b6: f6:75:05:5e:ea:21:8b:37:75:ec:f3:e2:b3:78:7a:73:b6:2c: f7:ea:a6:f0:42:92:e8:0e:3d:69:35:27:57:4e:82:33:37:c9: 59:6d:37:6f:d2:c1:27:02:a6:7a:de:9c:f8:36:46:06:1b:3e: 10:8f:1a:5a:3e:98:1a:49:50:40:71:5d:3c:65:bf:ea:76:d4: 2d:c5:c6:90:9e:b8:da:3a:d4:b3:20:90:31:f2:58:35:43:14: d9:79:05:67:dc:13:74:76:31:90:a3:57:4d:65:40:f2:10:fe: 66:03:a4:b9:03:ed:f4:fa:dc:a1:52:36:e4:96:83:e7:08:07: f7:24:0c:ae:98:aa:04:cb:27:46:f9:fd:09:2d:54:6e:e4:63: 71:ab:af:8f:dd:2c:d9:bf:07:72:4a:a5:0f:b0:70:d9:c4:1b: 4a:d7:22:01:53:8c:f1:4f:4b:fa:2d:7f:9c:ed:a0:16:be:f7: e1:2b:7a:02:aa:f4:d5:3b:cf:ec:ff:f5:26:74:e7:c5:18:ec: 81:21:b5:11:62:38:96:fc:88:2b:28:ff:d3:1e:56:9d:87:87: d8:6d:91:a2:14:9a:75:37:b9:f1:f8:a9:e7:02:cc:d5:75:c9: 32:ec:a1:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEY5NDA0QUE1MjRENDM1N0UwQ0NDNjlDN0Q0MEQzRTY2 QTJFNEU2REYwHhcNMjQwNTE3MDYxOTAwWhcNMjQwNTI0MDYxOTAwWjAYMRYwFAYD VQQDEw02NjQ2ZjZkNC00ZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IGgyKeyTepxJu1yLxr4JnpGqdED3EREWdfJUP2V1CMVYe7amrRnqQ7dV4KL YfPAMQSz4RwcmjcXlyHeFmR2vqcgqqf8BvtdO8DQu1GXBtUjZAS9VkxSY2k0mN61 n8c9I1zKE6MPJ1Gbe18z1tigUZsG+II812a0mHA+foyL0OrRl/IvZl9dWYias/BS 6fdIXnjnlmYitAKZsJdck85tS2Yd8B6KgdtjrplcPtkFb7h7TqCEDD5rzG85fnNb mXmw6mrCLJDjRvyCEWJr7/BXmodrkY6Sn376cqgorNCimMnh7wcxwF8n5IyAQRcm 0wc+4EXsf0bSeL9H/0txS/pfHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIsKQAh cewo8+Mn6YSZGFjAG/MSMB8GA1UdIwQYMBaAFPlASqUk1DV+DMxpx9QNPmai5Obf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9EQjYzQzlBMjEx NzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5YNE16R25IMUEwLVpxTGs1 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1VQktwU1RVTlg0TXpHbkgxQTAtWnFMazV0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9EQjYzQzlBMjExNzYxMUVFOUM1NTlBM0VDNEY5QUUwMi8tVUJLcFNUVU5Y NE16R25IMUEwLVpxTGs1dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjRcp9rC0TxvDj60OMm7kNDrb2dQVe6iGLN3Xs8+KzeHpztiz36qbw QpLoDj1pNSdXToIzN8lZbTdv0sEnAqZ63pz4NkYGGz4QjxpaPpgaSVBAcV08Zb/q dtQtxcaQnrjaOtSzIJAx8lg1QxTZeQVn3BN0djGQo1dNZUDyEP5mA6S5A+30+tyh UjbkloPnCAf3JAyumKoEyydG+f0JLVRu5GNxq6+P3SzZvwdySqUPsHDZxBtK1yIB U4zxT0v6LX+c7aAWvvfhK3oCqvTVO8/s//UmdOfFGOyBIbURYjiW/IgrKP/THlad h4fYbZGiFJp1N7nx+KnnAszVdcky7KEu -----END CERTIFICATE-----Generated at Fri May 17 08:52:49 2024 by rpki-client on console-ams.rpki-client.org