$ rpki-client -vvf rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft File: U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft (raw, json) Hash identifier: S4WPzzto1d6sreVJYmfJALjXiCGo2Xuc/mzmeGCULXk= Subject key identifier: 2E:CA:D0:10:D1:32:1B:17:29:4C:56:4E:6C:B7:9A:F1:2C:94:74:CA Authority key identifier: 53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 Certificate issuer: /CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft Manifest number: 010E Signing time: Fri 03 May 2024 05:28:52 +0000 Manifest this update: Fri 03 May 2024 05:28:52 +0000 Manifest next update: Fri 10 May 2024 05:28:52 +0000 Files and hashes: 1: U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl (hash: V+PB4hxWpnGBcistQ6qmrExwPchNHEC1DAyC1EJVynA=) 2: EB8C9B546EE911ED8F07B022C4F9AE02.roa (hash: q95Nnc69ywewB1KRViDRqgU8dhWu4ixX7gxtbwYMk2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91736BD/serialNumber=53E2E13452457DF21EF25CBA3B2610D012A906D2 Validity Not Before: May 3 05:28:52 2024 GMT Not After : May 10 05:28:52 2024 GMT Subject: CN=66347614-d1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:40:03:e9:71:9d:f4:1e:9b:56:5f:5c:77:2f: 08:ef:ad:d4:0c:fb:40:5b:25:5f:b6:ff:ca:1a:bb: a3:3f:97:00:bc:c2:c5:b6:b8:8c:fb:4f:78:9e:6a: df:2f:0e:06:1e:04:43:ec:d7:70:34:08:77:d2:85: 0a:15:dd:67:58:45:10:04:dd:bf:bf:ae:b3:be:fd: a3:84:df:f0:35:a9:22:08:1f:8d:e6:53:fa:66:97: d9:e0:48:ee:d6:43:a6:7a:2d:8b:1f:34:05:27:13: 5d:5c:1c:d4:44:01:44:96:89:86:84:a1:c8:6d:88: 3c:07:84:08:e7:73:0f:d1:ab:0a:d0:6d:89:61:f9: 48:e1:df:da:6b:a3:38:e4:c6:7d:0d:6d:6d:26:51: 0e:25:c7:ef:79:82:64:e6:2f:83:52:1a:3a:3d:6c: 6e:93:1a:e3:f9:c1:bb:cd:17:7a:fb:98:71:4d:20: 33:4a:67:d4:78:bb:fb:74:f2:7b:dd:c0:d7:4c:b2: 17:d9:48:c0:0e:2c:ef:5b:e8:27:85:67:e0:ea:3b: e0:3f:1f:e9:aa:e8:17:8e:51:87:ac:3d:27:50:91: 6a:d1:c1:49:33:f5:5f:f3:0d:ed:7a:db:39:f4:78: 64:94:5c:7a:67:06:06:10:f0:45:b2:7a:dc:75:8e: a1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CA:D0:10:D1:32:1B:17:29:4C:56:4E:6C:B7:9A:F1:2C:94:74:CA X509v3 Authority Key Identifier: keyid:53:E2:E1:34:52:45:7D:F2:1E:F2:5C:BA:3B:26:10:D0:12:A9:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U-LhNFJFffIe8ly6OyYQ0BKpBtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91736BD/22C621A86EE511EDB9C45385C4F9AE02/U-LhNFJFffIe8ly6OyYQ0BKpBtI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:00:e5:4c:94:a6:fa:2c:9f:9c:50:2d:8f:97:7c:7b:e4:5b: 23:65:5b:7a:f2:00:7b:b2:65:3a:e0:95:9b:86:15:cd:5e:4a: 7f:4a:b6:73:a0:1e:b8:4f:f5:9d:a7:b2:f7:74:44:0b:39:f0: b2:c8:0b:32:9c:ac:38:4d:2b:38:02:c2:48:41:2c:5d:a9:a8: dd:7b:88:d2:b8:0f:17:30:5a:59:97:bd:f4:a2:a0:b2:a7:d3: f1:0f:90:cf:89:46:08:f4:6e:3a:47:1d:75:02:fd:e6:98:00: 23:4e:fa:27:87:2d:b1:38:15:91:50:cf:75:25:15:13:5b:16: fa:1a:be:c6:07:78:b2:a4:15:3b:17:89:a2:e6:23:7b:63:06: e2:a1:9f:80:92:0b:a0:29:de:f5:2e:63:67:c3:aa:9f:3c:4e: 20:cd:ba:24:39:0e:05:1e:f8:59:be:56:bf:e1:32:23:dc:10: 3d:5f:c2:80:fd:96:9b:dc:e1:1d:d7:8d:24:d2:90:3d:fc:1b: 41:70:82:89:45:8e:74:4a:6b:d6:66:cf:74:e3:f1:e1:ae:5d: 8e:80:c2:a8:b3:2f:4f:bd:2d:0e:2d:ee:db:48:0d:c7:a9:54: 3d:6f:28:1e:1b:1f:1c:8f:33:48:13:59:91:45:1c:63:7a:f3: 58:56:7b:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM2QkQxMTAvBgNVBAUTKDUzRTJFMTM0NTI0NTdERjIxRUYyNUNCQTNCMjYxMEQw MTJBOTA2RDIwHhcNMjQwNTAzMDUyODUyWhcNMjQwNTEwMDUyODUyWjAYMRYwFAYD VQQDEw02NjM0NzYxNC1kMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEAD6XGd9B6bVl9cdy8I763UDPtAWyVftv/KGrujP5cAvMLFtriM+094nmrf Lw4GHgRD7NdwNAh30oUKFd1nWEUQBN2/v66zvv2jhN/wNakiCB+N5lP6ZpfZ4Eju 1kOmei2LHzQFJxNdXBzURAFElomGhKHIbYg8B4QI53MP0asK0G2JYflI4d/aa6M4 5MZ9DW1tJlEOJcfveYJk5i+DUho6PWxukxrj+cG7zRd6+5hxTSAzSmfUeLv7dPJ7 3cDXTLIX2UjADizvW+gnhWfg6jvgPx/pqugXjlGHrD0nUJFq0cFJM/Vf8w3tets5 9HhklFx6ZwYGEPBFsnrcdY6hRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7K0BDR MhsXKUxWTmy3mvEslHTKMB8GA1UdIwQYMBaAFFPi4TRSRX3yHvJcujsmENASqQbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzZCRC8yMkM2MjFBODZF RTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZmSWU4bHk2T3lZUTBCS3BC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UtTGhORkpGZmZJZThseTZPeVlRMEJLcEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzZCRC8yMkM2MjFBODZFRTUxMUVEQjlDNDUzODVDNEY5QUUwMi9VLUxoTkZKRmZm SWU4bHk2T3lZUTBCS3BCdEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdAOVMlKb6LJ+cUC2Pl3x75FsjZVt68gB7smU64JWbhhXNXkp/SrZz oB64T/Wdp7L3dEQLOfCyyAsynKw4TSs4AsJIQSxdqajde4jSuA8XMFpZl730oqCy p9PxD5DPiUYI9G46Rx11Av3mmAAjTvonhy2xOBWRUM91JRUTWxb6Gr7GB3iypBU7 F4mi5iN7YwbioZ+AkgugKd71LmNnw6qfPE4gzbokOQ4FHvhZvla/4TIj3BA9X8KA /Zab3OEd140k0pA9/BtBcIKJRY50SmvWZs904/Hhrl2OgMKosy9PvS0OLe7bSA3H qVQ9bygeGx8cjzNIE1mRRRxjevNYVnsd -----END CERTIFICATE-----Generated at Fri May 3 06:28:41 2024 by rpki-client on console-fra.rpki-client.org