$ rpki-client -vvf rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft File: uHLzTVUlH6dw7MOT0mcSED1VBzc.mft (raw, json) Hash identifier: BbGFvjYxuQ51BR29tI1pl5n93hKcxMb+fttqxZT9zUE= Subject key identifier: EA:FF:92:F6:07:37:7F:B7:C1:A4:C2:86:91:0A:66:66:2D:22:B0:00 Authority key identifier: B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 Certificate issuer: /CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Certificate serial: 0302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft Manifest number: 02F8 Signing time: Fri 03 May 2024 03:21:36 +0000 Manifest this update: Fri 03 May 2024 03:21:35 +0000 Manifest next update: Fri 10 May 2024 03:21:35 +0000 Files and hashes: 1: uHLzTVUlH6dw7MOT0mcSED1VBzc.crl (hash: jZkpPUa4aDX3lMTaRF3znHqdAjvjr9Dy3mfBGsYElpI=) 2: 945375FAF69511EC90A47215C4F9AE02.roa (hash: szoOV35k9X1TvVvXwj7kHt7h0jdZ4j89mOTTXzcira0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 770 (0x302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C606/serialNumber=B872F34D55251FA770ECC393D26712103D550737 Validity Not Before: May 3 03:21:35 2024 GMT Not After : May 10 03:21:35 2024 GMT Subject: CN=6634583f-e0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:94:6b:17:a0:29:57:97:76:8a:77:30:cb: b0:67:41:e9:04:d9:6f:64:24:51:f9:f1:a5:e1:6e: 77:12:e8:fc:2d:f0:b0:85:aa:50:d6:e6:6c:71:74: e0:27:e8:16:bb:47:1d:f1:78:64:e7:3b:61:7b:7d: 44:5b:9d:82:c2:64:24:ac:45:c1:41:b7:52:e5:df: ab:9b:fc:f2:c0:63:6c:39:34:65:8e:e6:6f:d8:0a: 08:b6:fc:2b:8c:42:7b:da:70:4a:df:74:35:8d:14: 61:85:71:91:4e:67:e6:b7:b6:19:98:51:cd:a6:57: 43:2f:c3:2a:24:f5:2b:c9:7f:db:3e:82:26:e2:2b: fa:64:b3:ab:ab:62:be:51:62:56:ae:e5:66:26:b4: 47:c2:79:96:e5:af:42:cc:c9:c4:88:72:68:25:f2: c0:9d:e7:ce:c6:c8:81:d6:c5:d1:0b:c4:b4:21:fe: 7f:2a:a3:da:61:3c:1a:fb:c3:aa:44:e0:aa:23:c4: 23:17:bb:81:57:3a:a3:3e:ec:61:1a:c4:cc:d0:6f: 3e:51:d5:db:d4:98:94:f8:a8:23:19:f7:96:ad:84: 0b:4c:d8:b3:75:a4:28:b6:4e:4a:fc:6c:42:9a:e4: 48:36:4a:49:68:75:0c:d8:ad:8c:46:23:bf:35:ef: 1f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FF:92:F6:07:37:7F:B7:C1:A4:C2:86:91:0A:66:66:2D:22:B0:00 X509v3 Authority Key Identifier: keyid:B8:72:F3:4D:55:25:1F:A7:70:EC:C3:93:D2:67:12:10:3D:55:07:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHLzTVUlH6dw7MOT0mcSED1VBzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C606/7C8B137A8FC911EC8155DB61C4F9AE02/uHLzTVUlH6dw7MOT0mcSED1VBzc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:94:84:68:f3:7c:7c:cb:ab:90:d0:7a:e1:bb:84:8d:ab:ea: 96:f6:01:a1:63:ee:97:a5:34:cb:43:c0:32:5a:1d:27:50:b6: 56:7f:bd:bc:b9:79:a2:ce:f5:70:f4:34:16:c8:d6:96:11:65: 7f:b2:d1:e1:0f:e5:6c:37:17:4f:55:13:f4:8e:7c:ea:ee:e9: ad:ff:01:5e:74:3b:25:e1:5a:77:c8:46:ef:87:cb:94:32:80: de:90:81:0d:20:d5:8f:b6:b2:d5:07:e5:33:54:df:3c:eb:c8: 4c:3c:80:63:08:c2:98:14:23:6a:b9:3e:d5:22:fe:42:27:61: 04:0d:cf:9d:c0:b0:41:bc:8a:76:ee:0e:93:f4:21:53:9f:02: 69:d7:fb:ef:32:5f:f9:51:fe:94:a7:20:fb:b5:40:d1:9d:78: 87:50:b5:b4:08:3b:dd:c0:70:36:f5:42:dc:e2:76:ca:40:84: 35:3f:f3:43:89:a5:77:2d:62:2b:1d:95:5e:60:b2:3f:cf:63: cd:64:1d:18:58:4d:7b:e8:be:80:86:e8:68:8d:9b:27:5a:14: e1:0f:5a:f7:4a:e9:66:2b:95:60:12:82:46:9b:db:dc:41:04: e8:d0:ed:fc:e8:d4:3b:11:cb:28:b1:4a:c5:7d:58:ae:36:dd: 7b:23:26:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M2MDYxMTAvBgNVBAUTKEI4NzJGMzRENTUyNTFGQTc3MEVDQzM5M0QyNjcxMjEw M0Q1NTA3MzcwHhcNMjQwNTAzMDMyMTM1WhcNMjQwNTEwMDMyMTM1WjAYMRYwFAYD VQQDEw02NjM0NTgzZi1lMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpqUaxegKVeXdop3MMuwZ0HpBNlvZCRR+fGl4W53Euj8LfCwhapQ1uZscXTg J+gWu0cd8Xhk5zthe31EW52CwmQkrEXBQbdS5d+rm/zywGNsOTRljuZv2AoItvwr jEJ72nBK33Q1jRRhhXGRTmfmt7YZmFHNpldDL8MqJPUryX/bPoIm4iv6ZLOrq2K+ UWJWruVmJrRHwnmW5a9CzMnEiHJoJfLAnefOxsiB1sXRC8S0If5/KqPaYTwa+8Oq ROCqI8QjF7uBVzqjPuxhGsTM0G8+UdXb1JiU+KgjGfeWrYQLTNizdaQotk5K/GxC muRINkpJaHUM2K2MRiO/Ne8fQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr/kvYH N3+3waTChpEKZmYtIrAAMB8GA1UdIwQYMBaAFLhy801VJR+ncOzDk9JnEhA9VQc3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzYwNi83QzhCMTM3QThG QzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2ZHc3TU9UMG1jU0VEMVZC emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VITHpUVlVsSDZkdzdNT1QwbWNTRUQxVkJ6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzYwNi83QzhCMTM3QThGQzkxMUVDODE1NURCNjFDNEY5QUUwMi91SEx6VFZVbEg2 ZHc3TU9UMG1jU0VEMVZCemMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLlIRo83x8y6uQ0Hrhu4SNq+qW9gGhY+6XpTTLQ8AyWh0nULZWf728 uXmizvVw9DQWyNaWEWV/stHhD+VsNxdPVRP0jnzq7umt/wFedDsl4Vp3yEbvh8uU MoDekIENINWPtrLVB+UzVN8868hMPIBjCMKYFCNquT7VIv5CJ2EEDc+dwLBBvIp2 7g6T9CFTnwJp1/vvMl/5Uf6UpyD7tUDRnXiHULW0CDvdwHA29ULc4nbKQIQ1P/ND iaV3LWIrHZVeYLI/z2PNZB0YWE176L6AhuhojZsnWhThD1r3SulmK5VgEoJGm9vc QQTo0O386NQ7EcsosUrFfViuNt17IyZf -----END CERTIFICATE-----Generated at Fri May 3 04:36:51 2024 by rpki-client on console-ams.rpki-client.org