$ rpki-client -vvf rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft File: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft (raw, json) Hash identifier: FTLHYpTgrAMVJHbHAvqvo+WfKkZnnj7hF5CnusqeYtM= Subject key identifier: 90:75:20:F5:96:44:57:FD:FA:3B:F3:6C:3D:DF:A1:72:14:CF:86:B2 Authority key identifier: BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 Certificate issuer: /CN=A9189122/serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft Manifest number: E6 Signing time: Wed 01 May 2024 06:11:35 +0000 Manifest this update: Wed 01 May 2024 06:11:34 +0000 Manifest next update: Wed 08 May 2024 06:11:34 +0000 Files and hashes: 1: u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl (hash: jcBf4dMPKRp0K0ViUjy5pyDDTtuAxn/XUPG3vvd4bgk=) 2: 9E8DB380B2C611EDBC366A1DC4F9AE02.roa (hash: c8sSxOBhaka5oI+rejJqQKmQr9sb2fk2xAAz0q5NEqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189122/serialNumber=BB4FAE85540A5AD9F93CB482C45C9576F52A3BF4 Validity Not Before: May 1 06:11:34 2024 GMT Not After : May 8 06:11:34 2024 GMT Subject: CN=6631dd17-efa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3a:8a:84:a2:64:34:7f:df:25:7b:62:12:13: f3:16:a9:d5:af:19:27:49:df:92:39:8c:c2:f4:1d: fb:76:e0:de:9e:9d:fb:bd:7b:36:1b:3d:a6:97:a4: 01:09:78:c1:89:18:c4:b7:07:8a:77:c1:c4:39:bb: dd:ee:ab:e2:8d:19:82:2b:62:f3:27:ba:bf:6a:d8: 17:75:e8:15:2d:83:2a:7b:6d:59:76:de:b5:8a:61: f3:ac:f3:e9:da:27:f6:36:3b:f2:2f:99:11:63:03: 44:68:86:88:3d:6b:72:eb:2c:5d:26:36:d0:a7:a7: ab:17:ca:64:47:09:90:cf:f1:7e:84:1f:bc:6d:fd: 6e:f1:5a:01:2b:50:43:10:07:9d:f8:b1:66:85:2f: 9c:86:8a:5f:89:23:65:ef:8c:5a:35:b8:48:ee:b5: f2:22:d5:48:75:b3:a2:cb:ad:f2:88:78:c1:40:8d: 1a:94:9b:1a:6c:a0:6c:27:7a:c9:d4:82:e3:57:b3: d7:52:88:80:b1:e2:58:b1:e9:a6:a2:64:f0:c4:f0: f5:fa:55:50:86:22:f9:ba:27:db:b4:ee:cb:b8:83: 45:09:c5:71:f5:bb:5b:82:71:6c:a1:54:a1:4e:32: f5:53:4b:69:96:0d:f1:22:1c:86:97:70:d2:c2:09: 59:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:75:20:F5:96:44:57:FD:FA:3B:F3:6C:3D:DF:A1:72:14:CF:86:B2 X509v3 Authority Key Identifier: keyid:BB:4F:AE:85:54:0A:5A:D9:F9:3C:B4:82:C4:5C:95:76:F5:2A:3B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189122/0FD4EF4EAEEF11EDA2E9BC68C4F9AE02/u0-uhVQKWtn5PLSCxFyVdvUqO_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fd:fb:7a:af:5a:4d:3c:e8:91:4e:e9:44:dc:20:2d:39:3f: 43:ca:f7:51:96:ea:8c:3b:c7:6a:24:08:e0:53:72:a7:57:41: 88:98:89:cf:50:50:69:c1:51:5c:00:92:4c:49:83:29:67:d6: 9f:1f:cc:34:63:da:74:a0:6c:ba:c9:28:b1:19:c7:35:33:54: d7:24:fe:a8:25:1b:b0:ce:90:3a:b1:11:1d:60:f9:69:22:48: 54:74:f0:01:6a:19:a2:ca:63:03:dd:6a:2c:f3:a8:96:c6:49: 1c:32:f6:d3:c5:e4:18:3a:01:f6:ce:92:85:64:31:8e:45:b4: f0:5c:b8:5c:40:77:ab:1c:9e:01:4a:53:f5:92:03:74:88:c1: 98:ac:d8:f4:b6:35:fb:b1:78:79:0d:ac:8b:7f:5f:91:38:ad: 3d:d7:69:f8:5a:9d:6c:b9:87:ae:00:36:fe:f9:0b:16:31:54: a0:08:a9:37:f2:3f:65:44:de:58:fc:99:bf:5f:9b:61:a5:ca: 5d:d6:69:8c:74:88:07:27:ff:e4:e9:c1:4b:6d:69:87:d6:bb: 1f:a7:fb:42:2b:05:89:93:04:be:bd:1b:e4:5e:4e:cb:4a:71: 25:70:da:79:31:84:5a:85:c2:29:96:ee:cc:18:44:3f:04:39: 8f:1e:eb:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxMjIxMTAvBgNVBAUTKEJCNEZBRTg1NTQwQTVBRDlGOTNDQjQ4MkM0NUM5NTc2 RjUyQTNCRjQwHhcNMjQwNTAxMDYxMTM0WhcNMjQwNTA4MDYxMTM0WjAYMRYwFAYD VQQDEw02NjMxZGQxNy1lZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDqKhKJkNH/fJXtiEhPzFqnVrxknSd+SOYzC9B37duDenp37vXs2Gz2ml6QB CXjBiRjEtweKd8HEObvd7qvijRmCK2LzJ7q/atgXdegVLYMqe21Zdt61imHzrPPp 2if2NjvyL5kRYwNEaIaIPWty6yxdJjbQp6erF8pkRwmQz/F+hB+8bf1u8VoBK1BD EAed+LFmhS+chopfiSNl74xaNbhI7rXyItVIdbOiy63yiHjBQI0alJsabKBsJ3rJ 1ILjV7PXUoiAseJYsemmomTwxPD1+lVQhiL5uifbtO7LuINFCcVx9btbgnFsoVSh TjL1U0tplg3xIhyGl3DSwglZmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJB1IPWW RFf9+jvzbD3foXIUz4ayMB8GA1UdIwQYMBaAFLtProVUClrZ+Ty0gsRclXb1Kjv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTEyMi8wRkQ0RUY0RUFF RUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0bjVQTFNDeEZ5VmR2VXFP X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UwLXVoVlFLV3RuNVBMU0N4RnlWZHZVcU9fUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTEyMi8wRkQ0RUY0RUFFRUYxMUVEQTJFOUJDNjhDNEY5QUUwMi91MC11aFZRS1d0 bjVQTFNDeEZ5VmR2VXFPX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa/ft6r1pNPOiRTulE3CAtOT9DyvdRluqMO8dqJAjgU3KnV0GImInP UFBpwVFcAJJMSYMpZ9afH8w0Y9p0oGy6ySixGcc1M1TXJP6oJRuwzpA6sREdYPlp IkhUdPABahmiymMD3Wos86iWxkkcMvbTxeQYOgH2zpKFZDGORbTwXLhcQHerHJ4B SlP1kgN0iMGYrNj0tjX7sXh5DayLf1+ROK0912n4Wp1suYeuADb++QsWMVSgCKk3 8j9lRN5Y/Jm/X5thpcpd1mmMdIgHJ//k6cFLbWmH1rsfp/tCKwWJkwS+vRvkXk7L SnElcNp5MYRahcIplu7MGEQ/BDmPHuuW -----END CERTIFICATE-----Generated at Wed May 1 07:23:55 2024 by rpki-client on console-ams.rpki-client.org