$ rpki-client -vvf rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft File: UnWd41wCZ5226TLqiGidwQ1czK4.mft (raw, json) Hash identifier: aiquRXGyyDjft5ONHzPGCr6Tm0mSJwukp3MIhGII8Bc= Subject key identifier: 99:EE:B6:28:26:C8:EF:35:B8:E4:A0:65:41:CD:EE:77:B2:8B:4D:BF Authority key identifier: 52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE Certificate issuer: /CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft Manifest number: 7F Signing time: Fri 17 May 2024 07:20:21 +0000 Manifest this update: Fri 17 May 2024 07:20:21 +0000 Manifest next update: Fri 24 May 2024 07:20:21 +0000 Files and hashes: 1: UnWd41wCZ5226TLqiGidwQ1czK4.crl (hash: pMj/4sq1WEuNLvhw6etUuGpFpse/SEBXoS59pJfmqHQ=) 2: 503DC7FA547F11EE9512EE75C4F9AE02.roa (hash: r4dxDMwbUQsfYacjNMiODTUgG9J0kzkIZYBKgmYXnoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:20:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919014C/serialNumber=52759DE35C02679DB6E932EA88689DC10D5CCCAE Validity Not Before: May 17 07:20:21 2024 GMT Not After : May 24 07:20:21 2024 GMT Subject: CN=66470535-acd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7c:53:a4:9d:7c:ed:a5:f8:cd:7f:ba:0d:ef: ac:31:bf:3c:ba:9b:50:30:c0:69:83:d9:37:9b:92: 2b:4f:a2:df:c4:e9:c7:cb:4d:44:5a:88:28:7a:34: fb:cb:cc:60:67:d5:64:0b:69:42:fb:23:8b:06:14: 0e:d6:ef:29:c8:83:f3:7e:8e:13:f2:94:b8:9e:58: d3:54:3d:9f:cc:16:07:de:68:90:67:ea:11:e5:40: 0c:bf:4f:94:78:8c:64:56:f2:24:1a:9e:61:5d:69: b9:35:1b:30:6c:95:fd:64:d1:2a:9e:f1:ec:7f:92: ca:6d:8d:a6:65:58:57:53:c6:0e:05:ec:8e:36:f6: a7:82:f8:8f:07:6d:ed:2f:1b:64:33:09:5d:85:2e: c8:a0:71:38:5b:a9:11:56:f9:c4:7e:d4:70:00:cb: ea:e4:93:44:f9:23:bf:23:78:26:7c:b8:bf:c6:b9: 6b:ce:03:7c:ab:6b:55:70:8b:bf:e0:d8:9a:3c:fa: ad:83:46:ec:37:ac:9a:4b:11:f4:b6:e4:db:12:cc: bc:ce:56:92:f2:37:a2:d5:17:f6:10:92:5e:f0:c8: 56:6b:6a:69:2f:29:15:d3:70:28:ad:6c:7e:9f:c4: df:a1:4b:68:81:cc:5d:91:35:ee:f2:c5:03:a3:21: 37:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:EE:B6:28:26:C8:EF:35:B8:E4:A0:65:41:CD:EE:77:B2:8B:4D:BF X509v3 Authority Key Identifier: keyid:52:75:9D:E3:5C:02:67:9D:B6:E9:32:EA:88:68:9D:C1:0D:5C:CC:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UnWd41wCZ5226TLqiGidwQ1czK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919014C/154FAC2C547E11EE8E710074C4F9AE02/UnWd41wCZ5226TLqiGidwQ1czK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:af:9e:03:df:4f:4c:5c:1d:f0:f9:da:cf:e1:59:25:3f:cd: 5d:51:4e:5e:58:c7:26:33:03:ae:2d:80:86:0b:82:5c:28:1d: 16:3d:ab:fe:3d:41:d1:c3:47:59:62:04:c3:5e:91:46:7d:ed: e1:fe:a2:58:f9:a5:8e:af:ea:20:59:02:7d:05:70:da:a9:f6: 04:c7:51:ff:c9:13:7b:c8:26:33:90:bb:90:6f:d9:61:49:c0: e6:65:41:7a:75:45:7c:9f:19:6f:0e:3a:4a:b6:17:83:42:17: db:a1:aa:85:f4:a4:a2:a8:94:3e:b3:a8:69:6b:1f:fe:b9:8f: 98:d2:b7:d1:b2:11:b2:50:2d:22:79:38:91:7d:3a:94:74:c3: bc:52:a4:03:15:93:17:ba:c2:ff:62:2b:44:e1:b2:26:ad:8d: b4:03:8f:6b:c5:6e:78:50:16:2a:a8:70:83:4e:1c:ae:72:46: e7:fe:59:70:f1:59:b8:7d:cc:ab:32:50:03:6f:61:16:52:f2: 7b:db:83:dd:d5:17:c2:4b:5b:54:88:a6:4b:05:1f:fb:2d:02: 43:3a:6b:09:b9:37:13:d6:20:e7:85:22:16:69:2f:a6:8f:01: 03:74:9a:5c:e6:f1:dd:ef:09:03:4e:64:15:33:bb:09:23:a5: 9d:4b:40:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTAxNEMxMTAvBgNVBAUTKDUyNzU5REUzNUMwMjY3OURCNkU5MzJFQTg4Njg5REMx MEQ1Q0NDQUUwHhcNMjQwNTE3MDcyMDIxWhcNMjQwNTI0MDcyMDIxWjAYMRYwFAYD VQQDEw02NjQ3MDUzNS1hY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunxTpJ187aX4zX+6De+sMb88uptQMMBpg9k3m5IrT6LfxOnHy01EWogoejT7 y8xgZ9VkC2lC+yOLBhQO1u8pyIPzfo4T8pS4nljTVD2fzBYH3miQZ+oR5UAMv0+U eIxkVvIkGp5hXWm5NRswbJX9ZNEqnvHsf5LKbY2mZVhXU8YOBeyONvangviPB23t LxtkMwldhS7IoHE4W6kRVvnEftRwAMvq5JNE+SO/I3gmfLi/xrlrzgN8q2tVcIu/ 4NiaPPqtg0bsN6yaSxH0tuTbEsy8zlaS8jei1Rf2EJJe8MhWa2ppLykV03AorWx+ n8TfoUtogcxdkTXu8sUDoyE3CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnutigm yO81uOSgZUHN7neyi02/MB8GA1UdIwQYMBaAFFJ1neNcAmedtuky6ohoncENXMyu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDE0Qy8xNTRGQUMyQzU0 N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1MjI2VExxaUdpZHdRMWN6 SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VuV2Q0MXdDWjUyMjZUTHFpR2lkd1ExY3pLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDE0Qy8xNTRGQUMyQzU0N0UxMUVFOEU3MTAwNzRDNEY5QUUwMi9VbldkNDF3Q1o1 MjI2VExxaUdpZHdRMWN6SzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZr54D309MXB3w+drP4VklP81dUU5eWMcmMwOuLYCGC4JcKB0WPav+ PUHRw0dZYgTDXpFGfe3h/qJY+aWOr+ogWQJ9BXDaqfYEx1H/yRN7yCYzkLuQb9lh ScDmZUF6dUV8nxlvDjpKtheDQhfboaqF9KSiqJQ+s6hpax/+uY+Y0rfRshGyUC0i eTiRfTqUdMO8UqQDFZMXusL/YitE4bImrY20A49rxW54UBYqqHCDThyuckbn/llw 8Vm4fcyrMlADb2EWUvJ724Pd1RfCS1tUiKZLBR/7LQJDOmsJuTcT1iDnhSIWaS+m jwEDdJpc5vHd7wkDTmQVM7sJI6WdS0BT -----END CERTIFICATE-----Generated at Fri May 17 08:13:52 2024 by rpki-client on console-fra.rpki-client.org