$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft File: uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft (raw, json) Hash identifier: cwWy7is5hFeHTw3UDepBks/sUeDUNUuR/5z6Jyad1J0= Subject key identifier: EA:52:07:A7:94:E2:00:19:C8:6E:8B:24:66:DF:AB:92:57:F8:9D:E3 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft Manifest number: 0340 Signing time: Sat 27 Apr 2024 02:52:19 +0000 Manifest this update: Sat 27 Apr 2024 02:52:19 +0000 Manifest next update: Sat 04 May 2024 02:52:19 +0000 Files and hashes: 1: uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl (hash: xjF0UhZvW2oI2UEpapSp2dapZUI5LF/BloYuu7L4szY=) 2: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (hash: zQQcO9Z5HxKCWBOp1uM6W0nUAka43I9R2WBzNur81R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Validity Not Before: Apr 27 02:52:19 2024 GMT Not After : May 4 02:52:19 2024 GMT Subject: CN=662c6863-a27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:57:6f:a0:35:c7:86:50:8a:a6:75:9e:bb:19: 44:80:05:62:b5:e6:0c:20:9f:00:0a:3b:d7:68:83: 4c:d6:b6:bd:f0:1a:fb:04:66:b5:68:87:76:3e:1b: 86:88:cc:f3:c4:54:77:01:30:61:91:52:c2:2b:df: f6:0e:73:12:d8:76:9d:c6:52:3a:c6:92:e9:ef:12: 10:29:f3:e2:de:7b:59:ab:d1:e3:52:5f:fe:f7:c3: a3:16:fa:6e:6e:5c:90:f7:b8:69:90:8f:47:b8:39: 76:a1:ae:fa:5c:4b:52:bc:7e:19:14:89:17:02:a3: db:a0:3a:10:96:77:64:3a:fb:bc:f3:08:30:d5:91: 50:30:f4:a6:1a:40:f7:be:6a:7f:46:dd:f7:54:58: d0:42:6a:ce:b7:4c:64:de:5b:1c:06:26:de:8c:ac: a9:6d:7a:98:3b:3e:7c:1d:a4:bb:9c:ae:89:7f:61: 3b:a0:96:19:7e:45:3f:b2:d3:f1:8d:a1:0b:ce:61: 17:6d:42:cc:4a:c1:a3:e8:75:a5:a7:30:17:86:05: 0d:6a:6d:ba:3c:27:81:2d:0b:2c:61:8e:4f:be:d4: c9:41:ff:8b:14:be:e7:02:81:cb:3b:94:83:ef:51: 6d:17:ab:a6:19:b7:e3:4c:6d:4a:6c:66:f5:e9:4b: 21:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:52:07:A7:94:E2:00:19:C8:6E:8B:24:66:DF:AB:92:57:F8:9D:E3 X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:13:e9:ce:bb:ba:c3:34:6f:18:fa:31:35:99:c6:2a:d4:88: 31:85:95:4d:2a:be:a8:6f:d8:46:4f:73:94:94:34:fd:c5:41: e0:4d:55:e9:5b:fa:91:8a:67:31:36:c8:25:dc:a8:1b:08:96: e0:82:2d:51:70:fb:77:20:9e:f9:be:3c:15:b2:d8:a4:92:39: 71:d6:b6:dd:44:65:92:01:96:a3:54:da:65:0d:e0:f6:b5:1b: 47:d4:88:a4:81:78:05:5c:ba:88:30:6f:96:b3:31:d5:30:36: 1f:c7:2e:64:aa:eb:65:01:47:e9:8b:73:2c:e1:69:b4:48:9b: 70:fe:54:8a:47:63:56:31:13:54:07:49:ac:2f:44:89:fe:6b: 8d:6c:3f:80:ed:de:63:85:23:b6:84:fe:70:5d:7b:f6:0f:05: cc:b5:9f:74:b8:b8:a7:ed:56:7a:16:53:2f:a1:f5:d6:ee:fc: 4c:ca:c6:ce:6c:c8:1a:9e:28:85:41:56:5d:28:a8:07:64:50: 52:30:74:06:d7:28:14:81:f3:b1:48:25:ee:4f:b1:9d:ea:53: ea:74:a5:91:21:af:55:2b:c1:e7:ed:63:74:d5:42:66:b0:a7: ec:ee:b8:cd:da:b0:01:cf:28:6e:95:32:e3:50:73:19:4d:8e: 78:d7:67:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjQwNDI3MDI1MjE5WhcNMjQwNTA0MDI1MjE5WjAYMRYwFAYD VQQDEw02NjJjNjg2My1hMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VdvoDXHhlCKpnWeuxlEgAViteYMIJ8ACjvXaINM1ra98Br7BGa1aId2PhuG iMzzxFR3ATBhkVLCK9/2DnMS2HadxlI6xpLp7xIQKfPi3ntZq9HjUl/+98OjFvpu blyQ97hpkI9HuDl2oa76XEtSvH4ZFIkXAqPboDoQlndkOvu88wgw1ZFQMPSmGkD3 vmp/Rt33VFjQQmrOt0xk3lscBibejKypbXqYOz58HaS7nK6Jf2E7oJYZfkU/stPx jaELzmEXbULMSsGj6HWlpzAXhgUNam26PCeBLQssYY5PvtTJQf+LFL7nAoHLO5SD 71FtF6umGbfjTG1KbGb16UshMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpSB6eU 4gAZyG6LJGbfq5JX+J3jMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUEzRC82OUVGQ0REMjZFQzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblpr ZkRXZHZCRUxfdTNyUlAxZWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYE+nOu7rDNG8Y+jE1mcYq1IgxhZVNKr6ob9hGT3OUlDT9xUHgTVXp W/qRimcxNsgl3KgbCJbggi1RcPt3IJ75vjwVstikkjlx1rbdRGWSAZajVNplDeD2 tRtH1IikgXgFXLqIMG+WszHVMDYfxy5kqutlAUfpi3Ms4Wm0SJtw/lSKR2NWMRNU B0msL0SJ/muNbD+A7d5jhSO2hP5wXXv2DwXMtZ90uLin7VZ6FlMvofXW7vxMysbO bMganiiFQVZdKKgHZFBSMHQG1ygUgfOxSCXuT7Gd6lPqdKWRIa9VK8Hn7WN01UJm sKfs7rjN2rABzyhulTLjUHMZTY5412cb -----END CERTIFICATE-----Generated at Sat Apr 27 10:19:53 2024 by rpki-client on console-ams.rpki-client.org