$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft File: uKIid-zGsQo9ICqjkMyn-7kqRuA.mft (raw, json) Hash identifier: 72VvrrEUQGLuHGMtV5hmTwSnqHV0RvnBn35DXi4y9fs= Subject key identifier: F4:E1:E5:B7:0F:BE:E0:B9:54:B5:AC:3D:FD:06:71:21:4D:B5:B1:BF Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 02BB Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft Manifest number: 02B8 Signing time: Tue 25 Jun 2024 02:33:00 +0000 Manifest this update: Tue 25 Jun 2024 02:32:59 +0000 Manifest next update: Tue 02 Jul 2024 02:32:59 +0000 Files and hashes: 1: uKIid-zGsQo9ICqjkMyn-7kqRuA.crl (hash: axYrySm+xZt7SuQZT/0OhfoLE/AJRZn53alYFmPX1ng=) 2: AF08CB4CC77511EC81DCA645C4F9AE02.roa (hash: fREbYLMV88tqGvvsrcEA7GtjZgjRqwtByyDrN3vWfMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 02:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Jun 25 02:32:59 2024 GMT Not After : Jul 2 02:32:59 2024 GMT Subject: CN=667a2c5b-68f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:46:67:f9:01:45:f5:c6:3d:3f:3e:cf:9a:d0: ed:7e:32:04:6e:0c:78:6d:65:6a:be:f7:26:ea:20: 7e:a8:64:3b:8a:25:02:0e:9f:56:f5:33:7b:3c:49: 6b:94:59:75:86:c9:bc:1e:9d:2e:e7:c4:23:0e:1f: 86:34:6f:30:4c:1a:cf:b5:07:94:6f:7a:25:62:c5: f8:ee:39:ec:e7:6e:8a:18:b7:af:a3:d3:e8:3e:81: 9b:2e:54:87:f6:d7:e0:39:1e:d3:ab:fe:8d:e9:b4: d2:f6:2f:07:04:39:c7:fe:f6:70:26:04:94:93:98: 48:be:fd:08:5d:73:66:b7:90:4e:d7:9f:5a:22:17: e0:03:ed:8c:6d:af:09:a3:65:71:3b:3f:f9:78:65: d1:05:aa:7d:32:60:4a:d0:58:21:88:db:4f:7d:7e: e1:fc:58:f7:66:24:8b:b9:ab:72:74:d1:a2:69:d3: 8f:60:0a:dd:8c:34:64:cf:fb:9d:7b:a5:c9:55:e3: c1:ae:ec:e8:38:43:a6:50:23:c2:5b:43:71:16:a6: 98:62:d5:c2:73:f9:a2:2e:b7:6d:9d:80:65:af:1f: 99:06:d4:c1:b4:52:30:aa:e4:c7:94:10:ad:cd:08: 7f:e3:cb:2a:66:18:8c:6f:d3:99:6c:5c:08:f4:8e: 7b:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E1:E5:B7:0F:BE:E0:B9:54:B5:AC:3D:FD:06:71:21:4D:B5:B1:BF X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:4f:00:40:f6:3e:1d:54:e0:fc:24:db:7e:d4:f8:3c:17:a9: 02:42:6b:a1:ae:bf:10:98:00:cd:b6:ff:1d:68:b7:bf:9c:15: 75:59:df:25:4a:32:2f:09:1b:07:ae:fe:72:dc:80:4d:d4:5c: b2:a0:ea:40:fb:75:a2:a6:ae:ad:d8:ea:ad:f0:94:2d:bf:58: bb:30:5d:cb:95:45:9f:e9:c9:64:7d:4b:19:cd:25:76:53:cc: 2c:b2:ac:9f:4d:5c:4a:1d:3e:4a:f0:f5:6f:69:04:74:fb:88: 6b:2f:18:c5:b6:7f:55:5b:45:fe:65:21:f9:21:a7:b9:ab:a2: 9a:8d:c8:32:25:96:5b:9d:e4:57:cc:95:01:1f:29:17:d6:79: 03:d9:fe:c1:91:0b:d2:ec:25:21:81:aa:93:1e:9b:ff:c7:f9: 67:26:93:e5:8f:8b:e2:19:42:a2:49:7f:b0:d2:13:ca:7a:93: c0:5d:b9:9b:eb:f6:8a:8a:c6:0d:ce:ec:5c:08:05:b5:80:3e: 57:85:ba:2d:42:31:da:e2:ec:44:02:aa:4a:3f:95:ce:ee:dd: d7:0d:1a:8b:1e:e2:27:23:dc:0e:09:95:28:86:cd:ac:d0:23: d8:15:a5:e6:3d:c5:b8:4d:53:19:48:85:67:3f:7e:a1:be:00: bd:ae:22:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjQwNjI1MDIzMjU5WhcNMjQwNzAyMDIzMjU5WjAYMRYwFAYD VQQDEw02NjdhMmM1Yi02OGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40Zn+QFF9cY9Pz7PmtDtfjIEbgx4bWVqvvcm6iB+qGQ7iiUCDp9W9TN7PElr lFl1hsm8Hp0u58QjDh+GNG8wTBrPtQeUb3olYsX47jns526KGLevo9PoPoGbLlSH 9tfgOR7Tq/6N6bTS9i8HBDnH/vZwJgSUk5hIvv0IXXNmt5BO159aIhfgA+2Mba8J o2VxOz/5eGXRBap9MmBK0FghiNtPfX7h/Fj3ZiSLuatydNGiadOPYArdjDRkz/ud e6XJVePBruzoOEOmUCPCW0NxFqaYYtXCc/miLrdtnYBlrx+ZBtTBtFIwquTHlBCt zQh/48sqZhiMb9OZbFwI9I57VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTh5bcP vuC5VLWsPf0GcSFNtbG/MB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVDQy8xM0U3RDcyRUFGRTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NR bzlJQ3Fqa015bi03a3FSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqTwBA9j4dVOD8JNt+1Pg8F6kCQmuhrr8QmADNtv8daLe/nBV1Wd8l SjIvCRsHrv5y3IBN1FyyoOpA+3Wipq6t2Oqt8JQtv1i7MF3LlUWf6clkfUsZzSV2 U8wssqyfTVxKHT5K8PVvaQR0+4hrLxjFtn9VW0X+ZSH5Iae5q6KajcgyJZZbneRX zJUBHykX1nkD2f7BkQvS7CUhgaqTHpv/x/lnJpPlj4viGUKiSX+w0hPKepPAXbmb 6/aKisYNzuxcCAW1gD5XhbotQjHa4uxEAqpKP5XO7t3XDRqLHuInI9wOCZUohs2s 0CPYFaXmPcW4TVMZSIVnP36hvgC9riI2 -----END CERTIFICATE-----Generated at Tue Jun 25 06:05:13 2024 by rpki-client on console-fra.rpki-client.org