$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft File: UzfctqkbQdUhGkTCFqljq6zH4rA.mft (raw, json) Hash identifier: FyavGvHtrcWPTDD6ulLTa3F81+xe4l9vlLcJ3oVTYtY= Subject key identifier: 51:ED:D7:27:3A:03:7F:49:DD:99:2D:3C:E9:7B:5C:BC:B9:D5:2F:45 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 33D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft Manifest number: 33C8 Signing time: Mon 06 May 2024 14:52:59 +0000 Manifest this update: Mon 06 May 2024 14:52:58 +0000 Manifest next update: Mon 13 May 2024 14:52:58 +0000 Files and hashes: 1: UzfctqkbQdUhGkTCFqljq6zH4rA.crl (hash: +b6kIb78EI1MxZIHc3nCG1HKhh2cPS0BNHwdsh3f4/Y=) 2: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (hash: p/5enCKd4IdLa2Qt15GBcmeM1LZDnnCBtF/+AbP/bxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 14:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13264 (0x33d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: May 6 14:52:58 2024 GMT Not After : May 13 14:52:58 2024 GMT Subject: CN=6638eecb-b57c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:06:7b:60:54:8c:9a:d2:d3:c4:67:89:04:e9: 39:73:fa:c2:8f:12:50:00:1e:7d:7b:f0:60:b3:a2: c2:50:f1:88:73:b4:fb:a7:56:28:c1:43:ab:d0:62: 98:47:bc:90:71:d5:f8:06:57:de:a5:60:f3:f4:07: 14:75:e7:a1:d9:72:b5:36:71:ad:94:34:52:1a:0b: 44:1a:70:73:40:e2:da:5e:1c:73:00:6b:e3:0e:1f: 84:45:1a:92:bc:ab:de:5c:9d:ce:ef:f2:51:74:06: 00:3a:db:a9:ed:c4:dc:9a:99:22:7b:12:1d:56:fc: bc:fc:09:2b:cd:24:64:24:cd:85:1a:b8:7d:70:7f: b1:f6:e1:b6:de:43:2e:8e:ec:db:b8:32:c4:af:32: 24:5c:b1:7c:4e:cc:57:35:a6:43:30:42:57:5c:57: 9d:df:51:e7:d4:a0:ec:c2:ec:59:e6:3c:0e:2b:ef: 84:ad:c5:0b:69:75:81:22:7b:79:e4:55:49:b5:e6: dd:b4:39:0c:e7:0f:7d:74:ab:16:45:fd:82:2a:7e: 29:95:1a:21:a6:92:41:7d:06:7d:84:5b:1d:24:14: 5e:9d:36:d2:77:56:85:81:fa:17:81:49:c9:55:5a: a5:ea:08:7c:d0:30:7a:49:5e:fa:b6:6e:5c:42:1e: 41:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:ED:D7:27:3A:03:7F:49:DD:99:2D:3C:E9:7B:5C:BC:B9:D5:2F:45 X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:18:cc:48:30:7b:13:72:27:0d:4d:5d:88:34:37:04:18:09: ba:48:55:a5:11:7d:95:6b:18:64:1b:6f:39:ce:9c:50:bc:64: 54:9e:07:76:15:ef:c1:f0:bf:a5:17:7b:3b:7b:c5:a4:d7:ec: ee:af:6e:be:d1:8d:52:4b:fe:bc:ba:c5:41:29:85:1c:7b:ec: fd:30:7e:a3:22:3d:1d:99:b1:48:01:df:a9:ea:c2:94:60:8e: e4:34:fb:55:85:a3:d7:0c:86:09:16:40:24:a8:34:8e:a6:93: 05:26:81:17:79:0f:70:b6:c0:86:eb:d5:b6:a4:97:5b:42:b4: 38:f4:c6:39:c6:8a:ef:79:d7:e6:7a:41:21:1b:c8:9b:a4:53: 2d:5a:72:e4:99:8b:52:94:67:fe:a1:02:c6:a5:3d:c0:ea:e0: f5:09:27:07:c8:65:20:ef:7c:09:81:44:2a:f3:13:2f:5f:50: 9b:af:03:c1:8e:3a:8f:82:ce:26:52:ae:b8:87:15:0c:9a:f7: c0:39:f9:3c:6c:98:d3:b8:6c:3e:37:2e:78:6b:3e:8e:39:28: cf:78:7f:ad:b3:1a:f8:0b:a2:28:9e:f7:ff:29:ad:35:d3:62: b0:fd:08:b0:e4:53:9b:66:cd:6f:56:18:d8:ec:c6:88:21:9d: 1d:c1:d0:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjQwNTA2MTQ1MjU4WhcNMjQwNTEzMTQ1MjU4WjAYMRYwFAYD VQQDEw02NjM4ZWVjYi1iNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QZ7YFSMmtLTxGeJBOk5c/rCjxJQAB59e/Bgs6LCUPGIc7T7p1YowUOr0GKY R7yQcdX4BlfepWDz9AcUdeeh2XK1NnGtlDRSGgtEGnBzQOLaXhxzAGvjDh+ERRqS vKveXJ3O7/JRdAYAOtup7cTcmpkiexIdVvy8/AkrzSRkJM2FGrh9cH+x9uG23kMu juzbuDLErzIkXLF8TsxXNaZDMEJXXFed31Hn1KDswuxZ5jwOK++ErcULaXWBInt5 5FVJtebdtDkM5w99dKsWRf2CKn4plRohppJBfQZ9hFsdJBRenTbSd1aFgfoXgUnJ VVql6gh80DB6SV76tm5cQh5BKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHt1yc6 A39J3ZktPOl7XLy51S9FMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZCQy8zNzMwODM4MDFEOTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFk VWhHa1RDRnFsanE2ekg0ckEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcGMxIMHsTcicNTV2INDcEGAm6SFWlEX2VaxhkG285zpxQvGRUngd2 Fe/B8L+lF3s7e8Wk1+zur26+0Y1SS/68usVBKYUce+z9MH6jIj0dmbFIAd+p6sKU YI7kNPtVhaPXDIYJFkAkqDSOppMFJoEXeQ9wtsCG69W2pJdbQrQ49MY5xorvedfm ekEhG8ibpFMtWnLkmYtSlGf+oQLGpT3A6uD1CScHyGUg73wJgUQq8xMvX1CbrwPB jjqPgs4mUq64hxUMmvfAOfk8bJjTuGw+Ny54az6OOSjPeH+tsxr4C6Ionvf/Ka01 02Kw/Qiw5FObZs1vVhjY7MaIIZ0dwdAf -----END CERTIFICATE-----Generated at Mon May 6 17:43:23 2024 by rpki-client on console-ams.rpki-client.org