$ rpki-client -vvf rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft File: uS8-WIshlDrLuAW_3wsZRL98rDs.mft (raw, json) Hash identifier: QEqXn0TzBu2RVf3r0p0TdHQGYnDxUItfLGIWMNx7L+4= Subject key identifier: FA:2C:64:82:92:5A:64:94:C6:FB:49:EF:CE:F0:B8:47:C0:D5:22:6D Authority key identifier: B9:2F:3E:58:8B:21:94:3A:CB:B8:05:BF:DF:0B:19:44:BF:7C:AC:3B Certificate issuer: /CN=A919B0F9/serialNumber=B92F3E588B21943ACBB805BFDF0B1944BF7CAC3B Certificate serial: 1189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft Manifest number: 117F Signing time: Sat 04 May 2024 17:55:26 +0000 Manifest this update: Sat 04 May 2024 17:55:25 +0000 Manifest next update: Sat 11 May 2024 17:55:25 +0000 Files and hashes: 1: uS8-WIshlDrLuAW_3wsZRL98rDs.crl (hash: sChA1StTbW7mUyZsFkYfu1g5INXsMcdMdet8XGVcs2g=) 2: 455880A6ED6D11ED8A822917C4F9AE02.roa (hash: aC4IYAyMGo6nLf4CT/cxfXqFFROm0vKPE8dyF8L1Czw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.crl rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B0F9/serialNumber=B92F3E588B21943ACBB805BFDF0B1944BF7CAC3B Validity Not Before: May 4 17:55:25 2024 GMT Not After : May 11 17:55:25 2024 GMT Subject: CN=6636768e-75b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:da:52:da:99:b7:2d:62:55:5b:1f:85:85:f9: 38:07:0e:43:e2:17:de:58:a9:b3:28:65:ab:25:89: e8:4a:66:b4:fe:11:88:c1:77:ee:64:59:cd:9e:27: 8a:f0:bc:66:0b:7f:45:d0:d6:3d:57:82:be:ca:af: 3e:5c:51:5c:4d:2d:bf:1b:11:f6:64:44:f3:d6:a2: 71:26:a4:d9:09:5b:73:66:ec:7e:bb:80:57:5b:cb: 2c:c4:42:16:ed:9d:9b:4d:9a:40:d0:23:cd:26:39: 59:31:e8:83:c9:3f:40:65:29:60:0e:70:49:af:7a: b4:1b:58:9c:89:86:26:e3:18:b5:44:b2:00:87:31: 31:11:d6:a2:3e:a3:48:ef:8f:be:b1:9e:79:57:32: df:3b:68:b1:61:37:1a:51:d3:59:e4:64:c6:36:0d: 8d:d1:6d:8e:75:07:23:17:49:30:fc:89:c6:5a:69: 63:bc:54:c7:4d:b7:0e:8b:37:f0:79:2e:11:2b:8b: 8f:d4:54:54:27:99:40:d8:93:7c:cd:6b:b3:83:1e: 97:59:a2:fa:db:0b:89:17:c6:05:16:cf:4c:c5:48: b4:9d:d7:6f:b7:57:93:6b:93:dc:d0:50:52:4f:49: c0:44:3c:13:fd:00:1d:af:cd:04:db:4e:b8:7a:65: 75:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2C:64:82:92:5A:64:94:C6:FB:49:EF:CE:F0:B8:47:C0:D5:22:6D X509v3 Authority Key Identifier: keyid:B9:2F:3E:58:8B:21:94:3A:CB:B8:05:BF:DF:0B:19:44:BF:7C:AC:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uS8-WIshlDrLuAW_3wsZRL98rDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B0F9/1D2B5B2AD6BC11E894550D42C4F9AE02/uS8-WIshlDrLuAW_3wsZRL98rDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:0c:83:6f:af:bd:f6:73:20:05:39:45:34:6d:a7:9b:32:0a: a2:a2:ce:e0:a5:0c:90:bd:f7:04:a9:ce:03:e4:46:63:9b:e3: 29:6f:f1:ef:3e:00:82:eb:c4:4f:21:b6:4b:9a:54:ec:18:5a: ef:4e:6c:12:5b:30:0d:95:12:2f:ae:bf:a8:a8:18:17:30:e6: 90:a1:70:c5:d5:53:99:55:cf:42:8e:b4:c8:04:d0:b0:e0:73: 36:a0:2e:13:30:e7:e3:ec:27:42:b4:08:71:1c:52:58:4a:f3: 9c:90:3d:ba:d5:81:e3:41:3e:5e:c2:67:74:02:4a:49:2e:eb: a5:16:29:3e:ce:f3:76:8b:aa:12:3d:f9:2d:06:dd:c7:67:9c: c1:6f:ad:b7:4d:11:79:e4:3e:e1:b2:cc:65:fe:20:bd:0f:90: 80:ab:bf:c8:17:e8:b4:0f:90:65:51:ad:18:bc:b9:8d:c3:54: c0:14:1f:f6:26:b0:29:e4:17:55:3b:3a:ca:1f:52:21:64:c3: fd:4f:6b:3e:39:65:0b:ef:de:e4:61:73:dd:84:3c:94:8c:8a: fe:c5:07:cd:b1:e7:11:2b:28:96:0c:e9:1a:cb:ad:a2:aa:87: f3:c3:4f:ae:e1:15:24:7c:0b:c3:09:61:b0:e4:c2:89:61:51: 08:6c:18:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIwRjkxMTAvBgNVBAUTKEI5MkYzRTU4OEIyMTk0M0FDQkI4MDVCRkRGMEIxOTQ0 QkY3Q0FDM0IwHhcNMjQwNTA0MTc1NTI1WhcNMjQwNTExMTc1NTI1WjAYMRYwFAYD VQQDEw02NjM2NzY4ZS03NWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9pS2pm3LWJVWx+Fhfk4Bw5D4hfeWKmzKGWrJYnoSma0/hGIwXfuZFnNnieK 8LxmC39F0NY9V4K+yq8+XFFcTS2/GxH2ZETz1qJxJqTZCVtzZux+u4BXW8ssxEIW 7Z2bTZpA0CPNJjlZMeiDyT9AZSlgDnBJr3q0G1iciYYm4xi1RLIAhzExEdaiPqNI 74++sZ55VzLfO2ixYTcaUdNZ5GTGNg2N0W2OdQcjF0kw/InGWmljvFTHTbcOizfw eS4RK4uP1FRUJ5lA2JN8zWuzgx6XWaL62wuJF8YFFs9MxUi0nddvt1eTa5Pc0FBS T0nARDwT/QAdr80E2064emV1pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPosZIKS WmSUxvtJ787wuEfA1SJtMB8GA1UdIwQYMBaAFLkvPliLIZQ6y7gFv98LGUS/fKw7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjBGOS8xRDJCNUIyQUQ2 QkMxMUU4OTQ1NTBENDJDNEY5QUUwMi91UzgtV0lzaGxEckx1QVdfM3dzWlJMOThy RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTOC1XSXNobERyTHVBV18zd3NaUkw5OHJEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjBGOS8xRDJCNUIyQUQ2QkMxMUU4OTQ1NTBENDJDNEY5QUUwMi91UzgtV0lzaGxE ckx1QVdfM3dzWlJMOThyRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALDINvr732cyAFOUU0baebMgqios7gpQyQvfcEqc4D5EZjm+Mpb/Hv PgCC68RPIbZLmlTsGFrvTmwSWzANlRIvrr+oqBgXMOaQoXDF1VOZVc9CjrTIBNCw 4HM2oC4TMOfj7CdCtAhxHFJYSvOckD261YHjQT5ewmd0AkpJLuulFik+zvN2i6oS PfktBt3HZ5zBb623TRF55D7hssxl/iC9D5CAq7/IF+i0D5BlUa0YvLmNw1TAFB/2 JrAp5BdVOzrKH1IhZMP9T2s+OWUL797kYXPdhDyUjIr+xQfNsecRKyiWDOkay62i qofzw0+u4RUkfAvDCWGw5MKJYVEIbBge -----END CERTIFICATE-----Generated at Sat May 4 20:37:14 2024 by rpki-client on console-fra.rpki-client.org