$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft File: UTbgDQPR84UAq2cpty7T1yzWoQU.mft (raw, json) Hash identifier: BMBivYIEoydsn+u9RRSdSoB2YBZWMesH/4KgX6AR/gw= Subject key identifier: 6E:1D:D7:4B:F3:F4:A2:3C:76:E9:2B:7E:F1:75:2A:74:66:B6:3C:DD Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1D34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft Manifest number: 1D25 Signing time: Tue 30 Apr 2024 16:36:20 +0000 Manifest this update: Tue 30 Apr 2024 16:36:20 +0000 Manifest next update: Tue 07 May 2024 16:36:20 +0000 Files and hashes: 1: UTbgDQPR84UAq2cpty7T1yzWoQU.crl (hash: fT2OBL6q2FMnC5gKcIYnimj4PWzkD4q8uPZTq3QiQ2U=) 2: EF31EA383CCB11EEB6AD691FC4F9AE02.roa (hash: 0TH3pFFeu/tczdDzP7o00s82+D28sOdbS209Bz1AYNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:36:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7476 (0x1d34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Apr 30 16:36:20 2024 GMT Not After : May 7 16:36:20 2024 GMT Subject: CN=66311e04-ba94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:79:a6:f3:ac:3e:4e:54:45:66:14:a1:2e:95: 4d:e9:ba:4b:c9:f9:5c:3c:b0:15:95:d0:5f:83:ea: 19:da:81:85:26:19:6a:b1:cc:00:13:c5:9e:eb:48: 50:fe:56:e5:8f:17:91:53:59:23:9a:5b:8a:6b:02: 48:62:36:1a:27:cf:99:4e:e6:9d:23:5d:95:90:d0: 57:71:0c:97:9c:4b:8c:56:6b:e4:80:f1:10:d6:1c: 8a:d7:f9:2e:ba:a4:9b:68:48:eb:ae:4d:94:a4:37: 34:6e:2e:34:d4:d5:ee:cc:f9:1e:69:97:d5:27:48: a6:47:3f:0e:4d:d5:78:d2:88:42:0b:c9:d7:5b:56: 47:c4:6b:ee:f1:39:bd:ab:41:4c:08:31:ea:bc:e2: 0e:44:a4:41:1b:2f:02:8d:92:b2:90:0e:70:c9:83: 0d:22:53:3d:a4:e3:45:35:79:42:41:be:d7:76:f1: e2:b6:8a:c0:23:70:c3:48:61:ba:6d:a4:71:74:7b: 6e:68:09:b7:8d:27:ab:31:17:76:fd:04:32:25:02: 42:20:04:a7:ec:5a:4d:0e:b7:06:e2:ca:d4:d4:95: b8:62:b5:45:ac:1f:c6:ab:db:fd:1a:34:b7:43:41: 6b:35:c6:30:f3:92:a3:9f:a8:1c:34:29:78:26:9a: 59:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1D:D7:4B:F3:F4:A2:3C:76:E9:2B:7E:F1:75:2A:74:66:B6:3C:DD X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:7a:ec:cb:79:7c:61:20:5f:95:29:d7:e2:d1:24:ed:7b:2a: 29:62:46:05:6e:50:42:d8:71:f4:5c:81:b7:8b:b4:e3:46:47: 68:b5:15:bd:48:ce:90:ad:ec:12:6d:af:36:7f:51:39:fb:ad: 0e:1f:3e:6d:fc:43:71:7f:0b:4b:15:77:17:f8:32:c3:9f:6d: bb:3c:a5:62:b7:b4:e4:48:06:28:ad:66:a5:36:cc:b9:62:85: c1:36:1f:ed:1d:7c:5e:e0:b1:18:8b:65:83:b4:34:a0:25:1d: a3:00:10:03:5d:1b:54:94:43:25:e4:7d:a1:c1:3f:22:57:29: c2:86:82:a4:45:b1:d6:00:51:b9:c8:bb:e1:9a:29:c0:38:a3: c9:2b:31:da:d8:ea:47:72:99:ab:e1:c4:24:8e:c8:e9:75:89: 88:3c:71:98:83:33:08:80:28:fc:42:d0:4c:6b:66:f5:31:4b: 33:93:cd:65:95:e4:ff:2b:7d:5c:ac:94:80:40:54:20:3e:05: e5:8c:4b:e9:6e:98:ea:9c:8a:1c:61:0d:5c:79:1b:ac:e8:4d: 7f:88:d3:8c:ee:96:f4:7f:f1:6b:86:8d:7c:34:e1:a8:54:55: 02:62:cc:fd:b4:1c:8b:36:52:8a:0f:b3:91:35:2b:0a:bf:b3: bf:00:c7:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjQwNDMwMTYzNjIwWhcNMjQwNTA3MTYzNjIwWjAYMRYwFAYD VQQDEw02NjMxMWUwNC1iYTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHmm86w+TlRFZhShLpVN6bpLyflcPLAVldBfg+oZ2oGFJhlqscwAE8We60hQ /lbljxeRU1kjmluKawJIYjYaJ8+ZTuadI12VkNBXcQyXnEuMVmvkgPEQ1hyK1/ku uqSbaEjrrk2UpDc0bi401NXuzPkeaZfVJ0imRz8OTdV40ohCC8nXW1ZHxGvu8Tm9 q0FMCDHqvOIORKRBGy8CjZKykA5wyYMNIlM9pONFNXlCQb7XdvHitorAI3DDSGG6 baRxdHtuaAm3jSerMRd2/QQyJQJCIASn7FpNDrcG4srU1JW4YrVFrB/Gq9v9GjS3 Q0FrNcYw85Kjn6gcNCl4JppZ/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4d10vz 9KI8dukrfvF1KnRmtjzdMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zMDQxOTdFODhGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0 VUFxMmNwdHk3VDF5eldvUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBteuzLeXxhIF+VKdfi0STteyopYkYFblBC2HH0XIG3i7TjRkdotRW9 SM6QrewSba82f1E5+60OHz5t/ENxfwtLFXcX+DLDn227PKVit7TkSAYorWalNsy5 YoXBNh/tHXxe4LEYi2WDtDSgJR2jABADXRtUlEMl5H2hwT8iVynChoKkRbHWAFG5 yLvhminAOKPJKzHa2OpHcpmr4cQkjsjpdYmIPHGYgzMIgCj8QtBMa2b1MUszk81l leT/K31crJSAQFQgPgXljEvpbpjqnIocYQ1ceRus6E1/iNOM7pb0f/Frho18NOGo VFUCYsz9tByLNlKKD7ORNSsKv7O/AMcR -----END CERTIFICATE-----Generated at Tue Apr 30 19:22:15 2024 by rpki-client on console-ams.rpki-client.org