$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft File: u3h15MblRLV0ehFf6M32iYyN5zM.mft (raw, json) Hash identifier: r9Em4lF02dg2ahiJ3c3iqtuWo/zbMskI2fxEJjrdCCo= Subject key identifier: 57:94:5F:F0:CF:D7:7C:DC:AB:07:13:F5:A3:B2:2C:00:AC:8F:87:2C Authority key identifier: BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33 Certificate issuer: /CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733 Certificate serial: 09A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft Manifest number: 099A Signing time: Sun 28 Apr 2024 20:54:43 +0000 Manifest this update: Sun 28 Apr 2024 20:54:43 +0000 Manifest next update: Sun 05 May 2024 20:54:43 +0000 Files and hashes: 1: u3h15MblRLV0ehFf6M32iYyN5zM.crl (hash: iih53reQlhf/bcnaSazxOJkVEnP1UUTmvBEtp6tPAlI=) 2: 33CAA25A05A611EEA86A0C2BC4F9AE02.roa (hash: Eg/JW4cJF7nsXObfOoTZK84gKFfE+zST8g2LwnJr8pE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.crl rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 18:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733 Validity Not Before: Apr 28 20:54:43 2024 GMT Not After : May 5 20:54:43 2024 GMT Subject: CN=662eb793-495b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e8:7f:76:5e:fb:d7:45:62:16:1b:12:09:f5: 95:6e:85:bc:9a:33:bb:38:43:53:da:ed:e8:74:9f: 3c:04:35:a5:fd:f9:a5:ab:f1:8b:d3:d0:24:be:dc: d1:40:4e:8d:ba:02:c5:50:c5:b4:27:37:74:d1:a7: 8a:6f:4d:6f:4c:4c:90:55:8a:15:d4:d4:51:14:3a: ec:44:5c:dd:4b:cc:6b:29:9c:68:bb:be:df:b1:04: 25:d5:58:36:01:93:29:c6:cf:e9:5d:54:c1:0d:1b: 29:af:17:fb:36:8a:19:e6:53:05:be:79:f0:f6:3b: 53:59:d5:92:1e:0c:06:13:b7:df:03:52:86:61:89: 9c:06:39:e5:08:08:17:bd:a6:0a:e9:38:4b:5b:67: 22:09:18:45:f9:3b:48:fc:e9:8f:de:ce:a0:51:09: de:dc:18:e7:19:1e:4d:e5:fa:4e:61:86:20:e5:df: 81:9d:f2:b3:4e:a1:be:8d:cc:b8:7c:a1:ee:a7:fa: 87:88:70:29:69:bd:4d:05:dd:cc:66:e8:17:93:30: 9a:19:69:50:8d:f2:74:e6:89:5b:a9:32:dc:0e:2c: 26:eb:14:d3:f7:a7:f5:72:16:57:bf:af:3c:95:bc: d5:17:76:00:ad:20:9e:22:b7:b1:0e:2e:1e:5b:c3: 8f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:94:5F:F0:CF:D7:7C:DC:AB:07:13:F5:A3:B2:2C:00:AC:8F:87:2C X509v3 Authority Key Identifier: keyid:BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ce:72:ac:52:85:13:9e:16:9d:cf:78:84:ad:45:3d:2d:74: 4e:32:c9:ef:ed:f6:94:dd:47:a1:15:70:b8:80:14:68:1c:ae: d8:3d:16:4e:55:cf:60:2e:a1:50:bc:3b:44:6d:5d:f2:2d:1d: 00:a1:62:fd:7d:e4:2a:4c:8e:27:c0:d6:9e:bc:4e:d5:a4:8a: 56:f0:80:6b:9c:66:bc:99:14:65:9e:63:e3:0e:83:68:81:41: 4a:5b:65:a5:c0:c2:79:e7:45:98:ce:60:81:b6:0a:df:c1:f5: 1f:c3:02:03:43:c0:29:a5:16:08:c0:96:1b:01:97:65:7e:e9: e8:c5:25:5d:53:8b:61:8e:cb:79:f8:4a:c3:ed:43:42:9c:d3: 6c:48:a8:40:f3:b6:74:04:96:6a:b4:7d:a6:8a:cf:5c:f4:91: 61:45:14:9d:ad:62:69:70:07:a1:ad:56:2c:84:6a:d1:ca:24: c8:c3:dc:03:1b:b3:6d:ac:07:d7:5f:2a:c9:2e:7b:22:c6:00: 6b:81:36:7b:19:2a:d2:7a:af:1d:a7:b7:7b:6f:76:cc:e5:df: 82:50:0c:04:48:3e:b6:89:ab:b8:92:d9:21:3b:52:b4:1a:e0: 57:66:cf:05:a9:26:10:a3:04:04:56:d1:55:1f:82:24:50:e6: ef:92:f4:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3QkIxMTAvBgNVBAUTKEJCNzg3NUU0QzZFNTQ0QjU3NDdBMTE1RkU4Q0RGNjg5 OEM4REU3MzMwHhcNMjQwNDI4MjA1NDQzWhcNMjQwNTA1MjA1NDQzWjAYMRYwFAYD VQQDEw02NjJlYjc5My00OTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuh/dl7710ViFhsSCfWVboW8mjO7OENT2u3odJ88BDWl/fmlq/GL09AkvtzR QE6NugLFUMW0Jzd00aeKb01vTEyQVYoV1NRRFDrsRFzdS8xrKZxou77fsQQl1Vg2 AZMpxs/pXVTBDRsprxf7NooZ5lMFvnnw9jtTWdWSHgwGE7ffA1KGYYmcBjnlCAgX vaYK6ThLW2ciCRhF+TtI/OmP3s6gUQne3BjnGR5N5fpOYYYg5d+BnfKzTqG+jcy4 fKHup/qHiHApab1NBd3MZugXkzCaGWlQjfJ05olbqTLcDiwm6xTT96f1chZXv688 lbzVF3YArSCeIrexDi4eW8OPQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFeUX/DP 13zcqwcT9aOyLACsj4csMB8GA1UdIwQYMBaAFLt4deTG5US1dHoRX+jN9omMjecz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzdCQi84Q0U1OURBNDY0 NUYxMUVBQkM2OTI5N0FDNEY5QUUwMi91M2gxNU1ibFJMVjBlaEZmNk0zMmlZeU41 ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzaDE1TWJsUkxWMGVoRmY2TTMyaVl5TjV6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzdCQi84Q0U1OURBNDY0NUYxMUVBQkM2OTI5N0FDNEY5QUUwMi91M2gxNU1ibFJM VjBlaEZmNk0zMmlZeU41ek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPznKsUoUTnhadz3iErUU9LXROMsnv7faU3UehFXC4gBRoHK7YPRZO Vc9gLqFQvDtEbV3yLR0AoWL9feQqTI4nwNaevE7VpIpW8IBrnGa8mRRlnmPjDoNo gUFKW2WlwMJ550WYzmCBtgrfwfUfwwIDQ8AppRYIwJYbAZdlfunoxSVdU4thjst5 +ErD7UNCnNNsSKhA87Z0BJZqtH2mis9c9JFhRRSdrWJpcAehrVYshGrRyiTIw9wD G7NtrAfXXyrJLnsixgBrgTZ7GSrSeq8dp7d7b3bM5d+CUAwESD62iau4ktkhO1K0 GuBXZs8FqSYQowQEVtFVH4IkUObvkvSF -----END CERTIFICATE-----Generated at Sun Apr 28 21:21:20 2024 by rpki-client on console-fra.rpki-client.org