$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.mft File: UYw4xLA2ROAncichcLhSl3E_jN8.mft (raw, json) Hash identifier: L9R6F08ElizLNgY47fV/kVJsBRZtfo/GTKponQwDSh8= Subject key identifier: A3:5F:23:17:9C:59:E3:09:D3:DF:F5:D6:43:11:17:C7:1B:44:6A:A6 Authority key identifier: 51:8C:38:C4:B0:36:44:E0:27:72:27:21:70:B8:52:97:71:3F:8C:DF Certificate issuer: /CN=A91AE63C/serialNumber=518C38C4B03644E02772272170B85297713F8CDF Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYw4xLA2ROAncichcLhSl3E_jN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.mft Manifest number: 012A Signing time: Wed 01 May 2024 05:21:41 +0000 Manifest this update: Wed 01 May 2024 05:21:41 +0000 Manifest next update: Wed 08 May 2024 05:21:40 +0000 Files and hashes: 1: UYw4xLA2ROAncichcLhSl3E_jN8.crl (hash: QEfNGgBMYIG8kCCjgyhBk3tZykvdXXCdyl71zqDCPBg=) 2: 4010EC26456811ED94F35B6BC4F9AE02.roa (hash: o/0z6eqVRVSlCoRA7VHMF4C80D97+OmikMfzGtKn4vo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.crl rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYw4xLA2ROAncichcLhSl3E_jN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE63C/serialNumber=518C38C4B03644E02772272170B85297713F8CDF Validity Not Before: May 1 05:21:41 2024 GMT Not After : May 8 05:21:40 2024 GMT Subject: CN=6631d165-9330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:92:88:bd:4b:8d:78:ef:b5:34:5c:cd:66: c5:b2:24:66:84:3a:c8:ef:80:c4:6b:22:ef:f8:b8: 1e:39:ee:00:78:fb:6e:46:33:8d:22:8a:0f:25:af: 19:e9:72:82:b9:f9:2d:a5:b5:2a:51:04:36:29:c5: 46:7e:ee:32:94:e7:fd:2c:e4:9b:7c:e6:28:86:ad: 55:e2:76:c5:6b:79:a6:07:af:93:1d:c4:84:c8:7f: 8a:f4:cb:1c:ae:20:fd:7f:f0:bd:1a:74:2d:ac:e0: 2d:2e:a1:a4:4a:6e:47:fa:c9:6d:bc:38:31:43:09: 82:32:ff:0c:aa:72:94:ad:25:93:b5:cb:4a:fb:2e: e5:db:7d:68:7a:ac:ac:d6:61:b1:0f:d4:49:05:f8: 5a:53:13:40:8a:d0:44:2f:fc:cd:ba:ed:be:2d:b9: ef:41:33:dc:8d:f5:5e:76:f2:2a:e9:8c:11:5b:91: ae:95:bc:64:6b:b6:6d:bf:44:7f:02:81:59:54:75: 79:a5:f5:bf:98:03:0a:43:d7:c9:74:68:fd:56:e0: bd:cb:16:a2:59:7b:fc:ee:24:88:9f:14:ee:b4:6f: 8f:4b:ef:c5:c2:24:fa:80:a6:26:5e:31:6c:02:08: 3d:c9:15:c0:34:c0:21:31:67:60:9b:d2:b8:76:72: 20:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:5F:23:17:9C:59:E3:09:D3:DF:F5:D6:43:11:17:C7:1B:44:6A:A6 X509v3 Authority Key Identifier: keyid:51:8C:38:C4:B0:36:44:E0:27:72:27:21:70:B8:52:97:71:3F:8C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UYw4xLA2ROAncichcLhSl3E_jN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE63C/E27A55A6456311EDAAB5E164C4F9AE02/UYw4xLA2ROAncichcLhSl3E_jN8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:fd:e3:dc:a4:5d:ae:16:b0:99:9f:05:3b:d8:b1:8f:2a:99: 6a:66:ae:b1:85:ee:1f:95:37:ef:91:65:28:36:81:e0:90:5a: 57:77:79:63:0b:37:7c:3e:5c:60:e8:b6:f5:09:5f:0c:ae:8c: 64:39:0e:f5:f9:b8:b3:a5:53:32:55:f7:d3:e1:dd:34:05:b7: 23:15:6a:ae:5d:57:39:35:25:69:c4:11:0e:42:ac:5f:24:67: 39:bb:86:99:07:5a:1c:16:81:55:a1:76:5d:7f:da:0d:1f:32: cd:ba:10:be:db:cc:1a:76:62:63:79:e1:1b:32:62:03:10:79: 02:f5:ed:4a:62:5a:65:6a:63:6f:3d:c2:24:75:9d:9f:de:e0: bb:64:85:1a:5d:4c:fb:e7:14:41:db:00:ae:81:2a:d8:5e:07: d8:be:93:18:e2:8e:2a:08:8d:5f:10:a7:f9:dd:2f:44:66:d2: c0:bd:0f:82:8a:62:1e:d4:90:8b:41:4d:f8:22:24:59:ed:6b: 71:b3:3f:24:86:ca:62:9c:88:65:9f:07:08:78:12:8c:8a:59: 23:80:a5:dc:4d:c7:b1:05:f3:63:5d:61:0e:3f:3b:76:e8:42: 62:d8:e9:dc:32:aa:16:56:03:86:92:d7:bb:ad:cb:49:37:ba: cf:c9:f2:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU2M0MxMTAvBgNVBAUTKDUxOEMzOEM0QjAzNjQ0RTAyNzcyMjcyMTcwQjg1Mjk3 NzEzRjhDREYwHhcNMjQwNTAxMDUyMTQxWhcNMjQwNTA4MDUyMTQwWjAYMRYwFAYD VQQDEw02NjMxZDE2NS05MzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnWSiL1LjXjvtTRczWbFsiRmhDrI74DEayLv+LgeOe4AePtuRjONIooPJa8Z 6XKCufktpbUqUQQ2KcVGfu4ylOf9LOSbfOYohq1V4nbFa3mmB6+THcSEyH+K9Msc riD9f/C9GnQtrOAtLqGkSm5H+sltvDgxQwmCMv8MqnKUrSWTtctK+y7l231oeqys 1mGxD9RJBfhaUxNAitBEL/zNuu2+LbnvQTPcjfVedvIq6YwRW5Gulbxka7Ztv0R/ AoFZVHV5pfW/mAMKQ9fJdGj9VuC9yxaiWXv87iSInxTutG+PS+/FwiT6gKYmXjFs Agg9yRXANMAhMWdgm9K4dnIgkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNfIxec WeMJ09/11kMRF8cbRGqmMB8GA1UdIwQYMBaAFFGMOMSwNkTgJ3InIXC4UpdxP4zf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTYzQy9FMjdBNTVBNjQ1 NjMxMUVEQUFCNUUxNjRDNEY5QUUwMi9VWXc0eExBMlJPQW5jaWNoY0xoU2wzRV9q TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VZdzR4TEEyUk9BbmNpY2hjTGhTbDNFX2pOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTYzQy9FMjdBNTVBNjQ1NjMxMUVEQUFCNUUxNjRDNEY5QUUwMi9VWXc0eExBMlJP QW5jaWNoY0xoU2wzRV9qTjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq/ePcpF2uFrCZnwU72LGPKplqZq6xhe4flTfvkWUoNoHgkFpXd3lj Czd8Plxg6Lb1CV8MroxkOQ71+bizpVMyVffT4d00BbcjFWquXVc5NSVpxBEOQqxf JGc5u4aZB1ocFoFVoXZdf9oNHzLNuhC+28wadmJjeeEbMmIDEHkC9e1KYlplamNv PcIkdZ2f3uC7ZIUaXUz75xRB2wCugSrYXgfYvpMY4o4qCI1fEKf53S9EZtLAvQ+C imIe1JCLQU34IiRZ7Wtxsz8khspinIhlnwcIeBKMilkjgKXcTcexBfNjXWEOPzt2 6EJi2OncMqoWVgOGkte7rctJN7rPyfII -----END CERTIFICATE-----Generated at Wed May 1 05:55:44 2024 by rpki-client on console-ams.rpki-client.org