$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft File: UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft (raw, json) Hash identifier: r3yv2hRd1n84p77L7x6LDgtZLsFYiIqrWlZslydVxsM= Subject key identifier: DD:3A:0A:56:AC:A3:1B:20:9F:54:A6:D3:45:61:2F:FA:A5:38:7F:83 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 02C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft Manifest number: 02BE Signing time: Wed 01 May 2024 03:49:27 +0000 Manifest this update: Wed 01 May 2024 03:49:26 +0000 Manifest next update: Wed 08 May 2024 03:49:26 +0000 Files and hashes: 1: UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl (hash: sRe3TE82JfDgqVRzZ4iCfoubs/g9ErDPBg+Qymi37z0=) 2: 713001A0A35811EC88C42869C4F9AE02.roa (hash: SzmhUiOKFGJoKuBX56C52miBzPamnKu8Ji/qVMaBki8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 705 (0x2c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: May 1 03:49:26 2024 GMT Not After : May 8 03:49:26 2024 GMT Subject: CN=6631bbc7-f6b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2a:f0:2f:b2:29:10:44:0a:62:eb:40:bb:bb: c3:12:fe:46:63:6e:80:ee:c7:c1:ea:6f:6b:d7:a6: 53:61:c2:01:b0:24:8e:10:d4:7e:7f:b0:9e:2d:b1: 42:cb:ff:d5:e3:d3:ff:37:98:8b:d5:e6:5f:8f:3b: c5:c4:23:eb:66:b6:3f:74:1a:b3:04:a3:3c:97:79: ec:c5:e9:fe:45:5f:e1:69:8b:e3:ff:01:bc:7c:21: 00:03:4f:bf:8e:d0:5d:1c:e9:05:47:e9:97:2f:5e: 57:f6:87:46:9c:e1:89:0c:10:31:21:32:97:f0:3c: 34:34:96:20:20:e3:94:7c:cb:33:bc:f0:df:a6:dc: f7:2b:d4:73:3b:41:2c:5d:e0:db:46:63:10:6d:78: 7f:da:e2:9d:ff:67:d2:a1:9f:a6:9e:fa:8d:dd:cc: 48:c5:3b:d1:84:91:e7:20:04:96:3b:1a:43:47:49: dc:a8:9f:bf:42:74:86:66:95:e6:07:33:23:62:8c: dc:ab:7a:78:f9:6f:39:9d:a4:a5:a1:42:ee:32:86: dd:5b:03:d2:96:e4:eb:bb:a0:b6:3e:5c:07:ba:cd: 5b:51:0a:4c:96:28:03:13:30:89:e8:7d:73:0b:98: 24:12:00:3e:15:e4:ab:b5:9b:1e:b4:2a:d9:85:63: a7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3A:0A:56:AC:A3:1B:20:9F:54:A6:D3:45:61:2F:FA:A5:38:7F:83 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d3:f2:69:d8:46:ba:3a:d9:23:2f:8d:a8:d5:1f:95:f3:e3: bf:fb:7b:93:ef:ca:7b:80:d2:c0:34:97:01:1e:2e:c8:96:88: 2a:71:cf:40:30:c8:5b:af:41:0d:9e:a8:74:0c:2e:93:3a:60: b2:4a:90:19:78:04:fe:2f:dc:aa:53:d7:c7:10:d3:85:74:82: 11:a0:ae:90:66:18:77:31:df:4b:a2:80:81:ea:84:fd:28:09: 53:c7:2c:4b:e9:bd:3e:6d:cc:f1:6e:9e:6b:76:f4:d6:43:1c: 8e:12:74:ea:44:9b:6b:8a:04:ae:ce:82:99:bb:2f:85:b5:0f: ff:ae:25:80:0c:65:8c:64:ca:3e:1d:cd:56:de:02:6b:9b:71: ce:b5:82:3f:5d:37:6d:b0:8b:9b:0a:d0:8f:23:24:67:6b:b5: 8f:f2:d6:d6:c8:80:78:c6:51:1d:7b:f8:fb:d3:52:07:df:d0: 57:28:8f:0e:e1:18:82:c8:a9:c0:26:23:f9:d1:d4:9c:12:3d: 73:ac:98:8b:a2:eb:d4:be:47:9d:51:f6:41:4f:9b:af:0c:d6: 4d:ce:23:07:e2:58:1a:0b:d9:d9:da:82:06:2f:52:6a:7a:03: e4:ab:1a:d7:2d:19:98:d2:04:d1:04:23:f0:b7:ca:db:e5:b2: ba:eb:b3:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjQwNTAxMDM0OTI2WhcNMjQwNTA4MDM0OTI2WjAYMRYwFAYD VQQDEw02NjMxYmJjNy1mNmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzirwL7IpEEQKYutAu7vDEv5GY26A7sfB6m9r16ZTYcIBsCSOENR+f7CeLbFC y//V49P/N5iL1eZfjzvFxCPrZrY/dBqzBKM8l3nsxen+RV/haYvj/wG8fCEAA0+/ jtBdHOkFR+mXL15X9odGnOGJDBAxITKX8Dw0NJYgIOOUfMszvPDfptz3K9RzO0Es XeDbRmMQbXh/2uKd/2fSoZ+mnvqN3cxIxTvRhJHnIASWOxpDR0ncqJ+/QnSGZpXm BzMjYozcq3p4+W85naSloULuMobdWwPSluTru6C2PlwHus1bUQpMligDEzCJ6H1z C5gkEgA+FeSrtZsetCrZhWOnowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN06Clas oxsgn1Sm00VhL/qlOH+DMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QThGNS85NUFBMUVFQ0EzNTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJu Q2t3cklBa1pLTjV5WkxSc1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC0/Jp2Ea6OtkjL42o1R+V8+O/+3uT78p7gNLANJcBHi7Ilogqcc9A MMhbr0ENnqh0DC6TOmCySpAZeAT+L9yqU9fHENOFdIIRoK6QZhh3Md9LooCB6oT9 KAlTxyxL6b0+bczxbp5rdvTWQxyOEnTqRJtrigSuzoKZuy+FtQ//riWADGWMZMo+ Hc1W3gJrm3HOtYI/XTdtsIubCtCPIyRna7WP8tbWyIB4xlEde/j701IH39BXKI8O 4RiCyKnAJiP50dScEj1zrJiLouvUvkedUfZBT5uvDNZNziMH4lgaC9nZ2oIGL1Jq egPkqxrXLRmY0gTRBCPwt8rb5bK667MK -----END CERTIFICATE-----Generated at Wed May 1 05:59:10 2024 by rpki-client on console-fra.rpki-client.org