$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft File: UNqjonFb7c_nFOVthUH381hubvc.mft (raw, json) Hash identifier: ctHrHJRleKxrCiM8x2Wo1+He1R5IDJ0LfTCnF0vRZ88= Subject key identifier: 5B:D9:59:3F:67:C0:4C:1A:8E:8F:5B:E3:1C:04:93:84:42:0A:52:1B Authority key identifier: 50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 Certificate issuer: /CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft Manifest number: 040C Signing time: Fri 03 May 2024 02:13:09 +0000 Manifest this update: Fri 03 May 2024 02:13:08 +0000 Manifest next update: Fri 10 May 2024 02:13:08 +0000 Files and hashes: 1: UNqjonFb7c_nFOVthUH381hubvc.crl (hash: OSJBaJAI3tqJ8Mmk+L2c34X8JiB5UuQA3pAcDm/khyo=) 2: 8E8A375A1FA211EC8159E249C4F9AE02.roa (hash: 83NtINnJ0XNZ6vTmGc8rW9k4w55Iuy/ojcp0bUnHV9s=) 3: 2B6A29201FA011ECB867890CC4F9AE02.roa (hash: vyFYGOEiiDQQjp/VrYSrNLTf+1NxQsyzWw+q9M6sE20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBBC4/serialNumber=50DAA3A2715BEDCFE714E56D8541F7F3586E6EF7 Validity Not Before: May 3 02:13:08 2024 GMT Not After : May 10 02:13:08 2024 GMT Subject: CN=66344834-c4d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:0e:e4:6d:63:5f:4b:48:c9:10:f1:0e:a7:89: 45:00:bb:6f:94:9d:e3:09:fb:d5:1e:79:78:b4:03: 8f:02:e9:40:0b:45:8d:88:e8:aa:b6:4d:1e:4a:15: 3a:c2:d7:b0:a9:d4:86:3f:87:35:62:a4:0d:cd:7f: 42:0c:d3:0c:65:3f:ea:7b:42:e2:83:4d:cb:e6:a5: 58:d4:19:0a:cc:0f:8a:d3:35:6d:70:ff:68:30:06: f6:31:e6:69:b8:de:ab:7e:76:0e:12:56:9c:8a:79: 80:3c:18:78:e4:a6:96:c7:bb:20:4f:c7:72:6a:1e: b1:71:6a:b0:ff:ad:57:93:9a:c2:44:35:2f:4c:ed: 76:8c:6e:36:d9:88:12:fc:a8:18:f0:cc:b5:85:b8: ea:e4:b7:fd:97:f1:0f:83:a1:47:d1:af:8a:c4:50: 88:42:e4:42:99:7f:4b:ce:14:62:a0:65:f3:24:db: ae:a5:79:5d:65:c6:65:81:67:48:8b:79:b2:ea:2b: e9:09:ca:a0:98:e7:5f:0c:ef:9f:18:8f:b1:05:4e: 0d:b0:96:6f:17:9a:05:7a:56:21:59:23:2a:67:b1: 64:df:30:02:43:9f:c3:fc:65:52:d7:87:71:42:41: 1d:20:8e:0e:d2:69:e1:00:1f:92:64:89:db:4b:c3: 1d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D9:59:3F:67:C0:4C:1A:8E:8F:5B:E3:1C:04:93:84:42:0A:52:1B X509v3 Authority Key Identifier: keyid:50:DA:A3:A2:71:5B:ED:CF:E7:14:E5:6D:85:41:F7:F3:58:6E:6E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNqjonFb7c_nFOVthUH381hubvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBBC4/3C4B01321F9C11EC9094F05DC4F9AE02/UNqjonFb7c_nFOVthUH381hubvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:7e:fd:8e:36:e1:43:cd:c7:b8:57:0e:a3:47:e7:3b:98:55: bf:a3:17:2f:d2:6a:43:85:de:aa:12:c4:68:e2:28:c4:bf:e2: 88:1b:6b:d3:f5:ee:c5:3a:10:26:1c:04:58:c0:88:9a:c2:57: af:29:47:3b:84:22:93:a6:66:78:1e:17:64:26:b1:cb:94:95: 81:b1:69:c2:bc:ad:ca:44:79:4e:f5:08:95:15:e4:54:52:5c: e0:16:e8:84:65:6c:c8:8c:ac:b5:1e:3b:33:bc:cb:ee:d2:87: 8d:09:b2:57:61:8e:cc:37:8e:8a:33:ae:f2:df:eb:a5:59:86: 36:4b:58:98:28:b6:63:95:e4:a3:8d:d0:78:a5:b7:14:25:8e: 3c:ed:f5:ad:1b:9f:27:c1:08:98:c6:30:9a:81:19:08:76:9d: 0b:0a:2c:0f:87:c2:e8:55:3c:2b:c4:24:d4:f3:f3:a0:8e:45: f6:1d:5d:f2:16:af:a7:c7:08:f9:97:33:b9:d3:79:b3:28:9a: bb:14:9f:c7:83:2f:d4:48:53:d8:ea:62:71:68:4f:9d:b1:bd: 94:84:e0:39:68:64:28:a4:0b:ab:aa:f2:61:58:4c:f6:f6:61: 05:de:ca:22:95:1d:8b:15:b1:0f:ab:a4:29:c7:ad:48:d5:75: 97:af:84:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCQzQxMTAvBgNVBAUTKDUwREFBM0EyNzE1QkVEQ0ZFNzE0RTU2RDg1NDFGN0Yz NTg2RTZFRjcwHhcNMjQwNTAzMDIxMzA4WhcNMjQwNTEwMDIxMzA4WjAYMRYwFAYD VQQDEw02NjM0NDgzNC1jNGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Q7kbWNfS0jJEPEOp4lFALtvlJ3jCfvVHnl4tAOPAulAC0WNiOiqtk0eShU6 wtewqdSGP4c1YqQNzX9CDNMMZT/qe0Lig03L5qVY1BkKzA+K0zVtcP9oMAb2MeZp uN6rfnYOElacinmAPBh45KaWx7sgT8dyah6xcWqw/61Xk5rCRDUvTO12jG422YgS /KgY8My1hbjq5Lf9l/EPg6FH0a+KxFCIQuRCmX9LzhRioGXzJNuupXldZcZlgWdI i3my6ivpCcqgmOdfDO+fGI+xBU4NsJZvF5oFelYhWSMqZ7Fk3zACQ5/D/GVS14dx QkEdII4O0mnhAB+SZInbS8MdiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvZWT9n wEwajo9b4xwEk4RCClIbMB8GA1UdIwQYMBaAFFDao6JxW+3P5xTlbYVB9/NYbm73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkJDNC8zQzRCMDEzMjFG OUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdjX25GT1Z0aFVIMzgxaHVi dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOcWpvbkZiN2NfbkZPVnRoVUgzODFodWJ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkJDNC8zQzRCMDEzMjFGOUMxMUVDOTA5NEYwNURDNEY5QUUwMi9VTnFqb25GYjdj X25GT1Z0aFVIMzgxaHVidmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFfv2ONuFDzce4Vw6jR+c7mFW/oxcv0mpDhd6qEsRo4ijEv+KIG2vT 9e7FOhAmHARYwIiawlevKUc7hCKTpmZ4HhdkJrHLlJWBsWnCvK3KRHlO9QiVFeRU UlzgFuiEZWzIjKy1HjszvMvu0oeNCbJXYY7MN46KM67y3+ulWYY2S1iYKLZjleSj jdB4pbcUJY487fWtG58nwQiYxjCagRkIdp0LCiwPh8LoVTwrxCTU8/OgjkX2HV3y Fq+nxwj5lzO503mzKJq7FJ/Hgy/USFPY6mJxaE+dsb2UhOA5aGQopAurqvJhWEz2 9mEF3soilR2LFbEPq6Qpx61I1XWXr4RD -----END CERTIFICATE-----Generated at Fri May 3 03:10:56 2024 by rpki-client on console-ams.rpki-client.org