$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft File: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft (raw, json) Hash identifier: UBhhXAW0q7x5QhK0TsKJEsrjFCRyeXjuDkj+XGJyM0M= Subject key identifier: B0:17:60:7F:54:F1:18:F6:33:4D:71:02:CE:54:5F:7E:86:85:FF:6F Authority key identifier: F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 Certificate issuer: /CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft Manifest number: 042E Signing time: Wed 01 May 2024 02:20:11 +0000 Manifest this update: Wed 01 May 2024 02:20:10 +0000 Manifest next update: Wed 08 May 2024 02:20:10 +0000 Files and hashes: 1: -W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl (hash: xpIHFXQUW5AYrS934SjKO1uM94OTrZEBmVulVzbSxOk=) 2: 8608449A356511EC9715F015C4F9AE02.roa (hash: ykDmLwlQ9q8+M9ivqFyPSgnnsWFLxmgd6EUKH+JYggc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:20:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5490/serialNumber=F96FAE288A6430ADCCF95E0EA89F085BB6E829D4 Validity Not Before: May 1 02:20:10 2024 GMT Not After : May 8 02:20:10 2024 GMT Subject: CN=6631a6da-6cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b1:26:8e:d3:1c:ad:f5:2a:e6:79:75:d2:8d: 17:26:37:3b:1d:ae:89:c2:35:01:f9:2d:4e:b7:e3: 25:75:f8:bf:50:1d:8a:b7:11:af:f4:d8:8f:a8:d4: 67:bd:b9:6d:c7:72:05:d0:fe:9c:92:c2:7e:fb:db: 71:7b:8a:93:3a:dd:05:8d:48:2c:90:c7:e6:69:3c: c9:89:7c:a2:37:a7:17:de:52:5a:b8:1a:71:cb:d4: 1a:49:91:25:5e:60:26:48:2f:6e:f7:a9:e1:14:d0: 08:95:84:e6:f2:2f:c5:35:62:ed:88:cb:ed:23:0a: cc:0a:3d:c2:2c:4a:e8:d8:e2:6e:23:7c:14:9a:39: ee:fa:bf:4c:8a:6e:69:97:49:ad:06:92:da:45:ec: 3c:6c:8e:90:a7:e6:f8:4f:57:e2:65:61:2b:43:84: cb:2d:22:2b:fb:5a:e7:5b:50:95:81:48:9c:60:24: 11:75:56:a7:3a:dc:40:8c:47:79:dd:d9:9f:fe:cb: b9:5d:a3:f9:92:ed:45:d1:d1:d1:f0:40:88:56:97: fa:d3:a3:c5:07:1a:70:fc:5a:76:82:78:80:ed:14: d4:09:e4:36:ca:ea:f5:3f:f3:ae:27:a6:cf:eb:13: 74:db:60:b1:f3:1b:06:7e:bf:ba:5c:a2:b0:72:6c: f1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:17:60:7F:54:F1:18:F6:33:4D:71:02:CE:54:5F:7E:86:85:FF:6F X509v3 Authority Key Identifier: keyid:F9:6F:AE:28:8A:64:30:AD:CC:F9:5E:0E:A8:9F:08:5B:B6:E8:29:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5490/321F591E146211EC9868C246C4F9AE02/-W-uKIpkMK3M-V4OqJ8IW7boKdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1c:0d:95:e2:a1:bb:ef:f4:77:61:a5:50:eb:25:13:d3:44: 36:75:f8:70:5b:d1:3d:78:c0:9b:ba:09:6d:c6:f1:54:84:b8: 13:13:0e:51:60:93:20:e3:c9:1b:70:25:d8:79:1e:32:1f:0c: 80:7d:a5:5d:5f:c3:3d:a4:94:c4:bf:ce:ed:c8:3f:6a:df:6e: 7b:64:4a:28:3a:5f:d3:90:cb:1e:65:0d:d6:b5:27:06:49:7b: 22:29:d0:25:b1:37:f5:69:1e:7d:03:8c:be:a3:4f:f0:c1:2f: 85:8b:a3:01:f5:07:06:52:5d:c7:ee:47:b6:14:2c:1a:cf:7f: 0b:d5:cd:25:0d:ce:f8:65:90:fb:72:a4:10:4b:8e:d1:77:90: 37:66:fe:2f:27:86:53:96:fa:74:44:d3:9a:9c:f1:ac:06:57: 4f:20:fd:f4:63:5f:1f:67:ae:a0:67:31:36:c0:07:b3:42:0d: 79:62:54:bd:c6:61:d1:f9:db:3e:e5:e3:3d:1e:8c:fa:9c:26: e6:a4:92:69:82:b4:b3:3f:1f:5c:8b:aa:3a:20:88:cc:b0:70: d7:1e:e7:10:64:64:f6:14:2a:ef:ea:c1:61:c1:d6:7f:b9:05: b5:1f:3d:c0:f3:9b:dd:18:e7:97:9b:bb:08:d0:c9:1e:9d:62: 38:fb:dd:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0OTAxMTAvBgNVBAUTKEY5NkZBRTI4OEE2NDMwQURDQ0Y5NUUwRUE4OUYwODVC QjZFODI5RDQwHhcNMjQwNTAxMDIyMDEwWhcNMjQwNTA4MDIyMDEwWjAYMRYwFAYD VQQDEw02NjMxYTZkYS02Y2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA87EmjtMcrfUq5nl10o0XJjc7Ha6JwjUB+S1Ot+Mldfi/UB2KtxGv9NiPqNRn vbltx3IF0P6cksJ++9txe4qTOt0FjUgskMfmaTzJiXyiN6cX3lJauBpxy9QaSZEl XmAmSC9u96nhFNAIlYTm8i/FNWLtiMvtIwrMCj3CLEro2OJuI3wUmjnu+r9Mim5p l0mtBpLaRew8bI6Qp+b4T1fiZWErQ4TLLSIr+1rnW1CVgUicYCQRdVanOtxAjEd5 3dmf/su5XaP5ku1F0dHR8ECIVpf606PFBxpw/Fp2gniA7RTUCeQ2yur1P/OuJ6bP 6xN022Cx8xsGfr+6XKKwcmzxHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAXYH9U 8Rj2M01xAs5UX36Ghf9vMB8GA1UdIwQYMBaAFPlvriiKZDCtzPleDqifCFu26CnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTQ5MC8zMjFGNTkxRTE0 NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01LM00tVjRPcUo4SVc3Ym9L ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1XLXVLSXBrTUszTS1WNE9xSjhJVzdib0tkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTQ5MC8zMjFGNTkxRTE0NjIxMUVDOTg2OEMyNDZDNEY5QUUwMi8tVy11S0lwa01L M00tVjRPcUo4SVc3Ym9LZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArHA2V4qG77/R3YaVQ6yUT00Q2dfhwW9E9eMCbugltxvFUhLgTEw5R YJMg48kbcCXYeR4yHwyAfaVdX8M9pJTEv87tyD9q3257ZEooOl/TkMseZQ3WtScG SXsiKdAlsTf1aR59A4y+o0/wwS+Fi6MB9QcGUl3H7ke2FCwaz38L1c0lDc74ZZD7 cqQQS47Rd5A3Zv4vJ4ZTlvp0RNOanPGsBldPIP30Y18fZ66gZzE2wAezQg15YlS9 xmHR+ds+5eM9Hoz6nCbmpJJpgrSzPx9ci6o6IIjMsHDXHucQZGT2FCrv6sFhwdZ/ uQW1Hz3A85vdGOeXm7sI0MkenWI4+90F -----END CERTIFICATE-----Generated at Wed May 1 03:20:36 2024 by rpki-client on console-fra.rpki-client.org