$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft File: UgGonTDEgplFBBjJVrh3JJcG6Vc.mft (raw, json) Hash identifier: abTx1iHsZGVKdKLAY3e9U6/WUSNlyu4G4X1HIlPkpyQ= Subject key identifier: C0:B5:EF:73:2E:67:17:C8:E2:B7:7E:AF:CA:EE:54:07:3F:44:BA:F8 Authority key identifier: 52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 Certificate issuer: /CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Certificate serial: 0468 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft Manifest number: 0465 Signing time: Sun 05 May 2024 01:54:08 +0000 Manifest this update: Sun 05 May 2024 01:54:07 +0000 Manifest next update: Sun 12 May 2024 01:54:07 +0000 Files and hashes: 1: UgGonTDEgplFBBjJVrh3JJcG6Vc.crl (hash: 9LYzM3Mg6BQd9L7KDUhnsb0JCu9Sj9Rr6HPwiIB8XDA=) 2: FAF4A0E0FB3211EB967B1759C4F9AE02.roa (hash: GHQI2oVlmNqBRbXC33+cIrrrwUv8pL6iFzNWJzfgNy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1128 (0x468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E94/serialNumber=5201A89D30C48299450418C956B877249706E957 Validity Not Before: May 5 01:54:07 2024 GMT Not After : May 12 01:54:07 2024 GMT Subject: CN=6636e6c0-ca8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1a:01:26:1c:37:bd:bf:ed:f3:2e:01:a6:18: 02:2d:09:6b:74:a9:8f:74:0a:50:62:47:95:5a:12: d9:38:6e:c9:ae:9d:26:37:c3:2b:52:f7:1c:bc:bf: 2e:03:a7:f7:10:fb:b6:d0:36:f4:d5:0e:c5:29:12: 8c:88:ef:d0:4c:d0:85:1c:ee:f5:d9:3f:47:05:32: 46:b2:49:63:f8:9b:9c:ad:61:cc:95:9a:4f:a4:dd: b0:78:20:f8:36:7d:4c:58:d2:8d:b7:72:36:52:94: 8f:ef:0f:7e:65:58:85:c8:d7:77:24:e6:2a:bc:af: 8c:ca:53:b1:f5:ab:b8:ed:99:81:5f:57:a0:45:fe: 9f:c2:a7:ca:b4:c4:48:a0:89:35:7f:d3:7c:f9:7e: 85:74:f4:81:8d:bb:3c:2b:fa:6b:71:9c:e9:37:19: 6b:35:21:59:c5:bb:0e:fa:9c:b8:61:ca:ad:66:17: 1a:62:49:25:f8:13:52:96:61:5e:a6:df:ef:7b:e6: 03:a3:7c:bb:74:28:ae:8a:b9:56:e6:ad:92:8d:2b: 8a:74:04:9d:f4:0b:13:a9:d6:3f:ba:81:ad:7f:7c: 38:bb:d2:fd:07:ff:a9:04:c6:88:01:50:a5:99:ea: 49:f8:f0:27:f6:d9:f0:af:4d:d6:4b:9e:c8:eb:d8: 13:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B5:EF:73:2E:67:17:C8:E2:B7:7E:AF:CA:EE:54:07:3F:44:BA:F8 X509v3 Authority Key Identifier: keyid:52:01:A8:9D:30:C4:82:99:45:04:18:C9:56:B8:77:24:97:06:E9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UgGonTDEgplFBBjJVrh3JJcG6Vc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E94/A2A70C5AFB2F11EBA8409E54C4F9AE02/UgGonTDEgplFBBjJVrh3JJcG6Vc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:1f:a1:2c:21:53:c1:76:8c:0b:54:43:45:73:18:61:09:8d: 17:b1:19:fa:c9:82:29:fd:29:62:d9:33:cb:ed:3a:1a:36:7d: 60:af:e9:22:4c:9a:96:25:a4:13:1b:2d:24:37:50:d4:a9:7d: 52:90:4e:1b:f3:f8:f0:f3:5a:2d:43:a3:ba:76:ff:4a:98:42: a7:07:35:e5:38:c9:b3:13:95:d4:c5:cb:fb:87:9d:e3:94:93: 1f:72:7f:bb:ac:2e:3c:d3:c8:bf:a7:bb:d7:22:46:35:1b:a1: 5e:f2:1d:51:24:a1:08:1c:51:de:18:15:43:1f:2e:84:3a:10: 02:a1:07:77:d5:89:ba:de:51:a6:09:20:61:48:81:d8:44:fb: 7b:5d:74:5e:f7:f5:0d:0f:f7:1e:82:85:7e:3c:38:e7:8b:fb: 77:b5:24:88:1a:84:9e:bc:8e:02:45:5d:d8:56:70:d4:86:92: 10:3b:4d:96:ef:51:42:04:dd:59:7d:f1:fa:6a:af:33:b8:e0: d4:77:81:23:3f:70:f8:24:d4:c0:ec:d9:94:b5:e7:c7:2d:6b: 13:f2:d0:19:a6:af:ee:7a:72:55:56:07:fa:1a:6e:ba:25:59: 17:69:03:ab:98:16:c6:2a:ed:51:43:8e:e7:df:e8:c5:7e:38: 01:bc:19:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFOTQxMTAvBgNVBAUTKDUyMDFBODlEMzBDNDgyOTk0NTA0MThDOTU2Qjg3NzI0 OTcwNkU5NTcwHhcNMjQwNTA1MDE1NDA3WhcNMjQwNTEyMDE1NDA3WjAYMRYwFAYD VQQDEw02NjM2ZTZjMC1jYThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBoBJhw3vb/t8y4BphgCLQlrdKmPdApQYkeVWhLZOG7Jrp0mN8MrUvccvL8u A6f3EPu20Db01Q7FKRKMiO/QTNCFHO712T9HBTJGsklj+JucrWHMlZpPpN2weCD4 Nn1MWNKNt3I2UpSP7w9+ZViFyNd3JOYqvK+MylOx9au47ZmBX1egRf6fwqfKtMRI oIk1f9N8+X6FdPSBjbs8K/prcZzpNxlrNSFZxbsO+py4YcqtZhcaYkkl+BNSlmFe pt/ve+YDo3y7dCiuirlW5q2SjSuKdASd9AsTqdY/uoGtf3w4u9L9B/+pBMaIAVCl mepJ+PAn9tnwr03WS57I69gTpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMC173Mu ZxfI4rd+r8ruVAc/RLr4MB8GA1UdIwQYMBaAFFIBqJ0wxIKZRQQYyVa4dySXBulX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U5NC9BMkE3MEM1QUZC MkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdwbEZCQmpKVnJoM0pKY0c2 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VnR29uVERFZ3BsRkJCakpWcmgzSkpjRzZWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U5NC9BMkE3MEM1QUZCMkYxMUVCQTg0MDlFNTRDNEY5QUUwMi9VZ0dvblRERWdw bEZCQmpKVnJoM0pKY0c2VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjH6EsIVPBdowLVENFcxhhCY0XsRn6yYIp/Sli2TPL7ToaNn1gr+ki TJqWJaQTGy0kN1DUqX1SkE4b8/jw81otQ6O6dv9KmEKnBzXlOMmzE5XUxcv7h53j lJMfcn+7rC4808i/p7vXIkY1G6Fe8h1RJKEIHFHeGBVDHy6EOhACoQd31Ym63lGm CSBhSIHYRPt7XXRe9/UND/cegoV+PDjni/t3tSSIGoSevI4CRV3YVnDUhpIQO02W 71FCBN1ZffH6aq8zuODUd4EjP3D4JNTA7NmUtefHLWsT8tAZpq/uenJVVgf6Gm66 JVkXaQOrmBbGKu1RQ47n3+jFfjgBvBkv -----END CERTIFICATE-----Generated at Sun May 5 03:09:57 2024 by rpki-client on console-ams.rpki-client.org