$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft File: ueYM8Xn06svblJK6X3ys9FI5zPQ.mft (raw, json) Hash identifier: HeucS0xXgdn75D7yu0GrXLf60sQ1Mu19E/DBOf+ZFxU= Subject key identifier: BB:7A:A5:4C:2E:76:9C:E1:1F:2C:0C:4C:5F:A4:94:65:A7:54:CD:57 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft Manifest number: BE Signing time: Wed 15 May 2024 06:43:27 +0000 Manifest this update: Wed 15 May 2024 06:43:27 +0000 Manifest next update: Wed 22 May 2024 06:43:27 +0000 Files and hashes: 1: ueYM8Xn06svblJK6X3ys9FI5zPQ.crl (hash: s9shzB+doPVafkVobVP4t89IT9dhlt2Q81h1Q1IMub4=) 2: C4856A540B7E11EE87CBB764C4F9AE02.roa (hash: AQsQndyL9SyaN/Xdjk7tDPUJhOwVEfNs6NuzUatF1Po=) 3: 14C4C7D4002611EFBD462953C4F9AE02.roa (hash: zQ0CM5U9eLYYRN8uU/ulZlkOPhQEdEt98pR9XD2Ytac=) 4: DB3F283C0E9611EEBE4A8A4BC4F9AE02.roa (hash: X4sbwhXOcs0E6HH8WE+weWdBTfEHEDAbpILj7M9FN7Q=) 5: 7857C144B87211EE98B04B19C4F9AE02.roa (hash: FP+6m+Sunu3apxd6ATws15i2rrj5OVoxxvMyOEV2qeA=) 6: A13BE9EE8EE911EE8698A64FC4F9AE02.roa (hash: hHbc7cTA2KdEpF5za4xbMWTUVJbBw621yFqdzXjnJ7Q=) 7: A069EA0C8EE911EE8698A64FC4F9AE02.roa (hash: 7KqpIMgH6JpoVNcqLc+sZRMpc7iSMv2cIDHlXsq46/I=) 8: E35133A60ED911EE8A4E0A23C4F9AE02.roa (hash: SZ94xyHCrv/Ipee1oEJ6Jejttw8fUNtDqNDoawLEkQs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: May 15 06:43:27 2024 GMT Not After : May 22 06:43:27 2024 GMT Subject: CN=6644598f-e967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7c:66:8f:a6:b5:60:7d:3a:a4:34:37:ed:bd: 6c:ae:d0:eb:ec:be:6e:4d:ad:e0:67:48:3b:33:6a: 0a:2d:12:4f:61:91:47:00:cb:19:d5:da:62:db:e0: 8c:ee:99:a6:d9:69:86:10:da:05:48:07:e7:c2:3e: 2a:99:59:bc:ce:2a:6e:c6:ff:f7:4f:66:e7:3c:8e: 2e:7f:63:ab:f2:8c:de:39:fa:07:62:0c:8b:2d:34: 0e:50:2e:79:8f:98:7c:70:9f:c9:69:6c:0a:32:17: 94:6e:08:fe:5a:e7:7e:d8:e7:52:76:44:88:0d:48: 01:8c:0e:fe:80:df:52:ae:5e:50:91:46:d3:10:ef: a1:73:2d:66:57:d4:e5:03:d0:72:89:d8:07:35:77: b4:a4:9e:a4:c9:ee:8d:9f:3e:41:93:5a:6b:15:aa: be:39:ad:19:66:48:9b:57:ba:1f:19:a5:0f:11:d3: 21:70:ad:13:49:5e:d4:8a:51:8d:49:40:65:22:63: c7:2b:e1:ca:8d:7f:9b:48:2c:a6:de:0a:c6:71:5a: 50:4e:22:67:c3:3a:b7:2c:03:49:91:fd:f5:2e:62: 85:70:12:3d:1e:27:8d:85:78:48:63:ec:98:c5:6b: ff:b8:90:fb:f8:9c:f6:b4:80:8a:3e:00:d3:8c:28: ec:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7A:A5:4C:2E:76:9C:E1:1F:2C:0C:4C:5F:A4:94:65:A7:54:CD:57 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f6:db:7a:a8:9d:2d:a7:45:79:dc:8b:08:7a:19:52:82:a7: 9b:04:b6:7e:c0:8d:87:8d:96:b1:e6:4d:0a:b4:12:8e:d3:a4: 41:cf:6f:f7:53:c2:b9:71:d9:9e:c5:3d:51:25:3b:fd:c1:4b: 42:95:4c:df:57:14:09:8e:b5:af:fb:53:e6:81:02:7f:a3:39: ec:82:fb:df:2e:36:4f:8d:67:35:a6:58:b5:31:cf:b0:f4:5d: 92:60:6f:25:88:12:7d:b2:49:87:05:6b:84:45:4e:42:9e:e6: c8:7c:d0:b3:ae:7f:65:3c:c8:62:fb:dd:4a:84:8b:03:d9:1d: f0:df:87:9e:a1:23:53:d8:59:43:16:d8:15:c1:3f:ac:29:7c: 80:bc:f1:5e:9b:a1:07:3e:64:a5:32:bf:61:3c:15:9f:b5:f5: 6a:24:d5:73:7f:fa:c1:dd:74:d0:7b:ef:fd:90:ac:65:e9:54: 53:0a:e1:0b:ce:95:b9:11:b1:2e:d1:ae:9c:e6:3c:1b:fa:fa: 26:7c:7e:67:e6:71:fd:54:46:bc:0e:6f:9b:27:3d:cd:e2:4b: 11:87:91:64:59:b7:fb:00:99:00:11:8d:21:4b:5b:ca:35:71: fc:c3:0f:a7:c9:68:20:ca:de:7c:99:41:b6:fc:9e:7f:de:c3: 10:63:9f:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjQwNTE1MDY0MzI3WhcNMjQwNTIyMDY0MzI3WjAYMRYwFAYD VQQDEw02NjQ0NTk4Zi1lOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33xmj6a1YH06pDQ37b1srtDr7L5uTa3gZ0g7M2oKLRJPYZFHAMsZ1dpi2+CM 7pmm2WmGENoFSAfnwj4qmVm8zipuxv/3T2bnPI4uf2Or8ozeOfoHYgyLLTQOUC55 j5h8cJ/JaWwKMheUbgj+Wud+2OdSdkSIDUgBjA7+gN9Srl5QkUbTEO+hcy1mV9Tl A9ByidgHNXe0pJ6kye6Nnz5Bk1prFaq+Oa0ZZkibV7ofGaUPEdMhcK0TSV7UilGN SUBlImPHK+HKjX+bSCym3grGcVpQTiJnwzq3LANJkf31LmKFcBI9HieNhXhIY+yY xWv/uJD7+Jz2tICKPgDTjCjsFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLt6pUwu dpzhHywMTF+klGWnVM1XMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTAzQi9BRjk2NzE2NjBCNkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZz dmJsSks2WDN5czlGSTV6UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq9tt6qJ0tp0V53IsIehlSgqebBLZ+wI2HjZax5k0KtBKO06RBz2/3 U8K5cdmexT1RJTv9wUtClUzfVxQJjrWv+1PmgQJ/oznsgvvfLjZPjWc1pli1Mc+w 9F2SYG8liBJ9skmHBWuERU5CnubIfNCzrn9lPMhi+91KhIsD2R3w34eeoSNT2FlD FtgVwT+sKXyAvPFem6EHPmSlMr9hPBWftfVqJNVzf/rB3XTQe+/9kKxl6VRTCuEL zpW5EbEu0a6c5jwb+vomfH5n5nH9VEa8Dm+bJz3N4ksRh5FkWbf7AJkAEY0hS1vK NXH8ww+nyWggyt58mUG2/J5/3sMQY5+X -----END CERTIFICATE-----Generated at Wed May 15 09:28:18 2024 by rpki-client on console-fra.rpki-client.org