$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft File: uN9D7us1RpuyzAulIS0b_yaKe24.mft (raw, json) Hash identifier: zHhibsL0qkpB+mwTwdz6UCCLkb1W88aFeIhyjjyPhAM= Subject key identifier: 03:10:CA:F0:E6:82:0F:07:E4:96:C2:A3:DB:FA:68:80:83:AD:A2:E1 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft Manifest number: 010D Signing time: Fri 03 May 2024 05:30:55 +0000 Manifest this update: Fri 03 May 2024 05:30:54 +0000 Manifest next update: Fri 10 May 2024 05:30:54 +0000 Files and hashes: 1: uN9D7us1RpuyzAulIS0b_yaKe24.crl (hash: V7mq+umu8U67PtmJriL28mo+OSLJLUdEDWCIZe2q4BE=) 2: 90269D3A716611ED9D80F448C4F9AE02.roa (hash: yCHbl8QlQbMzjHfu0kPf5s8MBmUK/QILBQq+fNO53wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: May 3 05:30:54 2024 GMT Not After : May 10 05:30:54 2024 GMT Subject: CN=6634768f-07f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:05:5c:16:12:bf:9b:12:0c:e0:9c:8e:1f:5d: 1b:d3:e5:e7:a3:c1:99:5a:d6:a7:3b:bb:2e:90:fe: 4f:2f:78:73:c0:e3:62:d9:5c:df:3d:f7:98:36:ea: 13:22:9e:cc:30:a8:5a:a5:f7:6a:37:d4:b7:bf:c4: e8:e2:19:6a:14:72:3e:3e:5c:23:2f:1d:22:f7:04: e1:c8:c0:42:05:23:77:5f:6f:d1:ba:e9:e5:43:14: 11:49:36:31:42:78:0f:1b:66:c5:fa:98:fb:d1:1e: 2b:66:6b:a4:ee:9c:ed:5d:15:d5:ec:b0:9e:84:f3: 00:1e:62:94:4b:9b:2b:3f:ad:95:64:d8:f8:e6:6b: 33:04:dc:3f:5d:5c:38:5a:5e:8f:ed:fe:fd:93:a2: f2:b8:55:a0:f9:00:46:5d:85:26:5a:7d:96:ed:cb: 00:2a:d6:68:0e:73:66:e3:9d:83:fb:e4:97:78:c8: c4:fd:a9:67:87:dc:3c:4a:2d:6f:e3:de:08:be:7a: 16:4f:93:fb:27:ae:58:c1:4e:ca:6a:7a:96:0c:f1: dd:f3:45:78:c5:6c:70:cf:03:cc:05:01:b3:ca:97: 90:c2:4d:3c:62:63:a1:28:14:58:13:42:9b:bc:43: 0f:eb:e2:58:f1:f6:f1:94:82:aa:d6:3d:84:e9:d0: f4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:10:CA:F0:E6:82:0F:07:E4:96:C2:A3:DB:FA:68:80:83:AD:A2:E1 X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:23:fa:85:50:e3:94:95:14:6b:49:53:24:94:0b:6c:18:5e: dd:9e:c3:42:2c:05:ad:ba:ab:28:b6:ba:ab:30:f2:0b:d3:7a: 4b:bc:12:3a:ac:64:5f:b7:40:cc:75:a1:3b:8b:6b:35:61:01: 46:17:05:40:27:6d:bc:fd:11:1a:cb:c0:09:25:c6:2c:0e:6f: 3f:d2:b9:8a:3a:14:35:8b:94:25:e6:9c:b5:91:79:da:9f:a2: 0c:c1:ed:c9:c6:38:a0:09:8a:58:8f:f5:ca:e5:28:6b:e4:f0: 58:66:54:91:b4:3b:84:f7:55:fa:9f:9b:5d:72:6a:43:2d:3f: 6c:30:89:2c:3f:dc:96:1e:18:e8:62:08:d8:4a:99:cc:4b:ba: e9:68:f6:1e:47:89:2c:e2:59:bf:de:ab:87:a0:c9:31:16:5e: 49:e4:0e:a0:0b:26:54:8f:09:d7:fe:9a:81:fa:49:46:c3:49: e2:b9:9a:91:57:4e:a9:b4:c0:99:96:fe:1e:0d:23:1a:a3:a7: 28:82:b1:cd:86:88:df:62:29:1d:91:9e:b6:14:97:65:aa:a4: 09:b0:0e:4d:e2:ae:14:be:b7:10:2c:c8:9c:4f:86:68:69:1b: 6d:e8:ec:cb:74:50:98:88:64:b1:7b:1f:af:70:fd:9d:5e:62: 22:1d:fb:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjQwNTAzMDUzMDU0WhcNMjQwNTEwMDUzMDU0WjAYMRYwFAYD VQQDEw02NjM0NzY4Zi0wN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwVcFhK/mxIM4JyOH10b0+Xno8GZWtanO7sukP5PL3hzwONi2VzfPfeYNuoT Ip7MMKhapfdqN9S3v8To4hlqFHI+PlwjLx0i9wThyMBCBSN3X2/RuunlQxQRSTYx QngPG2bF+pj70R4rZmuk7pztXRXV7LCehPMAHmKUS5srP62VZNj45mszBNw/XVw4 Wl6P7f79k6LyuFWg+QBGXYUmWn2W7csAKtZoDnNm452D++SXeMjE/alnh9w8Si1v 494IvnoWT5P7J65YwU7KanqWDPHd80V4xWxwzwPMBQGzypeQwk08YmOhKBRYE0Kb vEMP6+JY8fbxlIKq1j2E6dD0NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMQyvDm gg8H5JbCo9v6aICDraLhMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTM0QS9GOTc2QkZEQTcxNjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJw dXl6QXVsSVMwYl95YUtlMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiI/qFUOOUlRRrSVMklAtsGF7dnsNCLAWtuqsotrqrMPIL03pLvBI6 rGRft0DMdaE7i2s1YQFGFwVAJ228/REay8AJJcYsDm8/0rmKOhQ1i5Ql5py1kXna n6IMwe3JxjigCYpYj/XK5Shr5PBYZlSRtDuE91X6n5tdcmpDLT9sMIksP9yWHhjo YgjYSpnMS7rpaPYeR4ks4lm/3quHoMkxFl5J5A6gCyZUjwnX/pqB+klGw0niuZqR V06ptMCZlv4eDSMao6cogrHNhojfYikdkZ62FJdlqqQJsA5N4q4UvrcQLMicT4Zo aRtt6OzLdFCYiGSxex+vcP2dXmIiHfuD -----END CERTIFICATE-----Generated at Fri May 3 06:29:25 2024 by rpki-client on console-fra.rpki-client.org