$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft File: UtXW_72oj1ReUbr5n32s4ZPAblc.mft (raw, json) Hash identifier: LPJ3+diu6G2+SNsefpniPi1Kgrc91/WDuBaVGkiY5w8= Subject key identifier: AF:65:33:7F:DE:90:69:C5:A5:EF:08:6C:C4:A5:AE:10:33:01:04:31 Authority key identifier: 52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 Certificate issuer: /CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Certificate serial: 070E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft Manifest number: 0709 Signing time: Mon 06 May 2024 22:42:34 +0000 Manifest this update: Mon 06 May 2024 22:42:33 +0000 Manifest next update: Mon 13 May 2024 22:42:33 +0000 Files and hashes: 1: UtXW_72oj1ReUbr5n32s4ZPAblc.crl (hash: fh4+CCqbn/uHCdgeI0yMH3MOM1cUg/QvlPBeHrg/BCQ=) 2: AF95E6D8F2B711EAA1C01744C4F9AE02.roa (hash: vIflsf/fjEByFfGrv1p8P18g4LD7hnN0gdzgdZrpMvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 22:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1806 (0x70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17F6/serialNumber=52D5D6FFBDA88F545E51BAF99F7DACE193C06E57 Validity Not Before: May 6 22:42:33 2024 GMT Not After : May 13 22:42:33 2024 GMT Subject: CN=66395cda-f8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:91:df:ef:31:1a:af:f8:65:44:f4:f6:3a:c1: 6a:51:44:56:5a:08:8f:f2:e4:84:a7:fe:23:5c:8c: 8a:cb:ed:74:77:d0:10:31:17:70:06:18:ee:34:f2: 1c:3c:31:55:f4:09:26:3f:6a:3b:df:6f:49:3a:41: 17:d1:ef:52:3c:d5:24:a1:59:1b:74:e6:db:8d:e4: 6a:ab:fc:db:03:64:40:b9:12:29:e6:44:6c:54:48: de:b3:42:72:9f:99:35:38:76:63:ce:bf:45:70:fd: e0:92:12:d7:1d:71:1a:21:5f:cb:7c:24:d9:19:79: 8d:dc:3a:00:3c:ca:09:d3:4d:fd:b5:90:71:4a:b0: 7d:37:3f:c4:6d:c5:ef:eb:31:1c:43:1f:6f:8f:21: 2a:8c:2d:82:f3:42:a6:7b:af:c6:fd:2e:46:49:0d: a4:82:31:16:9c:9a:01:ba:0f:0b:38:30:22:ae:ac: 26:11:08:76:a1:e4:8d:e2:27:ce:d9:3f:76:82:d0: 7e:6f:dd:46:e0:e0:f1:bb:20:02:52:a7:e2:c6:97: 0e:e0:42:27:2e:55:07:32:d7:cb:ad:21:69:0f:4c: df:44:bc:a6:2f:ce:cd:a5:15:2a:79:3d:b2:ae:e3: a2:c6:36:60:8e:b0:28:c8:3d:a8:3f:be:4a:00:2e: 6b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:65:33:7F:DE:90:69:C5:A5:EF:08:6C:C4:A5:AE:10:33:01:04:31 X509v3 Authority Key Identifier: keyid:52:D5:D6:FF:BD:A8:8F:54:5E:51:BA:F9:9F:7D:AC:E1:93:C0:6E:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UtXW_72oj1ReUbr5n32s4ZPAblc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17F6/ED93CEE8F2B511EA9A3F6341C4F9AE02/UtXW_72oj1ReUbr5n32s4ZPAblc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:02:d9:ed:33:76:fb:26:fc:e6:89:e6:10:35:db:4e:4b:21: ab:ee:98:36:2d:68:18:5c:27:d5:b0:e7:c2:fa:49:12:25:fa: b7:82:1a:7d:cc:08:38:9f:6a:48:29:1f:af:5e:db:64:42:53: 40:8e:4f:83:2d:14:f5:cb:29:f8:bb:e4:d2:7b:15:79:bf:0e: ad:01:ac:08:ce:59:d6:e6:30:1d:c2:8d:c7:42:7f:33:b3:f1: fc:98:e8:3f:b8:6c:79:60:fb:c0:d0:cc:30:02:f3:3e:58:0e: 1d:d9:0b:b5:9a:f1:32:2b:e8:84:bc:02:e4:64:00:91:00:65: 7b:d1:2c:10:e5:52:b9:29:5b:27:d1:c2:ac:9d:d0:0f:7d:75: 5d:91:82:50:d1:19:d3:70:1a:f3:a9:1a:28:53:10:70:2b:10: 63:a8:2d:d0:ab:fb:95:9d:fe:2d:9d:bf:b8:3c:da:3f:b9:b0: 63:6d:4e:ba:6b:65:18:91:27:9e:d0:b7:69:74:12:fd:50:b8: 33:07:33:84:38:50:52:c9:4e:9d:d6:a5:90:0e:94:84:5d:24: c4:89:9a:d0:6a:c1:33:42:71:06:e3:7d:0f:9b:3e:0b:c2:84: 53:6c:2e:f3:ea:2d:c0:c6:01:11:1c:fe:af:61:72:dd:8e:85: 61:09:33:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3RjYxMTAvBgNVBAUTKDUyRDVENkZGQkRBODhGNTQ1RTUxQkFGOTlGN0RBQ0Ux OTNDMDZFNTcwHhcNMjQwNTA2MjI0MjMzWhcNMjQwNTEzMjI0MjMzWjAYMRYwFAYD VQQDEw02NjM5NWNkYS1mOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45Hf7zEar/hlRPT2OsFqUURWWgiP8uSEp/4jXIyKy+10d9AQMRdwBhjuNPIc PDFV9AkmP2o7329JOkEX0e9SPNUkoVkbdObbjeRqq/zbA2RAuRIp5kRsVEjes0Jy n5k1OHZjzr9FcP3gkhLXHXEaIV/LfCTZGXmN3DoAPMoJ0039tZBxSrB9Nz/EbcXv 6zEcQx9vjyEqjC2C80Kme6/G/S5GSQ2kgjEWnJoBug8LODAirqwmEQh2oeSN4ifO 2T92gtB+b91G4ODxuyACUqfixpcO4EInLlUHMtfLrSFpD0zfRLymL87NpRUqeT2y ruOixjZgjrAoyD2oP75KAC5rBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9lM3/e kGnFpe8IbMSlrhAzAQQxMB8GA1UdIwQYMBaAFFLV1v+9qI9UXlG6+Z99rOGTwG5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdGNi9FRDkzQ0VFOEYy QjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2oxUmVVYnI1bjMyczRaUEFi bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V0WFdfNzJvajFSZVVicjVuMzJzNFpQQWJsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdGNi9FRDkzQ0VFOEYyQjUxMUVBOUEzRjYzNDFDNEY5QUUwMi9VdFhXXzcyb2ox UmVVYnI1bjMyczRaUEFibGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKAtntM3b7JvzmieYQNdtOSyGr7pg2LWgYXCfVsOfC+kkSJfq3ghp9 zAg4n2pIKR+vXttkQlNAjk+DLRT1yyn4u+TSexV5vw6tAawIzlnW5jAdwo3HQn8z s/H8mOg/uGx5YPvA0MwwAvM+WA4d2Qu1mvEyK+iEvALkZACRAGV70SwQ5VK5KVsn 0cKsndAPfXVdkYJQ0RnTcBrzqRooUxBwKxBjqC3Qq/uVnf4tnb+4PNo/ubBjbU66 a2UYkSee0LdpdBL9ULgzBzOEOFBSyU6d1qWQDpSEXSTEiZrQasEzQnEG430Pmz4L woRTbC7z6i3AxgERHP6vYXLdjoVhCTOd -----END CERTIFICATE-----Generated at Tue May 7 01:58:31 2024 by rpki-client on console-fra.rpki-client.org