$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft File: UT3TCM11FCJ69R2AXlVApqn10zk.mft (raw, json) Hash identifier: 29kwCKFSElH0W1pBokMgf+oyyaAvUJySN5ZTZcQ+HRo= Subject key identifier: 36:CF:41:3E:74:55:7E:03:14:5B:9C:7E:7C:F5:D1:DA:91:71:24:49 Authority key identifier: 51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 Certificate issuer: /CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Certificate serial: 0F16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft Manifest number: 0F10 Signing time: Thu 02 May 2024 16:05:48 +0000 Manifest this update: Thu 02 May 2024 16:05:47 +0000 Manifest next update: Thu 09 May 2024 16:05:47 +0000 Files and hashes: 1: UT3TCM11FCJ69R2AXlVApqn10zk.crl (hash: woDRjCrj+xlaEVz0HoyaM3CVTMU0CSTkt1lWeSNk2Vg=) 2: 8BCB105015EA11EC86834E2FC4F9AE02.roa (hash: SDh98iAbyAYT6XpKMlKRXt8rrS5NmRdh+7G1qRkcEVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3862 (0xf16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119/serialNumber=513DD308CD7514227AF51D805E5540A6A9F5D339 Validity Not Before: May 2 16:05:47 2024 GMT Not After : May 9 16:05:47 2024 GMT Subject: CN=6633b9dc-e303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:fb:26:34:dd:40:14:2d:f8:21:52:72:c2:34: 9e:80:59:4c:eb:e7:2e:5b:72:1d:2b:d9:1b:06:f3: b6:94:2c:91:57:ba:d2:cb:e5:fa:ca:e5:01:95:af: b7:5c:89:81:b1:18:3d:50:b7:63:d6:b3:c1:e6:02: d3:f3:a4:92:c0:91:2d:8e:d9:27:51:f6:57:70:3e: 2a:e2:fb:74:b4:f9:9e:48:2f:5c:70:9c:04:ab:03: 82:99:fc:ea:1a:d9:df:2b:51:18:17:bf:0a:9e:75: 3f:38:c8:c1:23:49:a6:cb:bb:06:49:86:38:6c:4a: 12:cd:19:a0:9d:f3:ae:9b:2d:be:c2:79:d0:be:db: e3:3c:df:04:d7:93:01:17:56:1b:a2:2a:22:1a:61: 37:c9:bb:c0:ad:a2:36:d3:9e:31:59:29:48:85:d5: 16:8d:38:c6:70:4e:36:a4:dc:e5:a0:6e:44:bb:d4: 87:80:54:43:dd:f1:87:18:b7:d4:f1:4e:ae:e0:f5: f1:da:2a:ca:45:85:a5:60:eb:9e:82:10:17:65:c2: b8:f6:ff:37:3c:7f:94:62:48:57:7d:4c:cd:14:1d: b3:ca:f6:65:08:fb:53:53:60:51:9d:ce:b9:f2:fd: 5c:30:c5:c9:8d:67:0b:1f:c5:18:8f:81:d2:ae:51: a2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CF:41:3E:74:55:7E:03:14:5B:9C:7E:7C:F5:D1:DA:91:71:24:49 X509v3 Authority Key Identifier: keyid:51:3D:D3:08:CD:75:14:22:7A:F5:1D:80:5E:55:40:A6:A9:F5:D3:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UT3TCM11FCJ69R2AXlVApqn10zk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/4E2D7A38514011E98D983B61C4F9AE02/UT3TCM11FCJ69R2AXlVApqn10zk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a3:ec:ee:5e:72:0f:cb:bf:e2:d5:30:95:da:e0:d6:e7:14: c8:63:58:e5:82:d0:a4:64:74:63:4b:d3:4f:21:5e:85:4e:ca: 77:3d:e8:ea:83:b3:c4:35:c9:f3:1d:94:6b:e7:e5:7e:f6:ab: e1:2c:05:25:26:15:c7:db:f7:98:18:01:3e:33:de:04:23:2e: 91:6d:9d:b0:bf:9e:77:8c:84:1f:47:60:eb:40:13:55:1a:78: 3f:c9:56:33:89:40:c0:ea:68:f9:ec:46:44:10:60:28:db:c6: dd:6e:17:7a:74:7e:52:d6:02:2e:40:78:e6:46:d6:17:51:55: ea:d8:cb:9d:cc:0a:12:d0:7f:6b:34:16:c8:38:8d:82:25:71: 3f:5d:0f:90:0b:5c:5f:d4:9e:f4:c1:16:7f:e3:d8:04:95:e4: f6:0f:55:c8:c7:30:02:12:80:2b:53:c0:68:fe:16:95:3a:2f: 30:c2:b8:86:41:9a:13:01:3c:36:3b:b4:bf:ec:3c:ca:e0:1c: bd:89:78:08:9f:1d:9b:5b:61:f2:11:be:01:c8:8b:ef:9c:5d: 43:ae:c5:ab:5e:98:d9:fc:35:2c:58:08:c4:75:b0:05:7d:5a: 1e:7f:e5:6c:0a:11:a2:49:2c:35:54:e0:70:3b:54:aa:a7:36: 8b:d1:25:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDUxM0REMzA4Q0Q3NTE0MjI3QUY1MUQ4MDVFNTU0MEE2 QTlGNUQzMzkwHhcNMjQwNTAyMTYwNTQ3WhcNMjQwNTA5MTYwNTQ3WjAYMRYwFAYD VQQDEw02NjMzYjlkYy1lMzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/smNN1AFC34IVJywjSegFlM6+cuW3IdK9kbBvO2lCyRV7rSy+X6yuUBla+3 XImBsRg9ULdj1rPB5gLT86SSwJEtjtknUfZXcD4q4vt0tPmeSC9ccJwEqwOCmfzq GtnfK1EYF78KnnU/OMjBI0mmy7sGSYY4bEoSzRmgnfOumy2+wnnQvtvjPN8E15MB F1YboioiGmE3ybvAraI2054xWSlIhdUWjTjGcE42pNzloG5Eu9SHgFRD3fGHGLfU 8U6u4PXx2irKRYWlYOueghAXZcK49v83PH+UYkhXfUzNFB2zyvZlCPtTU2BRnc65 8v1cMMXJjWcLH8UYj4HSrlGiiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbPQT50 VX4DFFucfnz10dqRcSRJMB8GA1UdIwQYMBaAFFE90wjNdRQievUdgF5VQKap9dM5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS80RTJEN0EzODUx NDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZDSjY5UjJBWGxWQXBxbjEw emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUM1RDTTExRkNKNjlSMkFYbFZBcHFuMTB6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS80RTJEN0EzODUxNDAxMUU5OEQ5ODNCNjFDNEY5QUUwMi9VVDNUQ00xMUZD SjY5UjJBWGxWQXBxbjEwemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgo+zuXnIPy7/i1TCV2uDW5xTIY1jlgtCkZHRjS9NPIV6FTsp3Pejq g7PENcnzHZRr5+V+9qvhLAUlJhXH2/eYGAE+M94EIy6RbZ2wv553jIQfR2DrQBNV Gng/yVYziUDA6mj57EZEEGAo28bdbhd6dH5S1gIuQHjmRtYXUVXq2MudzAoS0H9r NBbIOI2CJXE/XQ+QC1xf1J70wRZ/49gEleT2D1XIxzACEoArU8Bo/haVOi8wwriG QZoTATw2O7S/7DzK4By9iXgInx2bW2HyEb4ByIvvnF1DrsWrXpjZ/DUsWAjEdbAF fVoef+VsChGiSSw1VOBwO1SqpzaL0SX2 -----END CERTIFICATE-----Generated at Thu May 2 17:43:53 2024 by rpki-client on console-fra.rpki-client.org