$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft File: Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft (raw, json) Hash identifier: PK8i0J5xGv5pStF31G0zafTUVdqxa4NL6SG8/43gYBU= Subject key identifier: 98:DB:43:14:75:6B:8F:40:56:9D:43:F1:3E:8B:35:99:5B:08:FA:64 Authority key identifier: 52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B Certificate issuer: /CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Certificate serial: 0AEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft Manifest number: 0AE6 Signing time: Sat 04 May 2024 20:12:37 +0000 Manifest this update: Sat 04 May 2024 20:12:36 +0000 Manifest next update: Sat 11 May 2024 20:12:36 +0000 Files and hashes: 1: Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl (hash: xjy+CT1B6tQF+L3y009kTsh9CcSdUg335fkLPApOL/g=) 2: C7F8C83C217311EA93A29F82C4F9AE02.roa (hash: mTSSoL8tObAjFiioAAe2ubxQyBHZ7fTNk/+PPebDd3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2795 (0xaeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C95/serialNumber=52BF6F62EBCA26B1DC427FBEAFE720FBB097C21B Validity Not Before: May 4 20:12:36 2024 GMT Not After : May 11 20:12:36 2024 GMT Subject: CN=663696b4-932b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:56:56:7b:8e:21:f5:51:b4:a8:78:74:e6:a1: 5e:54:bc:d3:3e:75:f5:9b:6f:8d:24:0b:77:c5:30: 10:d2:b8:ad:fd:d7:93:0c:93:07:b1:f1:a2:a6:c5: 42:ea:ef:53:be:2e:de:1a:1e:30:9c:a7:ed:05:7e: 99:59:55:6a:32:1e:fb:0c:8c:52:5d:62:8f:13:39: 9c:58:78:c7:29:e6:fd:bc:6e:bb:16:b9:b0:3a:40: 2b:4a:eb:11:e1:9b:b6:3e:e6:51:bc:a0:9f:78:6f: 63:e0:d4:1b:4d:67:e0:ef:bd:4c:e3:60:41:a4:fd: 92:7a:e4:a7:f8:52:11:9b:aa:60:05:9f:63:4d:ff: 07:14:dd:77:bd:23:17:d3:a7:d2:eb:2d:9f:ad:19: 42:db:14:28:39:32:0c:33:1f:8a:db:31:31:a1:74: 3d:e0:c1:94:d7:d2:c7:e4:b5:58:69:a7:9c:d5:8b: 22:45:ab:16:cb:78:72:0b:9e:b4:ed:4d:a3:d9:00: 09:d5:07:39:1b:55:93:5d:42:61:4d:cd:66:4e:57: d0:4a:ec:24:5f:9a:53:26:7d:62:58:70:28:1a:a1: f8:00:e6:79:ff:72:23:8e:9e:e5:9b:0b:4d:3e:97: f7:0e:79:85:65:01:00:50:88:32:be:2f:7a:0d:16: eb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:DB:43:14:75:6B:8F:40:56:9D:43:F1:3E:8B:35:99:5B:08:FA:64 X509v3 Authority Key Identifier: keyid:52:BF:6F:62:EB:CA:26:B1:DC:42:7F:BE:AF:E7:20:FB:B0:97:C2:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ur9vYuvKJrHcQn--r-cg-7CXwhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C95/BA3EC86E217211EA8B7EF880C4F9AE02/Ur9vYuvKJrHcQn--r-cg-7CXwhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:93:90:86:51:82:db:93:fb:f2:ae:c7:a3:28:2b:17:a8:bd: 52:33:e7:17:8c:ec:75:2c:0a:5f:d4:56:c6:d8:33:89:8e:75: 69:e7:1d:67:8e:61:2c:67:14:03:9f:ba:d4:f1:38:ea:4d:6b: 06:9d:a0:97:ca:05:46:3a:fa:06:8b:dd:da:c3:64:f1:74:c8: 66:55:2a:b9:70:58:fc:85:a1:b0:7b:4c:7e:f7:7b:89:09:2c: a4:ac:e8:38:1a:aa:09:c9:0a:6e:49:6e:3a:7e:97:55:fa:93: ae:2b:b3:5c:0d:87:82:c8:4d:ca:42:2c:61:f6:f9:d0:c6:3c: d3:37:6a:88:f3:03:c5:32:85:f7:3a:25:49:f2:f5:d9:0c:ba: 7d:e4:30:af:69:cf:5d:31:1d:24:53:8e:92:45:43:31:54:d5: 84:b1:c9:8b:02:a7:69:30:55:d8:9d:30:b0:d8:16:48:ee:32: 12:9f:d1:63:b0:51:82:18:71:06:50:8a:57:cf:f5:33:d3:b3: 35:8b:c7:df:19:09:98:7c:a5:a7:12:a1:cf:4c:78:2b:7b:7b: 73:06:d4:18:64:c3:92:b9:81:f5:97:d5:91:7f:a4:79:7a:2f: ea:51:cd:4d:a2:62:de:50:56:5d:8b:19:b1:38:ce:27:5e:60: a0:f5:58:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDOTUxMTAvBgNVBAUTKDUyQkY2RjYyRUJDQTI2QjFEQzQyN0ZCRUFGRTcyMEZC QjA5N0MyMUIwHhcNMjQwNTA0MjAxMjM2WhcNMjQwNTExMjAxMjM2WjAYMRYwFAYD VQQDEw02NjM2OTZiNC05MzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA81ZWe44h9VG0qHh05qFeVLzTPnX1m2+NJAt3xTAQ0rit/deTDJMHsfGipsVC 6u9Tvi7eGh4wnKftBX6ZWVVqMh77DIxSXWKPEzmcWHjHKeb9vG67FrmwOkArSusR 4Zu2PuZRvKCfeG9j4NQbTWfg771M42BBpP2SeuSn+FIRm6pgBZ9jTf8HFN13vSMX 06fS6y2frRlC2xQoOTIMMx+K2zExoXQ94MGU19LH5LVYaaec1YsiRasWy3hyC560 7U2j2QAJ1Qc5G1WTXUJhTc1mTlfQSuwkX5pTJn1iWHAoGqH4AOZ5/3Ijjp7lmwtN Ppf3DnmFZQEAUIgyvi96DRbr/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjbQxR1 a49AVp1D8T6LNZlbCPpkMB8GA1UdIwQYMBaAFFK/b2Lryiax3EJ/vq/nIPuwl8Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM5NS9CQTNFQzg2RTIx NzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0pySGNRbi0tci1jZy03Q1h3 aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VyOXZZdXZLSnJIY1FuLS1yLWNnLTdDWHdocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUM5NS9CQTNFQzg2RTIxNzIxMUVBOEI3RUY4ODBDNEY5QUUwMi9Vcjl2WXV2S0py SGNRbi0tci1jZy03Q1h3aHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuk5CGUYLbk/vyrsejKCsXqL1SM+cXjOx1LApf1FbG2DOJjnVp5x1n jmEsZxQDn7rU8TjqTWsGnaCXygVGOvoGi93aw2TxdMhmVSq5cFj8haGwe0x+93uJ CSykrOg4GqoJyQpuSW46fpdV+pOuK7NcDYeCyE3KQixh9vnQxjzTN2qI8wPFMoX3 OiVJ8vXZDLp95DCvac9dMR0kU46SRUMxVNWEscmLAqdpMFXYnTCw2BZI7jISn9Fj sFGCGHEGUIpXz/Uz07M1i8ffGQmYfKWnEqHPTHgre3tzBtQYZMOSuYH1l9WRf6R5 ei/qUc1NomLeUFZdixmxOM4nXmCg9Vji -----END CERTIFICATE-----Generated at Sat May 4 21:19:32 2024 by rpki-client on console-ams.rpki-client.org