$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: +4uy/dZ7F3yMan1BdfLqKZr0MQLkg3o/OG4ml/sH0HU= Subject key identifier: 63:79:C7:2E:96:CC:3B:36:95:6E:71:4E:8E:15:52:2C:0F:C2:CE:AF Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 33EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 33D8 Signing time: Sat 18 May 2024 14:52:59 +0000 Manifest this update: Sat 18 May 2024 14:52:59 +0000 Manifest next update: Sat 25 May 2024 14:52:59 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: 3qgzvtaEGTyuJDj2xBJM91TRio4EFstQx51A3Mlz+44=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: mq9IErlXtLjA6bZPaOi1Wg4LlomF2SH5Rowc0ythHaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13290 (0x33ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: May 18 14:52:59 2024 GMT Not After : May 25 14:52:59 2024 GMT Subject: CN=6648c0cb-97e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ba:ad:ae:cd:6d:f8:b6:ce:b5:8d:6e:8a:d2: ec:35:46:38:64:93:38:d2:3a:47:31:56:f8:24:02: 97:8e:d6:6e:94:60:db:f5:a6:98:3a:11:08:07:71: 13:e3:dc:31:93:09:71:35:68:77:9e:f0:42:24:18: 95:48:7b:94:cb:53:fc:a7:21:80:a3:c2:73:4f:33: b7:c0:85:29:c1:74:46:4d:d1:07:cf:3e:b8:01:b5: 02:91:92:3c:99:69:8f:30:34:3c:c0:e2:0b:f0:f4: d0:63:b1:af:5c:85:5b:5e:28:3a:bc:93:e0:c3:61: 28:7a:31:f9:a0:30:23:87:ea:ca:66:df:38:85:bd: a6:a2:41:f2:78:f5:1d:03:41:b6:1a:57:40:f5:69: 60:9c:e7:a1:65:c7:91:f0:ca:07:b2:a8:43:b8:33: b9:a2:e4:62:75:f2:6e:0b:e9:ec:b7:2b:11:98:5b: 68:83:4b:73:12:9a:56:4e:f8:43:9c:32:32:78:2f: 8a:8f:0c:74:2d:5b:b9:75:24:b2:e0:30:10:32:4f: 00:4b:52:b0:7e:72:33:39:45:6c:ad:47:42:26:20: 65:20:5c:c7:c8:97:e4:b7:b4:9d:04:26:39:42:eb: 88:5b:b7:0a:d1:df:06:f9:c2:8b:b9:92:3d:a3:07: 5e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:79:C7:2E:96:CC:3B:36:95:6E:71:4E:8E:15:52:2C:0F:C2:CE:AF X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:d2:72:06:a3:c2:2e:6f:5a:e1:bc:94:78:89:ff:12:1d:f7: 4f:c5:98:66:57:4f:36:b3:95:93:dc:2a:85:5b:cd:b7:75:ba: 6d:6b:97:52:42:9a:98:e3:bb:88:59:b6:a1:7c:d2:f7:1f:fe: 43:02:50:c7:ff:09:90:4f:64:ca:3d:19:22:25:14:67:87:ae: a8:4d:a7:37:48:c6:06:da:2d:36:2c:8e:88:44:5c:10:3b:f5: 4c:44:12:78:04:94:7e:ec:82:9d:86:eb:1f:c2:7e:0e:97:19: 62:1a:3c:b4:1e:80:ea:9f:12:e0:af:a1:1f:a6:b6:0d:a3:34: 59:69:cd:e7:2c:46:57:92:ff:e5:4d:8b:47:35:5f:10:1e:1a: 3b:a6:3c:f2:62:b0:23:8f:b6:7d:4d:21:97:14:15:de:74:da: 8b:c5:79:19:e1:c1:53:83:6d:cd:a0:f4:d0:ca:02:0d:46:d1: 2f:be:62:01:a8:22:b9:62:cb:ef:67:5a:bd:29:d5:df:6d:60: 90:f4:7d:63:5f:82:ae:d1:5b:fc:01:66:1b:15:eb:6a:3f:7f: b9:19:ff:be:33:6f:21:d8:cc:21:ab:45:d0:f1:53:aa:1b:b6: 9b:3e:5f:ec:21:29:37:74:d8:db:b1:94:c9:4e:fb:e3:b2:9c: 21:f3:a8:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjQwNTE4MTQ1MjU5WhcNMjQwNTI1MTQ1MjU5WjAYMRYwFAYD VQQDEw02NjQ4YzBjYi05N2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLqtrs1t+LbOtY1uitLsNUY4ZJM40jpHMVb4JAKXjtZulGDb9aaYOhEIB3ET 49wxkwlxNWh3nvBCJBiVSHuUy1P8pyGAo8JzTzO3wIUpwXRGTdEHzz64AbUCkZI8 mWmPMDQ8wOIL8PTQY7GvXIVbXig6vJPgw2EoejH5oDAjh+rKZt84hb2mokHyePUd A0G2GldA9WlgnOehZceR8MoHsqhDuDO5ouRidfJuC+nstysRmFtog0tzEppWTvhD nDIyeC+Kjwx0LVu5dSSy4DAQMk8AS1KwfnIzOUVsrUdCJiBlIFzHyJfkt7SdBCY5 QuuIW7cK0d8G+cKLuZI9owdeswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN5xy6W zDs2lW5xTo4VUiwPws6vMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx0nIGo8Iub1rhvJR4if8SHfdPxZhmV082s5WT3CqFW823dbpta5dS QpqY47uIWbahfNL3H/5DAlDH/wmQT2TKPRkiJRRnh66oTac3SMYG2i02LI6IRFwQ O/VMRBJ4BJR+7IKdhusfwn4OlxliGjy0HoDqnxLgr6EfprYNozRZac3nLEZXkv/l TYtHNV8QHho7pjzyYrAjj7Z9TSGXFBXedNqLxXkZ4cFTg23NoPTQygINRtEvvmIB qCK5YsvvZ1q9KdXfbWCQ9H1jX4Ku0Vv8AWYbFetqP3+5Gf++M28h2Mwhq0XQ8VOq G7abPl/sISk3dNjbsZTJTvvjspwh86iF -----END CERTIFICATE-----Generated at Sat May 18 15:26:03 2024 by rpki-client on console-fra.rpki-client.org