$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft File: UPIOqel1rkxMhmfLV_e89XAhXJY.mft (raw, json) Hash identifier: ZuZWNQwoxKze7P+j6FYsQXbpBTCxNmBy5AajTm/ziVc= Subject key identifier: 11:08:B2:05:67:89:93:6E:98:CE:A2:C5:15:BB:F4:15:F2:75:37:BE Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 23D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft Manifest number: 2373 Signing time: Sat 18 May 2024 16:08:43 +0000 Manifest this update: Sat 18 May 2024 16:08:43 +0000 Manifest next update: Sat 25 May 2024 16:08:43 +0000 Files and hashes: 1: UPIOqel1rkxMhmfLV_e89XAhXJY.crl (hash: BmewUBXPBTfNuLMS0DdknKdbfxa65Pfv40tOIGGY5JQ=) 2: 773D7A96B0DC11ECAEC09469C4F9AE02.roa (hash: gW2ECTUaGi/zdBog9oymJx57zutMFk7wb86c2exJ938=) 3: D327C18CDFEC11ED9AB6E147C4F9AE02.roa (hash: W+x8LNqWNFLXHJQNP+HWUxz6NqpX2vCkaXKxFPClAjk=) 4: B8951CDCD23611EA8D9E515BC4F9AE02.roa (hash: cboFsNgkEhFKm3ddpKOT4WxCkAOTLjel0GZUJigdVfk=) 5: E706A8B2BBF111EE8697E433C4F9AE02.roa (hash: yPANlSRGzPMIFP3XuxvIjl4eaw/6+4xThfImj0re5k8=) 6: 1A2298A2D23811EABDECA85FC4F9AE02.roa (hash: LlrSWsuSZuZeKlMXIPfixBWT+GHcIoabMhp+hk+S1Tg=) 7: 491B85B2E58911ED94960F39C4F9AE02.roa (hash: 1hiE5xqSvidZpi94RRrCifgSGO6M6zEGYUgcoSzd3pI=) 8: 06239EBADFEA11ED835B4D0EC4F9AE02.roa (hash: PwAr7zOBeuVVR5AYBe8VzDIOihM3qEnOZyGlvLSZWm8=) 9: 59B3485028C111E7A885571AC4F9AE02.roa (hash: ygxWmU9VftQ+d/EjaZ40O1nAYsETaroBLZ3pkKq/izw=) 10: 554E53D4B0B811EC9BE93E24C4F9AE02.roa (hash: d998SNhpyfXXoeNVfSd55NTwrliAR/uign/UZ3EYvaA=) 11: 5A2BB4DE28C111E7A885571AC4F9AE02.roa (hash: PWOt6rdAUOKtYL0rAeHe18Lgv0D1BlOsrI6LdeKI7K8=) 12: D451FBE0DFEC11ED9AB6E147C4F9AE02.roa (hash: rh11izBtb2cDopjLF+1nKB2Aot+iLfA34h+IJVGDgy4=) 13: D50024D6DFEC11ED9AB6E147C4F9AE02.roa (hash: cDjy6X9xsqEQ8vlApExx0XqsgcReKdC7pCik9KzOKcE=) 14: AFF73BD2BA0811EAB2479081C4F9AE02.roa (hash: 6j0mRcRbQWC2KHo0Q75xLK5JMfu2d9Dqs1Uxd5LR1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9174 (0x23d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: May 18 16:08:43 2024 GMT Not After : May 25 16:08:43 2024 GMT Subject: CN=6648d28b-2905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0d:5b:cc:3e:ad:6e:1d:7e:fe:76:75:02:b9: 9a:5e:14:ca:85:28:02:80:03:d9:3e:94:58:5b:5d: 3a:8c:c2:23:1d:2f:23:4f:36:ea:44:0c:ed:19:57: 85:4e:c0:86:ac:7c:84:11:fa:ed:a3:5c:10:73:2f: 77:49:b6:b0:34:99:71:2f:05:61:07:d1:b0:df:64: a3:ca:b3:16:e1:b6:94:c3:7a:6c:d3:b3:44:8d:78: c8:55:b3:66:14:6f:62:f5:23:19:0f:5d:33:3e:d7: 61:41:14:59:df:11:a9:0a:62:2b:f5:ca:e8:80:1f: 71:4b:e0:1b:8a:9a:52:dc:5d:8f:f2:e9:18:9d:87: 5a:d6:46:c7:02:7e:3f:0d:74:4b:83:f5:bb:6c:bb: 12:73:57:dc:5c:22:47:f4:80:df:b1:4b:f5:5c:c0: c9:c2:17:11:dc:ed:3c:f5:dc:9a:98:0b:51:fe:dc: d5:82:48:bb:66:3c:ce:d1:63:cd:5e:ea:40:2b:ef: b1:a6:b4:cd:e4:d1:35:62:2c:1b:8d:cf:e4:de:f9: 7c:90:3f:84:84:51:e5:6b:a2:65:d3:a5:61:f5:4e: bf:7c:4a:cd:7a:e7:a7:3e:46:80:34:89:36:de:dc: 19:b7:0b:32:00:d4:93:65:d8:44:9a:df:42:34:76: aa:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:08:B2:05:67:89:93:6E:98:CE:A2:C5:15:BB:F4:15:F2:75:37:BE X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:4f:f3:42:9e:40:61:15:5f:02:e9:67:fd:ae:21:84:66:06: 87:84:15:56:88:bf:ad:37:fd:0e:65:ad:c0:09:aa:75:81:d1: 4a:89:66:81:18:9b:d4:76:eb:5e:3b:10:85:4c:4d:bf:3b:16: f4:79:d3:69:69:5f:ca:a1:73:20:a5:7f:f0:6e:3e:49:46:25: fe:4a:81:41:d8:d1:5b:5a:fd:a5:6a:39:72:92:25:48:51:f2: 4a:d4:a7:e9:34:3f:58:d4:32:9a:c3:ce:43:49:c3:35:b4:6f: 23:6f:4a:f2:5d:af:11:b2:66:4d:cf:43:ee:e3:cc:41:28:12: ec:1b:93:cd:13:05:31:8e:05:31:0d:58:c7:f7:ab:d8:f6:d5: 80:a5:b6:6d:32:1c:1d:61:66:c1:0b:71:f3:f6:33:e3:a7:65: b5:95:13:a2:43:71:8e:56:a3:c5:17:51:f5:bc:17:b9:33:a6: 4c:08:df:e8:cd:d2:d0:41:04:70:e5:3c:40:f9:ae:92:06:6a: 85:37:ea:e9:44:b9:7a:b1:d3:76:9f:7c:0b:94:a5:09:e3:88: 92:4b:49:79:c3:3c:54:ed:c9:0b:0b:fb:fa:19:9d:20:41:1a: 17:7c:23:8e:54:4a:38:94:0f:2b:ea:b7:63:c4:86:ba:68:4f: 08:3f:bf:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQwNTE4MTYwODQzWhcNMjQwNTI1MTYwODQzWjAYMRYwFAYD VQQDEw02NjQ4ZDI4Yi0yOTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArg1bzD6tbh1+/nZ1ArmaXhTKhSgCgAPZPpRYW106jMIjHS8jTzbqRAztGVeF TsCGrHyEEfrto1wQcy93SbawNJlxLwVhB9Gw32SjyrMW4baUw3ps07NEjXjIVbNm FG9i9SMZD10zPtdhQRRZ3xGpCmIr9crogB9xS+AbippS3F2P8ukYnYda1kbHAn4/ DXRLg/W7bLsSc1fcXCJH9IDfsUv1XMDJwhcR3O089dyamAtR/tzVgki7ZjzO0WPN XupAK++xprTN5NE1Yiwbjc/k3vl8kD+EhFHla6Jl06Vh9U6/fErNeuenPkaANIk2 3twZtwsyANSTZdhEmt9CNHaqRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEIsgVn iZNumM6ixRW79BXydTe+MB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYyQi82NEEwNTE0NjYwMTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJr eE1obWZMVl9lODlYQWhYSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQART/NCnkBhFV8C6Wf9riGEZgaHhBVWiL+tN/0OZa3ACap1gdFKiWaB GJvUduteOxCFTE2/Oxb0edNpaV/KoXMgpX/wbj5JRiX+SoFB2NFbWv2lajlykiVI UfJK1KfpND9Y1DKaw85DScM1tG8jb0ryXa8RsmZNz0Pu48xBKBLsG5PNEwUxjgUx DVjH96vY9tWApbZtMhwdYWbBC3Hz9jPjp2W1lROiQ3GOVqPFF1H1vBe5M6ZMCN/o zdLQQQRw5TxA+a6SBmqFN+rpRLl6sdN2n3wLlKUJ44iSS0l5wzxU7ckLC/v6GZ0g QRoXfCOOVEo4lA8r6rdjxIa6aE8IP780 -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org