$ rpki-client -vvf rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft File: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft (raw, json) Hash identifier: trd+oxX1cdxafaB7rEDcWr5iYiszpwFCRoF3MSSc4Zc= Subject key identifier: 02:71:E5:3D:B5:84:D1:CF:85:4A:E8:07:61:05:88:63:BD:3F:DA:EB Authority key identifier: 21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 Certificate issuer: /CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Certificate serial: 0624 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft Manifest number: 0617 Signing time: Sat 01 Jun 2024 00:44:31 +0000 Manifest this update: Sat 01 Jun 2024 00:44:31 +0000 Manifest next update: Sat 08 Jun 2024 00:44:31 +0000 Files and hashes: 1: IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl (hash: VwVW+mcvq/A7wIJ2WJdYGf2FddbowxobwB+7OuKvcCA=) 2: 0DDC2C14776F11ED8E7B8775C4F9AE02.roa (hash: zJKk7pRNCYHPfxM2M8hICVJasRLXXzzcGCdPvoe2P64=) 3: ED7C5416CD3711EDB6A0F37BC4F9AE02.roa (hash: clgE415quuIDIYEZ2JznEcj145jtIIu48ujGK1RV7zU=) 4: 0F206AEA776F11ED8E7B8775C4F9AE02.roa (hash: bk1xqXUvZf0wUOSk8EdpBUeHGR10LjCW8LYP9q02xq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:44:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A314/serialNumber=214A5F22AA501B218B0E6015D1E0FBA1C8E43F24 Validity Not Before: Jun 1 00:44:31 2024 GMT Not After : Jun 8 00:44:31 2024 GMT Subject: CN=665a6eef-1571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:56:49:ae:f0:02:51:70:c8:c8:f2:88:93:62: 38:09:02:4f:2b:87:37:42:5c:0d:f2:8f:bb:db:b2: b2:b9:e2:94:8e:a6:7d:49:9b:f7:72:d0:7f:95:55: d2:a6:ce:db:97:67:97:10:ce:36:79:72:b3:44:35: a4:b4:94:be:11:4c:ae:4c:b0:f9:45:f7:cd:53:d6: 0a:3f:53:0e:1d:0c:39:ac:a4:79:dc:0b:dd:78:69: 5a:1c:fe:2a:7c:0b:bd:74:26:30:d7:44:31:99:a3: 86:d2:94:23:19:55:65:06:f3:b0:06:da:b6:6a:26: 55:9b:91:df:bb:8a:4e:a1:ee:25:a4:33:c2:e3:94: 62:78:d5:77:95:a0:b6:3d:ab:aa:83:a0:a2:0c:49: d8:52:75:5d:3e:2d:57:db:96:3a:72:48:26:54:cf: cb:b6:bb:16:82:5d:80:a5:77:97:48:33:09:80:16: 2a:45:9a:49:56:7c:55:d3:22:3f:a6:e1:86:4b:c8: 8f:ad:b6:c3:af:58:60:2c:7b:06:d4:b0:61:05:ab: d5:75:f0:97:b1:52:e4:34:10:11:c3:a8:9e:1f:e9: 5e:de:b7:21:27:7c:30:7d:1c:29:7d:b7:95:cb:71: bf:84:fb:03:b6:0e:41:66:52:b6:96:94:be:a0:62: df:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:71:E5:3D:B5:84:D1:CF:85:4A:E8:07:61:05:88:63:BD:3F:DA:EB X509v3 Authority Key Identifier: keyid:21:4A:5F:22:AA:50:1B:21:8B:0E:60:15:D1:E0:FB:A1:C8:E4:3F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A314/70D3B36A595211EBA6D78048C4F9AE02/IUpfIqpQGyGLDmAV0eD7ocjkPyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c3:91:f7:18:ec:f3:8d:dd:7b:c5:9e:61:d9:ba:d8:c7:33: 9e:e0:a1:86:d7:33:1b:5c:ba:ce:88:f7:ea:eb:5b:28:d6:4e: 24:05:c4:da:5a:b4:cd:a4:e6:80:12:00:70:a7:37:4e:1c:78: 31:bf:79:53:00:3b:3f:3d:b4:10:f5:e7:59:1b:b0:0e:32:f1: 20:11:80:2d:93:2b:97:95:a3:c4:88:7f:0b:46:e8:83:e6:76: 97:f5:de:d6:d3:aa:89:ca:fc:93:b4:e5:2c:a5:6b:59:8b:a2: af:75:67:4b:12:ee:ee:d0:a4:3d:eb:8d:8a:9e:f6:97:a0:18: 24:62:d9:46:52:0c:6b:5b:5c:a1:f2:3b:e7:ff:64:fe:5c:ee: 1d:0a:bd:f7:a6:a6:d9:c2:10:88:e8:b0:e2:6d:57:be:57:3e: 70:de:12:c0:05:e9:68:ac:55:92:49:e3:2f:7c:20:4e:e7:61: 6f:ea:d3:64:ee:d8:3b:6d:4b:8a:80:32:ee:c1:af:86:ea:46: 44:a4:25:ae:09:47:1b:79:b9:8a:82:51:52:5a:0e:ab:37:bf: af:ed:ba:d6:88:f7:cd:77:85:8b:2c:87:62:45:5c:5a:74:eb: df:95:a9:bd:3d:32:52:ff:73:da:fc:98:78:56:42:81:cd:dc: 10:26:57:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMTQxMTAvBgNVBAUTKDIxNEE1RjIyQUE1MDFCMjE4QjBFNjAxNUQxRTBGQkEx QzhFNDNGMjQwHhcNMjQwNjAxMDA0NDMxWhcNMjQwNjA4MDA0NDMxWjAYMRYwFAYD VQQDEw02NjVhNmVlZi0xNTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1ZJrvACUXDIyPKIk2I4CQJPK4c3QlwN8o+727KyueKUjqZ9SZv3ctB/lVXS ps7bl2eXEM42eXKzRDWktJS+EUyuTLD5RffNU9YKP1MOHQw5rKR53AvdeGlaHP4q fAu9dCYw10QxmaOG0pQjGVVlBvOwBtq2aiZVm5Hfu4pOoe4lpDPC45RieNV3laC2 Pauqg6CiDEnYUnVdPi1X25Y6ckgmVM/LtrsWgl2ApXeXSDMJgBYqRZpJVnxV0yI/ puGGS8iPrbbDr1hgLHsG1LBhBavVdfCXsVLkNBARw6ieH+le3rchJ3wwfRwpfbeV y3G/hPsDtg5BZlK2lpS+oGLfNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJx5T21 hNHPhUroB2EFiGO9P9rrMB8GA1UdIwQYMBaAFCFKXyKqUBshiw5gFdHg+6HI5D8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxNC83MEQzQjM2QTU5 NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5R0xEbUFWMGVEN29jamtQ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lVcGZJcXBRR3lHTERtQVYwZUQ3b2Nqa1B5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxNC83MEQzQjM2QTU5NTIxMUVCQTZENzgwNDhDNEY5QUUwMi9JVXBmSXFwUUd5 R0xEbUFWMGVEN29jamtQeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZw5H3GOzzjd17xZ5h2brYxzOe4KGG1zMbXLrOiPfq61so1k4kBcTa WrTNpOaAEgBwpzdOHHgxv3lTADs/PbQQ9edZG7AOMvEgEYAtkyuXlaPEiH8LRuiD 5naX9d7W06qJyvyTtOUspWtZi6KvdWdLEu7u0KQ9642KnvaXoBgkYtlGUgxrW1yh 8jvn/2T+XO4dCr33pqbZwhCI6LDibVe+Vz5w3hLABelorFWSSeMvfCBO52Fv6tNk 7tg7bUuKgDLuwa+G6kZEpCWuCUcbebmKglFSWg6rN7+v7brWiPfNd4WLLIdiRVxa dOvflam9PTJS/3Pa/Jh4VkKBzdwQJlfq -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:15 2024 by rpki-client on console-ams.rpki-client.org