$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: hv6BLlHVQBd5QO825ZW/GeTOy57E8cDMTN3xMcX6RLw= Subject key identifier: 89:43:DC:71:92:DE:57:7C:0C:30:7B:A4:82:13:8B:B0:6B:8C:0A:73 Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 057A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 057A Signing time: Sat 01 Jun 2024 01:30:18 +0000 Manifest this update: Sat 01 Jun 2024 01:30:18 +0000 Manifest next update: Sat 08 Jun 2024 01:30:18 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: SYiJUtIKfmCz7hGbPpN1WfFWCD7UGP+4e+U/XgS5L/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:30:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Jun 1 01:30:18 2024 GMT Not After : Jun 8 01:30:18 2024 GMT Subject: CN=665a79aa-f9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:66:d0:97:34:40:b5:d8:62:8d:d7:c1:0c:3c: 66:64:d3:a2:7f:70:0f:16:21:ff:1a:b8:25:e4:af: aa:7f:55:b7:c8:69:0b:a0:b4:b3:ba:5c:81:76:6f: cc:2f:eb:58:2f:ed:18:0d:97:24:3d:23:38:d8:6c: fd:57:9e:5d:90:a4:d7:0f:38:57:f5:5c:60:cd:9e: 76:cd:b1:29:b6:d9:71:e6:ed:b2:47:c3:d0:7f:b6: cf:fa:ce:cc:ec:3d:68:80:30:96:49:59:7e:c0:55: 2f:46:9f:cd:8a:f1:c7:d4:5a:d2:c2:05:5c:69:1a: 46:6f:ec:09:2c:29:b0:5d:d7:9c:8f:3e:d8:98:23: 53:a3:62:16:23:36:56:d9:15:65:81:59:df:77:f3: 9e:d0:47:7a:db:03:00:04:d4:93:18:b8:6d:af:c8: 4d:aa:1a:5d:6f:0f:da:0f:82:0e:d0:18:27:60:a5: 62:8f:a9:bf:40:c3:e7:f4:44:cd:cb:0c:c3:56:4b: 69:8b:f0:fa:8b:73:1e:ec:be:c4:07:37:2b:74:d6: 81:5f:a0:f9:6d:51:5b:45:c7:73:e0:c0:9a:d7:fc: dc:c0:ec:43:6b:9b:4b:2e:f7:a7:98:c0:e9:30:4f: bb:64:2e:29:84:10:dd:fe:13:9b:29:8f:e4:8f:08: 2d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:43:DC:71:92:DE:57:7C:0C:30:7B:A4:82:13:8B:B0:6B:8C:0A:73 X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:2b:19:9c:e8:0b:48:e5:86:4b:72:56:d5:ea:fe:7f:1b:a5: 56:2f:40:82:65:cc:6e:f9:38:80:b9:c2:33:59:b8:3b:19:1b: 76:9a:b9:8a:95:49:9e:f1:30:81:5d:65:e7:50:b7:75:be:fe: 3c:15:1c:cb:5b:3f:34:8a:e4:ea:ae:1c:c4:f3:9b:7d:e3:ab: 69:df:1e:3d:03:fd:be:17:c2:cf:86:4e:17:35:eb:88:ed:22: d3:8b:a5:e4:42:13:a0:7c:5f:b5:0b:a8:49:97:b9:3d:09:ea: 06:e1:7b:50:07:3d:58:11:b8:44:c0:d3:ea:8f:49:6f:21:5c: 3a:13:4c:01:80:62:51:4c:62:48:5d:07:77:bf:05:22:6c:3e: 7c:31:d2:83:89:13:78:90:a6:e1:44:75:55:11:51:61:8a:61: e6:1c:27:7d:8b:40:ee:7a:d2:ea:e8:99:60:8f:47:15:36:b0: 3f:9d:f4:3f:03:b4:13:db:23:88:67:b3:d5:f1:68:60:3a:42: 21:3f:64:55:89:b3:ac:3f:6e:d4:91:13:7e:0c:48:11:5e:e3: 1c:f0:43:ee:d1:f1:8e:02:ff:c5:64:ef:f1:83:19:2b:d5:8a: 7b:5d:f3:11:aa:79:52:3a:68:be:c2:6c:04:38:ec:d4:4f:e3: da:ee:6d:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjQwNjAxMDEzMDE4WhcNMjQwNjA4MDEzMDE4WjAYMRYwFAYD VQQDEw02NjVhNzlhYS1mOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WbQlzRAtdhijdfBDDxmZNOif3APFiH/Grgl5K+qf1W3yGkLoLSzulyBdm/M L+tYL+0YDZckPSM42Gz9V55dkKTXDzhX9VxgzZ52zbEpttlx5u2yR8PQf7bP+s7M 7D1ogDCWSVl+wFUvRp/NivHH1FrSwgVcaRpGb+wJLCmwXdecjz7YmCNTo2IWIzZW 2RVlgVnfd/Oe0Ed62wMABNSTGLhtr8hNqhpdbw/aD4IO0BgnYKVij6m/QMPn9ETN ywzDVktpi/D6i3Me7L7EBzcrdNaBX6D5bVFbRcdz4MCa1/zcwOxDa5tLLvenmMDp ME+7ZC4phBDd/hObKY/kjwgtoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlD3HGS 3ld8DDB7pIITi7BrjApzMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZKxmc6AtI5YZLclbV6v5/G6VWL0CCZcxu+TiAucIzWbg7GRt2mrmK lUme8TCBXWXnULd1vv48FRzLWz80iuTqrhzE85t946tp3x49A/2+F8LPhk4XNeuI 7SLTi6XkQhOgfF+1C6hJl7k9CeoG4XtQBz1YEbhEwNPqj0lvIVw6E0wBgGJRTGJI XQd3vwUibD58MdKDiRN4kKbhRHVVEVFhimHmHCd9i0DuetLq6Jlgj0cVNrA/nfQ/ A7QT2yOIZ7PV8WhgOkIhP2RVibOsP27UkRN+DEgRXuMc8EPu0fGOAv/FZO/xgxkr 1Yp7XfMRqnlSOmi+wmwEOOzUT+Pa7m3r -----END CERTIFICATE-----Generated at Sat Jun 1 02:55:17 2024 by rpki-client on console-fra.rpki-client.org