$ rpki-client -vvf rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft File: IIUPxwwl_bFV037LDsOWLGtH_K0.mft (raw, json) Hash identifier: WJ2C5H1JthAEjnysWxl1ejmK5Xp2/mSjFlQkXLUkPwA= Subject key identifier: A2:2D:1C:98:81:B4:6F:C9:A5:F9:34:C5:00:70:CE:A4:3B:4F:49:55 Authority key identifier: 20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD Certificate issuer: /CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Certificate serial: 067C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft Manifest number: 0676 Signing time: Sat 18 May 2024 23:27:23 +0000 Manifest this update: Sat 18 May 2024 23:27:22 +0000 Manifest next update: Sat 25 May 2024 23:27:22 +0000 Files and hashes: 1: IIUPxwwl_bFV037LDsOWLGtH_K0.crl (hash: inYE6ChE/YAKX/bihbdzm5oWOC4tlUJLqiCRbwPbH4s=) 2: 934C22582E1C11EBB3ADE232C4F9AE02.roa (hash: gDufjKQaJOTq+sJdmx5tgAXa4LibFtTgzGfGd1AAPKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1660 (0x67c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D545/serialNumber=20850FC70C25FDB155D37ECB0EC3962C6B47FCAD Validity Not Before: May 18 23:27:22 2024 GMT Not After : May 25 23:27:22 2024 GMT Subject: CN=6649395b-4469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e4:68:2e:0d:3f:40:ef:44:fd:ab:c7:d9:47: fd:d2:19:78:03:f8:ac:1c:83:1d:e2:fd:f9:34:43: 8b:dc:2d:8e:c9:37:58:d5:3c:dc:72:f9:06:4e:75: ff:a0:35:81:b7:2d:c9:7f:8c:15:7f:a8:62:54:f7: 2d:7b:5c:23:d6:97:de:ed:3d:cc:a5:60:d5:84:3f: 45:32:3c:e3:5f:b8:82:71:a1:d7:e6:66:71:2b:6e: c5:9d:ab:8a:38:55:de:da:c9:7b:38:a6:44:e2:6e: 06:f0:51:06:1e:13:89:ea:fb:d7:e8:35:0e:42:34: 06:c4:19:e5:9d:56:7f:38:fb:94:fd:4d:fe:1d:6c: e0:e8:67:76:40:23:64:c7:ac:bd:67:72:62:3d:5b: bf:a7:5f:52:f6:48:b1:25:5a:85:f3:9c:6c:52:0c: 2c:18:b8:5b:25:c4:e4:b5:34:40:c0:64:90:ef:da: d0:ab:4a:aa:13:02:af:b0:09:71:6b:5f:f1:79:0f: fd:17:70:ba:98:02:ce:54:8b:3d:83:61:bf:d8:a1: 37:9a:39:7a:be:79:50:c5:ce:64:a6:3f:49:43:ed: 05:21:fe:20:27:d1:ea:c3:22:e5:01:ee:40:63:36: de:60:d2:04:08:b1:c6:cc:30:2e:16:2b:78:05:c3: 36:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:2D:1C:98:81:B4:6F:C9:A5:F9:34:C5:00:70:CE:A4:3B:4F:49:55 X509v3 Authority Key Identifier: keyid:20:85:0F:C7:0C:25:FD:B1:55:D3:7E:CB:0E:C3:96:2C:6B:47:FC:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IIUPxwwl_bFV037LDsOWLGtH_K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D545/F3B976062E1A11EBB239DE30C4F9AE02/IIUPxwwl_bFV037LDsOWLGtH_K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:69:fb:d0:e5:d9:b2:0d:6e:1b:44:c7:84:a0:fa:c0:84:bc: 30:ef:0f:3d:e7:3c:e3:a8:95:f1:d9:c2:0c:5d:fa:e8:a4:3d: 0a:4f:c3:31:9b:aa:9a:95:ec:cc:3d:8f:d8:cc:6d:a9:fe:be: 80:93:3c:4f:a9:54:ee:ad:79:26:12:80:97:96:41:53:5e:04: e4:48:63:ab:b9:47:d5:c6:20:f6:29:25:56:b1:42:03:9a:0a: 0e:e2:1d:ee:51:f1:47:8f:9b:74:bf:87:41:fd:61:5a:65:4f: e3:a0:77:b8:4b:83:3e:1c:88:16:0d:9c:55:f4:e1:06:54:ff: 15:c0:76:00:ff:0a:f0:5b:c3:cc:bc:23:39:10:dd:25:9a:f4: 56:f4:37:04:8b:b9:05:dd:b8:83:8e:db:80:b8:70:bf:89:1c: ec:7f:7e:44:b3:c6:1e:5a:8f:3c:9f:b2:80:e6:78:7c:c8:89: 89:a9:44:e7:1a:7f:ed:6a:3f:dc:a1:b0:5f:25:16:53:15:b6: 81:d6:2f:e5:33:b9:f9:29:66:fa:2c:e6:a4:30:60:be:32:e0: 89:7a:93:93:9f:e7:95:8d:34:61:0b:7a:ff:cd:fa:8c:e6:e1: 7b:e3:b8:2d:9d:89:30:5b:b2:8b:fc:40:2f:36:cf:6c:a9:39: 2d:ff:d0:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ1NDUxMTAvBgNVBAUTKDIwODUwRkM3MEMyNUZEQjE1NUQzN0VDQjBFQzM5NjJD NkI0N0ZDQUQwHhcNMjQwNTE4MjMyNzIyWhcNMjQwNTI1MjMyNzIyWjAYMRYwFAYD VQQDEw02NjQ5Mzk1Yi00NDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uRoLg0/QO9E/avH2Uf90hl4A/isHIMd4v35NEOL3C2OyTdY1TzccvkGTnX/ oDWBty3Jf4wVf6hiVPcte1wj1pfe7T3MpWDVhD9FMjzjX7iCcaHX5mZxK27FnauK OFXe2sl7OKZE4m4G8FEGHhOJ6vvX6DUOQjQGxBnlnVZ/OPuU/U3+HWzg6Gd2QCNk x6y9Z3JiPVu/p19S9kixJVqF85xsUgwsGLhbJcTktTRAwGSQ79rQq0qqEwKvsAlx a1/xeQ/9F3C6mALOVIs9g2G/2KE3mjl6vnlQxc5kpj9JQ+0FIf4gJ9HqwyLlAe5A YzbeYNIECLHGzDAuFit4BcM2gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKItHJiB tG/Jpfk0xQBwzqQ7T0lVMB8GA1UdIwQYMBaAFCCFD8cMJf2xVdN+yw7DlixrR/yt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDU0NS9GM0I5NzYwNjJF MUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9iRlYwMzdMRHNPV0xHdEhf SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lJVVB4d3dsX2JGVjAzN0xEc09XTEd0SF9LMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDU0NS9GM0I5NzYwNjJFMUExMUVCQjIzOURFMzBDNEY5QUUwMi9JSVVQeHd3bF9i RlYwMzdMRHNPV0xHdEhfSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFafvQ5dmyDW4bRMeEoPrAhLww7w895zzjqJXx2cIMXfropD0KT8Mx m6qalezMPY/YzG2p/r6AkzxPqVTurXkmEoCXlkFTXgTkSGOruUfVxiD2KSVWsUID mgoO4h3uUfFHj5t0v4dB/WFaZU/joHe4S4M+HIgWDZxV9OEGVP8VwHYA/wrwW8PM vCM5EN0lmvRW9DcEi7kF3biDjtuAuHC/iRzsf35Es8YeWo88n7KA5nh8yImJqUTn Gn/taj/cobBfJRZTFbaB1i/lM7n5KWb6LOakMGC+MuCJepOTn+eVjTRhC3r/zfqM 5uF747gtnYkwW7KL/EAvNs9sqTkt/9A2 -----END CERTIFICATE-----Generated at Sun May 19 00:30:19 2024 by rpki-client on console-ams.rpki-client.org