$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft File: up0rragmh4TwCuhYcC744p5ytLw.mft (raw, json) Hash identifier: hoLMy8X55slTMbLQlixca22m7qXQuwUW5GJuw6I+gxY= Subject key identifier: 04:6F:3C:1D:52:64:46:34:50:E5:D0:BC:62:C3:73:EC:ED:6F:CA:B1 Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 33E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft Manifest number: 33D5 Signing time: Sat 18 May 2024 14:32:56 +0000 Manifest this update: Sat 18 May 2024 14:32:55 +0000 Manifest next update: Sat 25 May 2024 14:32:55 +0000 Files and hashes: 1: up0rragmh4TwCuhYcC744p5ytLw.crl (hash: tgjVm70oxAvZdFPKVNG83ANOO17B3sbA01qFIwlSUxI=) 2: 58D5764A683311ECB9C17757C4F9AE02.roa (hash: CO44ykdfCTQ7Mv5nVqTIPuTfPATeSesiwshtkZkvJFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13286 (0x33e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: May 18 14:32:55 2024 GMT Not After : May 25 14:32:55 2024 GMT Subject: CN=6648bc18-17a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:85:86:1f:50:54:d9:a6:5d:2e:29:a6:f1:bf: 5f:eb:70:43:34:de:6c:80:da:0a:41:9f:a1:5d:ab: 52:80:87:23:0f:60:83:07:cc:e2:9b:2f:5c:94:09: 5d:b7:e2:8b:3f:46:a6:c3:e5:f0:15:da:ed:c3:f0: 0f:23:03:e0:f8:2e:75:8e:ab:7a:5b:92:68:e4:0a: 30:19:f4:74:de:b3:91:a4:87:44:eb:1c:cd:03:66: 18:06:c2:c9:7e:99:69:d5:b9:5b:dd:97:a2:12:d1: 1f:a8:b0:bb:b9:c9:ac:bd:67:a6:95:cf:00:33:f4: ee:5f:d0:bb:ae:65:ff:71:34:ac:74:e0:b3:c9:e0: 0f:00:37:f3:96:e5:e5:95:86:45:47:c6:3a:ee:a6: 4f:69:f9:a6:b4:0c:66:69:8b:62:70:9d:8e:9d:38: bf:01:4d:bb:2f:5d:fd:93:29:bb:d9:9d:11:ed:cb: a6:6a:dd:3e:34:52:ba:ff:2f:c2:a1:5d:89:e6:ea: 76:5d:24:24:41:9a:fd:a6:c9:31:5f:c4:1d:96:34: 53:10:02:a9:76:3e:10:cd:ef:f1:5d:99:fc:d8:41: 7f:a1:d1:e6:64:22:5c:eb:39:84:41:75:41:46:f8: ea:38:9d:bf:7a:ef:1b:02:3b:4e:3f:15:cb:92:54: b7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:6F:3C:1D:52:64:46:34:50:E5:D0:BC:62:C3:73:EC:ED:6F:CA:B1 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:b5:69:21:50:48:63:f8:ac:33:ae:5a:a2:87:42:61:66:68: 52:12:92:2a:c2:5c:75:9a:82:06:49:90:c3:74:2d:65:43:36: 02:43:65:be:bd:ef:51:9b:16:dd:44:a5:0a:f5:9e:5d:bc:21: 54:dd:b7:98:4b:d4:fa:ea:33:0b:d7:c2:f3:f6:ea:24:b0:d8: d6:6d:f6:9d:6c:a6:a5:5f:18:a4:52:5c:66:0b:9d:b5:20:64: 17:84:a3:5d:a0:26:e0:3e:ac:2b:ae:5d:a9:3f:58:ba:cb:18: 51:75:49:f3:ee:a2:59:4f:37:05:ad:b6:92:88:ee:24:bf:59: 9f:4b:ef:c9:1a:31:96:bf:10:54:f1:c3:16:7c:71:56:64:67: 53:dd:e9:1d:48:bc:46:1d:15:2e:c5:a2:9b:ac:8f:b8:a5:b7: 54:0f:b1:41:55:7d:15:6d:b3:07:54:d5:13:94:fc:06:d0:0f: f3:3b:d3:15:72:56:9f:f1:0b:e2:2a:8f:37:0d:93:0c:0e:73: 93:65:5a:bb:38:8d:10:ef:cd:06:56:58:df:ba:e0:88:90:f5: c1:aa:c4:b7:7e:88:0a:96:5f:5f:cd:b2:bb:3c:d3:b8:78:af: dd:e9:63:4c:66:a5:5b:a6:b1:93:7b:84:58:24:28:89:7e:e4: 7d:06:49:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjQwNTE4MTQzMjU1WhcNMjQwNTI1MTQzMjU1WjAYMRYwFAYD VQQDEw02NjQ4YmMxOC0xN2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IWGH1BU2aZdLimm8b9f63BDNN5sgNoKQZ+hXatSgIcjD2CDB8zimy9clAld t+KLP0amw+XwFdrtw/APIwPg+C51jqt6W5Jo5AowGfR03rORpIdE6xzNA2YYBsLJ fplp1blb3ZeiEtEfqLC7ucmsvWemlc8AM/TuX9C7rmX/cTSsdOCzyeAPADfzluXl lYZFR8Y67qZPafmmtAxmaYticJ2OnTi/AU27L139kym72Z0R7cumat0+NFK6/y/C oV2J5up2XSQkQZr9pskxX8QdljRTEAKpdj4Qze/xXZn82EF/odHmZCJc6zmEQXVB RvjqOJ2/eu8bAjtOPxXLklS3aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFARvPB1S ZEY0UOXQvGLDc+ztb8qxMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUVFMi82NDMyNEREODFEODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0 VHdDdWhZY0M3NDRwNXl0THcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3tWkhUEhj+Kwzrlqih0JhZmhSEpIqwlx1moIGSZDDdC1lQzYCQ2W+ ve9RmxbdRKUK9Z5dvCFU3beYS9T66jML18Lz9uoksNjWbfadbKalXxikUlxmC521 IGQXhKNdoCbgPqwrrl2pP1i6yxhRdUnz7qJZTzcFrbaSiO4kv1mfS+/JGjGWvxBU 8cMWfHFWZGdT3ekdSLxGHRUuxaKbrI+4pbdUD7FBVX0VbbMHVNUTlPwG0A/zO9MV claf8QviKo83DZMMDnOTZVq7OI0Q780GVljfuuCIkPXBqsS3fogKll9fzbK7PNO4 eK/d6WNMZqVbprGTe4RYJCiJfuR9BkmX -----END CERTIFICATE-----Generated at Sat May 18 15:26:07 2024 by rpki-client on console-fra.rpki-client.org