$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft File: upj7l0sLFJ-1v3Ge_9938G2-STQ.mft (raw, json) Hash identifier: pwR9XtQo56M24O0lfF9lP425iWer4IJfwvwP5HuEg4g= Subject key identifier: 8C:C0:74:27:8C:A4:FB:73:95:BA:56:23:EA:43:33:EE:C6:2E:A7:1F Authority key identifier: BA:98:FB:97:4B:0B:14:9F:B5:BF:71:9E:FF:DF:77:F0:6D:BE:49:34 Certificate issuer: /CN=A91EAC9B/serialNumber=BA98FB974B0B149FB5BF719EFFDF77F06DBE4934 Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft Manifest number: 67 Signing time: Sun 19 May 2024 07:36:17 +0000 Manifest this update: Sun 19 May 2024 07:36:16 +0000 Manifest next update: Sun 26 May 2024 07:36:16 +0000 Files and hashes: 1: upj7l0sLFJ-1v3Ge_9938G2-STQ.crl (hash: UamO7PHo8V0k1SQAkuQrtdfjo/MiYhFdKR8LOGKrVwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.crl rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAC9B/serialNumber=BA98FB974B0B149FB5BF719EFFDF77F06DBE4934 Validity Not Before: May 19 07:36:16 2024 GMT Not After : May 26 07:36:16 2024 GMT Subject: CN=6649abf1-a4e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:90:04:20:2c:ab:63:d2:e1:55:e0:af:34:1f: 9b:5c:6a:c5:ce:71:ee:28:e8:38:ac:10:03:ea:d5: a9:22:21:d0:21:64:b0:91:df:2a:0d:34:c5:93:df: b8:75:cd:e7:5a:82:51:cd:83:96:d6:ea:b8:72:e2: ea:2d:67:09:18:28:12:dd:5c:ca:2b:17:45:7c:88: 0d:e7:1b:d3:6a:2a:05:fa:72:2f:41:f7:38:4c:c2: 70:6e:71:23:dd:35:a1:94:ce:ce:92:f0:58:96:88: 67:f1:1c:f5:df:ea:b5:4b:e9:fc:af:67:94:e4:c5: 8e:a1:87:d9:94:8e:fc:99:a4:e3:10:04:77:3d:b1: 1f:b2:d4:8b:b4:08:23:7c:49:79:59:92:e3:33:dd: 72:89:a2:96:c4:c2:a3:08:a4:cb:ca:a5:0f:f9:be: 71:ea:28:6c:b3:e8:06:5e:c9:ed:14:db:f5:42:05: 40:c4:7c:52:6a:f7:21:2c:99:3a:93:c4:cf:ea:d3: 26:22:70:a5:64:91:97:de:f0:7b:e2:63:31:2f:5c: 31:af:35:fc:73:7d:b5:16:37:9c:6a:51:05:b4:d3: 71:4f:f2:e8:a0:7e:66:c4:a4:35:df:23:c5:42:87: 76:6f:56:42:32:34:6d:e0:75:12:26:89:9c:ae:8b: 9b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C0:74:27:8C:A4:FB:73:95:BA:56:23:EA:43:33:EE:C6:2E:A7:1F X509v3 Authority Key Identifier: keyid:BA:98:FB:97:4B:0B:14:9F:B5:BF:71:9E:FF:DF:77:F0:6D:BE:49:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/upj7l0sLFJ-1v3Ge_9938G2-STQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAC9B/503F8E24792C11EE81E69A16C4F9AE02/upj7l0sLFJ-1v3Ge_9938G2-STQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:ab:8e:e3:9d:6a:3b:27:9d:69:9e:55:c8:60:b9:d5:42:8d: a4:a5:ce:2a:48:08:f5:e3:1b:f3:f9:e0:80:63:b3:db:82:65: f2:82:37:dc:05:e8:5a:55:fe:57:92:1f:fc:5c:4c:1b:c6:0e: 6f:22:97:86:fd:cb:5f:8d:b9:89:7d:9e:11:be:f9:79:4d:10: 54:be:d1:c1:cd:86:12:1d:c7:7f:b7:c4:26:e0:3f:87:52:19: 95:bc:66:64:f4:47:fe:be:21:d6:4a:8f:db:c1:ac:2c:3c:61: 88:52:56:91:d9:7c:19:8c:69:c0:1c:1a:22:13:63:c1:5a:21: 13:2b:50:84:52:08:44:d5:d7:a2:fb:c0:d0:20:d1:59:5e:d5: e8:63:8e:9c:a9:df:7f:ef:af:f1:47:20:55:73:96:c7:ea:d6: 4f:7f:54:3c:f5:f1:cc:e3:f6:bb:21:2f:35:f7:a5:b3:8c:57: 7f:0b:90:4d:99:20:1f:18:d9:85:b6:87:d1:bd:e6:3d:79:b2: 29:7c:9a:db:68:aa:1d:17:ef:9c:77:6b:78:d3:62:8a:ac:68: 88:2d:76:4d:74:cb:17:c7:1e:a1:31:ff:85:ca:6b:c5:45:34: 97:51:b9:57:6e:c6:59:19:2f:c2:6d:95:e1:4c:14:d2:97:c2: e6:f2:01:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUM5QjExMC8GA1UEBRMoQkE5OEZCOTc0QjBCMTQ5RkI1QkY3MTlFRkZERjc3RjA2 REJFNDkzNDAeFw0yNDA1MTkwNzM2MTZaFw0yNDA1MjYwNzM2MTZaMBgxFjAUBgNV BAMTDTY2NDlhYmYxLWE0ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUkAQgLKtj0uFV4K80H5tcasXOce4o6DisEAPq1akiIdAhZLCR3yoNNMWT37h1 zedaglHNg5bW6rhy4uotZwkYKBLdXMorF0V8iA3nG9NqKgX6ci9B9zhMwnBucSPd NaGUzs6S8FiWiGfxHPXf6rVL6fyvZ5TkxY6hh9mUjvyZpOMQBHc9sR+y1Iu0CCN8 SXlZkuMz3XKJopbEwqMIpMvKpQ/5vnHqKGyz6AZeye0U2/VCBUDEfFJq9yEsmTqT xM/q0yYicKVkkZfe8HviYzEvXDGvNfxzfbUWN5xqUQW003FP8uigfmbEpDXfI8VC h3ZvVkIyNG3gdRImiZyui5sVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjMB0J4yk +3OVulYj6kMz7sYupx8wHwYDVR0jBBgwFoAUupj7l0sLFJ+1v3Ge/9938G2+STQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBQzlCLzUwM0Y4RTI0Nzky QzExRUU4MUU2OUExNkM0RjlBRTAyL3VwajdsMHNMRkotMXYzR2VfOTkzOEcyLVNU US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdXBqN2wwc0xGSi0xdjNHZV85OTM4RzItU1RRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB QzlCLzUwM0Y4RTI0NzkyQzExRUU4MUU2OUExNkM0RjlBRTAyL3VwajdsMHNMRkot MXYzR2VfOTkzOEcyLVNUUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMCrjuOdajsnnWmeVchgudVCjaSlzipICPXjG/P54IBjs9uCZfKCN9wF 6FpV/leSH/xcTBvGDm8il4b9y1+NuYl9nhG++XlNEFS+0cHNhhIdx3+3xCbgP4dS GZW8ZmT0R/6+IdZKj9vBrCw8YYhSVpHZfBmMacAcGiITY8FaIRMrUIRSCETV16L7 wNAg0Vle1ehjjpyp33/vr/FHIFVzlsfq1k9/VDz18czj9rshLzX3pbOMV38LkE2Z IB8Y2YW2h9G95j15sil8mttoqh0X75x3a3jTYoqsaIgtdk10yxfHHqEx/4XKa8VF NJdRuVduxlkZL8JtleFMFNKXwubyAZs= -----END CERTIFICATE-----Generated at Sun May 19 08:26:45 2024 by rpki-client on console-fra.rpki-client.org