$ rpki-client -vvf rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft File: up0lGkqfrMTkpmOHdQooZioxAFc.mft (raw, json) Hash identifier: xGxekQs99BcTMB/qB8wOforuv+8DCHpzZUdIukfOjBY= Subject key identifier: 54:01:16:FD:A0:D2:C0:EA:D0:B5:D9:EE:EC:AC:7B:2A:56:55:0B:F0 Authority key identifier: BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 Certificate issuer: /CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Certificate serial: 33E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft Manifest number: 33CF Signing time: Tue 30 Apr 2024 14:53:01 +0000 Manifest this update: Tue 30 Apr 2024 14:53:00 +0000 Manifest next update: Tue 07 May 2024 14:53:00 +0000 Files and hashes: 1: up0lGkqfrMTkpmOHdQooZioxAFc.crl (hash: yMifro0B250fC95ZjI50cfU0okbRP2Mz0+hTm9i1w2Q=) 2: 7A38D6B854F311E7AC64ED3AC4F9AE02.roa (hash: mq9IErlXtLjA6bZPaOi1Wg4LlomF2SH5Rowc0ythHaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 14:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13281 (0x33e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B581/serialNumber=BA9D251A4A9FACC4E4A66387750A28662A310057 Validity Not Before: Apr 30 14:53:00 2024 GMT Not After : May 7 14:53:00 2024 GMT Subject: CN=663105cc-52d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:96:2b:cb:4f:ed:20:23:64:f7:23:1a:6a: 0c:82:19:b1:4f:6a:eb:0c:2d:d6:d7:4a:ed:d9:8f: f5:f9:d7:4a:46:8d:b0:ef:cc:de:0f:99:6b:8e:6f: 53:9a:d3:09:8d:51:98:45:e5:98:f6:37:eb:4a:e9: 60:97:27:f2:fc:89:8c:d9:3a:97:12:2e:e9:6a:f9: 05:5a:84:fe:c4:b7:c4:e8:93:17:66:67:8d:a1:a6: 0c:18:32:bb:d3:06:cc:29:e7:10:1c:b2:60:68:df: a9:90:1d:35:51:1e:7c:b7:c4:c4:cc:52:6b:9b:79: 63:bd:8a:0f:fa:87:18:ee:50:eb:84:74:35:77:d0: 0f:98:3f:d9:27:1d:43:d5:61:00:74:e5:01:97:d4: 89:f1:16:d9:f4:dc:70:d0:51:18:fe:d8:95:d1:20: 52:66:ba:d0:cd:72:7c:05:00:52:9c:89:4f:35:95: 78:ee:c7:46:dd:b1:ee:b9:f0:2e:67:0d:fd:4e:5f: 87:04:39:2e:b8:51:a0:7a:99:73:19:d8:91:18:d1: b2:4e:4f:27:07:a3:f5:a3:28:0f:a1:84:26:40:25: df:9f:9b:b2:cd:9a:8c:0e:27:66:87:18:e7:18:19: 2b:5a:46:46:a3:dc:a0:56:73:62:34:4a:64:7e:07: a9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:01:16:FD:A0:D2:C0:EA:D0:B5:D9:EE:EC:AC:7B:2A:56:55:0B:F0 X509v3 Authority Key Identifier: keyid:BA:9D:25:1A:4A:9F:AC:C4:E4:A6:63:87:75:0A:28:66:2A:31:00:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0lGkqfrMTkpmOHdQooZioxAFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B581/BB8FDFFE1D9311E2A9638AF708B02CD2/up0lGkqfrMTkpmOHdQooZioxAFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:06:25:44:31:d2:6b:3c:28:6e:21:7d:2f:cc:ba:ce:e6:67: c8:ff:da:d7:06:1b:7b:aa:9b:57:55:b8:f2:55:87:c9:79:fa: 35:9e:4b:b5:d5:1e:05:0c:31:59:21:b2:d8:ff:36:61:1d:82: 68:f3:cd:a8:98:72:40:4f:d6:b0:a7:90:e3:68:62:77:f9:9f: 9d:ce:34:a3:c6:6d:f1:cf:84:de:3d:d7:03:6c:6b:8f:3a:af: f9:1c:2f:2e:0e:17:9d:a3:88:0f:f7:46:27:4c:70:31:cd:d2: 0e:0f:d3:1b:7d:d1:e4:67:80:ed:fb:9e:9d:05:c7:5f:16:34: 3a:b7:e6:47:f6:27:d0:8d:c7:35:7d:4e:a5:dd:6b:1e:76:fa: da:a0:1d:59:f6:d3:02:c9:8e:d3:44:0d:79:35:6a:2f:95:d0: 3c:92:5f:a0:14:6f:5e:ac:c3:da:01:1d:32:56:38:8c:f5:06: d3:89:cb:16:15:e4:aa:f5:06:94:1d:a7:b4:ab:22:ac:37:3f: dd:48:53:b8:32:ee:0e:ad:cf:99:63:59:d2:22:27:7f:7b:66: 5c:c4:22:b4:dd:f9:f7:e0:7f:df:55:07:f4:ef:1a:72:fe:b2: 5a:dc:23:d1:17:d3:ef:50:6b:98:a4:2b:81:61:4c:61:9c:3f: e2:c4:8e:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1ODExMTAvBgNVBAUTKEJBOUQyNTFBNEE5RkFDQzRFNEE2NjM4Nzc1MEEyODY2 MkEzMTAwNTcwHhcNMjQwNDMwMTQ1MzAwWhcNMjQwNTA3MTQ1MzAwWjAYMRYwFAYD VQQDEw02NjMxMDVjYy01MmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz+WK8tP7SAjZPcjGmoMghmxT2rrDC3W10rt2Y/1+ddKRo2w78zeD5lrjm9T mtMJjVGYReWY9jfrSulglyfy/ImM2TqXEi7pavkFWoT+xLfE6JMXZmeNoaYMGDK7 0wbMKecQHLJgaN+pkB01UR58t8TEzFJrm3ljvYoP+ocY7lDrhHQ1d9APmD/ZJx1D 1WEAdOUBl9SJ8RbZ9Nxw0FEY/tiV0SBSZrrQzXJ8BQBSnIlPNZV47sdG3bHuufAu Zw39Tl+HBDkuuFGgeplzGdiRGNGyTk8nB6P1oygPoYQmQCXfn5uyzZqMDidmhxjn GBkrWkZGo9ygVnNiNEpkfgep+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQBFv2g 0sDq0LXZ7uyseypWVQvwMB8GA1UdIwQYMBaAFLqdJRpKn6zE5KZjh3UKKGYqMQBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjU4MS9CQjhGREZGRTFE OTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJNVGtwbU9IZFFvb1ppb3hB RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMGxHa3Fmck1Ua3BtT0hkUW9vWmlveEFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU4MS9CQjhGREZGRTFEOTMxMUUyQTk2MzhBRjcwOEIwMkNEMi91cDBsR2txZnJN VGtwbU9IZFFvb1ppb3hBRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWBiVEMdJrPChuIX0vzLrO5mfI/9rXBht7qptXVbjyVYfJefo1nku1 1R4FDDFZIbLY/zZhHYJo882omHJAT9awp5DjaGJ3+Z+dzjSjxm3xz4TePdcDbGuP Oq/5HC8uDhedo4gP90YnTHAxzdIOD9MbfdHkZ4Dt+56dBcdfFjQ6t+ZH9ifQjcc1 fU6l3WsedvraoB1Z9tMCyY7TRA15NWovldA8kl+gFG9erMPaAR0yVjiM9QbTicsW FeSq9QaUHae0qyKsNz/dSFO4Mu4Orc+ZY1nSIid/e2ZcxCK03fn34H/fVQf07xpy /rJa3CPRF9PvUGuYpCuBYUxhnD/ixI7G -----END CERTIFICATE-----Generated at Tue Apr 30 19:21:18 2024 by rpki-client on console-ams.rpki-client.org