$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft File: UPIOqel1rkxMhmfLV_e89XAhXJY.mft (raw, json) Hash identifier: Ypm2M6whNAN+FC+UVq9EhDHqP3qdQxOFJuCeucbczAs= Subject key identifier: CC:0A:14:A1:E0:5F:CC:68:AC:75:49:B2:E5:AD:41:2A:5E:2B:B5:23 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 23CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft Manifest number: 236C Signing time: Sat 04 May 2024 16:11:39 +0000 Manifest this update: Sat 04 May 2024 16:11:38 +0000 Manifest next update: Sat 11 May 2024 16:11:38 +0000 Files and hashes: 1: UPIOqel1rkxMhmfLV_e89XAhXJY.crl (hash: qWIGhWNaPyXixtWehqgr8Dc3qoV0VvtHveC/hahEbLM=) 2: 773D7A96B0DC11ECAEC09469C4F9AE02.roa (hash: gW2ECTUaGi/zdBog9oymJx57zutMFk7wb86c2exJ938=) 3: D327C18CDFEC11ED9AB6E147C4F9AE02.roa (hash: W+x8LNqWNFLXHJQNP+HWUxz6NqpX2vCkaXKxFPClAjk=) 4: B8951CDCD23611EA8D9E515BC4F9AE02.roa (hash: cboFsNgkEhFKm3ddpKOT4WxCkAOTLjel0GZUJigdVfk=) 5: E706A8B2BBF111EE8697E433C4F9AE02.roa (hash: yPANlSRGzPMIFP3XuxvIjl4eaw/6+4xThfImj0re5k8=) 6: 1A2298A2D23811EABDECA85FC4F9AE02.roa (hash: LlrSWsuSZuZeKlMXIPfixBWT+GHcIoabMhp+hk+S1Tg=) 7: 491B85B2E58911ED94960F39C4F9AE02.roa (hash: 1hiE5xqSvidZpi94RRrCifgSGO6M6zEGYUgcoSzd3pI=) 8: 06239EBADFEA11ED835B4D0EC4F9AE02.roa (hash: PwAr7zOBeuVVR5AYBe8VzDIOihM3qEnOZyGlvLSZWm8=) 9: 59B3485028C111E7A885571AC4F9AE02.roa (hash: ygxWmU9VftQ+d/EjaZ40O1nAYsETaroBLZ3pkKq/izw=) 10: 554E53D4B0B811EC9BE93E24C4F9AE02.roa (hash: d998SNhpyfXXoeNVfSd55NTwrliAR/uign/UZ3EYvaA=) 11: 5A2BB4DE28C111E7A885571AC4F9AE02.roa (hash: PWOt6rdAUOKtYL0rAeHe18Lgv0D1BlOsrI6LdeKI7K8=) 12: D451FBE0DFEC11ED9AB6E147C4F9AE02.roa (hash: rh11izBtb2cDopjLF+1nKB2Aot+iLfA34h+IJVGDgy4=) 13: D50024D6DFEC11ED9AB6E147C4F9AE02.roa (hash: cDjy6X9xsqEQ8vlApExx0XqsgcReKdC7pCik9KzOKcE=) 14: AFF73BD2BA0811EAB2479081C4F9AE02.roa (hash: 6j0mRcRbQWC2KHo0Q75xLK5JMfu2d9Dqs1Uxd5LR1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9167 (0x23cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: May 4 16:11:38 2024 GMT Not After : May 11 16:11:38 2024 GMT Subject: CN=66365e3b-d61f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1d:19:66:39:06:6e:cd:05:56:15:3b:6c:62: 0b:cc:8f:43:94:d1:66:18:71:c9:ad:65:03:6e:03: b4:18:53:28:14:8e:01:78:4e:87:ab:86:54:b7:00: 8d:ba:56:30:90:be:a9:69:cf:5c:bc:26:1b:b1:6f: 02:51:f7:d1:9a:41:a6:70:45:5c:fe:be:8f:9d:32: 4b:66:80:50:e6:14:2e:a0:f5:27:87:56:d0:f5:4f: a4:32:7e:33:cb:1e:33:6a:40:d5:58:8f:98:aa:d8: 8d:e9:5d:e6:c9:55:05:4c:9c:de:18:1b:03:ee:28: a5:e9:c2:0d:b3:15:26:63:4f:46:6f:5d:6f:6e:bc: cd:77:e8:7f:77:ac:b8:34:1f:50:79:14:fa:03:6f: dd:c1:a4:24:35:0f:3b:38:52:9e:31:39:d0:e1:05: e2:b6:5a:b5:9a:c3:74:bb:90:62:32:b8:9a:8e:a9: c1:0a:ad:08:26:5c:7f:7d:51:7a:8c:9e:cc:d7:14: a8:86:71:02:74:eb:f4:b8:a5:fd:9a:dc:56:2a:1f: ac:13:35:39:25:a0:13:73:a7:c7:d2:a2:b6:10:23: 80:7c:8c:a1:63:ca:30:ad:35:61:76:58:ef:27:bd: 8b:58:5b:cd:18:5f:54:39:ca:a7:a1:fd:78:8c:b9: 6f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0A:14:A1:E0:5F:CC:68:AC:75:49:B2:E5:AD:41:2A:5E:2B:B5:23 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:cb:4b:22:aa:c7:8e:7e:b2:1c:16:16:0d:9e:f4:4d:46:7c: 4a:5a:a6:05:bb:f1:3b:0b:38:3a:07:f2:6e:a1:b1:af:01:c7: 9c:2b:e1:23:f4:31:42:db:02:fa:62:76:92:e8:18:8e:7e:96: 2c:71:b3:a2:fa:03:19:40:4e:42:90:25:65:a2:4d:73:8c:bb: 52:55:ca:c0:24:bb:04:fa:e6:d9:d0:55:d9:22:c8:1b:a9:6b: 94:26:19:c2:c5:bb:34:09:aa:0a:90:7c:c2:03:61:a9:85:79: b3:ba:9b:4e:e0:00:16:86:39:93:ea:c7:d9:68:d6:1a:2d:54: 4c:cb:f5:ba:b3:f7:c7:bc:5b:95:9c:10:c2:86:cd:54:ab:f2: e7:42:c6:7a:b2:a6:cc:9e:dc:cc:55:d3:b3:7b:42:cf:59:43: 8b:a1:c7:e9:a5:4e:8e:2d:55:d6:71:f1:6b:87:61:94:54:52: e3:46:d1:2b:a8:7a:cb:cd:84:ed:4e:32:df:1f:b9:62:7a:1f: d9:ea:c2:d7:06:72:76:54:cb:e2:e0:d5:b4:ac:70:52:18:52: f7:19:a6:e0:03:25:bf:05:6f:da:59:0f:3b:9f:9f:8b:17:0c: 39:ed:ef:a9:d2:b7:c6:5c:a1:28:69:03:cf:62:77:61:c2:6d: 3b:d0:3c:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQwNTA0MTYxMTM4WhcNMjQwNTExMTYxMTM4WjAYMRYwFAYD VQQDEw02NjM2NWUzYi1kNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh0ZZjkGbs0FVhU7bGILzI9DlNFmGHHJrWUDbgO0GFMoFI4BeE6Hq4ZUtwCN ulYwkL6pac9cvCYbsW8CUffRmkGmcEVc/r6PnTJLZoBQ5hQuoPUnh1bQ9U+kMn4z yx4zakDVWI+YqtiN6V3myVUFTJzeGBsD7iil6cINsxUmY09Gb11vbrzNd+h/d6y4 NB9QeRT6A2/dwaQkNQ87OFKeMTnQ4QXitlq1msN0u5BiMriajqnBCq0IJlx/fVF6 jJ7M1xSohnECdOv0uKX9mtxWKh+sEzU5JaATc6fH0qK2ECOAfIyhY8owrTVhdljv J72LWFvNGF9UOcqnof14jLlvmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwKFKHg X8xorHVJsuWtQSpeK7UjMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYyQi82NEEwNTE0NjYwMTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJr eE1obWZMVl9lODlYQWhYSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBky0siqseOfrIcFhYNnvRNRnxKWqYFu/E7Czg6B/JuobGvAcecK+Ej 9DFC2wL6YnaS6BiOfpYscbOi+gMZQE5CkCVlok1zjLtSVcrAJLsE+ubZ0FXZIsgb qWuUJhnCxbs0CaoKkHzCA2GphXmzuptO4AAWhjmT6sfZaNYaLVRMy/W6s/fHvFuV nBDChs1Uq/LnQsZ6sqbMntzMVdOze0LPWUOLocfppU6OLVXWcfFrh2GUVFLjRtEr qHrLzYTtTjLfH7lieh/Z6sLXBnJ2VMvi4NW0rHBSGFL3GabgAyW/BW/aWQ87n5+L Fww57e+p0rfGXKEoaQPPYndhwm070Dxd -----END CERTIFICATE-----Generated at Sat May 4 16:48:40 2024 by rpki-client on console-ams.rpki-client.org