$ rpki-client -vvf rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft File: UPIOqel1rkxMhmfLV_e89XAhXJY.mft (raw, json) Hash identifier: 2R4V0PNscQ6VDyLZSV/ASAdT89Dx9vveJH4o7na01Ns= Subject key identifier: 6C:35:DD:ED:BC:5D:52:CD:E3:CC:B6:F5:DB:C4:72:31:0D:4C:2A:B0 Authority key identifier: 50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 Certificate issuer: /CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Certificate serial: 244C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft Manifest number: 23DA Signing time: Fri 22 Nov 2024 15:49:31 +0000 Manifest this update: Fri 22 Nov 2024 15:49:30 +0000 Manifest next update: Fri 29 Nov 2024 15:49:30 +0000 Files and hashes: 1: UPIOqel1rkxMhmfLV_e89XAhXJY.crl (hash: M6bs9NrMZomQvQ9uhiDV7+AvW9U+xLHn2I3rQoE7QhY=) 2: 773D7A96B0DC11ECAEC09469C4F9AE02.roa (hash: JSTjxevpQh7Y9WIfXMl2eIjomxLJnjI/r2tIU+oc0Ig=) 3: D327C18CDFEC11ED9AB6E147C4F9AE02.roa (hash: DkDF5ioX13OuJfh2JylvgLRRw6+AIn++z0lBKozZ6IM=) 4: B8951CDCD23611EA8D9E515BC4F9AE02.roa (hash: 3p58ypdk04ElN+6HEttw9qJ/C60XU0tMI9YBNjvhXdM=) 5: E706A8B2BBF111EE8697E433C4F9AE02.roa (hash: cishBm9UdoGGvPuPGzEAmXBlRKMXNl1QLjdbaBeI7B0=) 6: 1A2298A2D23811EABDECA85FC4F9AE02.roa (hash: tFtHJDRq68MkxOGT5VgkwrnSGzaE039FiHh4oq6Q4EQ=) 7: 491B85B2E58911ED94960F39C4F9AE02.roa (hash: 1fv7fZFzFEs/sLkCGSCbMf5alHoPqZF1EHmGHYYm0ys=) 8: 06239EBADFEA11ED835B4D0EC4F9AE02.roa (hash: yndVn7hcuDMCdpxEcUDVR9meRxJpnYlQ5KdYems+Xe0=) 9: 59B3485028C111E7A885571AC4F9AE02.roa (hash: cpxWzbtBjfOYkdrL+G3YkBQCddhQ01gMHqlqKByoADs=) 10: 554E53D4B0B811EC9BE93E24C4F9AE02.roa (hash: zWhiAKzwQg9bP+RZqYCDyP/HTuRht7KXbJE7TpD4TKc=) 11: 5A2BB4DE28C111E7A885571AC4F9AE02.roa (hash: lmPij0yxhpci1H7hfOEpStvrCK/OQdYLZzjGWxHldlQ=) 12: D50024D6DFEC11ED9AB6E147C4F9AE02.roa (hash: 2+yQDxtXyRNPNjJL9oTb98cBeK8O2vaQ5rcmSwbKfuo=) 13: D451FBE0DFEC11ED9AB6E147C4F9AE02.roa (hash: nJrkbLig1vTmSgjt6NVxXjjZt4z8n2VfbVQLKGqNIWA=) 14: AFF73BD2BA0811EAB2479081C4F9AE02.roa (hash: p9SLtL5if79gMeg3/pCzWcvV/1N47/hD8cmWrtc34us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9292 (0x244c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C62B/serialNumber=50F20EA9E975AE4C4C8667CB57F7BCF570215C96 Validity Not Before: Nov 22 15:49:30 2024 GMT Not After : Nov 29 15:49:30 2024 GMT Subject: CN=6740a80a-c39b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:58:6a:94:b4:cd:99:94:28:09:69:58:54: 83:a3:82:9d:f5:03:4f:ef:02:af:1d:d6:ea:5d:5a: 0e:f5:49:e1:01:96:28:37:a8:b2:61:aa:b9:aa:22: c0:26:2d:c8:ad:4a:4f:d2:dd:37:b5:54:fb:ce:94: 64:71:80:06:2f:4c:2b:3e:fe:ef:07:96:04:45:5f: 94:96:29:36:ed:45:fb:4c:69:3e:15:a8:3f:4c:8b: bb:c5:e2:23:5b:da:b0:c5:ed:1c:5d:e2:82:3b:21: 8b:14:97:23:4b:65:cb:4f:79:42:5b:ca:ec:2a:52: 34:70:d3:33:92:80:90:2f:89:3e:d2:d8:52:3a:af: 93:b7:a9:60:38:ca:d5:e6:8e:fc:35:e7:ad:97:59: 89:97:40:c4:03:c3:4c:b8:fa:cd:a7:3b:34:c8:3b: b5:6f:04:72:ff:89:b1:6f:0c:bf:6f:71:58:dc:f0: 40:de:46:11:d7:4e:ea:52:11:a9:7f:4a:0f:cb:5d: 8c:b8:04:ad:94:85:4b:f6:37:41:66:22:b7:c1:ed: 3e:05:8a:58:73:0f:19:d5:bc:12:86:b1:98:9a:07: 53:bc:6a:42:30:d4:c9:f9:d0:ec:d2:5c:fb:e0:13: 77:02:97:a7:95:e1:72:37:4f:b5:15:db:df:80:04: 15:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:35:DD:ED:BC:5D:52:CD:E3:CC:B6:F5:DB:C4:72:31:0D:4C:2A:B0 X509v3 Authority Key Identifier: keyid:50:F2:0E:A9:E9:75:AE:4C:4C:86:67:CB:57:F7:BC:F5:70:21:5C:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UPIOqel1rkxMhmfLV_e89XAhXJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C62B/64A05146601211E5BE925070C4F9AE02/UPIOqel1rkxMhmfLV_e89XAhXJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:4c:4b:60:50:3b:f8:37:ad:c0:18:2a:eb:4c:48:d0:e1:7d: 7f:69:41:c9:a7:41:7c:c3:dd:76:82:a2:dd:fe:3f:87:b7:59: 7a:49:bc:41:bf:e1:46:36:a6:c9:5a:16:ca:7c:65:60:8c:15: ce:91:cd:3d:f0:a0:d3:1e:09:8b:95:fb:5c:94:d7:9a:20:e0: c9:22:e2:63:79:48:ce:22:d6:8b:e4:ea:a0:69:a9:f6:39:db: e8:55:0d:25:30:fc:ec:6a:64:04:27:f5:b8:ef:74:9d:70:ef: b0:8a:a4:e5:97:22:37:46:08:7c:2b:0a:59:d4:42:17:e8:8d: 81:7a:50:9b:3c:73:70:e8:ad:9f:4c:4b:d7:f3:3c:fa:52:05: d0:02:d5:5a:48:da:25:9e:7d:65:6c:b9:3f:52:27:9c:18:ce: d0:0c:8c:13:e4:05:ef:6a:05:20:19:a2:55:b2:73:ee:03:bb: 97:b4:e3:b8:4c:a3:1d:2c:d4:e6:7b:97:1e:5c:98:91:59:ce: 6f:f6:e5:9e:74:c5:c3:1c:5b:83:1c:a2:30:5d:79:39:2a:1b: 20:72:34:3b:d0:30:67:5d:23:f2:f2:bb:26:04:ef:c6:c2:c8: 98:48:62:12:8d:64:b6:bd:10:15:58:4b:01:be:bd:f0:7f:75: 91:8d:6a:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MkIxMTAvBgNVBAUTKDUwRjIwRUE5RTk3NUFFNEM0Qzg2NjdDQjU3RjdCQ0Y1 NzAyMTVDOTYwHhcNMjQxMTIyMTU0OTMwWhcNMjQxMTI5MTU0OTMwWjAYMRYwFAYD VQQDEw02NzQwYTgwYS1jMzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwVYapS0zZmUKAlpWFSDo4Kd9QNP7wKvHdbqXVoO9UnhAZYoN6iyYaq5qiLA Ji3IrUpP0t03tVT7zpRkcYAGL0wrPv7vB5YERV+Ulik27UX7TGk+Fag/TIu7xeIj W9qwxe0cXeKCOyGLFJcjS2XLT3lCW8rsKlI0cNMzkoCQL4k+0thSOq+Tt6lgOMrV 5o78Neetl1mJl0DEA8NMuPrNpzs0yDu1bwRy/4mxbwy/b3FY3PBA3kYR107qUhGp f0oPy12MuAStlIVL9jdBZiK3we0+BYpYcw8Z1bwShrGYmgdTvGpCMNTJ+dDs0lz7 4BN3ApenleFyN0+1FdvfgAQV7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGw13e28 XVLN48y29dvEcjENTCqwMB8GA1UdIwQYMBaAFFDyDqnpda5MTIZny1f3vPVwIVyW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYyQi82NEEwNTE0NjYw MTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJreE1obWZMVl9lODlYQWhY SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VQSU9xZWwxcmt4TWhtZkxWX2U4OVhBaFhKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYyQi82NEEwNTE0NjYwMTIxMUU1QkU5MjUwNzBDNEY5QUUwMi9VUElPcWVsMXJr eE1obWZMVl9lODlYQWhYSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMTEtgUDv4N63AGCrrTEjQ4X1/aUHJp0F8w912gqLd/j+Ht1l6SbxB v+FGNqbJWhbKfGVgjBXOkc098KDTHgmLlftclNeaIODJIuJjeUjOItaL5Oqgaan2 OdvoVQ0lMPzsamQEJ/W473SdcO+wiqTllyI3Rgh8KwpZ1EIX6I2BelCbPHNw6K2f TEvX8zz6UgXQAtVaSNolnn1lbLk/UiecGM7QDIwT5AXvagUgGaJVsnPuA7uXtOO4 TKMdLNTme5ceXJiRWc5v9uWedMXDHFuDHKIwXXk5KhsgcjQ70DBnXSPy8rsmBO/G wsiYSGISjWS2vRAVWEsBvr3wf3WRjWo6 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org