$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: 2uOHAeAtlieipfCEWiUkdaKgU9dH8jrN4Ba6cPu+fJU= Subject key identifier: 15:2E:ED:A6:F7:81:34:3E:1F:38:6F:A4:5A:C7:3E:BD:A3:06:8F:AA Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 056B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 056B Signing time: Wed 01 May 2024 01:00:19 +0000 Manifest this update: Wed 01 May 2024 01:00:18 +0000 Manifest next update: Wed 08 May 2024 01:00:18 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: pFRdHQqd0p6gJ/E0UnasegFHE+aYjzaqnibtFkVMGws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: May 1 01:00:18 2024 GMT Not After : May 8 01:00:18 2024 GMT Subject: CN=66319422-555b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a4:b6:f0:4c:20:fc:44:74:c4:75:77:7a:0c: 2d:42:fd:16:78:9d:37:5d:81:70:e2:33:ba:64:d6: be:1c:cc:cb:c1:f0:4e:c1:7f:e2:ee:e0:4d:b7:ab: f5:fa:60:41:15:de:04:bb:34:68:14:11:2f:50:0a: 2b:0a:82:6e:56:6e:e2:04:7c:c4:e9:e4:2f:77:c8: ab:05:15:b8:f9:92:f0:22:1a:79:ef:2c:57:17:08: d2:62:bc:28:2d:31:7f:7d:f5:81:e6:bf:20:92:40: 87:92:5b:c3:08:40:c8:0a:39:47:12:18:b4:d6:53: 50:95:b2:3c:e3:43:89:fd:4c:68:60:99:a0:ff:51: f2:11:91:8b:17:db:0f:21:22:f0:6d:8d:b9:d6:cb: 56:6d:e1:bf:19:e8:35:53:28:a8:ec:06:b5:24:30: 05:96:11:e1:6f:a4:03:12:7a:85:12:e4:55:63:b6: fd:8d:39:f5:e8:29:b1:6f:f3:7f:58:8e:5a:c7:19: da:57:8a:00:15:78:2a:09:fb:de:09:58:14:a2:02: d1:77:3d:ee:61:5b:c7:68:c1:6b:74:d9:eb:f2:56: cf:b4:cb:a9:38:12:6c:65:3d:d3:4e:de:e1:3f:a2: 2f:4d:a3:aa:91:91:3d:3e:1f:71:b7:29:af:2f:0f: 9e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2E:ED:A6:F7:81:34:3E:1F:38:6F:A4:5A:C7:3E:BD:A3:06:8F:AA X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:06:29:96:02:25:19:35:59:f8:b7:f5:45:4b:77:43:cb:2d: f9:b3:4f:f4:14:cd:2c:86:8a:e2:98:95:79:4b:66:0e:da:b9: 71:41:15:b3:a7:38:16:45:89:3b:e4:90:a5:81:1a:26:34:8c: 21:4c:54:8b:e0:ee:a2:ca:78:b0:4f:f8:ef:4f:fc:38:79:76: 3f:a7:02:a6:e8:a3:9a:08:17:56:c0:cf:55:6f:0f:5f:8f:47: df:59:fb:d2:d2:29:38:8b:5b:0c:d6:db:cf:99:6a:12:be:f2: c3:a0:bc:57:bc:14:b9:1e:9d:a4:43:3f:7d:22:54:04:65:92: d0:81:7e:9c:36:ae:e1:52:57:10:b7:21:8b:c8:ff:ef:a4:58: 7e:0b:c8:a6:9b:bc:da:b6:3b:aa:53:a5:d7:0b:a4:67:25:db: 9c:48:8d:73:74:2c:e7:2c:91:bb:e0:a5:df:3b:30:8a:3b:a0: 0c:78:16:59:80:de:7c:c9:f9:d9:28:4b:52:c5:62:6e:54:57: 84:a9:61:6b:20:30:e0:82:c9:e7:4e:42:6c:1d:92:5a:0a:71: b8:92:1c:a3:03:1a:c7:a5:84:06:bc:9a:23:7b:2e:14:69:bf: c8:a7:10:54:94:fc:85:27:67:0e:41:b8:56:85:31:06:9f:42: 3a:d5:7a:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjQwNTAxMDEwMDE4WhcNMjQwNTA4MDEwMDE4WjAYMRYwFAYD VQQDEw02NjMxOTQyMi01NTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6S28Ewg/ER0xHV3egwtQv0WeJ03XYFw4jO6ZNa+HMzLwfBOwX/i7uBNt6v1 +mBBFd4EuzRoFBEvUAorCoJuVm7iBHzE6eQvd8irBRW4+ZLwIhp57yxXFwjSYrwo LTF/ffWB5r8gkkCHklvDCEDICjlHEhi01lNQlbI840OJ/UxoYJmg/1HyEZGLF9sP ISLwbY251stWbeG/Geg1Uyio7Aa1JDAFlhHhb6QDEnqFEuRVY7b9jTn16Cmxb/N/ WI5axxnaV4oAFXgqCfveCVgUogLRdz3uYVvHaMFrdNnr8lbPtMupOBJsZT3TTt7h P6IvTaOqkZE9Ph9xtymvLw+e/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUu7ab3 gTQ+HzhvpFrHPr2jBo+qMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJBimWAiUZNVn4t/VFS3dDyy35s0/0FM0shorimJV5S2YO2rlxQRWz pzgWRYk75JClgRomNIwhTFSL4O6iyniwT/jvT/w4eXY/pwKm6KOaCBdWwM9Vbw9f j0ffWfvS0ik4i1sM1tvPmWoSvvLDoLxXvBS5Hp2kQz99IlQEZZLQgX6cNq7hUlcQ tyGLyP/vpFh+C8imm7zatjuqU6XXC6RnJducSI1zdCznLJG74KXfOzCKO6AMeBZZ gN58yfnZKEtSxWJuVFeEqWFrIDDggsnnTkJsHZJaCnG4khyjAxrHpYQGvJojey4U ab/IpxBUlPyFJ2cOQbhWhTEGn0I61XqZ -----END CERTIFICATE-----Generated at Wed May 1 01:38:28 2024 by rpki-client on console-ams.rpki-client.org