$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: kgMcvkIueJH6l/FqW1kNEArGYXs0YHrNfBuJcyI2YdY= Subject key identifier: 5A:21:4C:43:7B:6C:8F:53:AA:9F:76:CE:20:6A:13:28:87:6F:E2:E0 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 10CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 10BF Signing time: Sat 18 May 2024 17:54:48 +0000 Manifest this update: Sat 18 May 2024 17:54:48 +0000 Manifest next update: Sat 25 May 2024 17:54:48 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: tBhkM7Lql0CnyIaStJ10pcfDftt6RXTd3OfEkfhjFaw=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: J/CivEwQllds1vZh7Qpd8MrT8E7MxLEHwHoWEk2nUKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4298 (0x10ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: May 18 17:54:48 2024 GMT Not After : May 25 17:54:48 2024 GMT Subject: CN=6648eb68-b0fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:75:fb:b3:8c:92:ff:7e:3c:26:b6:12:9e:b4: cc:ea:96:01:23:b4:08:45:28:48:01:71:30:2e:24: 81:31:ad:fb:9f:3e:1e:41:20:4c:e5:d6:2e:6b:84: e0:88:45:96:4d:92:f9:47:c2:ce:d5:51:ec:74:b2: 34:a7:64:07:94:97:99:89:b7:81:89:95:ac:1b:a1: 94:6b:88:69:1c:f7:a1:3e:c1:06:1a:fa:86:c3:89: bb:6c:2f:86:78:d7:ca:b0:dc:42:cb:03:af:35:03: 61:1a:c5:1a:cf:23:4f:55:8a:ae:1c:79:b6:29:77: f9:a2:f5:9e:f8:aa:81:c4:3a:e0:e3:06:76:69:e5: ef:e0:8f:9d:51:50:62:ea:da:2d:55:e3:0f:f3:cf: b6:fa:50:d8:bf:38:e8:f2:88:f8:b9:57:14:06:d8: 74:96:92:3a:89:43:4e:cd:ef:eb:db:f7:f7:49:eb: e6:fb:0c:30:81:52:26:af:da:48:d5:13:d5:a2:43: 58:66:ab:e0:fb:4f:29:15:e2:76:c8:5c:ab:ff:20: ee:9e:30:10:76:fd:cd:c2:45:3d:d8:51:25:f8:65: 1a:4b:ab:97:4a:77:e5:94:96:0e:be:85:86:1c:af: 77:b4:f7:19:06:20:45:d9:e7:69:e5:45:f3:fc:2a: 2a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:21:4C:43:7B:6C:8F:53:AA:9F:76:CE:20:6A:13:28:87:6F:E2:E0 X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:68:7f:a4:79:7c:09:39:ca:1b:73:dc:6e:6b:91:a8:93:4e: 14:e2:49:9d:7d:cc:0b:fa:78:de:b8:64:7b:5b:ab:29:ff:21: af:c9:a3:07:5f:bb:3b:83:8e:07:00:06:86:4a:c8:9d:4a:90: 4c:7c:51:c7:bc:07:27:10:d4:46:f5:cd:c5:ae:c3:a8:55:a8: 73:bc:92:5d:ba:72:c8:c7:91:f6:f1:3a:86:ad:23:d4:d3:80: f6:c8:03:aa:6f:60:17:76:68:c1:a9:2b:b8:ef:a2:52:05:83: 86:37:5f:83:b6:11:fb:ee:05:b3:44:db:0e:bc:1f:42:b8:af: d1:10:c7:59:a4:16:7f:45:9e:44:d5:59:18:cd:4a:b0:f4:ad: 80:f3:16:3e:ed:2b:2d:03:b3:44:0d:30:8c:aa:5a:92:df:08: 06:81:77:2e:29:71:ef:c1:64:6b:8a:77:89:18:c1:96:4a:dc: 7a:e8:4c:b9:0b:84:bd:70:fc:70:8e:93:b9:f1:72:83:80:58: aa:a8:3c:70:73:0a:07:2b:90:2d:d6:a4:d9:90:6d:f2:42:77: 17:a5:cb:7c:60:89:a1:2d:46:32:5b:90:b8:25:35:83:54:2e: 56:82:b3:74:d2:50:d5:ed:db:c2:ab:70:2e:5b:e5:8b:93:e8: ea:de:0c:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjQwNTE4MTc1NDQ4WhcNMjQwNTI1MTc1NDQ4WjAYMRYwFAYD VQQDEw02NjQ4ZWI2OC1iMGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3X7s4yS/348JrYSnrTM6pYBI7QIRShIAXEwLiSBMa37nz4eQSBM5dYua4Tg iEWWTZL5R8LO1VHsdLI0p2QHlJeZibeBiZWsG6GUa4hpHPehPsEGGvqGw4m7bC+G eNfKsNxCywOvNQNhGsUazyNPVYquHHm2KXf5ovWe+KqBxDrg4wZ2aeXv4I+dUVBi 6totVeMP88+2+lDYvzjo8oj4uVcUBth0lpI6iUNOze/r2/f3Sevm+wwwgVImr9pI 1RPVokNYZqvg+08pFeJ2yFyr/yDunjAQdv3NwkU92FEl+GUaS6uXSnfllJYOvoWG HK93tPcZBiBF2edp5UXz/Coq6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFohTEN7 bI9Tqp92ziBqEyiHb+LgMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVaH+keXwJOcobc9xua5Gok04U4kmdfcwL+njeuGR7W6sp/yGvyaMH X7s7g44HAAaGSsidSpBMfFHHvAcnENRG9c3FrsOoVahzvJJdunLIx5H28TqGrSPU 04D2yAOqb2AXdmjBqSu476JSBYOGN1+DthH77gWzRNsOvB9CuK/REMdZpBZ/RZ5E 1VkYzUqw9K2A8xY+7SstA7NEDTCMqlqS3wgGgXcuKXHvwWRrineJGMGWStx66Ey5 C4S9cPxwjpO58XKDgFiqqDxwcwoHK5At1qTZkG3yQncXpct8YImhLUYyW5C4JTWD VC5WgrN00lDV7dvCq3AuW+WLk+jq3gxR -----END CERTIFICATE-----Generated at Sat May 18 19:15:23 2024 by rpki-client on console-ams.rpki-client.org