$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: h4yxVbPCKrS0J2MjKSPqGp6R5JcI4yorZVcLlyhaiHY= Subject key identifier: B3:8A:FB:75:B1:A0:B9:54:B9:37:5B:8B:14:A3:CD:C1:31:F6:FA:EB Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0171 Signing time: Sun 19 May 2024 04:48:23 +0000 Manifest this update: Sun 19 May 2024 04:48:22 +0000 Manifest next update: Sun 26 May 2024 04:48:22 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: GE4B9JnoakBY3aSlyGWwMHCtnKPLWfmMERP7z+4z6Xo=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: bAiZLBeU2ToaNCed+ZETD14Ie0GP2OmlyYO6Gbm3NSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: May 19 04:48:22 2024 GMT Not After : May 26 04:48:22 2024 GMT Subject: CN=66498496-e659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:76:99:bb:68:9d:02:8d:f4:a0:a1:55:9c: 62:24:ee:95:88:9e:33:c7:bf:e1:b6:9f:6f:b7:65: bf:14:35:0a:34:aa:5e:e0:91:9b:8c:73:e1:67:a3: a0:72:9f:72:20:63:10:89:92:54:3a:a5:93:de:97: 39:d0:16:2e:e4:6a:6f:4c:98:61:38:04:8c:48:e3: 83:e1:43:33:58:b9:25:38:63:48:ef:a9:d8:4c:64: cb:7b:00:d0:16:42:95:46:ff:b3:da:42:10:7c:cc: 0b:cf:af:1b:bb:ec:43:c5:32:1f:fa:15:ab:70:4b: cd:2a:98:53:ac:f1:20:d7:1d:3f:ea:0a:37:38:52: 8c:e5:1f:d0:f1:96:a0:c1:e7:bb:03:ba:5a:53:37: fd:8e:12:45:99:37:1b:b2:fc:0d:3b:2a:a5:54:37: 34:9b:bd:1b:4b:ca:2e:3f:4f:47:56:40:10:c4:49: f2:9b:f8:47:be:5b:a3:da:41:a0:cb:1f:66:fc:fa: 92:93:38:10:df:53:cf:75:92:02:07:ff:35:c6:53: 55:79:5c:33:24:3a:3e:09:51:9e:8a:75:7a:60:cc: 6d:b4:87:98:a7:47:35:c3:cf:1c:22:4b:22:36:30: c8:ae:25:d8:e9:2c:dd:29:5c:66:41:83:cf:25:21: f0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8A:FB:75:B1:A0:B9:54:B9:37:5B:8B:14:A3:CD:C1:31:F6:FA:EB X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:91:68:01:f1:58:89:c8:51:1b:b7:7a:a1:a3:7a:c5:9c:69: fb:2f:46:d5:be:fb:da:84:83:1d:54:fe:43:e7:97:98:1d:e1: 49:42:b9:fc:96:15:66:65:d6:cf:e5:97:35:b3:98:21:09:e7: 76:8f:ad:42:5e:9d:35:10:41:04:ab:ef:09:30:77:7d:02:bd: db:53:5a:60:11:19:64:8c:46:f9:87:7f:33:2c:60:5d:85:8e: 2d:9d:d0:8d:b9:2e:da:2e:df:eb:4f:69:32:b9:62:b3:a6:a6: 1a:92:f3:14:8c:59:aa:a5:49:a3:96:17:05:d0:50:7d:3d:34: a5:67:a5:fb:a4:e7:9e:85:4c:a7:4f:97:54:7b:c8:97:6b:95: 66:fd:28:f7:d5:1b:08:89:d0:05:43:8a:e2:14:2e:c2:b8:64: 3d:39:6b:d7:6a:c2:9c:8b:07:73:d2:df:64:36:02:c0:a2:b4: 75:eb:30:8f:dc:83:6d:e1:ef:10:4d:f9:66:c2:48:29:93:6a: 85:e8:51:f7:11:c2:f4:6d:03:a2:c8:1c:ea:30:a2:c1:5c:a7: 3c:46:34:2d:d7:3a:9f:48:79:5c:ee:fe:fa:e6:ba:e4:63:98: f9:05:75:5d:22:a3:65:be:cb:28:1f:38:15:90:13:28:93:2c: f0:46:ac:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjQwNTE5MDQ0ODIyWhcNMjQwNTI2MDQ0ODIyWjAYMRYwFAYD VQQDEw02NjQ5ODQ5Ni1lNjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfl2mbtonQKN9KChVZxiJO6ViJ4zx7/htp9vt2W/FDUKNKpe4JGbjHPhZ6Og cp9yIGMQiZJUOqWT3pc50BYu5GpvTJhhOASMSOOD4UMzWLklOGNI76nYTGTLewDQ FkKVRv+z2kIQfMwLz68bu+xDxTIf+hWrcEvNKphTrPEg1x0/6go3OFKM5R/Q8Zag wee7A7paUzf9jhJFmTcbsvwNOyqlVDc0m70bS8ouP09HVkAQxEnym/hHvluj2kGg yx9m/PqSkzgQ31PPdZICB/81xlNVeVwzJDo+CVGeinV6YMxttIeYp0c1w88cIksi NjDIriXY6SzdKVxmQYPPJSHwYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOK+3Wx oLlUuTdbixSjzcEx9vrrMB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCskWgB8ViJyFEbt3qho3rFnGn7L0bVvvvahIMdVP5D55eYHeFJQrn8 lhVmZdbP5Zc1s5ghCed2j61CXp01EEEEq+8JMHd9Ar3bU1pgERlkjEb5h38zLGBd hY4tndCNuS7aLt/rT2kyuWKzpqYakvMUjFmqpUmjlhcF0FB9PTSlZ6X7pOeehUyn T5dUe8iXa5Vm/Sj31RsIidAFQ4riFC7CuGQ9OWvXasKciwdz0t9kNgLAorR16zCP 3INt4e8QTflmwkgpk2qF6FH3EcL0bQOiyBzqMKLBXKc8RjQt1zqfSHlc7v765rrk Y5j5BXVdIqNlvssoHzgVkBMokyzwRqz1 -----END CERTIFICATE-----Generated at Sun May 19 05:48:49 2024 by rpki-client on console-fra.rpki-client.org