$ rpki-client -vvf rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft File: LToKI8WbTfbb4BpMXzt8i___cA0.mft (raw, json) Hash identifier: 7FqywhGpIEvlLQty/R2R8uHhoPfB1Qrb8D3XaGo0tDs= Subject key identifier: 7C:AB:52:9E:72:6E:8D:4D:9E:30:01:79:4F:90:B2:62:83:86:7D:CC Authority key identifier: 2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D Certificate issuer: /CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft Manifest number: 0156 Signing time: Sun 19 May 2024 04:53:43 +0000 Manifest this update: Sun 19 May 2024 04:53:43 +0000 Manifest next update: Sun 26 May 2024 04:53:43 +0000 Files and hashes: 1: LToKI8WbTfbb4BpMXzt8i___cA0.crl (hash: mEexUn108wOGb/lns/OcT+jseZXkRUCgFPNJDVDndoE=) 2: C202E82834B611ED815AAB32C4F9AE02.roa (hash: nasisBMYwJSZmLoM5QOPLrWdu70mhzrVZvVqWUm5F1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D0BC/serialNumber=2D3A0A23C59B4DF6DBE01A4C5F3B7C8BFFFF700D Validity Not Before: May 19 04:53:43 2024 GMT Not After : May 26 04:53:43 2024 GMT Subject: CN=664985d7-ff44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:15:09:05:6f:f7:23:53:0b:39:59:91:fe: be:ce:b1:88:5a:12:d7:48:ee:82:4a:55:65:2d:7c: b0:4c:92:16:27:75:b5:c5:a0:7d:5e:13:ec:69:2d: 62:9e:9a:43:9c:66:59:a5:c8:3f:cc:12:f4:34:a9: c7:fa:ff:62:a1:02:20:6f:6c:6e:12:92:4a:95:6c: 5d:6e:1f:f6:59:d6:e9:15:43:9f:04:83:54:56:de: 36:99:aa:2e:b1:0e:9b:fb:85:26:92:55:b7:fe:60: 0a:5a:17:e1:28:74:7f:7e:70:95:b6:7d:19:31:3c: 1a:11:ec:f3:1a:ac:15:f9:7c:fb:3d:c9:da:44:af: 55:f1:5a:f3:44:e9:b9:64:72:6b:14:9a:c0:e0:d3: 6b:6b:f2:bd:ab:f2:7d:20:1b:0c:8a:ad:7a:e4:21: a2:68:b7:b6:35:f0:e4:17:04:0c:f2:f5:e9:c7:ae: 50:b2:1f:ac:a9:b6:1a:1c:17:2f:01:10:48:e6:93: 62:75:98:c6:cf:19:d6:00:45:71:2f:59:62:37:84: 85:0e:07:70:ee:dd:0d:0c:4f:d1:09:f3:84:9b:1f: c3:1b:2d:c0:08:87:3a:99:15:4f:96:2f:b3:04:62: eb:b5:79:b7:ca:3f:33:dd:1e:98:b8:87:76:a4:39: bd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AB:52:9E:72:6E:8D:4D:9E:30:01:79:4F:90:B2:62:83:86:7D:CC X509v3 Authority Key Identifier: keyid:2D:3A:0A:23:C5:9B:4D:F6:DB:E0:1A:4C:5F:3B:7C:8B:FF:FF:70:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LToKI8WbTfbb4BpMXzt8i___cA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D0BC/2024B44834B411ED9D70EF30C4F9AE02/LToKI8WbTfbb4BpMXzt8i___cA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8f:08:62:1e:89:20:6a:f7:f6:32:d6:8a:95:dd:46:dc:fb: 66:81:e7:f4:19:1b:f8:92:3c:05:e7:de:e2:29:e7:84:40:1c: f6:ed:24:9f:ef:84:dd:16:dc:31:39:61:0c:9e:aa:45:c1:06: 34:6f:66:7c:79:77:9f:94:cd:57:a0:d8:34:f9:71:08:1c:af: 5b:7d:0c:46:29:98:f3:00:c2:c9:5f:64:cf:3c:4d:40:2b:94: f7:30:72:dc:0e:82:d5:04:13:61:af:22:ea:5c:7b:09:e0:b3: 3a:0c:f5:ef:1d:6d:d9:48:c1:fc:c4:c9:7f:73:a0:6f:35:9a: cd:80:ad:f9:14:cb:65:00:46:fe:9e:2a:84:c3:9a:b9:aa:de: 53:bb:98:90:5a:ee:8c:f0:ce:4a:c7:7d:42:b3:1b:dc:32:6a: ab:39:50:73:a4:db:27:de:e8:57:17:d9:27:e9:53:2c:3c:d3: 2f:7f:ff:f4:d3:69:4f:8a:ae:fd:00:26:af:08:fe:76:ba:fa: 77:79:20:d0:71:85:b5:a2:ac:e5:ca:ff:e8:87:26:4c:03:ad: 84:fa:21:87:2f:2b:d1:2b:db:f6:68:1b:09:50:25:75:e7:09: ed:e8:2f:67:33:6b:35:06:3d:e5:6b:1e:06:d9:bb:bf:d7:4b: e0:00:b5:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQwQkMxMTAvBgNVBAUTKDJEM0EwQTIzQzU5QjRERjZEQkUwMUE0QzVGM0I3QzhC RkZGRjcwMEQwHhcNMjQwNTE5MDQ1MzQzWhcNMjQwNTI2MDQ1MzQzWjAYMRYwFAYD VQQDEw02NjQ5ODVkNy1mZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+EVCQVv9yNTCzlZkf6+zrGIWhLXSO6CSlVlLXywTJIWJ3W1xaB9XhPsaS1i nppDnGZZpcg/zBL0NKnH+v9ioQIgb2xuEpJKlWxdbh/2WdbpFUOfBINUVt42maou sQ6b+4UmklW3/mAKWhfhKHR/fnCVtn0ZMTwaEezzGqwV+Xz7PcnaRK9V8VrzROm5 ZHJrFJrA4NNra/K9q/J9IBsMiq165CGiaLe2NfDkFwQM8vXpx65Qsh+sqbYaHBcv ARBI5pNidZjGzxnWAEVxL1liN4SFDgdw7t0NDE/RCfOEmx/DGy3ACIc6mRVPli+z BGLrtXm3yj8z3R6YuId2pDm9wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyrUp5y bo1NnjABeU+QsmKDhn3MMB8GA1UdIwQYMBaAFC06CiPFm0322+AaTF87fIv//3AN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDBCQy8yMDI0QjQ0ODM0 QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRmYmI0QnBNWHp0OGlfX19j QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUb0tJOFdiVGZiYjRCcE1YenQ4aV9fX2NBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDBCQy8yMDI0QjQ0ODM0QjQxMUVEOUQ3MEVGMzBDNEY5QUUwMi9MVG9LSThXYlRm YmI0QnBNWHp0OGlfX19jQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0jwhiHokgavf2MtaKld1G3Ptmgef0GRv4kjwF597iKeeEQBz27SSf 74TdFtwxOWEMnqpFwQY0b2Z8eXeflM1XoNg0+XEIHK9bfQxGKZjzAMLJX2TPPE1A K5T3MHLcDoLVBBNhryLqXHsJ4LM6DPXvHW3ZSMH8xMl/c6BvNZrNgK35FMtlAEb+ niqEw5q5qt5Tu5iQWu6M8M5Kx31CsxvcMmqrOVBzpNsn3uhXF9kn6VMsPNMvf//0 02lPiq79ACavCP52uvp3eSDQcYW1oqzlyv/ohyZMA62E+iGHLyvRK9v2aBsJUCV1 5wnt6C9nM2s1Bj3lax4G2bu/10vgALXI -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org