$ rpki-client -vvf rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft File: lFmgev60b3mSRf7CNW08usm-2Ig.mft (raw, json) Hash identifier: nARVHJWv8S4DdxartQr2X6vBFxqUaHN46+rSBntjpHA= Subject key identifier: 63:A1:B0:64:D1:A5:BC:7C:07:40:CD:97:C8:A7:DB:24:E2:09:87:6E Authority key identifier: 94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 Certificate issuer: /CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft Manifest number: 5D Signing time: Sun 19 May 2024 07:45:14 +0000 Manifest this update: Sun 19 May 2024 07:45:14 +0000 Manifest next update: Sun 26 May 2024 07:45:14 +0000 Files and hashes: 1: lFmgev60b3mSRf7CNW08usm-2Ig.crl (hash: wdTWNUL0Ixd78tHenFQtZ7vzUN4i/VczxCloVzVRr+Y=) 2: 81A901FA8A0411EEA251F746C4F9AE02.roa (hash: LQjpde7ZOitEWCJ8Fyab2NYRAI50nPTcOZ5B3mS/eu8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EE4D/serialNumber=9459A07AFEB46F799245FEC2356D3CBAC9BED888 Validity Not Before: May 19 07:45:14 2024 GMT Not After : May 26 07:45:14 2024 GMT Subject: CN=6649ae0a-11b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:a4:57:3d:3c:47:72:e4:13:bd:f9:7c:f7: 01:2c:14:44:31:76:c5:d8:71:e0:1b:ff:0b:51:1f: 1a:93:1c:66:99:94:df:cd:3d:1a:c0:19:c5:79:b1: dc:4d:46:50:7f:1c:88:b0:0f:0f:b6:3d:4a:01:69: b6:ef:d3:62:80:57:a3:12:91:7e:85:a1:9b:b9:26: f5:f5:c1:e3:ed:9f:74:a4:d4:c1:7c:fc:ec:92:8c: 13:56:22:d4:62:ff:3a:97:9c:45:9b:28:33:6c:db: c6:b2:c2:e0:ec:24:44:5a:00:eb:61:2b:6c:44:e2: b1:f6:44:24:06:6e:f7:ec:de:cb:8a:3f:97:79:c6: bf:4b:c0:5f:b8:26:51:93:ad:7b:af:36:7c:91:83: 8a:47:89:cf:1b:14:20:f3:47:45:a8:dd:7d:d8:c6: 6a:1d:0d:42:30:82:11:b8:ab:cb:5e:7f:87:8a:ce: e5:f2:73:95:c0:7d:03:49:b0:5a:04:61:ad:47:6b: 9b:b4:a4:c9:f1:0d:72:d2:5f:cb:89:be:21:95:c6: dd:74:ff:6a:2c:a1:5a:69:a8:f0:16:a3:43:98:e1: f7:16:76:42:ee:9a:3d:e7:54:3e:f0:62:95:65:62: 5d:48:06:8d:f7:79:0e:a1:05:0f:c3:f9:4c:d2:b4: 81:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A1:B0:64:D1:A5:BC:7C:07:40:CD:97:C8:A7:DB:24:E2:09:87:6E X509v3 Authority Key Identifier: keyid:94:59:A0:7A:FE:B4:6F:79:92:45:FE:C2:35:6D:3C:BA:C9:BE:D8:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lFmgev60b3mSRf7CNW08usm-2Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EE4D/523FDA808A0211EEB289032CC4F9AE02/lFmgev60b3mSRf7CNW08usm-2Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:31:b1:f9:73:2d:53:09:d2:65:f0:d2:79:36:72:01:7e:de: 65:be:1f:46:d9:b3:51:98:8c:44:b5:56:b5:a0:1e:61:60:37: 98:51:48:b3:27:ca:4e:69:63:77:a9:52:de:0d:b2:52:83:30: 43:e8:42:82:5a:e0:0b:7b:00:f2:98:e4:d3:9c:d0:80:8f:65: d1:46:df:7f:e6:4c:c7:37:0b:9e:b9:55:14:9c:39:9f:ba:24: 64:8e:d6:fd:d1:51:c3:fe:ef:43:6b:7f:d8:92:ad:ca:58:13: e9:62:f7:c2:cc:ac:b2:3d:fa:32:b5:dc:98:c8:38:ff:4b:5b: 0e:cc:56:62:ef:74:a4:ba:25:ea:14:8e:0e:db:d9:1e:cf:94: f6:6c:0a:35:d7:a1:d2:d3:3a:79:26:7f:28:a9:69:0f:ce:d9: c2:5b:1d:3a:87:5c:87:c3:11:fc:44:4d:a7:77:e3:07:e6:4c: 68:2d:72:1d:60:93:24:de:71:fe:5b:23:d9:93:05:4e:48:05: dc:9e:92:77:d7:dc:f9:93:e3:24:2d:e0:d8:cf:ca:07:44:c7: 2f:af:1e:7d:57:91:26:38:c0:ee:68:38:02:b9:b3:a3:d0:5f: ee:ef:71:8f:b7:8f:62:51:76:8b:3c:16:57:d2:92:43:7a:e5: 81:24:c1:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RUU0RDExMC8GA1UEBRMoOTQ1OUEwN0FGRUI0NkY3OTkyNDVGRUMyMzU2RDNDQkFD OUJFRDg4ODAeFw0yNDA1MTkwNzQ1MTRaFw0yNDA1MjYwNzQ1MTRaMBgxFjAUBgNV BAMTDTY2NDlhZTBhLTExYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNE6RXPTxHcuQTvfl89wEsFEQxdsXYceAb/wtRHxqTHGaZlN/NPRrAGcV5sdxN RlB/HIiwDw+2PUoBabbv02KAV6MSkX6FoZu5JvX1wePtn3Sk1MF8/OySjBNWItRi /zqXnEWbKDNs28aywuDsJERaAOthK2xE4rH2RCQGbvfs3suKP5d5xr9LwF+4JlGT rXuvNnyRg4pHic8bFCDzR0Wo3X3YxmodDUIwghG4q8tef4eKzuXyc5XAfQNJsFoE Ya1Ha5u0pMnxDXLSX8uJviGVxt10/2osoVppqPAWo0OY4fcWdkLumj3nVD7wYpVl Yl1IBo33eQ6hBQ/D+UzStIFLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY6GwZNGl vHwHQM2XyKfbJOIJh24wHwYDVR0jBBgwFoAUlFmgev60b3mSRf7CNW08usm+2Igw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFRTRELzUyM0ZEQTgwOEEw MjExRUVCMjg5MDMyQ0M0RjlBRTAyL2xGbWdldjYwYjNtU1JmN0NOVzA4dXNtLTJJ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbEZtZ2V2NjBiM21TUmY3Q05XMDh1c20tMklnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF RTRELzUyM0ZEQTgwOEEwMjExRUVCMjg5MDMyQ0M0RjlBRTAyL2xGbWdldjYwYjNt U1JmN0NOVzA4dXNtLTJJZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHoxsflzLVMJ0mXw0nk2cgF+3mW+H0bZs1GYjES1VrWgHmFgN5hRSLMn yk5pY3epUt4NslKDMEPoQoJa4At7APKY5NOc0ICPZdFG33/mTMc3C565VRScOZ+6 JGSO1v3RUcP+70Nrf9iSrcpYE+li98LMrLI9+jK13JjIOP9LWw7MVmLvdKS6JeoU jg7b2R7PlPZsCjXXodLTOnkmfyipaQ/O2cJbHTqHXIfDEfxETad34wfmTGgtch1g kyTecf5bI9mTBU5IBdyeknfX3PmT4yQt4NjPygdExy+vHn1XkSY4wO5oOAK5s6PQ X+7vcY+3j2JRdos8FlfSkkN65YEkwTY= -----END CERTIFICATE-----Generated at Sun May 19 08:26:42 2024 by rpki-client on console-fra.rpki-client.org