$ rpki-client -vvf rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft File: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft (raw, json) Hash identifier: ZkTtoME85vihi5Pn5zW1xIqIU1cYD7eviuCjqGIPT7Y= Subject key identifier: 4B:2D:CA:2C:A4:90:13:FC:DD:6B:24:B7:3A:77:7F:67:F8:2D:52:17 Authority key identifier: 95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64 Certificate issuer: /CN=A9132457/serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft Manifest number: D3 Signing time: Sun 19 May 2024 06:11:17 +0000 Manifest this update: Sun 19 May 2024 06:11:16 +0000 Manifest next update: Sun 26 May 2024 06:11:16 +0000 Files and hashes: 1: lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl (hash: +0N1Fj9PWT6bFR3MIw9nJbvWf3fDvx6G2NBDh67JC4o=) 2: 8E10E282D81B11EDAB75C13EC4F9AE02.roa (hash: ZFOIV6D/1mwtehXiBOGpEO/D359oTLwlftiwuF6vQmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132457/serialNumber=9528160E4C304E1307DBF66F1901632ADF9F1A64 Validity Not Before: May 19 06:11:16 2024 GMT Not After : May 26 06:11:16 2024 GMT Subject: CN=66499805-9799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a8:d3:12:f3:91:89:e9:96:f2:38:6f:65:ea: 36:24:26:fc:61:ad:e5:cc:8c:7a:1a:93:d2:17:3c: 10:fe:00:5a:67:62:a4:fc:26:c5:ab:43:1b:65:ee: d3:31:e8:35:01:77:4f:86:ae:e5:bb:0e:35:b3:01: 34:a5:15:6a:14:92:3b:c3:87:22:a7:b6:fe:74:91: d3:2c:48:64:64:14:f9:11:1a:eb:7d:2f:de:9b:10: f2:e4:90:4c:b0:70:79:e2:fa:13:1a:16:51:2d:0a: 9e:a2:90:4d:2d:ee:6e:bf:01:d5:f4:31:4b:0d:87: 04:46:aa:6e:8c:fa:b7:b3:24:c1:6e:12:87:98:1b: b7:7f:22:54:aa:65:f1:44:6e:03:3a:27:0c:80:ef: d1:5a:cb:6c:9b:a2:47:61:0c:b0:e6:b1:d0:88:26: a7:04:ee:52:ae:a9:43:17:4e:96:57:e3:1d:97:35: 34:34:e4:d2:e2:63:40:0f:65:4a:47:b5:b3:6c:78: fa:a8:aa:80:86:60:59:79:ca:28:87:25:4d:15:83: b8:ce:0b:01:9a:bb:d6:b6:3c:a3:3c:d5:22:83:ca: 49:47:20:d9:31:ef:7e:e0:70:5e:10:59:ba:03:80: 32:36:29:74:f4:ab:d9:2c:cf:14:2f:8c:67:db:97: ff:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:2D:CA:2C:A4:90:13:FC:DD:6B:24:B7:3A:77:7F:67:F8:2D:52:17 X509v3 Authority Key Identifier: keyid:95:28:16:0E:4C:30:4E:13:07:DB:F6:6F:19:01:63:2A:DF:9F:1A:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132457/8AE7392ED81811EDBD650F3DC4F9AE02/lSgWDkwwThMH2_ZvGQFjKt-fGmQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:2f:c7:af:32:80:c9:b2:a8:fa:23:d2:49:fa:a3:f4:92:cf: 7d:93:a9:7a:9d:9f:19:2c:3b:7d:fb:38:8e:25:7a:04:72:ce: 30:0d:28:23:69:bd:78:73:60:5c:a5:fc:9c:0e:50:ee:77:02: 04:ac:3f:aa:04:7d:64:63:04:4b:be:e2:f5:90:07:d3:12:76: c2:29:7d:b0:87:da:70:23:61:b1:17:55:69:36:79:18:7d:4d: fb:ce:25:27:88:11:7f:44:63:8d:ca:91:1d:c2:e5:d8:27:1b: 10:b5:03:a4:41:39:4c:81:87:92:cf:c5:34:ef:78:db:e4:77: 6d:00:9f:59:55:37:4a:14:82:af:ff:86:ce:24:ed:ef:d6:aa: 41:ec:6c:12:7a:f3:37:72:b9:6e:85:79:b0:f3:61:1a:91:89: e0:a1:9b:9c:47:09:79:5d:8c:fa:05:da:a5:04:76:14:a6:8a: ab:81:8e:eb:11:fe:27:3f:0a:57:d8:e7:24:41:d5:20:8e:03: de:63:90:0a:64:a4:42:28:b9:81:63:0f:9e:9a:bf:95:42:e7: 05:a4:92:c2:88:4c:52:1f:ac:b3:cf:53:f9:66:ca:97:df:ef: fa:4d:5f:85:6d:33:52:87:e1:d3:5c:53:98:7c:a6:6c:2b:fe: 68:89:29:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0NTcxMTAvBgNVBAUTKDk1MjgxNjBFNEMzMDRFMTMwN0RCRjY2RjE5MDE2MzJB REY5RjFBNjQwHhcNMjQwNTE5MDYxMTE2WhcNMjQwNTI2MDYxMTE2WjAYMRYwFAYD VQQDEw02NjQ5OTgwNS05Nzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ajTEvORiemW8jhvZeo2JCb8Ya3lzIx6GpPSFzwQ/gBaZ2Kk/CbFq0MbZe7T Meg1AXdPhq7luw41swE0pRVqFJI7w4cip7b+dJHTLEhkZBT5ERrrfS/emxDy5JBM sHB54voTGhZRLQqeopBNLe5uvwHV9DFLDYcERqpujPq3syTBbhKHmBu3fyJUqmXx RG4DOicMgO/RWstsm6JHYQyw5rHQiCanBO5SrqlDF06WV+MdlzU0NOTS4mNAD2VK R7WzbHj6qKqAhmBZecoohyVNFYO4zgsBmrvWtjyjPNUig8pJRyDZMe9+4HBeEFm6 A4AyNil09KvZLM8UL4xn25f/QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEstyiyk kBP83Wsktzp3f2f4LVIXMB8GA1UdIwQYMBaAFJUoFg5MME4TB9v2bxkBYyrfnxpk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjQ1Ny84QUU3MzkyRUQ4 MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1RoTUgyX1p2R1FGakt0LWZH bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTZ1dEa3d3VGhNSDJfWnZHUUZqS3QtZkdtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjQ1Ny84QUU3MzkyRUQ4MTgxMUVEQkQ2NTBGM0RDNEY5QUUwMi9sU2dXRGt3d1Ro TUgyX1p2R1FGakt0LWZHbVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoL8evMoDJsqj6I9JJ+qP0ks99k6l6nZ8ZLDt9+ziOJXoEcs4wDSgj ab14c2BcpfycDlDudwIErD+qBH1kYwRLvuL1kAfTEnbCKX2wh9pwI2GxF1VpNnkY fU37ziUniBF/RGONypEdwuXYJxsQtQOkQTlMgYeSz8U073jb5HdtAJ9ZVTdKFIKv /4bOJO3v1qpB7GwSevM3crluhXmw82EakYngoZucRwl5XYz6BdqlBHYUpoqrgY7r Ef4nPwpX2OckQdUgjgPeY5AKZKRCKLmBYw+emr+VQucFpJLCiExSH6yzz1P5ZsqX 3+/6TV+FbTNSh+HTXFOYfKZsK/5oiSmR -----END CERTIFICATE-----Generated at Sun May 19 07:40:38 2024 by rpki-client on console-fra.rpki-client.org