$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: 0uVj0cb4URE9LLbwBCyx+ObftVkJCKWKUufCkfZb91U= Subject key identifier: D6:CE:15:8C:78:D9:42:25:2E:53:88:52:4D:39:CE:AB:D2:52:ED:15 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 05B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 05A7 Signing time: Tue 07 May 2024 00:19:29 +0000 Manifest this update: Tue 07 May 2024 00:19:29 +0000 Manifest next update: Tue 14 May 2024 00:19:29 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: saL/fD1DaU2PfgUooV9k78dBhaojzqZhhM4rXQFBmcI=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: jFnYqzGhAcOoCv3LrTnwAcNObZ+rFp5+5bu5sVza2zU=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: jaH7TvTiRCR0VN9+WpSIw3MSWWWyT2dB3UWe4924gA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1457 (0x5b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: May 7 00:19:29 2024 GMT Not After : May 14 00:19:29 2024 GMT Subject: CN=66397391-05a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ed:84:be:48:fc:c8:9c:19:f1:f0:e2:04:84: f7:2f:a2:aa:3c:f6:ec:fc:57:ae:ea:d1:de:c2:24: fa:a2:43:e1:69:2a:08:de:dd:05:7f:cd:fe:55:75: 82:95:93:6d:c3:66:e9:78:c9:24:7e:83:7f:49:6c: 8e:9c:8b:a8:ff:13:c4:f3:81:7b:67:03:b1:a9:44: 55:b3:c2:e1:b4:d9:58:f5:0d:5a:90:24:6d:17:40: 44:75:fb:5f:f0:01:7a:82:29:57:92:8e:18:44:8b: 56:1a:ab:6d:d3:d6:0e:12:59:37:ba:66:cd:e4:98: 11:2e:92:0d:ff:b2:c6:01:7c:0c:3c:56:b0:9b:df: ec:a1:88:6f:ac:77:d1:a7:28:c3:9a:91:4a:9b:d8: 78:4b:92:3f:a3:51:3d:09:01:c6:45:8c:43:60:03: ca:71:03:a1:57:25:c9:40:e0:e7:4c:09:e5:1f:bc: ef:45:40:ad:7e:1d:5c:dd:a0:12:5f:8a:a6:6a:85: f3:41:c0:5c:04:79:af:13:7c:ba:96:24:8e:20:57: 99:7c:88:bb:09:2c:9c:33:2d:59:5c:1a:a0:44:9f: a1:ad:73:14:56:2e:13:c6:a5:13:07:23:21:08:4f: 88:18:30:22:ad:bb:30:9a:6a:ae:f1:59:b6:37:9d: 57:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:CE:15:8C:78:D9:42:25:2E:53:88:52:4D:39:CE:AB:D2:52:ED:15 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:89:ab:e0:e8:16:f8:bf:1a:fe:38:0f:cc:f4:10:48:39:bc: 27:15:a5:ed:2b:47:b1:0d:3f:e6:32:3b:74:89:ed:2a:22:18: f1:1a:43:a7:15:da:12:8c:55:c6:bc:1c:8f:1e:c2:3c:59:69: 48:8f:89:65:bc:47:be:c3:8e:b5:0d:f3:30:fa:5c:ee:89:d7: bc:c5:f2:07:fc:15:7a:b1:9e:a8:73:7d:48:8f:02:8b:8b:01: 12:69:b4:32:4b:47:4f:e7:c1:a1:60:09:ff:05:55:2e:70:62: 83:04:28:8d:c2:6d:ac:79:ae:14:38:72:49:2a:19:a1:b2:ba: 49:9e:b4:52:e4:d4:72:2a:6a:11:29:29:db:fe:d2:f1:1a:1b: 65:e2:0f:0f:47:f8:83:2b:69:73:82:4d:d8:48:5f:91:a5:a7: 20:a1:1b:bb:4b:7c:88:c6:52:40:84:d0:a7:49:23:5f:46:30: d2:d4:83:87:85:ec:96:10:7c:e3:66:3c:4f:6a:6b:72:c4:ba: 44:d2:ee:c3:fd:6b:9d:4f:11:a6:83:0b:49:2a:0f:ca:3d:62: 71:20:de:e6:aa:91:aa:6b:c0:c9:ff:4d:62:40:c7:fa:00:b3: 7b:fd:56:aa:65:c5:83:33:02:35:5a:bf:04:3c:09:1a:15:2f: 9e:08:9d:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjQwNTA3MDAxOTI5WhcNMjQwNTE0MDAxOTI5WjAYMRYwFAYD VQQDEw02NjM5NzM5MS0wNWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+2Evkj8yJwZ8fDiBIT3L6KqPPbs/Feu6tHewiT6okPhaSoI3t0Ff83+VXWC lZNtw2bpeMkkfoN/SWyOnIuo/xPE84F7ZwOxqURVs8LhtNlY9Q1akCRtF0BEdftf 8AF6gilXko4YRItWGqtt09YOElk3umbN5JgRLpIN/7LGAXwMPFawm9/soYhvrHfR pyjDmpFKm9h4S5I/o1E9CQHGRYxDYAPKcQOhVyXJQODnTAnlH7zvRUCtfh1c3aAS X4qmaoXzQcBcBHmvE3y6liSOIFeZfIi7CSycMy1ZXBqgRJ+hrXMUVi4TxqUTByMh CE+IGDAirbswmmqu8Vm2N51XzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbOFYx4 2UIlLlOIUk05zqvSUu0VMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3iavg6Bb4vxr+OA/M9BBIObwnFaXtK0exDT/mMjt0ie0qIhjxGkOn FdoSjFXGvByPHsI8WWlIj4llvEe+w461DfMw+lzuide8xfIH/BV6sZ6oc31IjwKL iwESabQyS0dP58GhYAn/BVUucGKDBCiNwm2sea4UOHJJKhmhsrpJnrRS5NRyKmoR KSnb/tLxGhtl4g8PR/iDK2lzgk3YSF+RpacgoRu7S3yIxlJAhNCnSSNfRjDS1IOH heyWEHzjZjxPamtyxLpE0u7D/WudTxGmgwtJKg/KPWJxIN7mqpGqa8DJ/01iQMf6 ALN7/VaqZcWDMwI1Wr8EPAkaFS+eCJ0z -----END CERTIFICATE-----Generated at Tue May 7 01:58:16 2024 by rpki-client on console-fra.rpki-client.org