$ rpki-client -vvf rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft File: l5f3hScG7hxCxopeRQtXL47lCBg.mft (raw, json) Hash identifier: tJKZUc2h/nCeozEn2hZlTZdA9ZusvAFLq3nG0Vhj3B8= Subject key identifier: 75:BE:A0:5C:5E:EA:70:F5:AC:C7:64:93:67:F3:21:38:1E:D9:1C:69 Authority key identifier: 97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 Certificate issuer: /CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Certificate serial: 094C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft Manifest number: 0946 Signing time: Sat 18 May 2024 21:06:00 +0000 Manifest this update: Sat 18 May 2024 21:05:59 +0000 Manifest next update: Sat 25 May 2024 21:05:59 +0000 Files and hashes: 1: l5f3hScG7hxCxopeRQtXL47lCBg.crl (hash: bRok1SEoHTdvWHjZIWKHy3VfrEoUTinP7CWus8APlWc=) 2: 1EDD32B274BE11EA97202132C4F9AE02.roa (hash: JqF51wPgFYJ7/1JQa4bjka146YP84yRB+gx/lfzcoqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2380 (0x94c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149063/serialNumber=9797F7852706EE1C42C68A5E450B572F8EE50818 Validity Not Before: May 18 21:05:59 2024 GMT Not After : May 25 21:05:59 2024 GMT Subject: CN=66491838-d0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:15:17:b3:08:cc:4e:b1:38:d9:42:90:bf:6c: ca:66:60:19:de:80:33:15:35:9f:55:a0:9e:8e:c7: 56:30:4d:9f:58:7f:27:b8:de:43:e6:86:7b:a0:d0: 53:84:b8:6c:7c:9c:9b:e2:c3:b6:8f:65:d5:35:38: 1a:ab:17:68:d7:9a:c4:14:e0:2f:d1:e1:d5:b3:28: 63:57:6d:fd:50:86:f8:9c:5f:ae:63:e7:b1:30:93: 4b:3d:ed:c9:a8:4b:de:83:91:de:97:13:8b:02:a0: 62:0f:c8:81:ce:7b:86:69:be:85:9d:46:80:62:fc: 4d:bf:e5:be:c5:6b:6d:3e:86:f6:bf:e4:f6:a4:32: 1d:81:4f:8d:47:6c:a5:07:96:18:49:21:21:bc:c2: d2:ca:e6:41:ab:83:3e:36:dd:ac:6a:ce:0e:d2:0a: 13:2f:d9:1d:fc:29:45:52:e5:53:6b:5c:82:59:c9: 14:f5:1d:a4:f1:6d:00:f1:20:90:b6:a2:d2:54:5a: 4b:12:dc:76:85:e1:d1:70:d3:aa:89:fa:68:35:c6: cb:c8:82:d6:d7:0f:e8:1d:75:63:56:89:f5:5c:35: 1d:2b:fb:93:86:90:18:05:3d:d8:cf:ef:2f:5c:62: 0d:d0:0e:03:bc:f7:67:46:7b:00:01:33:62:99:99: 9e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BE:A0:5C:5E:EA:70:F5:AC:C7:64:93:67:F3:21:38:1E:D9:1C:69 X509v3 Authority Key Identifier: keyid:97:97:F7:85:27:06:EE:1C:42:C6:8A:5E:45:0B:57:2F:8E:E5:08:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l5f3hScG7hxCxopeRQtXL47lCBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149063/6889ADF274BC11EA95099D2BC4F9AE02/l5f3hScG7hxCxopeRQtXL47lCBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:19:27:39:f9:8b:08:59:12:56:33:db:53:ca:b5:94:55:98: c9:f6:b7:ef:6f:e6:05:e0:0f:2f:b2:5f:d1:2d:64:ae:52:97: 79:10:ca:d0:22:f5:74:f4:8b:41:62:e3:08:67:17:af:90:13: 80:13:69:4a:63:a6:6d:46:4c:a2:a7:c6:bd:fd:88:34:f6:d9: c5:52:6f:6c:fe:6b:47:a1:e6:93:0d:9f:a4:a4:01:cb:d5:7c: 42:7e:2a:11:cb:c9:2b:f4:7c:29:d2:4d:ba:f1:1a:e0:48:58: 2d:63:60:b8:f9:b2:33:39:a2:bf:67:e9:f4:52:72:99:7c:63: 10:0e:15:20:8a:af:70:02:b4:14:da:eb:4f:0c:fa:e6:7c:0f: b9:b2:85:26:67:5b:ad:07:d2:61:9e:d9:76:3b:b3:ba:0b:a6: a2:12:77:94:ab:f7:8c:e9:97:64:ca:3c:cb:5b:41:04:c9:a5: 7e:3f:4b:23:93:30:d2:7a:50:8c:1a:d8:d3:d4:50:73:7a:67: 21:0d:5c:91:22:e8:70:00:fd:1e:da:fb:c8:08:b0:61:48:3d: ce:ad:07:3d:5f:76:bb:af:13:81:40:17:d6:79:1f:7b:11:ff: a0:9e:24:c9:ad:75:17:b3:5b:0f:20:5b:04:1b:b1:19:82:64: ce:74:d8:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwNjMxMTAvBgNVBAUTKDk3OTdGNzg1MjcwNkVFMUM0MkM2OEE1RTQ1MEI1NzJG OEVFNTA4MTgwHhcNMjQwNTE4MjEwNTU5WhcNMjQwNTI1MjEwNTU5WjAYMRYwFAYD VQQDEw02NjQ5MTgzOC1kMGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RUXswjMTrE42UKQv2zKZmAZ3oAzFTWfVaCejsdWME2fWH8nuN5D5oZ7oNBT hLhsfJyb4sO2j2XVNTgaqxdo15rEFOAv0eHVsyhjV239UIb4nF+uY+exMJNLPe3J qEveg5HelxOLAqBiD8iBznuGab6FnUaAYvxNv+W+xWttPob2v+T2pDIdgU+NR2yl B5YYSSEhvMLSyuZBq4M+Nt2sas4O0goTL9kd/ClFUuVTa1yCWckU9R2k8W0A8SCQ tqLSVFpLEtx2heHRcNOqifpoNcbLyILW1w/oHXVjVon1XDUdK/uThpAYBT3Yz+8v XGIN0A4DvPdnRnsAATNimZmeqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW+oFxe 6nD1rMdkk2fzITge2RxpMB8GA1UdIwQYMBaAFJeX94UnBu4cQsaKXkULVy+O5QgY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTA2My82ODg5QURGMjc0 QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdoeEN4b3BlUlF0WEw0N2xD QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w1ZjNoU2NHN2h4Q3hvcGVSUXRYTDQ3bENCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTA2My82ODg5QURGMjc0QkMxMUVBOTUwOTlEMkJDNEY5QUUwMi9sNWYzaFNjRzdo eEN4b3BlUlF0WEw0N2xDQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXGSc5+YsIWRJWM9tTyrWUVZjJ9rfvb+YF4A8vsl/RLWSuUpd5EMrQ IvV09ItBYuMIZxevkBOAE2lKY6ZtRkyip8a9/Yg09tnFUm9s/mtHoeaTDZ+kpAHL 1XxCfioRy8kr9Hwp0k268RrgSFgtY2C4+bIzOaK/Z+n0UnKZfGMQDhUgiq9wArQU 2utPDPrmfA+5soUmZ1utB9Jhntl2O7O6C6aiEneUq/eM6ZdkyjzLW0EEyaV+P0sj kzDSelCMGtjT1FBzemchDVyRIuhwAP0e2vvICLBhSD3OrQc9X3a7rxOBQBfWeR97 Ef+gniTJrXUXs1sPIFsEG7EZgmTOdNhx -----END CERTIFICATE-----Generated at Sat May 18 22:27:54 2024 by rpki-client on console-ams.rpki-client.org