$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: eEhfBIzmnGQqBieHBxaRJ8JqoZEodaq3mdUQq3Dcc50= Subject key identifier: A4:5E:51:4D:86:0C:4F:3E:34:82:51:39:6F:21:0D:D8:26:89:6B:51 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 05F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 05ED Signing time: Sun 19 May 2024 00:01:14 +0000 Manifest this update: Sun 19 May 2024 00:01:14 +0000 Manifest next update: Sun 26 May 2024 00:01:14 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: 8dyaOMYxD6AZegArsINpOSVemHCApO2HkpewYcWXebA=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: WR1DbVbaQ/9PlcfupDSU3lPtOXXUq5mwwlQCdWOBvqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: May 19 00:01:14 2024 GMT Not After : May 26 00:01:14 2024 GMT Subject: CN=6649414a-e3cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:be:15:9c:04:b8:bb:bb:0a:0a:55:55:ec:c6: 8d:5a:f8:f9:b5:aa:77:08:02:10:48:b4:c4:5f:aa: 30:70:ae:12:56:71:08:84:5e:83:d5:e9:1c:65:e0: 45:c4:36:ef:b8:8a:79:15:b4:31:6a:bc:57:11:aa: 14:7e:77:7f:67:2c:4c:eb:12:11:c2:6b:c0:bf:f6: 35:fe:81:2d:6e:ec:77:2f:a0:96:da:ec:fd:85:e6: de:84:72:60:e5:f0:65:aa:1a:6d:50:77:85:ee:e8: a6:68:42:b2:e0:20:9b:a9:16:47:7f:4d:d4:b1:45: 1d:9b:21:a6:91:89:f5:1f:e3:b7:f6:81:15:2d:74: a4:13:44:28:63:88:d6:fe:0e:d0:de:bf:1d:01:74: 8a:a3:68:80:98:5b:51:0c:57:86:63:df:42:e3:54: f3:25:71:ec:85:27:f6:1a:a1:43:eb:51:94:bd:27: ea:d4:c4:d5:de:1e:28:66:6b:08:d4:68:31:24:7b: fc:2c:42:b1:16:9c:91:69:4f:35:aa:84:60:53:ba: 83:60:91:42:2b:b8:d1:85:98:18:a4:99:d6:2a:9a: ee:5e:a8:3e:0c:74:f3:12:f4:37:37:5c:76:43:27: c7:34:50:4f:67:48:ef:2c:21:4e:9f:74:d8:e8:25: 50:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:5E:51:4D:86:0C:4F:3E:34:82:51:39:6F:21:0D:D8:26:89:6B:51 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:ba:b2:b3:ae:c7:c3:af:e6:a4:3d:c1:bf:db:15:b1:3b:c1: 16:2a:98:bd:ea:e4:cf:75:85:bc:03:6d:53:da:c6:c6:de:dc: 30:11:17:15:4e:be:20:46:a7:9d:5e:aa:23:fd:87:93:6b:a6: d9:08:9a:53:21:38:a1:4a:0d:4b:44:95:6b:d7:8e:26:57:4c: 23:42:d1:9b:92:e2:e0:2b:b3:be:1f:58:f4:94:7d:4c:92:07: d8:33:56:7d:04:65:75:11:ab:f5:c3:38:77:a0:47:37:bd:39: e2:aa:8a:5d:ab:ff:03:23:89:99:31:3e:8e:7f:e0:d2:c3:17: e8:c3:79:9f:9f:44:bd:e4:af:2a:33:e1:e0:21:d1:e1:8a:33: 5b:1c:e2:b7:50:11:cc:07:a5:b4:b1:d4:92:5f:d8:b2:cd:27: 1f:eb:12:ea:f9:aa:22:3d:9d:42:a7:58:12:98:21:ec:32:ec: 23:2f:18:4b:2f:41:72:9f:0b:5a:c2:8c:47:4a:e0:44:44:cd: 93:82:8d:43:1f:ce:fb:0d:69:d6:6d:06:69:2c:15:13:a6:3f: 48:b7:d4:92:80:73:9b:ce:2f:da:a9:33:7e:e4:73:19:19:e7: 00:68:45:60:41:9b:d1:2c:5d:79:31:ce:02:54:5a:69:59:ac: 39:a3:d6:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjQwNTE5MDAwMTE0WhcNMjQwNTI2MDAwMTE0WjAYMRYwFAYD VQQDEw02NjQ5NDE0YS1lM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0L4VnAS4u7sKClVV7MaNWvj5tap3CAIQSLTEX6owcK4SVnEIhF6D1ekcZeBF xDbvuIp5FbQxarxXEaoUfnd/ZyxM6xIRwmvAv/Y1/oEtbux3L6CW2uz9hebehHJg 5fBlqhptUHeF7uimaEKy4CCbqRZHf03UsUUdmyGmkYn1H+O39oEVLXSkE0QoY4jW /g7Q3r8dAXSKo2iAmFtRDFeGY99C41TzJXHshSf2GqFD61GUvSfq1MTV3h4oZmsI 1GgxJHv8LEKxFpyRaU81qoRgU7qDYJFCK7jRhZgYpJnWKpruXqg+DHTzEvQ3N1x2 QyfHNFBPZ0jvLCFOn3TY6CVQxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKReUU2G DE8+NIJROW8hDdgmiWtRMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuurKzrsfDr+akPcG/2xWxO8EWKpi96uTPdYW8A21T2sbG3twwERcV Tr4gRqedXqoj/YeTa6bZCJpTITihSg1LRJVr144mV0wjQtGbkuLgK7O+H1j0lH1M kgfYM1Z9BGV1Eav1wzh3oEc3vTniqopdq/8DI4mZMT6Of+DSwxfow3mfn0S95K8q M+HgIdHhijNbHOK3UBHMB6W0sdSSX9iyzScf6xLq+aoiPZ1Cp1gSmCHsMuwjLxhL L0FynwtawoxHSuBERM2Tgo1DH877DWnWbQZpLBUTpj9It9SSgHObzi/aqTN+5HMZ GecAaEVgQZvRLF15Mc4CVFppWaw5o9bj -----END CERTIFICATE-----Generated at Sun May 19 00:30:15 2024 by rpki-client on console-ams.rpki-client.org