$ rpki-client -vvf rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft File: LnG4umMF_9SMEx0IYK8sGs9tIrY.mft (raw, json) Hash identifier: Xh2UUSac6jedSNcu7RaoG/LOnUudbI8QD+Rd8luVyRM= Subject key identifier: E1:6A:C5:F2:C1:82:8F:B4:EE:11:71:E4:0B:FF:C4:63:A2:01:F3:02 Authority key identifier: 2E:71:B8:BA:63:05:FF:D4:8C:13:1D:08:60:AF:2C:1A:CF:6D:22:B6 Certificate issuer: /CN=A9165D52/serialNumber=2E71B8BA6305FFD48C131D0860AF2C1ACF6D22B6 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnG4umMF_9SMEx0IYK8sGs9tIrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft Manifest number: 0107 Signing time: Sun 19 May 2024 05:32:06 +0000 Manifest this update: Sun 19 May 2024 05:32:06 +0000 Manifest next update: Sun 26 May 2024 05:32:06 +0000 Files and hashes: 1: LnG4umMF_9SMEx0IYK8sGs9tIrY.crl (hash: FXbfOf01FjK4E+AxjcjT/1irE3+Nti9dFN5gQcSI3c0=) 2: D08310DE94C511EDB2732947C4F9AE02.roa (hash: 6swA/Z2Bn/93wNV89PyUjWjhUlp9ILVNtdOEp/BxgkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.crl rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnG4umMF_9SMEx0IYK8sGs9tIrY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165D52/serialNumber=2E71B8BA6305FFD48C131D0860AF2C1ACF6D22B6 Validity Not Before: May 19 05:32:06 2024 GMT Not After : May 26 05:32:06 2024 GMT Subject: CN=66498ed6-5501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:99:33:f8:3e:98:77:87:53:47:07:42:6b:90: 5e:f0:06:36:04:82:17:f2:bd:4a:fc:a8:6d:70:b8: 0d:75:e2:61:8d:07:32:9d:e2:1e:c6:d0:9c:7c:fb: 1e:80:91:fa:ed:4a:86:e1:4f:4b:54:76:1f:25:95: 36:ea:93:cf:b2:ac:5c:61:80:43:1d:f2:5c:df:06: a0:1c:24:d9:95:ed:74:af:d3:45:ec:ac:dd:1d:fe: 42:e7:59:96:d1:c8:40:1d:48:f7:16:78:e8:f1:41: 97:a7:ec:b8:86:70:0d:43:fb:04:96:f9:28:d6:64: 92:89:6e:a7:72:62:36:80:f8:28:3c:8c:93:b8:d6: 67:22:5a:53:5c:37:f3:fb:00:91:67:43:c4:f2:4a: 8e:a4:42:27:be:69:70:86:01:e9:3e:e8:6d:e8:3f: f0:f1:c8:0a:3b:5c:9f:47:4d:10:86:06:d4:4e:6d: c0:b8:de:eb:7d:ed:02:07:48:1c:88:a0:25:27:57: 9b:9d:40:f3:11:1a:32:d5:7f:e2:f1:a7:f6:72:20: 2a:d4:a5:8e:92:8e:82:d1:f1:2f:58:d2:cf:89:a0: 4c:fd:1f:1e:ec:82:65:7b:77:f6:d0:a2:15:33:03: 07:bc:8a:6d:49:ab:73:a8:fa:1f:55:9e:50:86:6f: 13:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6A:C5:F2:C1:82:8F:B4:EE:11:71:E4:0B:FF:C4:63:A2:01:F3:02 X509v3 Authority Key Identifier: keyid:2E:71:B8:BA:63:05:FF:D4:8C:13:1D:08:60:AF:2C:1A:CF:6D:22:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnG4umMF_9SMEx0IYK8sGs9tIrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165D52/612B67AC84FA11ED80AC4E10C4F9AE02/LnG4umMF_9SMEx0IYK8sGs9tIrY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:bd:84:f7:c4:97:26:92:cd:71:c6:be:17:49:56:c7:b5:4f: 19:80:12:2b:d0:0b:b6:32:3a:15:ee:31:11:d5:c8:7c:af:c3: fd:fa:10:58:0a:87:69:52:5f:9e:4c:3f:33:ac:8a:26:15:fa: 53:60:d7:35:9c:fd:d7:4c:89:f9:22:6f:19:4a:65:ae:93:0f: df:16:44:ee:b6:12:c7:ce:50:b4:38:93:43:eb:76:0b:6d:07: 88:5f:53:e8:79:dd:4d:2a:4f:5b:7e:95:95:91:12:b6:60:8f: 5e:85:ae:74:e5:4a:ef:74:0d:ba:ab:db:73:86:9f:55:2f:29: 7c:28:a0:56:74:6f:a1:bd:9e:eb:2e:5a:57:7a:4f:94:88:e0: 40:54:84:62:39:c6:93:9b:01:ab:68:71:65:d2:74:21:4d:ea: 43:bb:70:5c:b9:e6:df:22:5a:b3:26:7b:d5:a2:c4:8d:a6:90: 9d:fc:72:8d:8e:31:18:05:3c:2d:80:ae:49:40:d8:1a:ea:4b: 7f:d8:a0:70:6b:b4:04:5d:e8:49:16:00:cb:5a:2f:bf:33:2b: 36:e5:e5:95:ca:90:19:87:d1:1b:fd:aa:5d:a5:e4:90:20:97: 71:64:f5:97:7a:68:1a:72:83:76:ef:e6:fc:8f:7e:92:c8:8a: 04:68:63:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVENTIxMTAvBgNVBAUTKDJFNzFCOEJBNjMwNUZGRDQ4QzEzMUQwODYwQUYyQzFB Q0Y2RDIyQjYwHhcNMjQwNTE5MDUzMjA2WhcNMjQwNTI2MDUzMjA2WjAYMRYwFAYD VQQDEw02NjQ5OGVkNi01NTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Jkz+D6Yd4dTRwdCa5Be8AY2BIIX8r1K/KhtcLgNdeJhjQcyneIextCcfPse gJH67UqG4U9LVHYfJZU26pPPsqxcYYBDHfJc3wagHCTZle10r9NF7KzdHf5C51mW 0chAHUj3Fnjo8UGXp+y4hnANQ/sElvko1mSSiW6ncmI2gPgoPIyTuNZnIlpTXDfz +wCRZ0PE8kqOpEInvmlwhgHpPuht6D/w8cgKO1yfR00QhgbUTm3AuN7rfe0CB0gc iKAlJ1ebnUDzERoy1X/i8af2ciAq1KWOko6C0fEvWNLPiaBM/R8e7IJle3f20KIV MwMHvIptSatzqPofVZ5Qhm8TFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFqxfLB go+07hFx5Av/xGOiAfMCMB8GA1UdIwQYMBaAFC5xuLpjBf/UjBMdCGCvLBrPbSK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUQ1Mi82MTJCNjdBQzg0 RkExMUVEODBBQzRFMTBDNEY5QUUwMi9Mbkc0dW1NRl85U01FeDBJWUs4c0dzOXRJ clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuRzR1bU1GXzlTTUV4MElZSzhzR3M5dElyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUQ1Mi82MTJCNjdBQzg0RkExMUVEODBBQzRFMTBDNEY5QUUwMi9Mbkc0dW1NRl85 U01FeDBJWUs4c0dzOXRJclkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8vYT3xJcmks1xxr4XSVbHtU8ZgBIr0Au2MjoV7jER1ch8r8P9+hBY CodpUl+eTD8zrIomFfpTYNc1nP3XTIn5Im8ZSmWukw/fFkTuthLHzlC0OJND63YL bQeIX1Poed1NKk9bfpWVkRK2YI9eha505UrvdA26q9tzhp9VLyl8KKBWdG+hvZ7r LlpXek+UiOBAVIRiOcaTmwGraHFl0nQhTepDu3BcuebfIlqzJnvVosSNppCd/HKN jjEYBTwtgK5JQNga6kt/2KBwa7QEXehJFgDLWi+/Mys25eWVypAZh9Eb/apdpeSQ IJdxZPWXemgacoN27+b8j36SyIoEaGPK -----END CERTIFICATE-----Generated at Sun May 19 06:14:34 2024 by rpki-client on console-ams.rpki-client.org