$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: JX/jmdpQdjl6uLpaQgKicW4+AhzF1QEIP/y+6y6Xq/Y= Subject key identifier: 0F:B9:48:6B:8F:F5:20:CB:7B:BC:15:5D:5B:C0:C9:52:B8:DE:B7:13 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0D82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0D77 Signing time: Sat 18 May 2024 18:36:06 +0000 Manifest this update: Sat 18 May 2024 18:36:05 +0000 Manifest next update: Sat 25 May 2024 18:36:05 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: LH2chGoJ2M9Yqy7+M1JOlROWE8fudv6QoePvQ+G6ICU=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: gRo/nB5FVjywkSM4b0+1/hARWp/3k9nPFiRph4ggjDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: May 18 18:36:05 2024 GMT Not After : May 25 18:36:05 2024 GMT Subject: CN=6648f516-1886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:94:7a:11:d8:58:d8:a0:d1:3c:3a:67:a6:84: 23:91:f1:32:70:46:dc:f8:ed:5e:cf:55:03:a8:a1: 18:e9:2d:c6:bd:63:8c:d0:60:b1:47:a1:bb:79:63: 72:d0:77:13:19:71:c2:1a:2f:46:74:9c:0a:39:5d: 2a:55:b1:98:1f:33:26:74:80:ae:74:52:d6:72:f6: e1:89:28:9e:2e:47:fa:14:77:90:f2:fd:38:70:53: 96:62:ce:96:4f:2c:15:b8:85:5c:6d:48:d0:33:20: 4b:af:89:9b:54:81:1c:f3:d1:65:74:75:23:f4:22: 25:5b:1a:b3:c3:30:6e:bf:c0:0a:3c:b9:c4:e3:e5: d7:69:16:84:dc:ce:14:86:e3:61:08:11:30:ef:ad: 1d:3b:96:e2:cb:25:1b:25:53:d5:d1:cf:72:ba:86: e5:3e:50:7d:59:bf:48:88:82:b4:a2:39:2f:d0:1f: 64:ad:b1:4e:25:67:0a:a9:9d:ee:ed:a9:ae:27:df: 22:5b:35:d3:31:a1:d9:79:f5:d8:0c:ac:bb:6e:6e: 1e:6a:ac:a4:a6:ef:2e:cb:a7:8d:ef:fb:53:50:42: 22:a5:db:28:4b:3f:b5:55:e2:c0:1b:71:6c:63:97: ab:4d:88:43:ec:18:f7:00:1c:4d:84:99:a4:69:b5: 35:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:B9:48:6B:8F:F5:20:CB:7B:BC:15:5D:5B:C0:C9:52:B8:DE:B7:13 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:c7:6b:61:20:bb:23:59:29:f7:63:a4:14:d1:7a:58:aa:87: 75:42:4a:64:f9:3d:de:fe:0e:90:39:2e:de:87:6e:5b:c7:79: 00:40:24:ca:3d:29:df:96:e3:ee:fa:37:68:ca:86:b6:61:3c: a6:c9:e6:69:d0:31:e9:1f:e0:ed:93:29:fc:a8:8f:f4:7f:70: 80:89:11:5e:21:6e:83:0c:80:c6:ea:df:15:39:10:61:7d:5b: cf:e8:0b:3a:7a:af:06:d9:67:f8:07:34:31:48:f0:3d:5d:22: e5:8f:f6:65:07:63:16:55:c9:72:8f:43:6a:3d:c8:dd:25:9a: c4:e4:14:71:12:66:ee:3b:5e:1d:39:e0:68:fb:dd:f3:60:75: c6:89:26:61:55:bf:40:89:03:4a:b9:a0:09:ff:b6:00:b8:e8: 50:e7:04:45:a4:09:ea:c3:0c:ea:f1:07:81:46:39:1f:e1:4a: 63:23:0f:40:33:ba:74:c8:c0:75:1c:a9:35:a8:34:6f:9f:30: d9:d2:72:c0:18:2e:3f:49:39:35:9e:9a:68:ec:97:d6:c4:5f: d6:8c:41:10:ff:bd:31:e6:8d:a6:4b:8a:25:e9:fa:55:f9:7c: 72:aa:08:ac:c3:74:11:2f:9a:c6:40:9e:81:dc:10:6e:ae:10: 33:52:af:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjQwNTE4MTgzNjA1WhcNMjQwNTI1MTgzNjA1WjAYMRYwFAYD VQQDEw02NjQ4ZjUxNi0xODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl5R6EdhY2KDRPDpnpoQjkfEycEbc+O1ez1UDqKEY6S3GvWOM0GCxR6G7eWNy 0HcTGXHCGi9GdJwKOV0qVbGYHzMmdICudFLWcvbhiSieLkf6FHeQ8v04cFOWYs6W TywVuIVcbUjQMyBLr4mbVIEc89FldHUj9CIlWxqzwzBuv8AKPLnE4+XXaRaE3M4U huNhCBEw760dO5biyyUbJVPV0c9yuoblPlB9Wb9IiIK0ojkv0B9krbFOJWcKqZ3u 7amuJ98iWzXTMaHZefXYDKy7bm4eaqykpu8uy6eN7/tTUEIipdsoSz+1VeLAG3Fs Y5erTYhD7Bj3ABxNhJmkabU1WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA+5SGuP 9SDLe7wVXVvAyVK43rcTMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3x2thILsjWSn3Y6QU0XpYqod1Qkpk+T3e/g6QOS7eh25bx3kAQCTK PSnfluPu+jdoyoa2YTymyeZp0DHpH+Dtkyn8qI/0f3CAiRFeIW6DDIDG6t8VORBh fVvP6As6eq8G2Wf4BzQxSPA9XSLlj/ZlB2MWVclyj0NqPcjdJZrE5BRxEmbuO14d OeBo+93zYHXGiSZhVb9AiQNKuaAJ/7YAuOhQ5wRFpAnqwwzq8QeBRjkf4UpjIw9A M7p0yMB1HKk1qDRvnzDZ0nLAGC4/STk1nppo7JfWxF/WjEEQ/70x5o2mS4ol6fpV +Xxyqgisw3QRL5rGQJ6B3BBurhAzUq9A -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org