$ rpki-client -vvf rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.mft File: lMQfGqYO1lDg_Xp6jSN6LUaxsfg.mft (raw, json) Hash identifier: 4W3NUi72EFmqBvAO4KGGuFuzMA+LmxA01bf4npZW9Mw= Subject key identifier: C5:65:08:48:ED:E6:D9:CF:68:55:8F:45:AA:B9:25:02:7E:D1:0C:21 Authority key identifier: 94:C4:1F:1A:A6:0E:D6:50:E0:FD:7A:7A:8D:23:7A:2D:46:B1:B1:F8 Certificate issuer: /CN=A9174F24/serialNumber=94C41F1AA60ED650E0FD7A7A8D237A2D46B1B1F8 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.mft Manifest number: 61 Signing time: Sun 19 May 2024 07:45:05 +0000 Manifest this update: Sun 19 May 2024 07:45:05 +0000 Manifest next update: Sun 26 May 2024 07:45:05 +0000 Files and hashes: 1: lMQfGqYO1lDg_Xp6jSN6LUaxsfg.crl (hash: 7kJyMt3z+OAayOIObSbFX662bamsRpWSo+aI+dCYnFs=) 2: F7C7803489F311EE9AD0D13CC4F9AE02.roa (hash: 1La2YjR8695Kv+ENKHdPNPLlVQUHdNzlGYNxYnnCBUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.crl rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174F24/serialNumber=94C41F1AA60ED650E0FD7A7A8D237A2D46B1B1F8 Validity Not Before: May 19 07:45:05 2024 GMT Not After : May 26 07:45:05 2024 GMT Subject: CN=6649ae01-2949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:87:03:d9:c5:b9:c1:c5:c7:13:8d:14:36:90: 85:dd:aa:95:d8:73:68:1f:b9:08:a5:20:14:5a:7f: 04:bb:8f:65:f9:e3:f0:4a:59:ce:b1:90:2d:42:7b: a7:2e:06:67:b2:8a:43:13:cc:e8:35:7a:4d:b2:36: e0:a6:c9:76:60:cd:70:d3:0b:e3:68:ac:bc:7f:5e: 80:4f:c8:42:cf:5d:e1:0e:1d:96:26:f2:ce:ce:cc: 65:53:43:1f:0d:e0:f7:d0:ca:d0:21:af:96:ce:fc: d5:84:d9:89:ae:35:cf:96:4f:69:6c:90:42:cc:db: e0:0d:ea:ef:86:26:92:61:b9:f4:9a:67:7e:a9:32: 59:d3:d9:fe:27:a8:b2:ef:50:6a:6b:cc:19:fb:7f: 8a:ed:85:8a:14:d5:43:59:e9:fb:71:5d:0f:14:15: 79:b7:c3:67:35:4e:dc:a9:40:45:0c:a8:41:6a:76: 5d:bf:cf:39:c1:42:a7:58:61:50:17:e9:92:24:0b: 6c:72:22:a8:b6:29:72:58:ad:cc:1a:20:91:ff:aa: 02:ab:fc:65:0d:f4:11:20:36:d5:a3:04:0b:33:98: 59:16:70:63:a3:e6:5f:71:bf:ca:d3:57:4a:36:47: 71:06:5b:3d:f2:ae:86:0a:c5:73:10:aa:89:15:78: 8c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:65:08:48:ED:E6:D9:CF:68:55:8F:45:AA:B9:25:02:7E:D1:0C:21 X509v3 Authority Key Identifier: keyid:94:C4:1F:1A:A6:0E:D6:50:E0:FD:7A:7A:8D:23:7A:2D:46:B1:B1:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174F24/6FD7EBF089F311EEBF7FC41FC4F9AE02/lMQfGqYO1lDg_Xp6jSN6LUaxsfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9c:6b:3a:21:99:d1:cc:65:e5:fa:ff:13:60:4d:34:76:6f: 28:19:94:08:8e:5c:ce:f3:63:2e:a7:0b:63:45:54:44:02:11: 2b:1c:36:26:ad:eb:15:b4:8d:3b:e5:9f:0e:83:a1:d8:82:df: ea:f5:bb:9a:1e:b9:76:a9:2d:7b:3f:4d:d4:a0:5c:88:3b:f9: 20:2c:51:b4:d6:2f:26:0b:87:12:3c:0a:91:49:c1:a7:00:03: 76:48:b8:70:d5:96:e6:a9:0a:52:87:ce:1b:91:51:9b:7c:30: a4:ed:0f:79:d8:bb:7e:cf:27:21:9e:fa:ec:26:e4:0a:d3:d1: e2:e6:04:49:89:b1:02:37:91:20:c3:6d:f4:b2:72:b7:69:c4: 44:7c:b7:27:69:3e:c5:3e:23:95:36:97:70:e3:81:75:ce:86: 9c:b3:c1:20:c8:2f:2b:77:3c:8c:62:cc:2c:bb:0f:4b:e2:9c: 33:b6:fe:34:ee:23:01:4b:d4:e6:b2:e5:ff:89:0a:03:16:ea: 68:fb:c8:8b:d8:ef:3b:a3:69:c0:6f:5e:49:11:66:ff:fe:ff: 36:ff:90:be:fd:82:79:af:26:c7:a0:cd:6e:87:58:46:09:74: 5b:f7:0f:2c:0b:86:ab:1e:92:ff:28:b7:bb:e0:fe:77:e1:0f: 43:ac:a3:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NEYyNDExMC8GA1UEBRMoOTRDNDFGMUFBNjBFRDY1MEUwRkQ3QTdBOEQyMzdBMkQ0 NkIxQjFGODAeFw0yNDA1MTkwNzQ1MDVaFw0yNDA1MjYwNzQ1MDVaMBgxFjAUBgNV BAMTDTY2NDlhZTAxLTI5NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYhwPZxbnBxccTjRQ2kIXdqpXYc2gfuQilIBRafwS7j2X54/BKWc6xkC1Ce6cu BmeyikMTzOg1ek2yNuCmyXZgzXDTC+NorLx/XoBPyELPXeEOHZYm8s7OzGVTQx8N 4PfQytAhr5bO/NWE2YmuNc+WT2lskELM2+AN6u+GJpJhufSaZ36pMlnT2f4nqLLv UGprzBn7f4rthYoU1UNZ6ftxXQ8UFXm3w2c1TtypQEUMqEFqdl2/zznBQqdYYVAX 6ZIkC2xyIqi2KXJYrcwaIJH/qgKr/GUN9BEgNtWjBAszmFkWcGOj5l9xv8rTV0o2 R3EGWz3yroYKxXMQqokVeIxDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxWUISO3m 2c9oVY9FqrklAn7RDCEwHwYDVR0jBBgwFoAUlMQfGqYO1lDg/Xp6jSN6LUaxsfgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0RjI0LzZGRDdFQkYwODlG MzExRUVCRjdGQzQxRkM0RjlBRTAyL2xNUWZHcVlPMWxEZ19YcDZqU042TFVheHNm Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE1RZkdxWU8xbERnX1hwNmpTTjZMVWF4c2ZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc0 RjI0LzZGRDdFQkYwODlGMzExRUVCRjdGQzQxRkM0RjlBRTAyL2xNUWZHcVlPMWxE Z19YcDZqU042TFVheHNmZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI+cazohmdHMZeX6/xNgTTR2bygZlAiOXM7zYy6nC2NFVEQCESscNiat 6xW0jTvlnw6DodiC3+r1u5oeuXapLXs/TdSgXIg7+SAsUbTWLyYLhxI8CpFJwacA A3ZIuHDVluapClKHzhuRUZt8MKTtD3nYu37PJyGe+uwm5ArT0eLmBEmJsQI3kSDD bfSycrdpxER8tydpPsU+I5U2l3DjgXXOhpyzwSDILyt3PIxizCy7D0vinDO2/jTu IwFL1Oay5f+JCgMW6mj7yIvY7zujacBvXkkRZv/+/zb/kL79gnmvJsegzW6HWEYJ dFv3DywLhqsekv8ot7vg/nfhD0OsozY= -----END CERTIFICATE-----Generated at Sun May 19 08:25:02 2024 by rpki-client on console-ams.rpki-client.org