$ rpki-client -vvf rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft File: L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft (raw, json) Hash identifier: jwI/Har2f9gei6xlTg2F+x73Ua+qcIUihxqtbAt6+CQ= Subject key identifier: E1:1D:46:DB:39:DF:36:D2:9C:F2:E5:A7:65:E6:E1:8A:17:37:FB:23 Authority key identifier: 2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 Certificate issuer: /CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Certificate serial: 0B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft Manifest number: 0B49 Signing time: Sat 18 May 2024 19:41:31 +0000 Manifest this update: Sat 18 May 2024 19:41:31 +0000 Manifest next update: Sat 25 May 2024 19:41:31 +0000 Files and hashes: 1: L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl (hash: LkGVSKICkJePbOPJA6/SVd44OVVxbfDNn9bJSopv0L8=) 2: 68A35F78831411EC90E07C19C4F9AE02.roa (hash: RX9XImzeHJvvGD5M13COi0aJ/cfhHPWbi3Gh+JPZeoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2895 (0xb4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Validity Not Before: May 18 19:41:31 2024 GMT Not After : May 25 19:41:31 2024 GMT Subject: CN=6649046b-6808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:2d:42:89:ac:74:e8:0e:54:07:49:d2:b7:df: 3e:ed:0f:e7:34:cd:a6:65:aa:08:3c:50:11:d4:a1: 8e:7a:c2:81:8b:04:7f:a6:4c:7f:06:c9:dc:6a:d0: 89:a0:b4:f1:b6:aa:04:1b:74:74:d1:ce:c5:f3:8c: 15:a1:d2:a8:a4:cd:75:b1:58:6a:54:fd:32:02:d9: e1:01:b8:e8:2f:3a:1a:00:c1:da:da:69:1f:8e:ea: 38:a7:91:1e:14:3f:ee:ff:75:6a:97:94:4f:3e:ce: 91:f8:c3:07:4d:6c:05:e1:13:b0:e8:35:20:e3:dc: bd:92:22:c2:44:71:cc:6d:a7:7f:df:34:27:09:9f: ff:76:af:44:ef:ce:52:4a:fd:b3:f4:3d:3b:f1:74: 8e:29:96:94:50:46:e6:c9:a1:c8:33:a0:b1:9a:15: d7:74:f8:14:9d:44:47:fc:91:41:c1:ff:51:e2:6c: 2f:21:0c:34:20:c8:e3:05:71:4d:0e:d2:6f:31:5d: 08:c3:6b:02:f0:0a:c7:a5:83:8b:5f:a1:ae:77:0c: 1e:5c:5d:a2:7d:12:e8:4c:e1:e1:76:80:11:df:50: 61:92:20:47:50:f1:d7:4d:b7:09:e2:bc:52:dd:07: 2c:09:94:dc:b4:a7:63:97:e5:b4:e3:91:c9:67:fb: db:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1D:46:DB:39:DF:36:D2:9C:F2:E5:A7:65:E6:E1:8A:17:37:FB:23 X509v3 Authority Key Identifier: keyid:2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:49:c0:b4:7c:a6:2a:60:49:fe:a6:ec:05:6e:e9:84:a0:a9: bc:ef:37:82:53:60:df:f6:06:96:1b:39:90:e9:2b:54:20:d4: 86:f5:f7:ac:ca:a3:40:bd:8b:0d:58:d6:34:5b:b8:c1:74:a0: 13:88:0a:ac:7e:ef:cf:2b:3c:25:c8:4e:71:cf:0f:57:31:5e: 26:cf:00:87:65:3b:f9:d6:2f:63:58:46:8b:9a:eb:f4:95:ad: d0:20:e9:a5:df:39:07:4b:b5:11:c3:fd:2c:6f:6f:37:27:9f: 9a:e9:34:56:1d:26:5a:6b:85:be:d9:4a:3f:c5:74:1c:3a:40: 82:97:fb:d5:ae:5c:22:f6:41:d4:e1:ca:63:db:3f:62:3b:cc: e4:96:82:48:7b:0d:c2:8c:e3:aa:f1:3e:58:a8:ed:4b:16:6f: 52:b9:71:49:57:94:35:ee:9d:3b:13:df:98:42:18:87:0c:cc: 2f:13:e3:84:0f:2d:1f:db:62:5b:f0:57:61:a7:30:b1:2e:b4: 8a:0e:78:3d:73:93:97:81:f1:b7:1e:91:29:f1:25:bd:0a:0f: 28:78:33:5e:3b:fd:88:f5:72:48:5e:7d:db:0e:c4:e6:79:7a: c5:58:77:1d:3a:50:7e:61:b9:61:1e:e3:3f:e3:6b:ba:b0:ea: c5:67:35:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0OTYxMTAvBgNVBAUTKDJGN0ExQzFERDI3RUE3ODE1OENFMjFBOTREQkJGQjkw NzJGQjE3MzQwHhcNMjQwNTE4MTk0MTMxWhcNMjQwNTI1MTk0MTMxWjAYMRYwFAYD VQQDEw02NjQ5MDQ2Yi02ODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7C1Ciax06A5UB0nSt98+7Q/nNM2mZaoIPFAR1KGOesKBiwR/pkx/BsncatCJ oLTxtqoEG3R00c7F84wVodKopM11sVhqVP0yAtnhAbjoLzoaAMHa2mkfjuo4p5Ee FD/u/3Vql5RPPs6R+MMHTWwF4ROw6DUg49y9kiLCRHHMbad/3zQnCZ//dq9E785S Sv2z9D078XSOKZaUUEbmyaHIM6CxmhXXdPgUnURH/JFBwf9R4mwvIQw0IMjjBXFN DtJvMV0Iw2sC8ArHpYOLX6GudwweXF2ifRLoTOHhdoAR31BhkiBHUPHXTbcJ4rxS 3QcsCZTctKdjl+W045HJZ/vbOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEdRts5 3zbSnPLlp2Xm4YoXN/sjMB8GA1UdIwQYMBaAFC96HB3SfqeBWM4hqU27+5By+xc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzQ5Ni8yMzQxQTU2NjBG NkMxMUVBQTcwRjc5NUFDNEY5QUUwMi9MM29jSGRKLXA0Rll6aUdwVGJ2N2tITDdG elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzb2NIZEotcDRGWXppR3BUYnY3a0hMN0Z6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzQ5Ni8yMzQxQTU2NjBGNkMxMUVBQTcwRjc5NUFDNEY5QUUwMi9MM29jSGRKLXA0 Rll6aUdwVGJ2N2tITDdGelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYScC0fKYqYEn+puwFbumEoKm87zeCU2Df9gaWGzmQ6StUINSG9fes yqNAvYsNWNY0W7jBdKATiAqsfu/PKzwlyE5xzw9XMV4mzwCHZTv51i9jWEaLmuv0 la3QIOml3zkHS7URw/0sb283J5+a6TRWHSZaa4W+2Uo/xXQcOkCCl/vVrlwi9kHU 4cpj2z9iO8zkloJIew3CjOOq8T5YqO1LFm9SuXFJV5Q17p07E9+YQhiHDMwvE+OE Dy0f22Jb8FdhpzCxLrSKDng9c5OXgfG3HpEp8SW9Cg8oeDNeO/2I9XJIXn3bDsTm eXrFWHcdOlB+YblhHuM/42u6sOrFZzU1 -----END CERTIFICATE-----Generated at Sat May 18 21:31:29 2024 by rpki-client on console-ams.rpki-client.org