$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: gXRufMW7iYr/74e0yHEtRRyaq1dDTLWtI7yFZVEla4c= Subject key identifier: 85:16:BF:A9:C5:5E:FB:08:95:DB:62:33:FB:D9:43:05:54:10:23:47 Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 1E Signing time: Sun 19 May 2024 08:38:11 +0000 Manifest this update: Sun 19 May 2024 08:38:10 +0000 Manifest next update: Sun 26 May 2024 08:38:10 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: ZoK8MXbuTBFNU12UiMxha0441VIO8+grvss3j6ZrHig=) 2: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (hash: yZ6MBJhoD6w3VG8OJH7ZW6bW41xKAcxHLnAOqa1PvDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: May 19 08:38:10 2024 GMT Not After : May 26 08:38:10 2024 GMT Subject: CN=6649ba73-9238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:29:53:81:35:70:84:7a:09:42:8e:14:d0:a3: 06:7e:e5:50:4d:ba:9a:74:3d:a1:9d:b2:bd:35:22: d0:8b:1f:73:49:32:12:c0:5b:d3:34:2b:f4:4f:41: 32:2a:54:04:0e:d5:84:ff:79:5e:42:c7:6d:db:1a: ec:53:d4:95:eb:0d:f5:fc:88:3a:ec:14:74:59:35: da:04:68:70:5a:2d:77:e1:0a:ff:01:a6:18:f1:18: 1e:02:d7:32:f6:56:10:db:80:60:22:52:75:26:b3: df:99:66:76:7d:26:a3:2f:2f:88:f9:8e:b2:1a:d6: 7c:a2:f4:04:ea:fe:be:95:a9:10:d6:39:b3:b1:7b: cf:a1:df:82:83:10:e3:11:bb:4e:85:6c:44:23:53: af:b6:b6:53:ab:6d:c8:55:68:77:8d:a8:3c:6d:1d: 4b:41:8d:6a:76:cc:29:71:1c:ec:33:bd:bd:e7:d4: bb:05:61:39:ec:ef:cf:22:d2:77:62:1f:1a:74:4a: 6b:82:4a:c5:e4:62:2c:a8:98:73:15:57:2c:91:f8: 9c:86:83:f8:9e:f2:49:d9:55:de:81:96:ea:58:9f: 15:23:74:15:81:13:c4:5b:2a:c7:ea:76:14:51:17: 1c:86:70:86:79:fb:38:aa:97:aa:68:0c:24:9e:3f: 38:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:16:BF:A9:C5:5E:FB:08:95:DB:62:33:FB:D9:43:05:54:10:23:47 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:fd:be:f3:f1:89:50:90:84:9e:26:95:62:de:dd:2f:b5:9b: 0e:71:cd:5c:1a:48:e2:b3:58:86:4b:9e:b2:d1:cf:ff:92:40: d5:c4:a7:39:17:af:d5:7a:73:7d:aa:e4:86:08:01:04:30:01: f3:b0:cc:b5:12:25:b8:cc:ee:4d:20:9e:cc:75:b2:29:f1:2b: 8b:fc:c1:25:3f:21:e8:bc:39:d9:fd:03:7d:ca:04:ca:a5:b5: ad:bc:2d:57:fe:60:d9:4d:40:e0:0a:ea:c8:11:6f:f2:2a:28: 15:a7:47:49:25:ee:07:d2:8e:67:e1:a4:db:c2:09:49:41:5f: 4b:59:33:e1:39:4f:d1:7b:72:ae:88:b7:60:d7:61:17:bd:78: c4:ef:bc:fb:0f:67:13:10:34:4d:51:5f:1a:1c:0b:1d:d2:1a: 40:73:01:13:c3:aa:27:04:ac:2c:ce:b2:55:6b:8e:bb:98:d5: 37:ae:a4:0b:4b:49:0f:f7:4a:53:01:c6:94:b7:d0:84:65:fd: 59:35:6c:bd:cb:70:93:39:78:5d:d6:b5:c4:77:a0:eb:6e:bd: 37:50:54:f2:e8:7b:5b:3f:8f:fa:a4:a1:af:0c:7e:81:16:19: 38:e3:fe:c9:bf:c0:79:fd:f1:dc:18:a2:46:eb:91:54:ff:07: ef:41:7e:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NUI2RDExMC8GA1UEBRMoMkRGOUExRTM3NUExN0I4RUE1NjAyN0I0NUE4QkQ2NkY5 Njc0N0Q4NjAeFw0yNDA1MTkwODM4MTBaFw0yNDA1MjYwODM4MTBaMBgxFjAUBgNV BAMTDTY2NDliYTczLTkyMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTKVOBNXCEeglCjhTQowZ+5VBNupp0PaGdsr01ItCLH3NJMhLAW9M0K/RPQTIq VAQO1YT/eV5Cx23bGuxT1JXrDfX8iDrsFHRZNdoEaHBaLXfhCv8BphjxGB4C1zL2 VhDbgGAiUnUms9+ZZnZ9JqMvL4j5jrIa1nyi9ATq/r6VqRDWObOxe8+h34KDEOMR u06FbEQjU6+2tlOrbchVaHeNqDxtHUtBjWp2zClxHOwzvb3n1LsFYTns788i0ndi Hxp0SmuCSsXkYiyomHMVVyyR+JyGg/ie8knZVd6BlupYnxUjdBWBE8RbKsfqdhRR FxyGcIZ5+ziql6poDCSePzjFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhRa/qcVe +wiV22Iz+9lDBVQQI0cwHwYDVR0jBBgwFoAULfmh43Whe46lYCe0WovWb5Z0fYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1QjZELzE4MUI4MjIwRTc4 RTExRUU5ODMxRUI3RUM0RjlBRTAyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTGZtaDQzV2hlNDZsWUNlMFdvdldiNVowZllZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1 QjZELzE4MUI4MjIwRTc4RTExRUU5ODMxRUI3RUM0RjlBRTAyL0xmbWg0M1doZTQ2 bFlDZTBXb3ZXYjVaMGZZWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI39vvPxiVCQhJ4mlWLe3S+1mw5xzVwaSOKzWIZLnrLRz/+SQNXEpzkX r9V6c32q5IYIAQQwAfOwzLUSJbjM7k0gnsx1sinxK4v8wSU/Iei8Odn9A33KBMql ta28LVf+YNlNQOAK6sgRb/IqKBWnR0kl7gfSjmfhpNvCCUlBX0tZM+E5T9F7cq6I t2DXYRe9eMTvvPsPZxMQNE1RXxocCx3SGkBzARPDqicErCzOslVrjruY1TeupAtL SQ/3SlMBxpS30IRl/Vk1bL3LcJM5eF3WtcR3oOtuvTdQVPLoe1s/j/qkoa8MfoEW GTjj/sm/wHn98dwYokbrkVT/B+9Bfn0= -----END CERTIFICATE-----Generated at Sun May 19 09:04:13 2024 by rpki-client on console-fra.rpki-client.org