$ rpki-client -vvf rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft File: lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft (raw, json) Hash identifier: PuXKotq2g5d+ZvZUuKBvN2AVjj3gmLzNLmvfZ/whXLA= Subject key identifier: 13:6C:18:2C:3C:0F:D6:D2:11:C2:E9:5B:E4:5C:67:DE:0B:B5:56:42 Authority key identifier: 95:95:1E:CF:C9:1D:0F:55:AD:8E:D8:AF:BF:E6:3C:B4:16:19:FC:47 Certificate issuer: /CN=A919546B/serialNumber=95951ECFC91D0F55AD8ED8AFBFE63CB41619FC47 Certificate serial: 0598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft Manifest number: 0593 Signing time: Sun 19 May 2024 00:28:44 +0000 Manifest this update: Sun 19 May 2024 00:28:43 +0000 Manifest next update: Sun 26 May 2024 00:28:43 +0000 Files and hashes: 1: lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl (hash: VpPAtgFCG0zbrMbMTkCDWiHCXfc5caN3lSU5vaL7lA8=) 2: 652993B4884F11EBB2A8337FC4F9AE02.roa (hash: f6e3Cg2GIwOdxOCdUfNFOlHtMPQH2uBXwUt1kuNCyx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1432 (0x598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919546B/serialNumber=95951ECFC91D0F55AD8ED8AFBFE63CB41619FC47 Validity Not Before: May 19 00:28:43 2024 GMT Not After : May 26 00:28:43 2024 GMT Subject: CN=664947bb-9697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:13:b8:02:f9:86:65:88:4b:82:b5:e3:22:97: 47:93:cb:97:35:ce:cb:a3:a2:cb:b6:73:9d:43:83: d4:f3:20:cf:d6:8f:97:71:4b:5b:85:ea:4c:aa:18: c4:8c:cd:5d:19:f0:1a:98:7d:d7:f6:d5:0b:c9:8e: ca:1e:0d:21:fa:49:1a:de:5a:b5:8f:d5:15:91:0c: 3a:ee:a3:66:00:98:b9:cd:20:33:bc:37:1f:21:e2: 90:d2:df:02:bc:ac:73:8d:bb:f8:62:4f:4b:a2:1e: 3c:46:82:7f:e0:23:72:a8:d5:e3:f7:c8:32:da:e6: 05:cb:f2:32:c0:a0:74:ec:d5:32:e9:6b:60:a0:ab: b8:d2:43:c9:95:d6:09:2e:93:12:f2:76:2e:96:83: 6e:16:d0:4a:4c:ac:67:23:3d:03:b6:cf:65:04:58: 80:07:9a:6c:65:5a:ae:a6:cc:ec:a8:20:aa:43:0c: 3c:80:c4:9c:49:b5:d9:bc:46:d1:f6:18:a3:de:7d: ed:1f:95:e6:b8:21:f8:8e:8a:e3:92:5a:8c:00:42: 66:3b:0b:27:69:eb:d7:93:b7:65:39:a0:e4:b8:af: 46:ae:46:0a:2b:c7:90:a0:29:e7:53:13:ec:66:dc: 95:07:33:05:81:89:94:97:ea:e3:fc:6e:91:10:de: 99:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6C:18:2C:3C:0F:D6:D2:11:C2:E9:5B:E4:5C:67:DE:0B:B5:56:42 X509v3 Authority Key Identifier: keyid:95:95:1E:CF:C9:1D:0F:55:AD:8E:D8:AF:BF:E6:3C:B4:16:19:FC:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:fb:6e:47:cb:7e:f8:57:45:12:e5:f3:14:1a:51:bf:a4:1d: e3:82:01:ba:36:af:06:dd:07:61:c7:b9:e5:5c:43:1f:41:70: 6b:63:8f:ad:5c:a6:37:88:0f:a5:59:0d:0a:b5:b1:bf:95:e3: 8f:63:12:ea:87:d3:1b:28:1e:72:fd:ad:0c:75:c1:b9:9d:88: a4:27:1b:0d:07:39:a2:33:7a:45:aa:28:22:8d:6e:78:8f:78: a9:6e:94:59:77:ce:30:6b:12:5f:48:aa:45:4e:08:00:c2:e7: 61:81:fa:41:ba:4c:4e:49:f1:2c:c3:fd:93:73:0c:35:6e:ae: 22:24:94:0a:9d:53:67:5d:d3:8b:32:72:94:33:84:d7:88:a6: e2:1b:70:c0:6b:85:7d:3b:b7:4f:ab:3f:49:be:9d:d4:75:b9: 8c:4b:ea:e5:5e:f3:a1:94:f4:cb:c0:df:b9:43:50:8e:33:6b: 1c:72:7e:48:17:28:08:63:22:eb:24:c6:0d:c9:95:20:e7:0f: 86:ed:3e:f9:36:79:6d:90:f9:87:fe:8b:1c:b4:18:7c:ad:89: 9c:61:60:23:13:34:ab:20:f5:9d:92:6b:8e:ec:d8:56:75:22: aa:0c:82:d4:9d:e2:10:ac:6f:00:3f:4c:b0:9d:91:32:c7:4f: 0e:e8:0c:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0NkIxMTAvBgNVBAUTKDk1OTUxRUNGQzkxRDBGNTVBRDhFRDhBRkJGRTYzQ0I0 MTYxOUZDNDcwHhcNMjQwNTE5MDAyODQzWhcNMjQwNTI2MDAyODQzWjAYMRYwFAYD VQQDEw02NjQ5NDdiYi05Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xO4AvmGZYhLgrXjIpdHk8uXNc7Lo6LLtnOdQ4PU8yDP1o+XcUtbhepMqhjE jM1dGfAamH3X9tULyY7KHg0h+kka3lq1j9UVkQw67qNmAJi5zSAzvDcfIeKQ0t8C vKxzjbv4Yk9Loh48RoJ/4CNyqNXj98gy2uYFy/IywKB07NUy6WtgoKu40kPJldYJ LpMS8nYuloNuFtBKTKxnIz0Dts9lBFiAB5psZVqupszsqCCqQww8gMScSbXZvEbR 9hij3n3tH5XmuCH4jorjklqMAEJmOwsnaevXk7dlOaDkuK9GrkYKK8eQoCnnUxPs ZtyVBzMFgYmUl+rj/G6REN6ZSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNsGCw8 D9bSEcLpW+RcZ94LtVZCMB8GA1UdIwQYMBaAFJWVHs/JHQ9VrY7Yr7/mPLQWGfxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTQ2Qi9FNUFFNDQwQTg4 NEQxMUVCOTg1RUUzN0RDNEY5QUUwMi9sWlVlejhrZEQxV3RqdGl2di1ZOHRCWVpf RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xaVWV6OGtkRDFXdGp0aXZ2LVk4dEJZWl9FYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTQ2Qi9FNUFFNDQwQTg4NEQxMUVCOTg1RUUzN0RDNEY5QUUwMi9sWlVlejhrZEQx V3RqdGl2di1ZOHRCWVpfRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp+25Hy374V0US5fMUGlG/pB3jggG6Nq8G3Qdhx7nlXEMfQXBrY4+t XKY3iA+lWQ0KtbG/leOPYxLqh9MbKB5y/a0MdcG5nYikJxsNBzmiM3pFqigijW54 j3ipbpRZd84waxJfSKpFTggAwudhgfpBukxOSfEsw/2Tcww1bq4iJJQKnVNnXdOL MnKUM4TXiKbiG3DAa4V9O7dPqz9Jvp3UdbmMS+rlXvOhlPTLwN+5Q1COM2sccn5I FygIYyLrJMYNyZUg5w+G7T75NnltkPmH/osctBh8rYmcYWAjEzSrIPWdkmuO7NhW dSKqDILUneIQrG8AP0ywnZEyx08O6Ayh -----END CERTIFICATE-----Generated at Sun May 19 01:47:15 2024 by rpki-client on console-ams.rpki-client.org