$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft File: lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft (raw, json) Hash identifier: 1BSi+VUAVDP7y0w4ZtRVp/qtKxNZC2X7v0gESfiAfX4= Subject key identifier: 43:F5:1D:2D:C2:18:3E:4C:83:EA:3E:A6:0E:2F:89:0C:09:79:D7:A5 Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 33E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft Manifest number: 33D8 Signing time: Sat 18 May 2024 15:09:50 +0000 Manifest this update: Sat 18 May 2024 15:09:49 +0000 Manifest next update: Sat 25 May 2024 15:09:49 +0000 Files and hashes: 1: lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl (hash: Y8tWRZ3ZTbK6xWtUpt93/N+1jNgsWn6fzn/78LbbELY=) 2: C64C7958422411EA9CA5F423C4F9AE02.roa (hash: 3fSEvKM13CebYGAsrgkzFIerRrbjNtx416zFYNRYGP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13282 (0x33e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: May 18 15:09:49 2024 GMT Not After : May 25 15:09:49 2024 GMT Subject: CN=6648c4bd-0aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bb:8b:da:81:ca:9f:a4:c0:6a:93:70:a3:5a: 7b:7e:22:68:fd:ad:5a:9d:25:0d:13:b2:89:79:cc: 38:e1:99:54:0e:2b:c5:e2:f0:00:43:51:96:52:21: 52:31:b5:06:d4:06:c0:af:86:c9:d1:d2:60:7f:f9: ae:88:08:9b:1a:9d:79:58:b9:5e:be:bf:92:86:d0: a5:dd:09:c6:30:ab:60:14:14:86:80:24:d9:19:90: 69:f3:3c:12:c8:77:84:bc:51:2e:a4:89:67:9a:45: ff:9b:c7:67:e0:f2:2b:06:31:b2:9c:57:88:d8:7d: 17:44:ac:45:c7:3f:3a:e8:3f:e9:ba:3f:c5:01:65: 77:cb:66:25:88:cc:0c:7b:7f:30:e9:01:64:17:ad: 93:5a:85:04:7a:ea:5d:27:85:8f:df:7c:36:9f:c8: 96:20:aa:79:83:3d:43:fd:74:a1:79:63:4e:f5:12: 9f:ee:7a:32:f9:58:e6:28:c8:f1:03:fb:ea:b8:eb: a4:76:80:b7:e2:fc:34:e2:84:81:70:e4:03:29:bd: 3a:a0:32:e5:81:ea:94:80:64:01:1e:ca:fa:20:a2: 12:16:7b:f4:aa:a5:a7:50:8d:80:aa:8c:56:e8:fa: 5e:8d:ee:05:6a:ff:89:51:4c:60:e9:10:a3:7e:fa: 4c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F5:1D:2D:C2:18:3E:4C:83:EA:3E:A6:0E:2F:89:0C:09:79:D7:A5 X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:8c:17:b3:d9:e7:fd:a4:3a:6b:e6:d4:92:58:51:e3:cc:02: c9:86:d2:90:f4:f0:b9:cd:8b:9d:0b:35:15:e0:78:a7:a6:e4: 17:82:74:68:dd:eb:ed:85:49:dc:23:53:89:83:ef:18:09:e7: 4c:32:6b:60:be:54:12:a6:d3:e0:9e:0b:d2:2f:5c:cd:cb:b7: d0:76:30:82:c3:68:b4:ca:ff:d6:6e:a0:c5:49:9c:45:bb:2a: 03:a3:53:b3:51:09:3f:8c:f2:a9:25:43:09:ac:51:00:d9:3c: ef:4f:74:73:ae:73:55:ea:c0:39:e2:25:9c:46:63:05:4f:4c: 9c:86:9c:6a:e5:a0:73:7c:18:ea:b1:3f:46:bc:b7:d7:e6:56: 53:c8:9a:2f:8a:10:8f:36:d0:a4:91:5f:ac:1e:91:eb:f9:3c: 26:b8:03:af:c0:5c:4c:18:0d:f6:23:d5:a1:40:8d:fe:6b:9a: 70:e3:b0:81:ce:a9:a8:12:6f:0e:d7:a3:55:06:f1:63:1c:60: b4:33:08:96:fe:df:b7:aa:ac:b0:4d:21:86:ce:0f:bc:8d:3c: fc:62:b9:73:d5:78:3d:12:21:75:30:ec:3c:52:fb:9e:74:98: c4:a5:0e:69:4f:36:fc:29:1f:03:21:34:eb:d2:ef:ac:8e:be: 47:c6:10:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjQwNTE4MTUwOTQ5WhcNMjQwNTI1MTUwOTQ5WjAYMRYwFAYD VQQDEw02NjQ4YzRiZC0wYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzruL2oHKn6TAapNwo1p7fiJo/a1anSUNE7KJecw44ZlUDivF4vAAQ1GWUiFS MbUG1AbAr4bJ0dJgf/muiAibGp15WLlevr+ShtCl3QnGMKtgFBSGgCTZGZBp8zwS yHeEvFEupIlnmkX/m8dn4PIrBjGynFeI2H0XRKxFxz866D/puj/FAWV3y2YliMwM e38w6QFkF62TWoUEeupdJ4WP33w2n8iWIKp5gz1D/XSheWNO9RKf7noy+VjmKMjx A/vquOukdoC34vw04oSBcOQDKb06oDLlgeqUgGQBHsr6IKISFnv0qqWnUI2AqoxW 6Ppeje4Fav+JUUxg6RCjfvpMMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP1HS3C GD5Mg+o+pg4viQwJedelMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUMwNi82REVBRTIxQzFEOUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0y dG1fRmJtN0lhLVRjTGlqaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKjBez2ef9pDpr5tSSWFHjzALJhtKQ9PC5zYudCzUV4HinpuQXgnRo 3evthUncI1OJg+8YCedMMmtgvlQSptPgngvSL1zNy7fQdjCCw2i0yv/WbqDFSZxF uyoDo1OzUQk/jPKpJUMJrFEA2TzvT3RzrnNV6sA54iWcRmMFT0ychpxq5aBzfBjq sT9GvLfX5lZTyJovihCPNtCkkV+sHpHr+TwmuAOvwFxMGA32I9WhQI3+a5pw47CB zqmoEm8O16NVBvFjHGC0MwiW/t+3qqywTSGGzg+8jTz8Yrlz1Xg9EiF1MOw8Uvue dJjEpQ5pTzb8KR8DITTr0u+sjr5HxhAg -----END CERTIFICATE-----Generated at Sat May 18 15:58:23 2024 by rpki-client on console-ams.rpki-client.org