$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft File: aLP_FmWJyEQaRP3KYfQrOmOuESk.mft (raw, json) Hash identifier: nuJC5CQc9OercD/twNSlYSz/Nh7nPlVqfUKkuolgwVc= Subject key identifier: 40:5B:B1:49:C1:45:CF:58:1F:C7:6F:D0:07:EB:B0:55:B0:35:21:FA Authority key identifier: 68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 Certificate issuer: /CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft Manifest number: 58 Signing time: Sun 19 May 2024 07:50:19 +0000 Manifest this update: Sun 19 May 2024 07:50:19 +0000 Manifest next update: Sun 26 May 2024 07:50:19 +0000 Files and hashes: 1: aLP_FmWJyEQaRP3KYfQrOmOuESk.crl (hash: YqsmpllD9Cvyy7UoKM3stdoQK2IMbfrGDP39zcPAPiE=) 2: 3425A8A695C211EEBA1ABE46C4F9AE02.roa (hash: UqjYJ5RSufOCb7UTGicYFIf84Nm162ZbjYkdoMwRQiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D/serialNumber=68B3FF166589C8441A44FDCA61F42B3A63AE1129 Validity Not Before: May 19 07:50:19 2024 GMT Not After : May 26 07:50:19 2024 GMT Subject: CN=6649af3b-a8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:59:8c:e0:4e:15:be:04:d5:26:fc:21:0e:0c: ff:38:2c:ec:00:c4:51:49:cb:96:2a:60:38:1a:39: 6d:61:10:22:58:fc:44:61:96:ac:80:6c:e9:a5:af: 1d:7c:1a:c5:55:1f:01:6e:bf:c0:35:c8:3b:91:6e: b2:ab:a3:73:02:d9:85:3a:67:8b:86:23:35:82:2d: c8:64:c0:8a:54:58:fa:3f:41:35:76:ce:53:c8:09: 00:22:8b:99:2e:4c:a2:4b:27:d6:be:bf:48:db:bd: ac:2e:0a:e2:04:59:02:4c:4f:e4:c0:c3:ac:68:73: ff:4d:2b:43:cf:af:07:2d:0a:28:c1:fb:4f:75:06: 5b:fe:84:b0:d4:da:18:12:ad:17:c0:23:f4:85:b8: 01:f8:ac:8d:d8:43:f6:25:47:29:9f:51:44:e2:d3: 6d:bd:26:1a:38:a1:4e:3d:b8:fa:a5:e5:80:e9:c6: cb:50:af:66:b9:92:03:f9:20:53:37:b4:6d:1e:54: 63:e5:c6:c7:fa:96:86:17:08:66:4c:38:b5:fa:44: a9:a8:9b:9e:a4:5f:a6:1c:26:c0:78:28:b8:3f:38: 38:72:1f:f8:11:50:ed:e3:02:d4:7f:5f:90:36:b3: 0a:82:45:31:24:53:09:4c:62:1f:c8:79:28:84:f7: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5B:B1:49:C1:45:CF:58:1F:C7:6F:D0:07:EB:B0:55:B0:35:21:FA X509v3 Authority Key Identifier: keyid:68:B3:FF:16:65:89:C8:44:1A:44:FD:CA:61:F4:2B:3A:63:AE:11:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLP_FmWJyEQaRP3KYfQrOmOuESk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/aLP_FmWJyEQaRP3KYfQrOmOuESk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:15:88:c7:0d:61:68:37:b9:f2:8e:13:68:21:ec:dd:ba:a8: 96:5b:a2:34:bc:55:8d:b2:6f:37:15:dc:fe:d8:b1:bd:a9:d5: b8:ea:7a:63:f6:0e:27:a0:91:84:a3:4f:3c:09:0a:80:9c:25: b7:4f:db:35:5c:a0:89:a2:cb:e0:cf:a3:47:fa:b6:e7:0f:b5: e9:19:a1:36:83:06:6c:fb:e2:76:ea:f1:3c:01:bb:8c:69:95: 86:ee:b7:08:3b:43:d2:87:ab:5f:77:05:19:7b:c1:af:16:a2: 99:d6:d5:8c:f5:06:b8:c2:56:7a:5b:ea:28:b5:1f:7b:27:36: f4:58:d3:5a:0c:1e:56:3c:b1:8c:e4:b0:b7:6c:77:ff:68:bd: 98:43:f4:c3:29:6b:80:d3:cf:25:e4:34:2e:61:f5:a4:f3:ac: 4f:dc:d0:b5:31:16:27:5e:05:c4:70:0b:52:1c:53:7a:b4:cd: eb:32:90:b6:e2:99:82:13:82:80:d2:31:de:98:71:ed:89:63: c5:e5:f1:ba:0f:2f:46:e5:b0:ca:33:98:aa:52:65:cb:59:5a: bc:0a:99:c3:41:07:3f:90:81:c4:09:00:8a:1e:4e:58:5b:26: 34:2a:e2:cb:2e:25:01:2b:10:0e:72:1d:97:24:c4:5d:24:cc: f6:ba:08:40 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MkM1RDExMC8GA1UEBRMoNjhCM0ZGMTY2NTg5Qzg0NDFBNDRGRENBNjFGNDJCM0E2 M0FFMTEyOTAeFw0yNDA1MTkwNzUwMTlaFw0yNDA1MjYwNzUwMTlaMBgxFjAUBgNV BAMTDTY2NDlhZjNiLWE4YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSWYzgThW+BNUm/CEODP84LOwAxFFJy5YqYDgaOW1hECJY/ERhlqyAbOmlrx18 GsVVHwFuv8A1yDuRbrKro3MC2YU6Z4uGIzWCLchkwIpUWPo/QTV2zlPICQAii5ku TKJLJ9a+v0jbvawuCuIEWQJMT+TAw6xoc/9NK0PPrwctCijB+091Blv+hLDU2hgS rRfAI/SFuAH4rI3YQ/YlRymfUUTi0229Jho4oU49uPql5YDpxstQr2a5kgP5IFM3 tG0eVGPlxsf6loYXCGZMOLX6RKmom56kX6YcJsB4KLg/ODhyH/gRUO3jAtR/X5A2 swqCRTEkUwlMYh/IeSiE9177AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQFuxScFF z1gfx2/QB+uwVbA1IfowHwYDVR0jBBgwFoAUaLP/FmWJyEQaRP3KYfQrOmOuESkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyQzVELzNCOURENDEwOTJD NDExRUVCNTIxQkI0OUM0RjlBRTAyL2FMUF9GbVdKeUVRYVJQM0tZZlFyT21PdUVT ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUxQX0ZtV0p5RVFhUlAzS1lmUXJPbU91RVNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy QzVELzNCOURENDEwOTJDNDExRUVCNTIxQkI0OUM0RjlBRTAyL2FMUF9GbVdKeUVR YVJQM0tZZlFyT21PdUVTay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADMViMcNYWg3ufKOE2gh7N26qJZbojS8VY2ybzcV3P7Ysb2p1bjqemP2 DiegkYSjTzwJCoCcJbdP2zVcoImiy+DPo0f6tucPtekZoTaDBmz74nbq8TwBu4xp lYbutwg7Q9KHq193BRl7wa8WopnW1Yz1BrjCVnpb6ii1H3snNvRY01oMHlY8sYzk sLdsd/9ovZhD9MMpa4DTzyXkNC5h9aTzrE/c0LUxFideBcRwC1IcU3q0zesykLbi mYITgoDSMd6Yce2JY8Xl8boPL0blsMozmKpSZctZWrwKmcNBBz+QgcQJAIoeTlhb JjQq4ssuJQErEA5yHZckxF0kzPa6CEA= -----END CERTIFICATE-----Generated at Sun May 19 09:32:17 2024 by rpki-client on console-ams.rpki-client.org