$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: ebEdSY3FEheWpwvcNqCptRe1cRQgzbiB4sLOqudU5IE= Subject key identifier: 4D:DE:37:E5:C9:EC:F8:34:F5:0B:A5:FA:3F:22:8A:AC:DA:33:54:CD Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 1128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 1127 Signing time: Sat 18 May 2024 17:49:31 +0000 Manifest this update: Sat 18 May 2024 17:49:31 +0000 Manifest next update: Sat 25 May 2024 17:49:31 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: 3wKlwT8fBdPln9OJrGjsHGeMtRZJ37sqx401N/lphRQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4392 (0x1128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: May 18 17:49:31 2024 GMT Not After : May 25 17:49:31 2024 GMT Subject: CN=6648ea2b-903b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6f:81:3a:06:d5:cb:2f:94:49:78:d0:4d:7b: 07:18:b9:0d:41:df:95:08:13:9f:f8:03:57:6d:b5: 3d:c4:10:3f:10:8c:71:fc:8e:7e:8e:c3:78:c7:30: 4a:9c:16:96:48:59:11:73:2e:7c:52:7b:1a:2b:c0: b4:21:a9:55:3c:71:89:2c:cb:85:e5:d4:8c:0f:4a: c8:fa:ca:4b:bc:f5:dd:51:f8:38:87:8a:67:37:d3: d7:07:0d:37:80:e4:3c:f4:53:da:45:71:3c:91:51: 07:16:d1:74:32:fe:02:38:2b:0f:7d:62:c1:50:33: 2c:aa:14:67:45:9c:48:0a:e9:fb:1c:8f:d1:cf:38: 68:6c:9b:cf:65:ab:63:d9:03:ef:fd:d5:c9:c4:fe: 51:e4:4c:c8:4d:f5:a3:32:9d:8e:89:b5:b8:97:76: 44:42:cc:41:2c:49:b0:a2:59:38:6d:f4:34:bc:9f: 96:ed:7f:bd:50:a2:8b:7a:6b:c1:34:bf:96:08:70: 38:33:08:a0:e8:b1:a8:68:2d:e2:ea:0f:06:ef:6a: d1:b7:6e:48:28:e4:e2:4d:11:21:ab:e1:f3:05:51: 70:9c:28:a3:30:92:42:ed:12:f3:08:0b:d0:70:91: 8b:90:2e:16:97:b1:05:e6:ef:df:86:c4:20:e0:6a: a3:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:DE:37:E5:C9:EC:F8:34:F5:0B:A5:FA:3F:22:8A:AC:DA:33:54:CD X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:3b:9c:78:79:5d:92:04:c4:ea:44:f6:28:d1:46:05:62:8e: 2e:e6:77:07:b0:7f:73:29:2e:89:8a:cd:5c:cf:2a:fe:1c:41: bf:a0:cb:ab:51:f5:b7:0e:65:db:19:61:6c:a0:63:87:bc:15: 46:5d:91:ea:10:0d:c5:8a:60:87:40:65:cf:86:4a:75:94:1d: 64:97:85:4d:f8:37:3f:48:f4:3a:45:9e:13:dc:6c:c0:b8:37: da:14:d8:93:08:89:54:e4:72:d1:08:97:77:9b:80:b6:b4:f7: b0:c5:98:34:df:46:95:f0:95:c0:3b:25:d8:0e:72:e2:7c:01: 79:94:f4:13:42:e1:26:b1:e3:ea:eb:db:78:3a:b1:e7:1a:61: 31:0c:3a:22:cd:4e:a7:be:44:98:51:9c:b4:c7:27:3c:42:a3: 39:dd:96:11:48:d7:6c:53:21:49:98:dd:fa:2f:1d:ba:0d:95: 35:77:13:42:11:54:41:7e:63:e3:e8:91:71:2c:89:5f:6b:28: e0:39:d0:9a:47:d3:18:f5:12:81:23:e1:1a:0a:4f:47:8e:93: 89:0b:50:38:be:1d:c2:b4:a5:9f:e0:77:7d:cd:42:b2:c2:53: d2:42:3f:9e:34:91:c7:63:ab:d6:9c:95:67:0d:0e:0c:ef:c8: 70:20:e5:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICESgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjQwNTE4MTc0OTMxWhcNMjQwNTI1MTc0OTMxWjAYMRYwFAYD VQQDEw02NjQ4ZWEyYi05MDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3W+BOgbVyy+USXjQTXsHGLkNQd+VCBOf+ANXbbU9xBA/EIxx/I5+jsN4xzBK nBaWSFkRcy58UnsaK8C0IalVPHGJLMuF5dSMD0rI+spLvPXdUfg4h4pnN9PXBw03 gOQ89FPaRXE8kVEHFtF0Mv4COCsPfWLBUDMsqhRnRZxICun7HI/RzzhobJvPZatj 2QPv/dXJxP5R5EzITfWjMp2OibW4l3ZEQsxBLEmwolk4bfQ0vJ+W7X+9UKKLemvB NL+WCHA4Mwig6LGoaC3i6g8G72rRt25IKOTiTREhq+HzBVFwnCijMJJC7RLzCAvQ cJGLkC4Wl7EF5u/fhsQg4GqjfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3eN+XJ 7Pg09Qul+j8iiqzaM1TNMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeO5x4eV2SBMTqRPYo0UYFYo4u5ncHsH9zKS6Jis1czyr+HEG/oMur UfW3DmXbGWFsoGOHvBVGXZHqEA3FimCHQGXPhkp1lB1kl4VN+Dc/SPQ6RZ4T3GzA uDfaFNiTCIlU5HLRCJd3m4C2tPewxZg030aV8JXAOyXYDnLifAF5lPQTQuEmsePq 69t4OrHnGmExDDoizU6nvkSYUZy0xyc8QqM53ZYRSNdsUyFJmN36Lx26DZU1dxNC EVRBfmPj6JFxLIlfayjgOdCaR9MY9RKBI+EaCk9HjpOJC1A4vh3CtKWf4Hd9zUKy wlPSQj+eNJHHY6vWnJVnDQ4M78hwIOWU -----END CERTIFICATE-----Generated at Sat May 18 18:46:46 2024 by rpki-client on console-fra.rpki-client.org