$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft File: LHMz280_ygeHgDg3tsuuMawMS2U.mft (raw, json) Hash identifier: +gw0z/Mqm1qEtnVyq5Sy7KcB5k0M62Oj/l/eDAn+Vxg= Subject key identifier: 48:9D:81:52:E4:E7:1E:27:51:AC:9E:11:85:B2:ED:AC:C9:CC:05:0C Authority key identifier: 2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 Certificate issuer: /CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Certificate serial: 0C91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft Manifest number: 0C83 Signing time: Sat 18 May 2024 18:52:41 +0000 Manifest this update: Sat 18 May 2024 18:52:40 +0000 Manifest next update: Sat 25 May 2024 18:52:40 +0000 Files and hashes: 1: LHMz280_ygeHgDg3tsuuMawMS2U.crl (hash: HC476cUzx+e8lSKvYQqpTCNGq6GgiLFZobecd6DjVFU=) 2: 62BA539C48ED11EDBC251337C4F9AE02.roa (hash: VMNO8FNq0eLyX6JPFhATiUsnlzGjEI7n6kEVtb0uqOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3217 (0xc91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3FD3/serialNumber=2C7333DBCD3FCA0787803837B6CBAE31AC0C4B65 Validity Not Before: May 18 18:52:40 2024 GMT Not After : May 25 18:52:40 2024 GMT Subject: CN=6648f8f9-3222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1e:78:c0:31:44:11:fb:ac:0c:41:dc:1c:5f: bf:23:d3:b7:8e:d9:a2:e8:ff:13:a0:c1:40:f1:a7: e6:0d:b8:ce:d4:e6:3b:a5:8d:10:23:8f:08:f4:49: 1d:e3:3c:32:0a:4f:64:4a:c8:5b:e5:56:c2:3c:e5: 75:67:9b:6b:69:d3:2b:dc:8e:66:36:a3:86:45:6a: 8e:ae:26:c6:dc:2a:c4:10:d4:6f:fa:79:1e:ec:7e: 7d:5e:b7:11:6e:3b:56:0f:20:1b:bb:89:52:e6:17: 31:51:2b:26:13:17:9e:da:ba:e8:56:41:66:22:83: 74:e8:5a:69:71:32:af:5c:c0:2c:98:c8:a1:ff:95: f0:69:48:8a:21:7a:3b:ba:dc:af:dd:32:37:6d:3e: b1:e7:53:21:12:8e:c2:2a:64:cb:2d:a6:d4:50:09: 2b:7d:f8:dd:53:bc:34:12:bb:c7:f2:df:4b:19:3e: 11:9f:8b:cb:76:a5:c7:6f:2d:25:53:be:02:a4:3a: 9b:5a:4c:ad:af:9a:f1:02:6b:2d:27:87:5a:70:c7: 9c:7e:ac:61:2b:71:97:97:0b:80:8b:04:c9:28:e9: 74:99:2b:7e:6e:ad:14:19:c9:58:25:26:6a:3f:e5: 35:89:c9:27:a1:f2:c0:d9:0b:3c:05:34:da:f1:3d: 0e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9D:81:52:E4:E7:1E:27:51:AC:9E:11:85:B2:ED:AC:C9:CC:05:0C X509v3 Authority Key Identifier: keyid:2C:73:33:DB:CD:3F:CA:07:87:80:38:37:B6:CB:AE:31:AC:0C:4B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LHMz280_ygeHgDg3tsuuMawMS2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3FD3/21DE5B9AD49511E9A27DC92FC4F9AE02/LHMz280_ygeHgDg3tsuuMawMS2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:2b:9f:a2:fc:bc:a5:9c:d4:3e:42:39:8f:a9:0e:89:de:63: 2b:36:2a:30:f2:b5:30:3c:5c:85:c8:d0:db:2c:94:87:f9:3e: 19:d3:4b:31:d9:69:fb:35:79:a2:88:f0:f7:52:7e:79:6a:32: 65:14:10:37:e1:d9:07:44:83:5b:4e:b9:89:d3:46:d4:8a:8d: 26:51:07:da:7e:a1:79:92:4a:18:09:7c:d6:52:eb:ca:53:86: 4e:47:f8:50:7f:a5:f4:08:d7:0f:5a:09:a7:ab:e2:56:c7:e6: 41:18:c9:94:c1:e1:e9:de:b0:00:9c:0b:29:ca:31:b9:67:b7: da:e0:46:c1:6a:74:de:25:a2:d4:57:ce:2e:9d:84:3f:ae:21: 33:14:c1:b2:51:02:da:2c:d9:eb:93:90:99:be:b4:a5:90:50: 87:7c:d6:1b:4d:af:07:10:15:2b:85:65:62:6f:f8:18:7f:fa: 1f:92:99:bb:15:b2:f6:2e:fd:33:00:cd:98:44:3b:10:a4:35: 37:8a:8e:08:2a:23:53:31:7b:f3:52:42:5f:b2:d8:00:f6:d9: 3b:0d:3f:4e:a2:a6:b4:cd:5d:46:4b:0b:45:95:d8:2a:04:38: 97:06:be:d8:e4:05:99:31:c2:ba:2a:c8:49:55:f7:70:73:46: a1:59:42:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGRDMxMTAvBgNVBAUTKDJDNzMzM0RCQ0QzRkNBMDc4NzgwMzgzN0I2Q0JBRTMx QUMwQzRCNjUwHhcNMjQwNTE4MTg1MjQwWhcNMjQwNTI1MTg1MjQwWjAYMRYwFAYD VQQDEw02NjQ4ZjhmOS0zMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqR54wDFEEfusDEHcHF+/I9O3jtmi6P8ToMFA8afmDbjO1OY7pY0QI48I9Ekd 4zwyCk9kSshb5VbCPOV1Z5tradMr3I5mNqOGRWqOribG3CrEENRv+nke7H59XrcR bjtWDyAbu4lS5hcxUSsmExee2rroVkFmIoN06FppcTKvXMAsmMih/5XwaUiKIXo7 utyv3TI3bT6x51MhEo7CKmTLLabUUAkrffjdU7w0ErvH8t9LGT4Rn4vLdqXHby0l U74CpDqbWkytr5rxAmstJ4dacMecfqxhK3GXlwuAiwTJKOl0mSt+bq0UGclYJSZq P+U1icknofLA2Qs8BTTa8T0O2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEidgVLk 5x4nUayeEYWy7azJzAUMMB8GA1UdIwQYMBaAFCxzM9vNP8oHh4A4N7bLrjGsDEtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0ZEMy8yMURFNUI5QUQ0 OTUxMUU5QTI3REM5MkZDNEY5QUUwMi9MSE16MjgwX3lnZUhnRGczdHN1dU1hd01T MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xITXoyODBfeWdlSGdEZzN0c3V1TWF3TVMyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0ZEMy8yMURFNUI5QUQ0OTUxMUU5QTI3REM5MkZDNEY5QUUwMi9MSE16MjgwX3ln ZUhnRGczdHN1dU1hd01TMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwK5+i/LylnNQ+QjmPqQ6J3mMrNiow8rUwPFyFyNDbLJSH+T4Z00sx 2Wn7NXmiiPD3Un55ajJlFBA34dkHRINbTrmJ00bUio0mUQfafqF5kkoYCXzWUuvK U4ZOR/hQf6X0CNcPWgmnq+JWx+ZBGMmUweHp3rAAnAspyjG5Z7fa4EbBanTeJaLU V84unYQ/riEzFMGyUQLaLNnrk5CZvrSlkFCHfNYbTa8HEBUrhWVib/gYf/ofkpm7 FbL2Lv0zAM2YRDsQpDU3io4IKiNTMXvzUkJfstgA9tk7DT9Ooqa0zV1GSwtFldgq BDiXBr7Y5AWZMcK6KshJVfdwc0ahWUJc -----END CERTIFICATE-----Generated at Sat May 18 20:16:07 2024 by rpki-client on console-ams.rpki-client.org