$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft File: L2rfQq_RZAgOox4PO4M4vtbaHlk.mft (raw, json) Hash identifier: XKH0ZH5RCk6OjJ1FJh5xtsa2OczAKQe9xZ6pJPz3hpQ= Subject key identifier: 89:16:14:74:22:37:73:77:50:73:E7:B3:0F:2D:D9:A0:2F:1D:95:9B Authority key identifier: 2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 Certificate issuer: /CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Certificate serial: 08DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft Manifest number: 08D7 Signing time: Sat 18 May 2024 21:22:55 +0000 Manifest this update: Sat 18 May 2024 21:22:54 +0000 Manifest next update: Sat 25 May 2024 21:22:54 +0000 Files and hashes: 1: L2rfQq_RZAgOox4PO4M4vtbaHlk.crl (hash: mQy0oZ2ab7TxKTGVDRn638OzwZYukc5n6/lbu4YRT/A=) 2: F3173EDC898C11EA97286262C4F9AE02.roa (hash: ZA0CuTOIyCI3JhlnQLJJOmvDzapugQ+tOGEQJueyAWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7164/serialNumber=2F6ADF42AFD164080EA31E0F3B8338BED6DA1E59 Validity Not Before: May 18 21:22:54 2024 GMT Not After : May 25 21:22:54 2024 GMT Subject: CN=66491c2e-0bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7e:be:47:31:62:d2:92:87:9d:a8:11:8b:d6: 60:44:b7:69:d9:3f:6a:ee:52:7d:c2:36:e5:d0:af: ae:63:d1:a3:87:17:90:c2:ed:d0:79:c1:76:09:f9: 9f:48:6f:81:ea:ea:8a:96:71:be:92:3f:b3:36:7d: 8d:77:93:fd:2a:da:62:41:b7:59:5b:c1:f0:e6:59: 4e:ba:69:98:4d:43:bc:a9:9e:c8:9e:b0:90:65:93: b1:72:61:43:c9:5d:fa:2a:eb:df:53:3f:ab:18:b3: 77:e5:29:7e:a5:b6:fa:4a:bd:6f:e0:39:82:b3:33: 44:89:53:7b:ab:d1:87:3b:b0:35:7e:cf:37:ff:4b: 20:54:a9:60:2f:87:74:41:7f:b9:5e:50:5f:07:0d: 44:ea:76:ea:46:1e:23:5c:f6:8d:b1:74:d5:91:92: 16:1a:54:e5:4f:2a:94:8f:57:a2:49:fe:78:bc:b2: 03:2a:ea:bc:4d:e8:d8:85:65:6b:49:76:ba:e0:bf: ca:6a:a3:0e:c6:b7:f6:8d:48:29:47:56:37:68:10: 55:de:cb:f7:ec:95:d3:19:53:3e:1e:c6:ed:5b:f8: ee:b5:4b:de:4d:9a:8c:9c:96:d1:38:fe:18:da:73: 67:27:55:03:3b:f3:91:56:49:bd:bc:d4:e1:0f:4d: f2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:16:14:74:22:37:73:77:50:73:E7:B3:0F:2D:D9:A0:2F:1D:95:9B X509v3 Authority Key Identifier: keyid:2F:6A:DF:42:AF:D1:64:08:0E:A3:1E:0F:3B:83:38:BE:D6:DA:1E:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L2rfQq_RZAgOox4PO4M4vtbaHlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7164/228ABF74898B11EA92759A5CC4F9AE02/L2rfQq_RZAgOox4PO4M4vtbaHlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:75:cb:ae:ae:c8:c2:d9:ef:db:c1:82:63:7f:c1:20:53:94: b4:57:27:b8:9d:17:61:05:0f:88:5e:2f:6b:b3:dc:7e:1b:9e: 50:0c:06:3f:7c:42:fb:b3:4a:63:79:e8:04:49:d7:81:a0:00: 87:10:59:15:d1:77:9e:d5:d6:e7:84:fc:7d:98:ef:6e:1f:07: 37:17:a1:75:fa:70:0f:a7:e6:8b:a0:56:7f:85:c0:9f:05:dc: b0:cb:aa:9d:2b:c1:bc:f9:e1:b1:93:d8:51:2a:06:99:9a:aa: d5:55:31:aa:de:c1:54:1f:56:ee:31:1b:d4:3a:4b:84:d5:b4: 04:50:e7:cf:30:be:f2:8e:a5:57:93:14:98:f2:bf:18:f0:18: 9d:ad:c8:1f:20:6d:54:2e:30:90:cb:3e:6c:00:c6:b4:67:ab: 6b:e1:8a:50:99:f0:d5:9f:85:af:90:3f:0e:4f:d7:1b:2f:5e: 5d:4c:15:97:22:2b:c2:93:3a:2a:94:e5:35:b5:36:b8:02:40: b9:ff:7b:99:d0:5d:0c:3c:bd:97:ff:83:ec:92:1c:42:21:e3: a8:26:fb:32:d3:4b:93:44:27:3c:af:76:eb:80:dd:b6:b2:60: 51:7a:06:35:ff:48:ff:59:0b:d4:84:c7:ac:80:e8:76:da:a2: 0d:aa:f5:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxNjQxMTAvBgNVBAUTKDJGNkFERjQyQUZEMTY0MDgwRUEzMUUwRjNCODMzOEJF RDZEQTFFNTkwHhcNMjQwNTE4MjEyMjU0WhcNMjQwNTI1MjEyMjU0WjAYMRYwFAYD VQQDEw02NjQ5MWMyZS0wYmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX6+RzFi0pKHnagRi9ZgRLdp2T9q7lJ9wjbl0K+uY9GjhxeQwu3QecF2Cfmf SG+B6uqKlnG+kj+zNn2Nd5P9KtpiQbdZW8Hw5llOummYTUO8qZ7InrCQZZOxcmFD yV36KuvfUz+rGLN35Sl+pbb6Sr1v4DmCszNEiVN7q9GHO7A1fs83/0sgVKlgL4d0 QX+5XlBfBw1E6nbqRh4jXPaNsXTVkZIWGlTlTyqUj1eiSf54vLIDKuq8TejYhWVr SXa64L/KaqMOxrf2jUgpR1Y3aBBV3sv37JXTGVM+HsbtW/jutUveTZqMnJbROP4Y 2nNnJ1UDO/ORVkm9vNThD03yDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkWFHQi N3N3UHPnsw8t2aAvHZWbMB8GA1UdIwQYMBaAFC9q30Kv0WQIDqMeDzuDOL7W2h5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzE2NC8yMjhBQkY3NDg5 OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpBZ09veDRQTzRNNHZ0YmFI bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wycmZRcV9SWkFnT294NFBPNE00dnRiYUhsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzE2NC8yMjhBQkY3NDg5OEIxMUVBOTI3NTlBNUNDNEY5QUUwMi9MMnJmUXFfUlpB Z09veDRQTzRNNHZ0YmFIbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAddcuursjC2e/bwYJjf8EgU5S0Vye4nRdhBQ+IXi9rs9x+G55QDAY/ fEL7s0pjeegESdeBoACHEFkV0Xee1dbnhPx9mO9uHwc3F6F1+nAPp+aLoFZ/hcCf Bdywy6qdK8G8+eGxk9hRKgaZmqrVVTGq3sFUH1buMRvUOkuE1bQEUOfPML7yjqVX kxSY8r8Y8BidrcgfIG1ULjCQyz5sAMa0Z6tr4YpQmfDVn4WvkD8OT9cbL15dTBWX IivCkzoqlOU1tTa4AkC5/3uZ0F0MPL2X/4PskhxCIeOoJvsy00uTRCc8r3brgN22 smBRegY1/0j/WQvUhMesgOh22qINqvWU -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org