$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft File: LnNx4gZThK0R1DN9DS7NH2bSGco.mft (raw, json) Hash identifier: ni48KGjqAYF7g2F0baYG05+i8GaOmDMuaNbLLwFpkII= Subject key identifier: FC:70:BA:5A:83:5C:38:69:18:89:CA:A2:64:27:57:BE:E0:58:7C:91 Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft Manifest number: 0193 Signing time: Sun 19 May 2024 04:41:39 +0000 Manifest this update: Sun 19 May 2024 04:41:38 +0000 Manifest next update: Sun 26 May 2024 04:41:38 +0000 Files and hashes: 1: LnNx4gZThK0R1DN9DS7NH2bSGco.crl (hash: g2tOeNE6Qwi48TIch2axdnN//JU6bazLksVU56jGoqs=) 2: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (hash: T0f49ZjInwBaZPKtrl/4SLh0W6Ufl4R+u4BDxQcCIRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Validity Not Before: May 19 04:41:38 2024 GMT Not After : May 26 04:41:38 2024 GMT Subject: CN=66498302-46be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:47:68:f5:08:52:50:66:97:cc:ee:0f:f0:8f: c8:64:e1:a4:ad:20:38:37:6d:2c:a3:6f:88:4b:a8: 7d:0d:b3:0d:d6:5f:ed:8d:25:b7:d5:c2:68:2a:76: 21:b9:b0:f1:8a:cc:98:6d:28:87:88:dd:db:ad:2e: 75:2f:fa:79:d9:68:bd:3d:05:09:38:d4:34:d6:5e: cd:01:b3:d4:ea:e6:51:c7:0c:58:44:a4:68:4f:e4: 28:62:5b:2d:96:24:14:9c:b6:c0:4d:44:32:f2:a3: d2:1a:17:a4:f9:b6:8f:95:58:21:6a:e1:ee:a9:2e: ef:4a:36:53:03:93:c4:a3:ee:bc:c9:f6:17:27:49: b0:cf:cb:67:43:98:9f:5e:5c:f5:f7:5f:28:38:fd: af:51:ca:75:94:1a:33:5f:28:c8:85:b6:c8:07:5b: f3:df:be:d7:f0:f5:33:7e:33:a6:08:12:01:12:d7: 51:27:9e:b7:5d:04:0b:8e:cd:f9:a2:a4:1e:fe:33: 7a:58:fd:87:91:5f:e9:16:66:ae:20:22:2e:2c:db: 38:02:bb:d9:01:89:11:a6:53:c0:60:09:16:10:26: eb:f0:57:60:1c:03:7d:22:67:65:ac:96:fc:63:92: da:14:c4:04:6c:e1:af:40:95:91:ef:f4:c9:79:dc: 4d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:70:BA:5A:83:5C:38:69:18:89:CA:A2:64:27:57:BE:E0:58:7C:91 X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:16:ec:4b:2f:35:7e:4c:71:bf:65:f5:8b:b8:b8:40:8d:82: 89:74:11:12:68:26:47:0f:55:d1:41:1d:e2:99:c3:11:f7:b6: b3:68:1b:bf:f2:03:7f:b1:8b:d6:5a:ef:ec:92:bf:62:7b:99: c6:41:95:9b:d8:f5:ee:50:ea:90:b5:e2:77:5d:63:26:0e:cc: 8b:6c:f8:47:92:21:9a:7e:73:b6:3e:34:10:02:14:6f:39:9e: c4:a0:52:5c:9b:25:4c:07:f1:85:1d:b6:c4:2f:d7:7d:af:c9: 33:77:3d:8c:4b:7f:12:f6:c1:fe:e9:ca:b1:87:77:c7:e5:0f: 85:64:c1:27:52:e7:47:3a:3e:f6:4c:91:aa:ad:10:6a:b6:b2: ea:47:57:8a:c8:d3:4b:6c:ff:a7:7f:8a:ce:97:a5:88:35:b9: d6:cb:32:0e:58:43:ea:e3:d9:83:03:b5:09:20:60:2b:73:01: 5c:4f:8b:1e:db:fc:6b:5e:28:25:59:c9:58:65:7b:14:4f:d6: e3:ba:a2:a8:d6:c8:d5:b0:09:c8:34:0b:48:fa:f3:3e:fd:d8: c8:42:e9:03:ba:7b:10:7c:c5:33:7e:ae:40:66:2f:f3:09:ac: fb:f0:70:3e:1a:53:cd:41:a1:10:2b:12:02:88:70:50:8a:22: b7:6c:d1:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjQwNTE5MDQ0MTM4WhcNMjQwNTI2MDQ0MTM4WjAYMRYwFAYD VQQDEw02NjQ5ODMwMi00NmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUdo9QhSUGaXzO4P8I/IZOGkrSA4N20so2+IS6h9DbMN1l/tjSW31cJoKnYh ubDxisyYbSiHiN3brS51L/p52Wi9PQUJONQ01l7NAbPU6uZRxwxYRKRoT+QoYlst liQUnLbATUQy8qPSGhek+baPlVghauHuqS7vSjZTA5PEo+68yfYXJ0mwz8tnQ5if Xlz1918oOP2vUcp1lBozXyjIhbbIB1vz377X8PUzfjOmCBIBEtdRJ563XQQLjs35 oqQe/jN6WP2HkV/pFmauICIuLNs4ArvZAYkRplPAYAkWECbr8FdgHAN9ImdlrJb8 Y5LaFMQEbOGvQJWR7/TJedxNpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxwulqD XDhpGInKomQnV77gWHyRMB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1My83QjU2MjQ0NDFCQkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhL MFIxRE45RFM3TkgyYlNHY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhFuxLLzV+THG/ZfWLuLhAjYKJdBESaCZHD1XRQR3imcMR97azaBu/ 8gN/sYvWWu/skr9ie5nGQZWb2PXuUOqQteJ3XWMmDsyLbPhHkiGafnO2PjQQAhRv OZ7EoFJcmyVMB/GFHbbEL9d9r8kzdz2MS38S9sH+6cqxh3fH5Q+FZMEnUudHOj72 TJGqrRBqtrLqR1eKyNNLbP+nf4rOl6WINbnWyzIOWEPq49mDA7UJIGArcwFcT4se 2/xrXiglWclYZXsUT9bjuqKo1sjVsAnINAtI+vM+/djIQukDunsQfMUzfq5AZi/z Caz78HA+GlPNQaEQKxICiHBQiiK3bNFa -----END CERTIFICATE-----Generated at Sun May 19 06:14:37 2024 by rpki-client on console-ams.rpki-client.org