$ rpki-client -vvf rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft File: Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft (raw, json) Hash identifier: usYgvg2a6vjy4knaafxK35PTSfPK6DfRr0h6iKjyQN0= Subject key identifier: 69:09:8D:DF:E6:70:AE:1A:E3:C8:F3:96:42:0A:C0:52:81:0D:07:B2 Authority key identifier: 2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA Certificate issuer: /CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft Manifest number: 81 Signing time: Fri 17 May 2024 07:17:39 +0000 Manifest this update: Fri 17 May 2024 07:17:38 +0000 Manifest next update: Fri 24 May 2024 07:17:38 +0000 Files and hashes: 1: Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl (hash: rvy3QXbfjTS5kZwzGFfGBnJoos49TpWq264cxh9NdEA=) 2: 7AE89AF4513511EE88C64E20C4F9AE02.roa (hash: 6GcmHk0R17BhotdAl/CVR2iptIEyT5WrpQF0R+iy09k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118009/serialNumber=2DBEDD88EB2B2DC47CB53090C3A3851FC6524ECA Validity Not Before: May 17 07:17:38 2024 GMT Not After : May 24 07:17:38 2024 GMT Subject: CN=66470493-4982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d7:50:58:01:cc:9a:1b:3c:81:fb:be:e6:9b: b8:69:46:7e:bf:5a:13:66:88:49:52:d7:c9:e2:5f: 5c:09:93:2c:fb:67:3f:8d:cb:45:5e:16:66:06:95: ff:0e:31:fa:31:a5:f3:2e:2f:c6:84:50:ed:c5:ac: d9:bd:f7:d6:2b:f1:33:77:5f:d0:10:4f:9f:c6:89: 7b:1f:a5:e6:31:30:98:4b:3b:0a:2e:1a:62:2d:5b: d5:e4:d1:25:de:fb:e1:78:39:b5:c1:f6:93:dc:78: 6c:81:1f:6f:93:a5:43:bb:c0:04:87:98:64:46:d1: 74:a2:8e:51:cd:d2:b8:8d:e1:78:d6:dc:ea:c0:a0: 5f:ff:9a:51:e4:2a:a1:7d:07:5c:aa:80:8d:2d:ae: 3c:7e:03:d5:d2:42:ba:99:0d:30:ff:40:6a:5f:40: da:97:6a:03:e9:e5:25:b4:05:11:6c:42:4f:93:3d: 60:8c:2a:db:56:dc:4c:c3:6a:8e:53:45:5d:2b:58: 09:1c:df:ee:e6:9a:03:47:e1:db:be:2f:f6:a1:8c: 6b:37:89:88:8a:a0:9d:01:72:17:47:29:24:97:af: 97:1b:92:c5:dd:f6:9e:ee:28:13:df:76:6f:70:8c: d2:67:19:e5:f9:da:18:70:ae:a6:d4:27:68:66:4c: 69:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:09:8D:DF:E6:70:AE:1A:E3:C8:F3:96:42:0A:C0:52:81:0D:07:B2 X509v3 Authority Key Identifier: keyid:2D:BE:DD:88:EB:2B:2D:C4:7C:B5:30:90:C3:A3:85:1F:C6:52:4E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lb7diOsrLcR8tTCQw6OFH8ZSTso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118009/E35ACAF4513411EEA3924E1FC4F9AE02/Lb7diOsrLcR8tTCQw6OFH8ZSTso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2d:a0:38:2f:0b:bb:ea:19:7e:64:40:ed:76:0c:cd:d3:40: 99:f8:b6:9b:d1:1d:73:7d:c0:01:bc:3b:e3:48:a1:f4:f1:2b: f4:db:3b:8b:4c:bc:ec:49:f2:b7:b6:8d:a2:ed:89:db:bf:bb: cf:45:01:03:04:82:7e:3e:63:cd:97:34:09:af:21:2d:6e:8f: 15:18:f6:c1:ea:ad:72:d4:50:b7:77:d0:86:e9:4b:a8:22:b2: 53:d0:35:1c:96:02:c5:ea:5a:e4:a2:ff:79:7d:c0:87:00:85: 4e:aa:96:9d:86:08:d9:3b:1b:1d:81:9f:dc:a7:8c:81:7c:d1: 80:5c:b0:3a:c2:9b:fc:d2:9a:bd:3c:54:62:ed:19:fa:f0:57: 70:13:cf:17:16:bc:8d:b7:05:a6:11:de:e8:eb:8a:65:fb:7c: ae:c5:1e:ad:48:65:58:2e:84:75:1f:48:b0:99:ea:e1:d5:30: 57:bd:90:e4:07:9e:31:2d:29:7c:9f:ed:e8:51:94:f1:a1:1f: 53:2e:15:e3:04:2f:18:fe:e9:1f:e9:fa:cc:4e:ef:5e:a3:4c: b8:f9:a5:81:a4:73:c0:61:32:ef:f5:55:d2:64:1c:92:9a:cc: 24:fd:1d:48:6d:82:fc:a3:ec:50:0c:f7:40:39:0c:fd:18:25: 75:11:cb:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMDkxMTAvBgNVBAUTKDJEQkVERDg4RUIyQjJEQzQ3Q0I1MzA5MEMzQTM4NTFG QzY1MjRFQ0EwHhcNMjQwNTE3MDcxNzM4WhcNMjQwNTI0MDcxNzM4WjAYMRYwFAYD VQQDEw02NjQ3MDQ5My00OTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtddQWAHMmhs8gfu+5pu4aUZ+v1oTZohJUtfJ4l9cCZMs+2c/jctFXhZmBpX/ DjH6MaXzLi/GhFDtxazZvffWK/Ezd1/QEE+fxol7H6XmMTCYSzsKLhpiLVvV5NEl 3vvheDm1wfaT3HhsgR9vk6VDu8AEh5hkRtF0oo5RzdK4jeF41tzqwKBf/5pR5Cqh fQdcqoCNLa48fgPV0kK6mQ0w/0BqX0Dal2oD6eUltAURbEJPkz1gjCrbVtxMw2qO U0VdK1gJHN/u5poDR+Hbvi/2oYxrN4mIiqCdAXIXRykkl6+XG5LF3fae7igT33Zv cIzSZxnl+doYcK6m1CdoZkxpGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkJjd/m cK4a48jzlkIKwFKBDQeyMB8GA1UdIwQYMBaAFC2+3YjrKy3EfLUwkMOjhR/GUk7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAwOS9FMzVBQ0FGNDUx MzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxjUjh0VENRdzZPRkg4WlNU c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xiN2RpT3NyTGNSOHRUQ1F3Nk9GSDhaU1Rzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODAwOS9FMzVBQ0FGNDUxMzQxMUVFQTM5MjRFMUZDNEY5QUUwMi9MYjdkaU9zckxj Ujh0VENRdzZPRkg4WlNUc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6LaA4Lwu76hl+ZEDtdgzN00CZ+Lab0R1zfcABvDvjSKH08Sv02zuL TLzsSfK3to2i7Ynbv7vPRQEDBIJ+PmPNlzQJryEtbo8VGPbB6q1y1FC3d9CG6Uuo IrJT0DUclgLF6lrkov95fcCHAIVOqpadhgjZOxsdgZ/cp4yBfNGAXLA6wpv80pq9 PFRi7Rn68FdwE88XFryNtwWmEd7o64pl+3yuxR6tSGVYLoR1H0iwmerh1TBXvZDk B54xLSl8n+3oUZTxoR9TLhXjBC8Y/ukf6frMTu9eo0y4+aWBpHPAYTLv9VXSZByS mswk/R1IbYL8o+xQDPdAOQz9GCV1EcsT -----END CERTIFICATE-----Generated at Fri May 17 08:52:44 2024 by rpki-client on console-ams.rpki-client.org