$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft File: lqeZovSzCLIlIrzkXjGNanAmKSs.mft (raw, json) Hash identifier: w4vsJh4hoskjzj//ImKBykJrdFimr2C8pHKSz85mPqI= Subject key identifier: E3:83:D9:70:BA:E6:59:36:B9:DD:81:29:D0:16:C3:E0:7C:1D:C7:EE Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 10C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft Manifest number: 10B9 Signing time: Mon 06 May 2024 18:00:18 +0000 Manifest this update: Mon 06 May 2024 18:00:18 +0000 Manifest next update: Mon 13 May 2024 18:00:18 +0000 Files and hashes: 1: lqeZovSzCLIlIrzkXjGNanAmKSs.crl (hash: uiy6kQotmXKbaAq84x+jLM2mGsk8ZXQx0lbC1yF4WMA=) 2: 318BC266FEA911E8BF138B59C4F9AE02.roa (hash: J/CivEwQllds1vZh7Qpd8MrT8E7MxLEHwHoWEk2nUKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4292 (0x10c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: May 6 18:00:18 2024 GMT Not After : May 13 18:00:18 2024 GMT Subject: CN=66391ab2-e525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cd:fc:f6:a3:d5:3a:6e:76:74:91:01:46:d8: af:a9:5c:5a:87:a9:1b:82:69:9f:99:bf:4b:2d:be: 54:dd:62:20:03:76:10:01:3b:74:7f:c4:4e:d6:e8: 0c:d8:3c:7d:93:34:58:e3:48:32:0a:72:16:1d:6f: e7:5a:13:0e:2e:b9:5f:74:ce:53:b6:54:52:33:27: e0:f7:8c:25:13:95:3e:f9:27:29:56:fa:16:c3:46: da:17:dc:5c:23:ce:7c:c6:41:e9:25:be:55:a2:28: c2:11:1a:ec:7e:2b:e0:09:84:66:8b:ff:01:4e:7c: 91:0e:84:c0:04:ca:b9:29:89:4c:2c:af:ce:31:4e: 00:6f:a7:20:f0:62:c3:70:c5:76:7a:7e:64:79:91: ff:b2:fd:8a:88:eb:5c:1c:27:e4:4b:6d:ad:96:07: 87:3e:f7:5c:80:b7:34:ae:d0:83:a7:02:be:86:cf: 10:c2:ee:84:85:e3:a8:a2:0a:2a:2b:32:f0:ed:e2: 2e:51:77:cd:b4:7d:4f:92:b7:9b:50:40:28:25:20: ac:5c:5a:3b:ec:6d:81:d4:74:8a:4a:04:6e:1b:3f: 7e:4d:53:3a:2e:55:3b:80:a7:05:73:8d:03:55:4f: d4:59:19:c1:64:f1:7f:54:26:3e:bc:f1:fa:07:ab: f9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:83:D9:70:BA:E6:59:36:B9:DD:81:29:D0:16:C3:E0:7C:1D:C7:EE X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:cd:9f:40:8e:ef:93:6f:8a:bf:01:32:33:2e:f0:cc:7d:8a: eb:5f:d9:3c:b4:24:d0:ce:81:59:a1:e5:3e:9b:18:24:ed:a1: cb:42:13:1a:b5:b7:53:70:c1:f5:50:4b:53:3d:01:ac:28:30: fd:dd:de:b3:a2:4c:24:c6:6a:fb:2f:50:90:97:55:f5:31:aa: c2:dc:7c:3e:c0:80:d1:1f:a4:19:f4:04:a5:83:80:3f:4e:fb: 5b:aa:49:4f:09:fa:3b:6a:c9:f0:bc:2c:3d:49:eb:cd:35:cd: a1:5e:13:26:0c:d9:b3:34:97:be:e1:a0:87:e4:e3:fb:08:3e: d9:af:71:5c:4b:18:bf:bb:3e:72:b2:d9:16:a0:87:e7:0a:24: 7c:b5:a5:bc:8f:37:80:25:06:6f:a2:35:1e:fa:e3:1e:0b:c8: 41:51:d0:95:f6:7f:77:df:be:86:a2:71:1c:70:a3:b0:64:5d: f0:49:ba:37:31:12:fa:60:e1:66:e8:ff:18:d4:23:ef:9c:61: 96:df:56:4e:af:6d:8a:97:a5:bd:ab:90:87:9b:87:00:f4:4a: b5:23:26:43:56:ee:45:ad:b5:18:67:51:e1:75:2c:6d:4b:73: 9c:70:ae:3a:39:4f:73:37:74:65:92:76:d4:bc:9f:0f:2b:62: e0:46:0d:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjQwNTA2MTgwMDE4WhcNMjQwNTEzMTgwMDE4WjAYMRYwFAYD VQQDEw02NjM5MWFiMi1lNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxs389qPVOm52dJEBRtivqVxah6kbgmmfmb9LLb5U3WIgA3YQATt0f8RO1ugM 2Dx9kzRY40gyCnIWHW/nWhMOLrlfdM5TtlRSMyfg94wlE5U++ScpVvoWw0baF9xc I858xkHpJb5VoijCERrsfivgCYRmi/8BTnyRDoTABMq5KYlMLK/OMU4Ab6cg8GLD cMV2en5keZH/sv2KiOtcHCfkS22tlgeHPvdcgLc0rtCDpwK+hs8Qwu6EheOoogoq KzLw7eIuUXfNtH1PkrebUEAoJSCsXFo77G2B1HSKSgRuGz9+TVM6LlU7gKcFc40D VU/UWRnBZPF/VCY+vPH6B6v5oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOD2XC6 5lk2ud2BKdAWw+B8HcfuMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkE0Qi9FMzc3RkQ3QUZFQTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNM SWxJcnprWGpHTmFuQW1LU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHzZ9Aju+Tb4q/ATIzLvDMfYrrX9k8tCTQzoFZoeU+mxgk7aHLQhMa tbdTcMH1UEtTPQGsKDD93d6zokwkxmr7L1CQl1X1MarC3Hw+wIDRH6QZ9ASlg4A/ TvtbqklPCfo7asnwvCw9SevNNc2hXhMmDNmzNJe+4aCH5OP7CD7Zr3FcSxi/uz5y stkWoIfnCiR8taW8jzeAJQZvojUe+uMeC8hBUdCV9n93376GonEccKOwZF3wSbo3 MRL6YOFm6P8Y1CPvnGGW31ZOr22Kl6W9q5CHm4cA9Eq1IyZDVu5FrbUYZ1HhdSxt S3OccK46OU9zN3RlknbUvJ8PK2LgRg18 -----END CERTIFICATE-----Generated at Mon May 6 20:19:07 2024 by rpki-client on console-fra.rpki-client.org