$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft File: L1nO2mFIFfRjLznVoxwqUUjGtPo.mft (raw, json) Hash identifier: 0XTiygZSHRUDUg+WdV7/6UdLidS9kFgfwBjQwecOKOY= Subject key identifier: 0E:12:50:58:F8:AA:FB:B9:D8:61:5A:09:09:71:C3:D0:7B:C2:02:EA Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 245A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft Manifest number: 240C Signing time: Wed 24 Apr 2024 16:04:25 +0000 Manifest this update: Wed 24 Apr 2024 16:04:24 +0000 Manifest next update: Wed 01 May 2024 16:04:24 +0000 Files and hashes: 1: L1nO2mFIFfRjLznVoxwqUUjGtPo.crl (hash: hd7YJDnKjV3oNFj9Roe37w4kfLf26xSp9wQDLue0ncY=) 2: 6A4C0AE89B1111EEADD68539C4F9AE02.roa (hash: Ez/PaSdgtjQw0FOVprB7ZQvQsV7UFC/yAhl1d8YZdH8=) 3: 7135F534A05E11EDAC005F21C4F9AE02.roa (hash: 5H4HxYZ6gOM9gixxXCuRxErTHGKTT5vkvqEovL8hCmg=) 4: 6CD99EF455C911E78F401587C4F9AE02.roa (hash: olmgUz9SVCBjiL/Bv925zWayhEyrsJ1eU7V4AUmdPk0=) 5: 407F0056629711EEB706DD75C4F9AE02.roa (hash: +AXnC0BrM7UgnnX4bYv1bsmfgMrEkS9sqNlXbbVawFU=) 6: 50A7914A5B9011EE82A2243AC4F9AE02.roa (hash: l2ohcd93Jna0nv/Pa5DANRoNmPIzd1dg7MYWz4MSOWw=) 7: ADAE2980A05B11ED9406DE26C4F9AE02.roa (hash: 5lKwdeAbFWJEXhUuY2CvMVBM56hWLyqhuKcjetHMVuM=) 8: 260428EC312211EEAF54935BC4F9AE02.roa (hash: /RjHikccRVacNzWC8nUjZDF/C6S1VsZZt8OprR2kZLE=) 9: 8659FCFEB12811EE98786F82C4F9AE02.roa (hash: 9JmYlt1c9E/j/NU+NicyDsO+kRDpgNSabN6w1iwtd7w=) 10: AE5BAB8CA05B11ED9406DE26C4F9AE02.roa (hash: mykZN2nAwpEl6fbHEk/W27pAx7oiT5eYLy8cjGZa5Es=) 11: EAF1B720D85A11E9B476E954C4F9AE02.roa (hash: aKF1DBlhylpfTz5/wv2ykAvprnxeTzOrGaR7lShfz1A=) 12: E0CD5510BE6111ED88CAF164C4F9AE02.roa (hash: iRmrBr9LnKAe7kE8dKHGV7aaptdCKed2ioea9GqAY8Q=) 13: ACA5633A9B1111EE855AC94DC4F9AE02.roa (hash: LQcC0ydQkIItU+Qp5YqxZIfllhK/75sFK0LSSskn+GU=) 14: 71D21A40A05E11EDAC005F21C4F9AE02.roa (hash: q3tLrUCkN5xPjShrVqT12ra3zyskFiwjYjcI+j+B4kw=) 15: F2426526F08411EB82AC0545C4F9AE02.roa (hash: 0FgJs+tXH4br6psyg91FaAswpbQ/gY8G3sQq9ojvQsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 15:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9306 (0x245a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Validity Not Before: Apr 24 16:04:24 2024 GMT Not After : May 1 16:04:24 2024 GMT Subject: CN=66292d89-a5d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2b:67:1f:f9:0a:c3:5b:85:d8:a9:5f:39:ef: 97:5c:c2:5b:fd:06:21:39:76:12:e7:cb:45:1b:82: 8a:9e:a1:3a:60:28:66:21:64:2b:ec:b2:30:8d:76: a0:a4:d2:1b:9d:e8:ba:b6:1b:fa:89:20:d3:bd:26: 63:dd:b2:99:5f:07:81:6c:eb:37:62:d1:a8:b2:a4: 90:61:a5:49:21:00:1e:33:50:e2:96:d4:04:3b:92: 2d:ab:d4:f7:56:df:c5:4a:93:8f:b4:2c:a4:18:30: 18:7a:8d:6f:3d:55:e8:e0:3f:0e:83:00:58:b8:bf: 88:83:68:1b:d7:b3:c0:e3:cc:84:ab:a6:e8:ce:e3: 40:e1:7d:32:92:e9:3c:34:b0:67:76:9e:c9:f0:32: ff:9a:f7:ff:75:4e:48:30:67:9c:a0:fa:0f:33:9b: 42:10:b9:4e:8d:88:52:3c:f1:d7:51:89:ac:17:af: cb:19:08:c2:cc:80:3f:f0:c8:14:e0:ff:8c:c2:cb: a9:12:d3:09:88:32:19:bf:70:ea:23:83:70:33:c3: eb:5e:b3:07:54:dd:49:cb:66:d5:c6:d9:99:10:63: f2:71:cb:f4:bd:92:5f:6c:7e:bc:d7:24:8a:15:81: 18:ba:0a:d1:90:19:6f:0c:a2:45:bc:9c:d0:54:fb: df:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:12:50:58:F8:AA:FB:B9:D8:61:5A:09:09:71:C3:D0:7B:C2:02:EA X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:0e:bd:00:67:dc:82:4e:b0:cd:5f:d8:54:e7:06:68:c9:e2: 8e:80:76:2d:02:5b:f5:28:10:3e:1e:50:c0:3a:ca:0c:68:db: 2c:8a:12:0f:14:bf:50:e8:d9:d1:23:07:ac:50:f0:e2:75:97: 12:cb:e9:ba:e7:5e:88:ac:16:f2:f2:fd:82:ed:d7:c4:f8:cf: f8:83:41:c3:ab:8f:5b:99:0f:1d:77:5f:69:57:3b:5b:24:9e: 1b:a5:68:fd:61:c1:9b:27:b9:c0:f7:a0:3c:f1:99:e0:b4:70: 82:05:eb:40:2c:3a:71:e7:3d:33:46:1b:c8:fd:64:22:58:83: 17:c0:39:d5:09:8b:6a:70:dd:6b:12:b1:ee:6c:a6:36:7a:fc: fd:3b:2a:8a:43:89:97:47:a0:70:75:a8:ec:8d:5b:7e:cd:42: cd:d5:ca:e1:c1:8a:1c:bc:8f:fd:ed:51:ec:e1:1d:4c:3b:b6: 3b:64:70:52:13:07:17:9a:38:69:db:68:c4:17:fb:be:67:6d: 55:ac:d8:d5:48:eb:db:57:3e:e2:13:5b:bc:c3:97:7e:58:f7: 0e:52:a7:e4:73:c8:20:76:03:db:f0:5e:17:0d:d3:e7:10:ff: a5:dd:d5:a0:9c:84:b3:ff:3a:8b:d6:1b:e4:a8:80:25:fa:02: 0b:d5:9f:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjQwNDI0MTYwNDI0WhcNMjQwNTAxMTYwNDI0WjAYMRYwFAYD VQQDEw02NjI5MmQ4OS1hNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCtnH/kKw1uF2KlfOe+XXMJb/QYhOXYS58tFG4KKnqE6YChmIWQr7LIwjXag pNIbnei6thv6iSDTvSZj3bKZXweBbOs3YtGosqSQYaVJIQAeM1DiltQEO5Itq9T3 Vt/FSpOPtCykGDAYeo1vPVXo4D8OgwBYuL+Ig2gb17PA48yEq6bozuNA4X0ykuk8 NLBndp7J8DL/mvf/dU5IMGecoPoPM5tCELlOjYhSPPHXUYmsF6/LGQjCzIA/8MgU 4P+MwsupEtMJiDIZv3DqI4NwM8PrXrMHVN1Jy2bVxtmZEGPyccv0vZJfbH681ySK FYEYugrRkBlvDKJFvJzQVPvfbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4SUFj4 qvu52GFaCQlxw9B7wgLqMB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkQ1NC9EOTAxMTI4NDNGNEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZm UmpMem5Wb3h3cVVVakd0UG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXDr0AZ9yCTrDNX9hU5wZoyeKOgHYtAlv1KBA+HlDAOsoMaNssihIP FL9Q6NnRIwesUPDidZcSy+m6516IrBby8v2C7dfE+M/4g0HDq49bmQ8dd19pVztb JJ4bpWj9YcGbJ7nA96A88ZngtHCCBetALDpx5z0zRhvI/WQiWIMXwDnVCYtqcN1r ErHubKY2evz9OyqKQ4mXR6BwdajsjVt+zULN1crhwYocvI/97VHs4R1MO7Y7ZHBS EwcXmjhp22jEF/u+Z21VrNjVSOvbVz7iE1u8w5d+WPcOUqfkc8ggdgPb8F4XDdPn EP+l3dWgnISz/zqL1hvkqIAl+gIL1Z8I -----END CERTIFICATE-----Generated at Wed Apr 24 18:30:59 2024 by rpki-client on console-fra.rpki-client.org