$ rpki-client -vvf rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft File: LnNTksaGuNjciMDM1Zvyrvun6LA.mft (raw, json) Hash identifier: k9fWLJggI8vy6ATbw11pn0x025dePNH4XH5HKBdIxqQ= Subject key identifier: 0A:3B:E2:0C:E1:99:47:B2:1A:2F:A4:83:83:19:63:8A:10:9F:15:FB Authority key identifier: 2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 Certificate issuer: /CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Certificate serial: 0A67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft Manifest number: 0A60 Signing time: Sat 04 May 2024 20:30:43 +0000 Manifest this update: Sat 04 May 2024 20:30:43 +0000 Manifest next update: Sat 11 May 2024 20:30:43 +0000 Files and hashes: 1: LnNTksaGuNjciMDM1Zvyrvun6LA.crl (hash: OeH3nfmDyufZCk0V8z0Z4v0L94BrhApnBTFiry96Vqw=) 2: 14B2A85C3DA611EAAD093F5EC4F9AE02.roa (hash: +Ss8JuJ8i/ZlqkFUJbp2u+rFHfJ1QOq9ahocv6L4dbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2663 (0xa67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D340/serialNumber=2E735392C686B8D8DC88C0CCD59BF2AEFBA7E8B0 Validity Not Before: May 4 20:30:43 2024 GMT Not After : May 11 20:30:43 2024 GMT Subject: CN=66369af3-aa8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6a:ba:bf:2e:fa:cd:24:57:29:fc:0c:97:d6: 5c:fd:d2:1b:ef:d5:7b:cc:29:66:58:98:9a:9e:a4: ec:d7:b0:d6:8d:25:a8:32:c9:11:55:3e:cd:94:66: ba:cd:7d:07:6d:04:5c:d6:ff:f4:1d:a7:62:cb:9c: 88:9a:94:62:fa:fb:54:35:bd:e8:bf:3e:ff:2f:1f: 33:4d:86:a3:44:49:b0:2f:a1:e5:91:44:c3:6d:64: 54:2f:d4:d8:9a:5d:4c:05:57:a1:94:61:e5:10:69: 0e:77:2f:18:e2:ae:d5:2c:e6:1a:c1:6e:0c:54:ac: fa:d7:a1:28:5a:7d:66:4d:81:b0:89:c1:50:81:69: 8e:c5:44:18:e5:60:99:9d:cd:41:cd:e8:2a:82:86: 3d:e8:6a:f4:8c:3b:1b:23:30:58:4f:e5:15:98:cc: 23:12:3b:dc:61:42:7b:62:97:fc:09:fd:67:cf:fe: a0:f5:cf:f6:e7:a2:9d:c9:ed:ed:e4:ce:6d:a9:14: 23:a3:e1:33:39:b1:9d:43:fc:9b:e2:e4:e8:76:2a: ab:5d:37:df:c3:e3:73:95:8b:0e:43:9a:82:b2:87: 3b:44:da:d3:19:e6:e9:8f:4e:26:88:cd:94:de:d1: 74:b8:d3:a9:23:f2:9b:d5:84:eb:d8:63:2a:f8:aa: 1b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:3B:E2:0C:E1:99:47:B2:1A:2F:A4:83:83:19:63:8A:10:9F:15:FB X509v3 Authority Key Identifier: keyid:2E:73:53:92:C6:86:B8:D8:DC:88:C0:CC:D5:9B:F2:AE:FB:A7:E8:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNTksaGuNjciMDM1Zvyrvun6LA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D340/0468397A3C4E11EA94725C28C4F9AE02/LnNTksaGuNjciMDM1Zvyrvun6LA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:f5:ff:ae:f2:91:e3:b6:df:3e:06:a2:50:11:a7:fa:e9:6a: 37:50:83:2b:69:2a:0a:fc:47:44:61:89:e9:26:8c:7c:71:1b: 67:d9:2d:05:71:62:c7:ba:21:76:ed:6c:48:12:84:c9:63:65: 91:f1:3f:75:64:ae:b2:4b:f2:ea:61:f1:f2:2e:d0:77:09:fa: d7:63:b4:12:5b:05:e0:95:75:ed:06:21:c9:d9:e2:0d:95:80: 7d:88:ed:a3:16:4a:24:f5:af:60:e5:4b:f2:17:20:e8:d3:6e: 24:92:3f:46:98:c4:df:78:8e:81:e9:b0:af:19:5a:3d:72:59: c4:2c:32:9a:be:4d:29:a1:f6:d6:fa:39:77:61:77:88:51:ba: 0a:f5:57:ee:c2:b4:2c:f1:ef:0c:30:1b:d4:db:43:09:58:ea: f4:1e:18:8d:55:a7:dc:7d:ea:1c:f1:be:5e:6f:a1:93:84:57: 64:4d:59:b0:4e:26:db:8f:bb:9a:92:e2:5c:fc:44:f9:7d:8b: 50:b2:1e:6d:86:77:ff:f1:0c:b6:17:aa:b5:f6:bb:b3:2a:93: fd:79:b3:d6:08:2d:5d:1a:c1:b2:c3:3b:f7:ee:7e:db:7b:2e: 40:2c:db:84:f0:00:33:07:6b:6d:5a:af:69:08:99:56:e2:28: 34:dd:b1:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQzNDAxMTAvBgNVBAUTKDJFNzM1MzkyQzY4NkI4RDhEQzg4QzBDQ0Q1OUJGMkFF RkJBN0U4QjAwHhcNMjQwNTA0MjAzMDQzWhcNMjQwNTExMjAzMDQzWjAYMRYwFAYD VQQDEw02NjM2OWFmMy1hYThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGq6vy76zSRXKfwMl9Zc/dIb79V7zClmWJianqTs17DWjSWoMskRVT7NlGa6 zX0HbQRc1v/0Hadiy5yImpRi+vtUNb3ovz7/Lx8zTYajREmwL6HlkUTDbWRUL9TY ml1MBVehlGHlEGkOdy8Y4q7VLOYawW4MVKz616EoWn1mTYGwicFQgWmOxUQY5WCZ nc1BzegqgoY96Gr0jDsbIzBYT+UVmMwjEjvcYUJ7Ypf8Cf1nz/6g9c/256Kdye3t 5M5tqRQjo+EzObGdQ/yb4uTodiqrXTffw+NzlYsOQ5qCsoc7RNrTGebpj04miM2U 3tF0uNOpI/Kb1YTr2GMq+Kob0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAo74gzh mUeyGi+kg4MZY4oQnxX7MB8GA1UdIwQYMBaAFC5zU5LGhrjY3IjAzNWb8q77p+iw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDM0MC8wNDY4Mzk3QTND NEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VOamNpTURNMVp2eXJ2dW42 TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTlRrc2FHdU5qY2lNRE0xWnZ5cnZ1bjZMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDM0MC8wNDY4Mzk3QTNDNEUxMUVBOTQ3MjVDMjhDNEY5QUUwMi9Mbk5Ua3NhR3VO amNpTURNMVp2eXJ2dW42TEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE9f+u8pHjtt8+BqJQEaf66Wo3UIMraSoK/EdEYYnpJox8cRtn2S0F cWLHuiF27WxIEoTJY2WR8T91ZK6yS/LqYfHyLtB3CfrXY7QSWwXglXXtBiHJ2eIN lYB9iO2jFkok9a9g5UvyFyDo024kkj9GmMTfeI6B6bCvGVo9clnELDKavk0pofbW +jl3YXeIUboK9VfuwrQs8e8MMBvU20MJWOr0HhiNVafcfeoc8b5eb6GThFdkTVmw Tibbj7uakuJc/ET5fYtQsh5thnf/8Qy2F6q19ruzKpP9ebPWCC1dGsGywzv37n7b ey5ALNuE8AAzB2ttWq9pCJlW4ig03bFf -----END CERTIFICATE-----Generated at Sat May 4 21:19:27 2024 by rpki-client on console-ams.rpki-client.org