$ rpki-client -vvf rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft (raw, json) Hash identifier: LjWGcos1WBRpVfqVO4rbGxCB/9j1LBdIERuKtfCJSgg= Subject key identifier: 2D:EE:98:0A:C2:2E:92:08:E8:D8:B6:BF:16:90:E1:A1:DF:80:3D:3D Authority key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C Certificate issuer: /CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C Certificate serial: 056F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft Manifest number: 0568 Signing time: Sun 05 May 2024 00:53:01 +0000 Manifest this update: Sun 05 May 2024 00:53:00 +0000 Manifest next update: Sun 12 May 2024 00:53:00 +0000 Files and hashes: 1: LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl (hash: IFTU8+BT+4ZNl16d1DbXg9XXP9g6fZoFGgAkyFwAmCc=) 2: 1C83212A22B911ECAD21FB20C4F9AE02.roa (hash: qekS9u08e9PXmfIKGyzp8FsGbq8ooLWGjifdTI7+22Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C Validity Not Before: May 5 00:53:00 2024 GMT Not After : May 12 00:53:00 2024 GMT Subject: CN=6636d86c-5dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:f7:a0:c9:19:4d:ce:f6:4c:ad:dd:26:5b: ce:f6:3a:a0:4c:7e:ac:b0:ac:08:32:35:9e:8b:ea: 2a:f8:85:96:ae:27:67:42:3d:44:4b:ca:9d:bf:11: 39:a8:4c:3b:49:1b:8f:46:cb:57:a4:73:b8:af:f7: 2d:f6:27:17:81:8d:97:80:97:7f:7b:32:7d:8a:91: 73:cf:64:82:38:5c:05:b9:c4:e3:40:79:9f:a3:59: d5:3f:bb:d6:00:95:86:33:d9:1a:cb:05:d5:49:8d: a9:e3:dc:3b:0d:69:2b:c1:d5:74:2e:e6:df:65:80: c2:77:bd:47:b0:b8:00:93:70:17:86:ad:41:64:a3: a1:d8:a9:3d:bf:ad:8f:cf:96:f8:86:33:52:d1:85: ae:11:57:06:51:cd:e0:82:8a:38:e1:c3:85:a0:e0: b7:f6:94:72:01:36:2f:4a:b2:e7:3d:e4:32:e2:b2: eb:9b:e7:16:1b:ff:3a:77:1a:4e:7d:1b:72:a0:75: 5d:18:ac:73:b8:30:0e:d2:1c:ec:fa:43:b3:44:56: 05:2a:ae:b8:f2:92:84:23:a6:8b:27:2e:38:fc:0a: e7:d1:6a:98:86:1f:38:c5:5b:10:30:44:b0:84:b5: b0:18:3e:30:bd:8c:c4:8e:ec:4c:b0:69:d5:fa:26: 12:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EE:98:0A:C2:2E:92:08:E8:D8:B6:BF:16:90:E1:A1:DF:80:3D:3D X509v3 Authority Key Identifier: keyid:2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:59:57:45:69:74:f8:b9:93:53:1b:d3:42:2f:4c:98:b1:a6: 78:c6:5c:0d:9e:34:30:6b:2d:39:ee:a4:69:1c:3b:57:c6:52: fc:52:1b:a0:3e:f1:72:46:99:5d:7c:b8:e1:4c:39:f8:f7:45: 89:bf:e7:fc:7f:db:0e:1f:13:7b:95:0d:32:cd:01:55:05:4a: cd:39:18:6b:b8:0e:92:ca:0e:b2:4e:54:d0:21:fb:cc:ef:ab: 66:02:bb:96:db:31:f1:bc:86:c3:2f:33:46:68:92:31:59:e8: c1:1d:e3:7f:76:ac:ab:25:a8:c4:74:1b:bb:b8:f3:9a:15:f5: cc:c6:4e:c0:b3:c2:a3:0d:e2:2a:5f:06:82:73:0c:f4:c0:69: 88:32:7c:54:49:96:47:e7:b3:67:f1:f4:52:ca:1b:e6:7a:d1: 25:a3:ff:06:f6:22:17:52:98:c2:0e:47:a0:b6:a6:bc:c3:ef: 83:c5:b7:c0:4f:f4:0a:40:90:0f:6f:4d:9c:ab:2a:ff:af:fe: 71:44:14:4c:c6:3d:44:63:a0:03:91:0f:44:b5:66:5b:93:0d: 8d:ee:a1:cb:a4:c0:b6:a2:db:48:02:55:b7:83:b1:88:5c:c3: 47:43:7c:d8:34:38:51:e7:c2:9b:8f:9d:77:3d:4f:a5:ec:be: 87:e5:59:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzRUIxMTAvBgNVBAUTKDJGMjY1QjBDODAyNDczMDk0OTI2ODkwQTg1MTI0RTIx QjEwOURBM0MwHhcNMjQwNTA1MDA1MzAwWhcNMjQwNTEyMDA1MzAwWjAYMRYwFAYD VQQDEw02NjM2ZDg2Yy01ZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx73oMkZTc72TK3dJlvO9jqgTH6ssKwIMjWei+oq+IWWridnQj1ES8qdvxE5 qEw7SRuPRstXpHO4r/ct9icXgY2XgJd/ezJ9ipFzz2SCOFwFucTjQHmfo1nVP7vW AJWGM9kaywXVSY2p49w7DWkrwdV0LubfZYDCd71HsLgAk3AXhq1BZKOh2Kk9v62P z5b4hjNS0YWuEVcGUc3ggoo44cOFoOC39pRyATYvSrLnPeQy4rLrm+cWG/86dxpO fRtyoHVdGKxzuDAO0hzs+kOzRFYFKq648pKEI6aLJy44/Arn0WqYhh84xVsQMESw hLWwGD4wvYzEjuxMsGnV+iYSOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3umArC LpII6Ni2vxaQ4aHfgD09MB8GA1UdIwQYMBaAFC8mWwyAJHMJSSaJCoUSTiGxCdo8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNFQi9GMzYyMkU3NDk3 NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3bEpKb2tLaFJKT0liRUoy ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x5WmJESUFrY3dsSkpva0toUkpPSWJFSjJqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDNFQi9GMzYyMkU3NDk3NjkxMUVCQUJDNzc0ODZDNEY5QUUwMi9MeVpiRElBa2N3 bEpKb2tLaFJKT0liRUoyancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeWVdFaXT4uZNTG9NCL0yYsaZ4xlwNnjQway057qRpHDtXxlL8Uhug PvFyRpldfLjhTDn490WJv+f8f9sOHxN7lQ0yzQFVBUrNORhruA6Syg6yTlTQIfvM 76tmAruW2zHxvIbDLzNGaJIxWejBHeN/dqyrJajEdBu7uPOaFfXMxk7As8KjDeIq XwaCcwz0wGmIMnxUSZZH57Nn8fRSyhvmetElo/8G9iIXUpjCDkegtqa8w++DxbfA T/QKQJAPb02cqyr/r/5xRBRMxj1EY6ADkQ9EtWZbkw2N7qHLpMC2ottIAlW3g7GI XMNHQ3zYNDhR58Kbj513PU+l7L6H5VmS -----END CERTIFICATE-----Generated at Sun May 5 01:22:18 2024 by rpki-client on console-fra.rpki-client.org