$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: l/B7PKnMrAMmzlzMrcondw/0JwC2cKaMMkRzLzN4oTU= Subject key identifier: 52:7A:55:DE:07:4B:80:71:0D:C8:99:7D:5C:D9:33:E3:EA:18:B3:D4 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 0F52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 0F52 Signing time: Thu 02 May 2024 18:14:31 +0000 Manifest this update: Thu 02 May 2024 18:14:31 +0000 Manifest next update: Thu 09 May 2024 18:14:31 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: I3ZPbOtXJXZikFgAqoLvMLZCJxml1unhBK2VM+5qjEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3922 (0xf52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: May 2 18:14:31 2024 GMT Not After : May 9 18:14:31 2024 GMT Subject: CN=6633d807-a539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1f:7c:8b:7f:11:9a:89:d6:c8:80:d2:32:9d: 6a:dc:80:39:bd:dc:b3:54:4b:89:c5:a7:63:49:d6: d9:2c:a9:42:9f:0a:4f:03:8b:9d:3e:22:17:2c:a1: 67:41:5c:69:54:3b:95:73:4f:8e:87:95:bb:ee:4b: 92:6f:77:59:96:eb:66:40:61:bc:37:da:8e:4d:66: 11:50:de:eb:e4:6f:7a:b6:ea:f1:da:eb:34:a3:fa: e8:b6:53:be:4a:e8:3b:00:76:7d:b7:b1:0a:cf:07: 02:21:12:23:55:c7:3d:14:46:c6:f0:6a:20:35:de: 65:d6:4f:de:fa:ed:80:09:f1:4d:e6:a1:61:f3:64: ae:a2:02:06:da:22:da:71:13:36:6d:2f:7a:26:b3: 40:dc:8d:f3:dc:00:cd:29:b2:89:20:9d:09:f1:35: 0b:12:61:39:1f:3a:cf:88:98:9c:44:b0:5e:cd:04: c0:bf:b7:aa:cd:6a:2d:db:d9:ef:a8:5d:e2:71:e3: ba:36:84:af:b3:e9:7c:76:53:76:e6:d1:6c:6a:aa: 00:29:ef:31:b8:de:4e:72:9c:98:3e:fe:e2:6f:4d: 54:0d:bc:d5:9b:a0:ea:49:bf:ad:a5:51:bc:e3:a4: 8b:fd:bb:0f:d9:31:cb:57:0f:ac:3f:ae:0e:a8:7a: 1d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7A:55:DE:07:4B:80:71:0D:C8:99:7D:5C:D9:33:E3:EA:18:B3:D4 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:47:d2:ff:0a:00:a1:c2:ac:fc:27:a9:f7:f7:22:0f:f1:79: 28:d2:e9:9c:91:c5:e4:b4:e5:57:f6:4b:14:b5:d1:93:0e:5e: cf:3b:82:ff:1e:1c:4c:77:86:c8:55:77:88:f6:dc:97:51:d8: f2:0f:de:40:c4:b9:bc:d3:82:e1:49:2a:9f:af:db:a9:46:b1: 00:1c:1f:8c:21:48:86:3c:51:60:46:dc:9f:76:98:5f:b7:d4: 36:38:c8:4c:83:b4:10:50:85:1b:3d:9c:00:e4:aa:b0:43:09: 1e:cf:9f:36:ea:f5:80:0b:75:d7:30:cb:1c:68:ac:75:46:9e: 81:63:87:a3:ec:56:b1:b4:85:76:94:52:7b:7f:3b:8e:59:f5: ed:5d:cd:c5:07:13:fc:1f:a3:1c:ae:66:6e:b2:06:fa:a3:d9: ef:24:29:a6:99:81:98:d7:24:27:c2:41:44:02:d4:4d:43:2c: d9:48:7a:66:0a:aa:8f:48:54:fe:aa:6a:f4:de:3c:cd:75:3c: 20:86:7d:8a:eb:5f:14:34:00:85:56:03:cc:b6:02:3c:3d:40: c5:7b:27:8d:e9:ca:9c:ec:7e:b6:2d:f4:b7:3d:3f:83:de:f4: 4a:7a:f9:03:c0:5d:72:a5:70:e7:f5:4a:ad:f5:00:6a:c8:32: 33:21:d3:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjQwNTAyMTgxNDMxWhcNMjQwNTA5MTgxNDMxWjAYMRYwFAYD VQQDEw02NjMzZDgwNy1hNTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAph98i38RmonWyIDSMp1q3IA5vdyzVEuJxadjSdbZLKlCnwpPA4udPiIXLKFn QVxpVDuVc0+Oh5W77kuSb3dZlutmQGG8N9qOTWYRUN7r5G96turx2us0o/rotlO+ Sug7AHZ9t7EKzwcCIRIjVcc9FEbG8GogNd5l1k/e+u2ACfFN5qFh82SuogIG2iLa cRM2bS96JrNA3I3z3ADNKbKJIJ0J8TULEmE5HzrPiJicRLBezQTAv7eqzWot29nv qF3iceO6NoSvs+l8dlN25tFsaqoAKe8xuN5OcpyYPv7ib01UDbzVm6DqSb+tpVG8 46SL/bsP2THLVw+sP64OqHoduQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJ6Vd4H S4BxDciZfVzZM+PqGLPUMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkR9L/CgChwqz8J6n39yIP8Xko0umckcXktOVX9ksUtdGTDl7PO4L/ HhxMd4bIVXeI9tyXUdjyD95AxLm804LhSSqfr9upRrEAHB+MIUiGPFFgRtyfdphf t9Q2OMhMg7QQUIUbPZwA5KqwQwkez5826vWAC3XXMMscaKx1Rp6BY4ej7FaxtIV2 lFJ7fzuOWfXtXc3FBxP8H6McrmZusgb6o9nvJCmmmYGY1yQnwkFEAtRNQyzZSHpm CqqPSFT+qmr03jzNdTwghn2K618UNACFVgPMtgI8PUDFeyeN6cqc7H62LfS3PT+D 3vRKevkDwF1ypXDn9Uqt9QBqyDIzIdM0 -----END CERTIFICATE-----Generated at Thu May 2 20:04:26 2024 by rpki-client on console-ams.rpki-client.org