$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft File: LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft (raw, json) Hash identifier: kW7yJ7bjyVa40t7iUtVFkD4Xt4anyBQbl70qJSXXskw= Subject key identifier: A9:48:D9:39:5A:10:CA:95:AD:5E:C8:9B:10:DE:AC:B4:30:33:8C:3A Authority key identifier: 2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 Certificate issuer: /CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft Manifest number: 0167 Signing time: Sat 27 Apr 2024 04:45:56 +0000 Manifest this update: Sat 27 Apr 2024 04:45:56 +0000 Manifest next update: Sat 04 May 2024 04:45:56 +0000 Files and hashes: 1: LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl (hash: l+472QzJcM6axfd3SnlmdAeRf3ALQBVz7KFhchOvgmU=) 2: 49CEB44A28D111EDB364C870C4F9AE02.roa (hash: bAiZLBeU2ToaNCed+ZETD14Ie0GP2OmlyYO6Gbm3NSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D28/serialNumber=2E06F3091AD58ED0633FF989B1FD329773EC3AA7 Validity Not Before: Apr 27 04:45:56 2024 GMT Not After : May 4 04:45:56 2024 GMT Subject: CN=662c8304-589c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4e:8c:05:07:5c:c3:55:18:1f:b8:18:3d:9c: 4f:07:f2:30:d5:23:e7:33:a8:c8:e7:76:3c:24:3f: 7a:7f:f2:d6:11:3e:62:13:fc:95:e4:69:3b:b0:7b: 6c:fd:f7:f2:5b:03:53:d4:62:b6:94:46:25:85:cd: 8a:99:9f:64:68:7c:c9:1c:dd:85:2a:97:dd:54:c1: c4:c3:04:3b:4e:8e:89:7d:53:38:20:ed:ce:33:43: 2c:3f:f7:57:30:5f:df:c5:75:88:4d:f4:2b:c3:5c: a4:95:00:f3:2b:b7:6f:41:4b:25:a1:32:cb:24:f3: 3d:73:e9:cd:3e:a5:6d:0d:7f:60:4f:20:01:28:b9: ab:59:55:d4:e6:4e:52:51:a1:aa:07:4b:36:ca:89: 9d:1a:88:d5:32:95:3c:a2:9b:99:1f:66:23:e2:e8: 22:d3:1c:ab:0f:f6:0b:8a:91:06:82:93:97:a6:38: d9:5a:b9:9f:76:85:d4:d2:3e:f4:88:b9:c1:ba:65: f7:88:ff:e5:21:75:3f:1e:b8:af:67:a9:ee:1e:cf: 1f:9a:0e:ea:39:90:c9:2d:51:c4:df:8e:f3:99:bc: 38:1b:23:28:c6:c1:7a:47:31:4c:06:fd:9d:c1:e7: 54:9e:31:d8:c6:8f:73:26:73:56:9a:90:c1:dc:b4: f6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:48:D9:39:5A:10:CA:95:AD:5E:C8:9B:10:DE:AC:B4:30:33:8C:3A X509v3 Authority Key Identifier: keyid:2E:06:F3:09:1A:D5:8E:D0:63:3F:F9:89:B1:FD:32:97:73:EC:3A:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LgbzCRrVjtBjP_mJsf0yl3PsOqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D28/4BDAEEDC28CE11EDB683396EC4F9AE02/LgbzCRrVjtBjP_mJsf0yl3PsOqc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:c4:ec:d1:aa:82:71:8f:ef:a7:13:3a:e4:84:3c:5a:e7:88: 28:d3:e8:92:a7:d1:52:bf:6e:5d:d9:68:21:5a:21:77:27:8d: 75:7c:42:77:ae:4d:42:62:b5:01:b6:aa:a4:71:8a:a5:20:8d: f7:34:c8:02:73:23:b1:e4:cd:04:d1:36:6c:16:86:09:18:0d: 69:22:35:71:5a:13:77:10:8a:ac:c1:22:e4:5a:8e:d3:59:a6: 1c:37:73:ed:3e:30:57:42:71:51:98:21:66:87:29:e6:a5:9f: 2a:1e:49:b3:b9:6a:cf:e3:63:e5:51:69:74:c4:3d:9c:12:0a: 64:85:72:99:5f:c7:6c:ac:df:10:58:72:f0:fa:25:36:71:2f: 30:9a:4f:55:d5:f9:f9:b5:af:32:fb:ad:d6:67:e4:3f:13:53: 4b:48:9a:d2:90:11:f2:8d:9a:2d:3f:3c:1b:c0:40:0e:8b:9f: a5:2c:cf:62:67:54:06:5b:f0:33:77:91:07:16:c2:75:46:99: b1:6f:d2:ca:94:b4:a2:d1:eb:45:85:ee:0b:46:22:7d:05:ec: ea:c3:b6:15:d2:19:8b:6e:31:46:b2:22:4b:a3:65:34:91:4c: 80:4b:c7:a8:73:3b:50:96:62:01:e5:c7:fd:04:eb:ef:96:ec: 77:57:ca:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMjgxMTAvBgNVBAUTKDJFMDZGMzA5MUFENThFRDA2MzNGRjk4OUIxRkQzMjk3 NzNFQzNBQTcwHhcNMjQwNDI3MDQ0NTU2WhcNMjQwNTA0MDQ0NTU2WjAYMRYwFAYD VQQDEw02NjJjODMwNC01ODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr06MBQdcw1UYH7gYPZxPB/Iw1SPnM6jI53Y8JD96f/LWET5iE/yV5Gk7sHts /ffyWwNT1GK2lEYlhc2KmZ9kaHzJHN2FKpfdVMHEwwQ7To6JfVM4IO3OM0MsP/dX MF/fxXWITfQrw1yklQDzK7dvQUsloTLLJPM9c+nNPqVtDX9gTyABKLmrWVXU5k5S UaGqB0s2yomdGojVMpU8opuZH2Yj4ugi0xyrD/YLipEGgpOXpjjZWrmfdoXU0j70 iLnBumX3iP/lIXU/HrivZ6nuHs8fmg7qOZDJLVHE347zmbw4GyMoxsF6RzFMBv2d wedUnjHYxo9zJnNWmpDB3LT2yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlI2Tla EMqVrV7ImxDerLQwM4w6MB8GA1UdIwQYMBaAFC4G8wka1Y7QYz/5ibH9Mpdz7Dqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QyOC80QkRBRUVEQzI4 Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0QmpQX21Kc2YweWwzUHNP cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xnYnpDUnJWanRCalBfbUpzZjB5bDNQc09xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0QyOC80QkRBRUVEQzI4Q0UxMUVEQjY4MzM5NkVDNEY5QUUwMi9MZ2J6Q1JyVmp0 QmpQX21Kc2YweWwzUHNPcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkxOzRqoJxj++nEzrkhDxa54go0+iSp9FSv25d2WghWiF3J411fEJ3 rk1CYrUBtqqkcYqlII33NMgCcyOx5M0E0TZsFoYJGA1pIjVxWhN3EIqswSLkWo7T WaYcN3PtPjBXQnFRmCFmhynmpZ8qHkmzuWrP42PlUWl0xD2cEgpkhXKZX8dsrN8Q WHLw+iU2cS8wmk9V1fn5ta8y+63WZ+Q/E1NLSJrSkBHyjZotPzwbwEAOi5+lLM9i Z1QGW/Azd5EHFsJ1Rpmxb9LKlLSi0etFhe4LRiJ9Bezqw7YV0hmLbjFGsiJLo2U0 kUyAS8eocztQlmIB5cf9BOvvlux3V8rk -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:32 2024 by rpki-client on console-ams.rpki-client.org