$ rpki-client -vvf rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft File: lATO33S5SXRR7zK7ehK-1x0sI-U.mft (raw, json) Hash identifier: cwujRsWZd7QKcsLsWqD7Dsi684p/a/eZnDxfGS/RJ5c= Subject key identifier: 47:C8:76:5D:15:CE:7E:BF:2D:D6:EC:4D:24:78:BB:90:E1:5C:38:94 Authority key identifier: 94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 Certificate issuer: /CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft Manifest number: A6 Signing time: Wed 15 May 2024 06:49:44 +0000 Manifest this update: Wed 15 May 2024 06:49:44 +0000 Manifest next update: Wed 22 May 2024 06:49:44 +0000 Files and hashes: 1: lATO33S5SXRR7zK7ehK-1x0sI-U.crl (hash: gV+qV3ZyxsSGSpJrt/1Pusk/NlQwk4v/nTxAhsl5zY8=) 2: AFF53F96556211EE9C34E435C4F9AE02.roa (hash: SlNtETM6I07+t2EpX9CpttYdcrRd0J5JXw68zWhg508=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CB7D/serialNumber=9404CEDF74B9497451EF32BB7A12BED71D2C23E5 Validity Not Before: May 15 06:49:44 2024 GMT Not After : May 22 06:49:44 2024 GMT Subject: CN=66445b08-6c23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0f:8d:2d:37:72:bd:ce:5e:c5:18:8f:c6:c8: 37:e8:49:16:61:a7:8b:13:4e:c6:b8:ec:10:d7:66: 93:87:ab:a1:58:d2:61:69:a9:65:be:dc:3b:ee:b0: c8:f9:0a:98:ab:6f:78:02:aa:6c:22:3f:ee:ec:3d: 9a:d9:36:d6:0a:da:a6:13:bb:b2:d0:c0:6f:e5:84: ed:41:fb:bf:c7:dc:4c:45:56:46:79:b6:8f:e6:ca: 70:02:fa:05:c1:5a:85:a1:e7:77:05:1c:67:fa:6d: ee:60:72:b9:fe:96:b1:12:80:38:62:c8:d7:1c:da: f0:a1:db:76:49:cf:68:69:fa:d2:b6:58:6a:d4:2c: 03:0a:47:37:a2:52:d2:ab:0f:04:79:dc:29:60:3e: 8b:c0:89:93:bb:bc:5e:df:df:fa:48:15:0d:43:43: dc:53:4e:e8:71:85:39:65:ff:ea:90:71:25:e5:20: f8:ce:31:32:17:88:82:f7:d8:1c:6c:5a:78:fe:c4: 66:c8:51:51:cf:ac:ea:a9:a3:b6:aa:e0:a6:fb:36: fa:15:a5:e5:3a:e6:e2:7c:5f:9b:6c:79:e0:16:3e: c7:54:93:a4:1e:a6:c9:9a:64:88:b6:02:26:02:97: e9:ea:e8:be:7c:28:ad:a2:2b:65:3e:dc:62:84:d0: 2f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C8:76:5D:15:CE:7E:BF:2D:D6:EC:4D:24:78:BB:90:E1:5C:38:94 X509v3 Authority Key Identifier: keyid:94:04:CE:DF:74:B9:49:74:51:EF:32:BB:7A:12:BE:D7:1D:2C:23:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lATO33S5SXRR7zK7ehK-1x0sI-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CB7D/B2B3D77C1B4411EEA3578E29C4F9AE02/lATO33S5SXRR7zK7ehK-1x0sI-U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:c3:f5:7f:39:95:f4:5d:6c:c0:b4:12:b8:e2:d0:7e:f3:39: e5:ce:36:df:79:14:52:88:55:b2:7e:3b:06:7e:3f:e5:cb:51: df:04:3f:d2:01:7d:2e:27:46:82:f6:0c:b5:9c:57:3d:fd:4e: de:bd:ff:ba:22:d0:8d:e5:9e:20:08:fc:30:47:ca:73:22:51: 7a:67:36:80:0a:45:52:29:21:f9:cf:4d:62:10:20:dd:cc:6e: 18:ce:57:82:5b:38:70:7e:37:f7:c7:4d:97:ac:48:76:8f:ee: 82:21:ac:12:86:62:ef:37:ea:a9:c1:bd:4a:41:ff:bd:17:06: dc:bd:76:81:a2:47:0c:f3:c9:6e:b0:85:47:ce:27:69:65:6b: 70:20:4d:02:eb:5b:60:52:70:10:dc:76:30:97:bf:e4:f7:6d: 48:d6:f6:c3:fe:8a:c6:e5:10:17:e5:9b:e6:27:0e:5c:93:6c: 96:22:66:51:f5:c7:2a:83:7c:a7:b4:b7:3f:44:76:fb:23:e9: 04:3c:07:a7:d5:23:c7:24:31:9a:53:93:55:0a:83:7e:ec:4c: 0c:ea:49:f5:96:f2:25:05:b1:e3:fd:93:36:40:81:3e:06:2a: 31:fb:c9:df:40:fa:01:0d:f3:e8:2f:05:d9:aa:39:75:4e:4d: 7f:6a:a5:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNCN0QxMTAvBgNVBAUTKDk0MDRDRURGNzRCOTQ5NzQ1MUVGMzJCQjdBMTJCRUQ3 MUQyQzIzRTUwHhcNMjQwNTE1MDY0OTQ0WhcNMjQwNTIyMDY0OTQ0WjAYMRYwFAYD VQQDEw02NjQ0NWIwOC02YzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArA+NLTdyvc5exRiPxsg36EkWYaeLE07GuOwQ12aTh6uhWNJhaallvtw77rDI +QqYq294AqpsIj/u7D2a2TbWCtqmE7uy0MBv5YTtQfu/x9xMRVZGebaP5spwAvoF wVqFoed3BRxn+m3uYHK5/paxEoA4YsjXHNrwodt2Sc9oafrStlhq1CwDCkc3olLS qw8EedwpYD6LwImTu7xe39/6SBUNQ0PcU07ocYU5Zf/qkHEl5SD4zjEyF4iC99gc bFp4/sRmyFFRz6zqqaO2quCm+zb6FaXlOubifF+bbHngFj7HVJOkHqbJmmSItgIm Apfp6ui+fCitoitlPtxihNAvbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfIdl0V zn6/LdbsTSR4u5DhXDiUMB8GA1UdIwQYMBaAFJQEzt90uUl0Ue8yu3oSvtcdLCPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0I3RC9CMkIzRDc3QzFC NDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNYUlI3eks3ZWhLLTF4MHNJ LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBVE8zM1M1U1hSUjd6SzdlaEstMXgwc0ktVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0I3RC9CMkIzRDc3QzFCNDQxMUVFQTM1NzhFMjlDNEY5QUUwMi9sQVRPMzNTNVNY UlI3eks3ZWhLLTF4MHNJLVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDw/V/OZX0XWzAtBK44tB+8znlzjbfeRRSiFWyfjsGfj/ly1HfBD/S AX0uJ0aC9gy1nFc9/U7evf+6ItCN5Z4gCPwwR8pzIlF6ZzaACkVSKSH5z01iECDd zG4YzleCWzhwfjf3x02XrEh2j+6CIawShmLvN+qpwb1KQf+9FwbcvXaBokcM88lu sIVHzidpZWtwIE0C61tgUnAQ3HYwl7/k921I1vbD/orG5RAX5ZvmJw5ck2yWImZR 9ccqg3yntLc/RHb7I+kEPAen1SPHJDGaU5NVCoN+7EwM6kn1lvIlBbHj/ZM2QIE+ Biox+8nfQPoBDfPoLwXZqjl1Tk1/aqUV -----END CERTIFICATE-----Generated at Wed May 15 09:27:29 2024 by rpki-client on console-fra.rpki-client.org