$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft File: LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft (raw, json) Hash identifier: GiWZDjHjk4PqMaSOvePB/9SPQ0lEtyS0lxe2di0eU2Q= Subject key identifier: 83:02:85:0D:47:54:38:19:49:3B:2B:1C:CA:77:4C:BB:6E:A1:E1:58 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 05AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft Manifest number: 05A5 Signing time: Fri 03 May 2024 00:25:35 +0000 Manifest this update: Fri 03 May 2024 00:25:34 +0000 Manifest next update: Fri 10 May 2024 00:25:34 +0000 Files and hashes: 1: LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl (hash: t4yKXo6OoeOCmgTHl8CNyJmtQWjjg0S0UlHorbvGRi0=) 2: F100A1207F9911EBAFB6C91BC4F9AE02.roa (hash: jFnYqzGhAcOoCv3LrTnwAcNObZ+rFp5+5bu5sVza2zU=) 3: 0463FF50526C11EC80A31615C4F9AE02.roa (hash: jaH7TvTiRCR0VN9+WpSIw3MSWWWyT2dB3UWe4924gA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: May 3 00:25:34 2024 GMT Not After : May 10 00:25:34 2024 GMT Subject: CN=66342eff-9c0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:6f:68:05:2d:1f:b4:3b:3a:28:a3:14:a0: 46:8e:7c:8c:ea:7d:d0:3e:9d:16:1b:cc:7c:36:51: 49:99:26:b9:e6:0c:ba:22:98:28:65:6d:ec:ef:37: 9f:7d:6d:e7:d6:40:3d:58:14:65:93:02:09:47:9b: f9:b1:f4:8d:9b:86:f2:d1:88:8a:7b:3c:cc:46:f2: e6:c0:7d:f4:bc:7a:de:29:14:ad:39:30:dc:9a:57: 0d:d4:c5:d8:57:cc:5a:65:03:d7:fc:b9:34:f0:2e: 7c:1f:0d:85:1a:62:e3:13:9d:67:fb:84:b3:04:02: c3:2b:77:67:d8:d9:d9:b6:f2:22:bd:e9:bc:60:53: cb:16:c5:72:fe:1b:5e:57:56:d8:38:77:d8:f4:29: bc:4f:25:ec:06:3e:3f:06:4a:1e:f2:93:f3:bc:e3: f3:d5:69:9a:9e:71:02:98:73:db:13:5d:27:0b:47: 72:13:40:2b:2b:77:d7:58:8b:8c:23:4f:b4:e1:3c: 28:7e:38:bf:88:c3:24:30:94:e5:04:65:61:47:26: 0e:3f:0e:92:f5:2f:d0:fe:c5:5f:c0:cc:23:16:6d: 3d:33:25:11:aa:1b:14:34:d3:68:55:92:1d:06:b1: 02:f7:d6:91:a1:1b:ed:ee:04:fe:17:d1:f2:4a:99: b7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:02:85:0D:47:54:38:19:49:3B:2B:1C:CA:77:4C:BB:6E:A1:E1:58 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:df:91:f8:02:c2:e1:a6:21:15:39:e5:ac:51:20:45:69:7a: 95:f9:a4:62:9c:9f:3b:f2:25:18:ed:32:a5:d6:b7:6d:30:7d: c5:12:38:66:33:af:9b:4c:c0:d5:69:b3:4b:a8:42:c6:f2:9c: 19:f2:8e:0e:98:4a:e6:82:02:10:9a:7d:0a:75:2b:d8:b1:0e: 7c:8a:c9:c4:54:02:13:bb:8b:80:76:80:89:b7:af:db:ac:a7: 70:47:b5:56:97:28:a3:5a:f0:37:55:7f:65:2a:8c:bc:92:88: c8:36:5f:65:f7:0e:4c:c2:f6:ff:c5:3a:cf:c6:c5:5f:30:50: 30:a6:e3:d2:80:f6:6f:03:e4:e3:6f:58:60:57:8f:5b:b4:23: 5e:6b:04:8e:fc:8a:f5:60:64:55:a3:31:c5:b4:a3:f1:8d:87: c7:42:ea:59:45:ea:a7:b6:ea:df:6d:08:01:b8:27:a0:d8:62: 03:45:5e:a2:10:5a:fc:8e:3a:84:b8:5f:df:21:23:8f:c7:54: a3:86:73:9f:cf:64:95:7e:39:36:11:b0:fd:22:d9:49:d3:d5: 07:93:e8:33:96:0e:73:a3:02:6b:25:1e:05:28:ca:bc:43:41: 3a:ff:26:15:78:19:36:18:eb:3f:d7:bd:77:ab:62:6b:11:5f: 9e:bf:32:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjQwNTAzMDAyNTM0WhcNMjQwNTEwMDAyNTM0WjAYMRYwFAYD VQQDEw02NjM0MmVmZi05YzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYpvaAUtH7Q7OiijFKBGjnyM6n3QPp0WG8x8NlFJmSa55gy6IpgoZW3s7zef fW3n1kA9WBRlkwIJR5v5sfSNm4by0YiKezzMRvLmwH30vHreKRStOTDcmlcN1MXY V8xaZQPX/Lk08C58Hw2FGmLjE51n+4SzBALDK3dn2NnZtvIivem8YFPLFsVy/hte V1bYOHfY9Cm8TyXsBj4/Bkoe8pPzvOPz1WmannECmHPbE10nC0dyE0ArK3fXWIuM I0+04Twofji/iMMkMJTlBGVhRyYOPw6S9S/Q/sVfwMwjFm09MyURqhsUNNNoVZId BrEC99aRoRvt7gT+F9HySpm3fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMChQ1H VDgZSTsrHMp3TLtuoeFYMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0RDQS8xQzc1RURBNjdENkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1L bV94OHRta1lWSzllVFNHZmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY35H4AsLhpiEVOeWsUSBFaXqV+aRinJ878iUY7TKl1rdtMH3FEjhm M6+bTMDVabNLqELG8pwZ8o4OmErmggIQmn0KdSvYsQ58isnEVAITu4uAdoCJt6/b rKdwR7VWlyijWvA3VX9lKoy8kojINl9l9w5Mwvb/xTrPxsVfMFAwpuPSgPZvA+Tj b1hgV49btCNeawSO/Ir1YGRVozHFtKPxjYfHQupZReqnturfbQgBuCeg2GIDRV6i EFr8jjqEuF/fISOPx1SjhnOfz2SVfjk2EbD9ItlJ09UHk+gzlg5zowJrJR4FKMq8 Q0E6/yYVeBk2GOs/1713q2JrEV+evzLO -----END CERTIFICATE-----Generated at Fri May 3 01:30:24 2024 by rpki-client on console-fra.rpki-client.org