$ rpki-client -vvf rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft File: LDTzNZTMO-PAfo54N2v8QzJjFUg.mft (raw, json) Hash identifier: QPCIR45Of+f5QaX+5wFEsmYFOo8bgqDAPJfaf1/2dD0= Subject key identifier: 32:28:BD:F6:EF:44:6F:4B:83:A7:4C:39:4E:CC:A8:BB:D9:08:27:96 Authority key identifier: 2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 Certificate issuer: /CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Certificate serial: 33B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft Manifest number: 33B7 Signing time: Wed 24 Apr 2024 14:31:24 +0000 Manifest this update: Wed 24 Apr 2024 14:31:24 +0000 Manifest next update: Wed 01 May 2024 14:31:24 +0000 Files and hashes: 1: LDTzNZTMO-PAfo54N2v8QzJjFUg.crl (hash: kE/lSUxtNcxyLhKj3gmHLov8Iwtrsr9xzJ254Wqe53E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 14:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13240 (0x33b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ADD8/serialNumber=2C34F33594CC3BE3C07E8E78376BFC4332631548 Validity Not Before: Apr 24 14:31:24 2024 GMT Not After : May 1 14:31:24 2024 GMT Subject: CN=662917bc-35c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d6:ee:bb:be:da:87:ea:ee:db:dc:94:04:2d: 1c:09:1f:b0:d9:f2:29:0b:87:f6:62:37:03:84:e2: ff:b3:ab:9d:83:e3:aa:a9:57:b4:11:06:31:d3:5a: 3c:96:57:a7:b0:ce:24:c2:45:88:2b:f9:8e:dd:17: 43:6f:4b:57:19:17:5c:17:5e:b9:d3:81:12:bc:90: 0d:95:74:0d:a7:c0:56:2b:9e:94:ee:6a:fa:38:04: e2:08:44:c1:cd:ab:9a:f5:91:80:7b:d6:6f:7c:1b: fa:59:02:36:df:e8:2a:de:5d:90:aa:da:4b:3c:94: 5a:ee:d6:37:67:ed:ff:d8:4f:e8:cc:ee:a9:5c:1c: dd:dd:fa:8e:60:60:dd:c7:ce:51:c4:83:49:d5:d3: 8d:71:bf:08:b9:f6:87:1e:eb:17:61:8e:d5:6d:8b: a6:07:95:60:3f:20:45:9b:5a:32:3c:3a:30:4a:ef: d1:fc:d3:6a:5e:bf:34:6f:e5:7b:84:2a:eb:96:b5: da:c3:6e:4d:c6:41:92:05:bb:86:53:16:62:12:b7: 1e:3d:04:ae:20:a3:da:82:37:d7:b5:4b:b2:ba:b8: 4c:e2:6b:04:c5:58:5f:19:81:2e:dd:51:dc:57:2f: 13:93:a6:b9:c1:43:ec:03:7a:bb:60:1c:d0:bf:81: 85:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:28:BD:F6:EF:44:6F:4B:83:A7:4C:39:4E:CC:A8:BB:D9:08:27:96 X509v3 Authority Key Identifier: keyid:2C:34:F3:35:94:CC:3B:E3:C0:7E:8E:78:37:6B:FC:43:32:63:15:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDTzNZTMO-PAfo54N2v8QzJjFUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ADD8/A4D8104E1D8711E2834CB9DF08B02CD2/LDTzNZTMO-PAfo54N2v8QzJjFUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:c7:6f:15:76:12:48:c1:98:ae:4f:85:48:a7:fa:ce:2a:a2: 32:d0:d9:1b:52:81:d5:d6:6f:bd:05:2b:c8:f1:50:14:48:0b: e4:dd:3e:12:ae:37:12:4b:f6:2c:5b:df:3e:01:3a:2f:0c:75: 37:ff:aa:58:6c:e8:3b:36:78:9a:98:36:87:59:61:1e:1d:bb: 97:87:4a:5b:bd:90:a1:12:fc:4e:17:b6:2b:85:78:d6:8a:6a: 37:b0:86:e0:aa:00:fd:44:38:fa:95:61:3c:08:b4:fc:6b:fc: 6b:e0:a4:9c:dd:08:a7:b8:49:f6:2d:7e:67:ea:bb:51:58:c1: 3a:47:14:e3:00:50:63:e1:6d:cf:7b:92:38:68:a9:0a:69:c0: 34:0f:af:a5:91:6f:23:f3:91:a1:8a:99:ff:f6:e9:89:d0:ed: d6:ab:03:f1:93:d8:00:ee:88:90:a2:ba:d2:46:0a:56:c3:95: 9f:f3:f2:85:5e:16:c0:c4:61:d5:a1:73:dc:c3:af:35:f3:3c: aa:4e:d8:a2:90:b7:1f:56:f8:d9:e5:37:fa:f7:08:73:e4:d5: ce:b0:93:9f:87:aa:8d:15:94:b1:14:66:19:96:28:5b:85:9f: 2f:1b:4b:5f:fc:4a:64:de:b4:29:86:e5:18:30:7a:99:06:5e: de:c5:27:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFERDgxMTAvBgNVBAUTKDJDMzRGMzM1OTRDQzNCRTNDMDdFOEU3ODM3NkJGQzQz MzI2MzE1NDgwHhcNMjQwNDI0MTQzMTI0WhcNMjQwNTAxMTQzMTI0WjAYMRYwFAYD VQQDEw02NjI5MTdiYy0zNWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dbuu77ah+ru29yUBC0cCR+w2fIpC4f2YjcDhOL/s6udg+OqqVe0EQYx01o8 llensM4kwkWIK/mO3RdDb0tXGRdcF16504ESvJANlXQNp8BWK56U7mr6OATiCETB zaua9ZGAe9ZvfBv6WQI23+gq3l2QqtpLPJRa7tY3Z+3/2E/ozO6pXBzd3fqOYGDd x85RxINJ1dONcb8IufaHHusXYY7VbYumB5VgPyBFm1oyPDowSu/R/NNqXr80b+V7 hCrrlrXaw25NxkGSBbuGUxZiErcePQSuIKPagjfXtUuyurhM4msExVhfGYEu3VHc Vy8Tk6a5wUPsA3q7YBzQv4GFAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIovfbv RG9Lg6dMOU7MqLvZCCeWMB8GA1UdIwQYMBaAFCw08zWUzDvjwH6OeDdr/EMyYxVI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUREOC9BNEQ4MTA0RTFE ODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8tUEFmbzU0TjJ2OFF6SmpG VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEVHpOWlRNTy1QQWZvNTROMnY4UXpKakZVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUREOC9BNEQ4MTA0RTFEODcxMUUyODM0Q0I5REYwOEIwMkNEMi9MRFR6TlpUTU8t UEFmbzU0TjJ2OFF6SmpGVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGx28VdhJIwZiuT4VIp/rOKqIy0NkbUoHV1m+9BSvI8VAUSAvk3T4S rjcSS/YsW98+ATovDHU3/6pYbOg7NniamDaHWWEeHbuXh0pbvZChEvxOF7YrhXjW imo3sIbgqgD9RDj6lWE8CLT8a/xr4KSc3QinuEn2LX5n6rtRWME6RxTjAFBj4W3P e5I4aKkKacA0D6+lkW8j85Ghipn/9umJ0O3WqwPxk9gA7oiQorrSRgpWw5Wf8/KF XhbAxGHVoXPcw6818zyqTtiikLcfVvjZ5Tf69whz5NXOsJOfh6qNFZSxFGYZlihb hZ8vG0tf/Epk3rQphuUYMHqZBl7exSe/ -----END CERTIFICATE-----Generated at Wed Apr 24 15:50:17 2024 by rpki-client on console-ams.rpki-client.org