$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft File: LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft (raw, json) Hash identifier: 4TOrQgGXCc07UcKcNuwBhFnkWhVRsXiI5WOj/Ap7LgQ= Subject key identifier: 94:2A:11:E0:84:8A:BD:A9:47:C4:93:10:56:58:01:15:1C:E6:7B:CE Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft Manifest number: 0120 Signing time: Sat 01 Jun 2024 06:26:37 +0000 Manifest this update: Sat 01 Jun 2024 06:26:37 +0000 Manifest next update: Sat 08 Jun 2024 06:26:37 +0000 Files and hashes: 1: LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl (hash: xIvmajYcJPtS8K6/b8QHFZ5r1eux94EGBuRBaBtzvAA=) 2: 552D155464A711ED99D40117C4F9AE02.roa (hash: 16TLUwSLMSyzKZumyo49XwLkPl/9EVbZHY98zsWdQ6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: Jun 1 06:26:37 2024 GMT Not After : Jun 8 06:26:37 2024 GMT Subject: CN=665abf1d-7bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c5:1e:87:4e:77:74:13:91:2c:d5:9a:7b:f1: 6e:95:2c:c8:9a:78:e7:b9:24:6a:9a:19:12:5a:80: 38:dc:e5:18:df:5d:f6:3b:2e:b8:08:68:46:88:8e: 22:7c:e1:9c:ff:a2:fb:6b:b0:e4:0b:80:85:b9:58: 01:75:92:7b:66:03:25:b7:47:d2:46:2c:ea:84:1e: 5d:6b:a2:3b:af:a3:4b:24:1f:55:7d:b3:25:5f:8f: 2e:14:ad:42:fd:b8:54:ac:3d:51:84:6c:c4:90:b3: 62:00:44:b1:2b:cd:ff:8b:3b:3c:7b:62:ae:d8:78: bb:02:73:7c:f3:6a:e0:8a:62:7b:8b:57:8c:86:7c: aa:3a:dd:03:28:e3:75:36:20:a9:2d:58:79:96:0b: 8f:1c:fe:4a:b3:af:8d:b8:eb:f4:33:aa:77:75:94: 6e:b6:72:e3:f5:68:1f:e5:c6:b2:2e:7a:79:e6:7d: 94:59:8b:2a:1c:b0:c4:1b:54:fd:95:fb:ce:e3:ec: 2b:51:3c:73:11:d8:f1:c0:5d:99:b3:33:be:4a:44: 58:e8:3e:1b:00:cb:71:8f:49:fe:7c:28:c8:15:ef: 75:ad:09:2b:e1:a4:2e:83:3e:2f:44:4b:0e:7a:40: 05:8f:f0:16:1f:93:fc:a0:2a:6b:7f:69:4c:51:73: 3e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:2A:11:E0:84:8A:BD:A9:47:C4:93:10:56:58:01:15:1C:E6:7B:CE X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:81:9a:8c:32:2c:52:9a:92:a5:21:2d:b1:99:a1:28:a7:07: 9f:17:d3:f4:25:00:8a:0a:f1:e5:6e:67:91:7b:e3:f7:1a:d1: da:a4:55:f0:31:b6:21:50:c0:71:38:28:e1:81:1e:a7:a9:86: 57:b1:38:c3:f4:cd:22:2f:67:42:4c:47:97:75:a7:cd:10:70: 8a:52:dd:51:f1:08:dd:74:13:51:49:ce:71:81:56:1a:16:71: 9c:5d:da:28:60:9b:7d:be:55:4d:34:24:58:69:c0:11:bf:b8: cc:8e:d7:d5:90:89:ec:ec:fc:e4:83:8d:23:bc:8b:ec:62:79: 4b:ce:f4:85:90:fe:0f:cf:3d:db:61:1d:d9:fc:63:da:e3:9d: 61:8d:68:ce:1d:6d:54:cc:7e:b4:02:bd:a0:ca:ca:0a:e5:7d: 2b:7e:16:cb:6e:0c:44:de:ce:f6:66:80:a8:6c:b7:f8:eb:f3: 49:51:05:14:af:2e:4a:a8:7c:1a:3e:21:54:92:25:07:7c:9f: aa:c1:75:76:b6:b3:1b:75:53:57:3c:e7:97:9c:ad:30:e4:ca: 68:cb:a1:f2:e3:67:ad:14:c1:71:ec:c5:b0:a9:2a:92:38:65: bc:53:63:74:38:13:bf:94:33:7a:91:8a:79:d6:fc:39:ea:da: 82:2e:88:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjQwNjAxMDYyNjM3WhcNMjQwNjA4MDYyNjM3WjAYMRYwFAYD VQQDEw02NjVhYmYxZC03YmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cUeh053dBORLNWae/FulSzImnjnuSRqmhkSWoA43OUY3132Oy64CGhGiI4i fOGc/6L7a7DkC4CFuVgBdZJ7ZgMlt0fSRizqhB5da6I7r6NLJB9VfbMlX48uFK1C /bhUrD1RhGzEkLNiAESxK83/izs8e2Ku2Hi7AnN882rgimJ7i1eMhnyqOt0DKON1 NiCpLVh5lguPHP5Ks6+NuOv0M6p3dZRutnLj9Wgf5cayLnp55n2UWYsqHLDEG1T9 lfvO4+wrUTxzEdjxwF2ZszO+SkRY6D4bAMtxj0n+fCjIFe91rQkr4aQugz4vREsO ekAFj/AWH5P8oCprf2lMUXM+FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJQqEeCE ir2pR8STEFZYARUc5nvOMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Q3NS81MkRFNEM0QTY0QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRi TVJpWHEyeEdqQ1ZIQnVYUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDgZqMMixSmpKlIS2xmaEopwefF9P0JQCKCvHlbmeRe+P3GtHapFXw MbYhUMBxOCjhgR6nqYZXsTjD9M0iL2dCTEeXdafNEHCKUt1R8QjddBNRSc5xgVYa FnGcXdooYJt9vlVNNCRYacARv7jMjtfVkIns7Pzkg40jvIvsYnlLzvSFkP4Pzz3b YR3Z/GPa451hjWjOHW1UzH60Ar2gysoK5X0rfhbLbgxE3s72ZoCobLf46/NJUQUU ry5KqHwaPiFUkiUHfJ+qwXV2trMbdVNXPOeXnK0w5Mpoy6Hy42etFMFx7MWwqSqS OGW8U2N0OBO/lDN6kYp51vw56tqCLohl -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:19 2024 by rpki-client on console-fra.rpki-client.org