$ rpki-client -vvf rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft File: ldG-85ALQWWEFku3RjF3EwIpFog.mft (raw, json) Hash identifier: vSeazRVzt27zOOaemR19iGrfwlqLP8z31tW+8M1NGfE= Subject key identifier: 56:32:3D:1D:7F:A5:55:E5:19:78:83:ED:20:A1:A0:F1:27:64:6E:C0 Authority key identifier: 95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 Certificate issuer: /CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Certificate serial: 33D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft Manifest number: 33CD Signing time: Thu 02 May 2024 14:58:19 +0000 Manifest this update: Thu 02 May 2024 14:58:18 +0000 Manifest next update: Thu 09 May 2024 14:58:18 +0000 Files and hashes: 1: ldG-85ALQWWEFku3RjF3EwIpFog.crl (hash: I11eaFJ0lVAmpDz2cWOqsLAGNLvo/ygmFyy6SJitq7o=) 2: C2F7AE40C03111EA9777314AC4F9AE02.roa (hash: tPW/Egh8IR3GEd0uZMXbPh6pBpBuAbmcNv5np6TmcRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13272 (0x33d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91577DD/serialNumber=95D1BEF3900B416584164BB74631771302291688 Validity Not Before: May 2 14:58:18 2024 GMT Not After : May 9 14:58:18 2024 GMT Subject: CN=6633aa0a-25e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:99:2a:bf:6f:fd:30:a6:be:a2:16:fd:f0:4c: af:9f:78:99:d3:6f:3f:26:c6:86:44:9f:15:66:be: e3:55:ef:d9:96:82:14:74:7c:c4:3c:cb:6e:36:82: e9:2f:ec:fb:a4:28:04:26:89:5d:6d:b6:2b:80:07: 70:8a:3d:9c:2d:4f:ed:3d:f3:bf:ee:e0:09:28:90: 38:7e:28:6d:10:fc:d5:51:09:5e:6a:8e:64:de:1d: f7:2b:6c:15:bd:4c:03:e0:f2:bb:c5:76:d9:98:b0: ca:50:38:96:38:ee:86:59:81:c0:d7:dc:36:d2:90: a9:a6:d0:b3:3d:e4:fe:1b:c6:d1:1a:53:3a:d2:ce: 7b:37:2d:da:6c:4d:e1:9a:69:16:af:3a:18:2d:c6: 5e:04:1c:85:59:6c:61:6c:d1:28:a6:91:52:a6:7b: 49:07:48:9a:03:ee:a5:fc:ea:b1:db:78:ca:b1:4e: 23:e6:55:e1:b0:78:86:25:d2:d6:f5:fd:62:51:e8: 70:63:40:68:51:f9:b7:cf:8c:f7:18:14:ff:3f:96: 06:ad:ee:0f:29:a7:4b:ca:58:6c:f3:a3:28:93:51: e0:4a:40:04:4d:08:b4:30:92:60:64:f7:05:fb:4a: fd:fc:f6:4f:0c:31:a0:f4:59:3a:7a:d9:64:dd:3b: e5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:32:3D:1D:7F:A5:55:E5:19:78:83:ED:20:A1:A0:F1:27:64:6E:C0 X509v3 Authority Key Identifier: keyid:95:D1:BE:F3:90:0B:41:65:84:16:4B:B7:46:31:77:13:02:29:16:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ldG-85ALQWWEFku3RjF3EwIpFog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91577DD/D1C5B02A1D9611E2A1CAB47F08B02CD2/ldG-85ALQWWEFku3RjF3EwIpFog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:15:55:a9:70:80:d6:e8:72:ed:1d:6c:fa:6a:09:f3:67:36: 73:2b:48:19:a9:2e:ec:ad:fe:56:35:ab:c9:da:52:1c:12:87: 42:ad:d8:f4:31:8e:ae:3f:9e:b6:96:7f:88:78:76:96:25:0e: dd:6d:09:09:a8:4c:0c:bb:3b:15:40:4d:6f:f2:f9:58:f8:3c: 39:ed:f6:f6:b2:26:50:db:a0:b2:9a:f0:2b:24:e2:bf:f4:55: 09:b7:b6:3a:49:ec:2c:91:5b:f1:59:9d:ba:c4:ad:91:9b:c9: 67:68:ec:d1:06:28:fa:2f:3b:0d:18:6d:69:f6:04:1c:15:26: e2:26:cd:d5:89:83:29:ea:1a:ab:e8:80:32:11:52:53:15:4d: 64:43:6f:9f:01:3a:cd:d6:d6:f7:cc:14:4f:08:71:86:8c:c5: 78:38:d7:8e:b9:b6:63:c6:9e:67:3f:85:12:c1:b3:c8:53:67: 5f:26:58:2a:4a:d2:57:63:a5:02:da:a9:1f:d6:b8:e8:43:79: 73:c2:fe:8e:04:ca:8e:a4:30:d3:5f:a4:bc:e2:2f:d0:3a:3e: 26:b0:a7:ff:63:4f:88:01:43:f8:8c:e9:da:42:e5:6b:d5:0d: d8:29:37:ca:f1:49:63:22:cf:67:27:fe:f7:ea:f7:92:9c:f1: e9:ec:cb:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3REQxMTAvBgNVBAUTKDk1RDFCRUYzOTAwQjQxNjU4NDE2NEJCNzQ2MzE3NzEz MDIyOTE2ODgwHhcNMjQwNTAyMTQ1ODE4WhcNMjQwNTA5MTQ1ODE4WjAYMRYwFAYD VQQDEw02NjMzYWEwYS0yNWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5kqv2/9MKa+ohb98Eyvn3iZ028/JsaGRJ8VZr7jVe/ZloIUdHzEPMtuNoLp L+z7pCgEJoldbbYrgAdwij2cLU/tPfO/7uAJKJA4fihtEPzVUQleao5k3h33K2wV vUwD4PK7xXbZmLDKUDiWOO6GWYHA19w20pCpptCzPeT+G8bRGlM60s57Ny3abE3h mmkWrzoYLcZeBByFWWxhbNEoppFSpntJB0iaA+6l/Oqx23jKsU4j5lXhsHiGJdLW 9f1iUehwY0BoUfm3z4z3GBT/P5YGre4PKadLylhs86Mok1HgSkAETQi0MJJgZPcF +0r9/PZPDDGg9Fk6etlk3Tvl1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYyPR1/ pVXlGXiD7SChoPEnZG7AMB8GA1UdIwQYMBaAFJXRvvOQC0FlhBZLt0YxdxMCKRaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzdERC9EMUM1QjAyQTFE OTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFXV0VGa3UzUmpGM0V3SXBG b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkRy04NUFMUVdXRUZrdTNSakYzRXdJcEZvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzdERC9EMUM1QjAyQTFEOTYxMUUyQTFDQUI0N0YwOEIwMkNEMi9sZEctODVBTFFX V0VGa3UzUmpGM0V3SXBGb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjFVWpcIDW6HLtHWz6agnzZzZzK0gZqS7srf5WNavJ2lIcEodCrdj0 MY6uP562ln+IeHaWJQ7dbQkJqEwMuzsVQE1v8vlY+Dw57fb2siZQ26CymvArJOK/ 9FUJt7Y6SewskVvxWZ26xK2Rm8lnaOzRBij6LzsNGG1p9gQcFSbiJs3ViYMp6hqr 6IAyEVJTFU1kQ2+fATrN1tb3zBRPCHGGjMV4ONeOubZjxp5nP4USwbPIU2dfJlgq StJXY6UC2qkf1rjoQ3lzwv6OBMqOpDDTX6S84i/QOj4msKf/Y0+IAUP4jOnaQuVr 1Q3YKTfK8UljIs9nJ/736veSnPHp7Mv7 -----END CERTIFICATE-----Generated at Thu May 2 17:43:07 2024 by rpki-client on console-fra.rpki-client.org