$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft File: LzabRI0hcVlrosk82-JY6vMxdZQ.mft (raw, json) Hash identifier: 9d6RTdd6jYQ1yRK5lfExT3JFZuadhE5g9sFQTUj+I4I= Subject key identifier: C3:FA:0D:8B:61:89:77:CE:19:87:59:71:F0:B4:04:1D:7A:D7:63:A0 Authority key identifier: 2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 Certificate issuer: /CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Certificate serial: 05EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft Manifest number: 05E5 Signing time: Wed 01 May 2024 00:22:39 +0000 Manifest this update: Wed 01 May 2024 00:22:38 +0000 Manifest next update: Wed 08 May 2024 00:22:38 +0000 Files and hashes: 1: LzabRI0hcVlrosk82-JY6vMxdZQ.crl (hash: qMdjl9eBQ4mrt85OQ/Stv2Bf0OqNAF1VpGvXIoT3ug4=) 2: 79D611D265E711EBB6FD8A0DC4F9AE02.roa (hash: WR1DbVbaQ/9PlcfupDSU3lPtOXXUq5mwwlQCdWOBvqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 00:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A5A/serialNumber=2F369B448D2171596BA2C93CDBE258EAF3317594 Validity Not Before: May 1 00:22:38 2024 GMT Not After : May 8 00:22:38 2024 GMT Subject: CN=66318b4e-47a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:67:14:03:ec:5b:d8:43:58:b1:ea:18:ce:4c: 5d:1b:bb:00:d1:b1:8d:e6:fb:dd:2f:91:f7:c2:f0: 1f:56:94:f6:3e:28:ce:59:82:01:88:ad:ef:e9:f2: 1c:16:fe:9e:c0:fe:57:9f:a2:99:26:8a:7a:42:ba: 75:14:02:e3:9f:41:39:bb:1e:42:9a:63:11:16:b8: 80:0b:56:b8:d9:ab:6e:46:3e:b1:a4:0c:fa:ea:c2: 22:2a:bb:65:a5:df:3d:d1:7d:b7:25:58:a7:64:64: fc:dd:d8:bd:20:f3:2f:f2:dd:9c:75:01:cb:35:26: 36:33:2d:60:45:d3:db:8a:36:4a:4b:d5:f7:4f:76: e6:2e:e0:0f:55:84:c3:e9:a7:72:94:88:0e:97:e4: 34:1e:2d:ff:d6:c7:db:57:50:89:64:0e:a8:c7:fd: 2b:6b:3c:d3:57:4b:ab:88:f7:1c:c4:0b:3d:54:ac: b0:21:24:ea:63:2b:a9:7f:27:fa:87:e8:bc:37:3b: f8:42:7d:54:78:c6:1a:77:01:af:a9:f2:17:4a:2d: f8:f3:5f:66:65:29:ed:7d:74:ab:aa:0d:8a:d4:8f: 47:31:ed:5e:5e:59:57:a6:56:38:12:2b:98:a8:86: 96:0f:3a:e7:2c:79:aa:c2:24:5a:78:6a:60:2f:c7: a3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:FA:0D:8B:61:89:77:CE:19:87:59:71:F0:B4:04:1D:7A:D7:63:A0 X509v3 Authority Key Identifier: keyid:2F:36:9B:44:8D:21:71:59:6B:A2:C9:3C:DB:E2:58:EA:F3:31:75:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LzabRI0hcVlrosk82-JY6vMxdZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A5A/B8BB568E65E511EBA25F920BC4F9AE02/LzabRI0hcVlrosk82-JY6vMxdZQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:45:d2:d1:ef:db:28:bc:4c:2f:70:f3:51:53:cc:a8:04:3b: e2:1b:21:c8:11:a4:21:6e:50:c7:5b:90:e1:11:39:2e:27:4d: 4c:89:80:25:be:67:3a:c3:11:d4:84:5d:b0:85:00:0b:14:61: 60:4e:85:8d:b6:7c:d9:5b:ec:6d:1c:fc:50:3d:e4:16:d6:cd: 62:ed:d0:93:f3:98:dd:33:83:4d:ac:bd:b6:0c:1e:3c:4a:76: c0:cf:30:b6:03:0e:e6:4d:55:b0:a8:ca:8c:50:80:be:f2:70: 91:08:fb:ec:30:16:91:b5:d7:5c:ef:a3:02:3b:4a:6a:a2:1f: 8b:b0:21:54:ca:cd:f8:81:b8:36:67:f2:7b:a9:1b:e9:49:d7: 63:23:53:18:a3:d2:3c:02:6f:ec:18:54:13:fd:92:bf:da:6e: 19:cb:d4:5c:eb:63:cf:3f:54:58:a9:e2:25:cf:5b:6c:96:e3: 2b:f7:4d:6c:b8:88:44:e7:5e:ab:af:6c:d0:40:0d:18:11:e7: 47:32:d2:93:49:f3:66:8c:44:ae:ec:41:fb:af:bc:a4:d2:21: 1e:9b:1b:5a:3e:78:2d:66:4e:8e:99:33:09:45:b1:a3:d5:9e: 67:53:f9:8d:f6:b9:af:ba:04:86:7e:70:16:bb:cc:7b:b1:87: d2:c2:ee:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNUExMTAvBgNVBAUTKDJGMzY5QjQ0OEQyMTcxNTk2QkEyQzkzQ0RCRTI1OEVB RjMzMTc1OTQwHhcNMjQwNTAxMDAyMjM4WhcNMjQwNTA4MDAyMjM4WjAYMRYwFAYD VQQDEw02NjMxOGI0ZS00N2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWcUA+xb2ENYseoYzkxdG7sA0bGN5vvdL5H3wvAfVpT2PijOWYIBiK3v6fIc Fv6ewP5Xn6KZJop6Qrp1FALjn0E5ux5CmmMRFriAC1a42atuRj6xpAz66sIiKrtl pd890X23JVinZGT83di9IPMv8t2cdQHLNSY2My1gRdPbijZKS9X3T3bmLuAPVYTD 6adylIgOl+Q0Hi3/1sfbV1CJZA6ox/0razzTV0uriPccxAs9VKywISTqYyupfyf6 h+i8Nzv4Qn1UeMYadwGvqfIXSi34819mZSntfXSrqg2K1I9HMe1eXllXplY4EiuY qIaWDzrnLHmqwiRaeGpgL8ejJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMP6DYth iXfOGYdZcfC0BB1612OgMB8GA1UdIwQYMBaAFC82m0SNIXFZa6LJPNviWOrzMXWU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1QS9COEJCNTY4RTY1 RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNWbHJvc2s4Mi1KWTZ2TXhk WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6YWJSSTBoY1Zscm9zazgyLUpZNnZNeGRaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUE1QS9COEJCNTY4RTY1RTUxMUVCQTI1RjkyMEJDNEY5QUUwMi9MemFiUkkwaGNW bHJvc2s4Mi1KWTZ2TXhkWlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcRdLR79sovEwvcPNRU8yoBDviGyHIEaQhblDHW5DhETkuJ01MiYAl vmc6wxHUhF2whQALFGFgToWNtnzZW+xtHPxQPeQW1s1i7dCT85jdM4NNrL22DB48 SnbAzzC2Aw7mTVWwqMqMUIC+8nCRCPvsMBaRtddc76MCO0pqoh+LsCFUys34gbg2 Z/J7qRvpSddjI1MYo9I8Am/sGFQT/ZK/2m4Zy9Rc62PPP1RYqeIlz1tsluMr901s uIhE516rr2zQQA0YEedHMtKTSfNmjESu7EH7r7yk0iEemxtaPngtZk6OmTMJRbGj 1Z5nU/mN9rmvugSGfnAWu8x7sYfSwu5u -----END CERTIFICATE-----Generated at Wed May 1 01:38:27 2024 by rpki-client on console-ams.rpki-client.org