$ rpki-client -vvf rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft File: LT7zlg0opT_PYOmNAXAy6Sjqezk.mft (raw, json) Hash identifier: 2gza0nt3yPUKz4CU/I6qUTrNaCBzJceRdxwxhitb/NQ= Subject key identifier: C5:D8:7E:1C:37:14:1D:23:AA:74:BD:94:5D:82:A5:30:56:95:A8:AD Authority key identifier: 2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 Certificate issuer: /CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Certificate serial: 0658 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft Manifest number: 0652 Signing time: Thu 02 May 2024 23:47:14 +0000 Manifest this update: Thu 02 May 2024 23:47:14 +0000 Manifest next update: Thu 09 May 2024 23:47:14 +0000 Files and hashes: 1: LT7zlg0opT_PYOmNAXAy6Sjqezk.crl (hash: lU6rsUOT3tiYWq0L/XO7AG7DC4CDZQ2jFXIkc7w6g+I=) 2: 1C017B163B3811EBB3FC7A77C4F9AE02.roa (hash: u4f2AhOEZ5LsFTZIbA/6gU0UEmVk6N2OiqEjoSnMP5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 23:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167278/serialNumber=2D3EF3960D28A53FCF60E98D017032E928EA7B39 Validity Not Before: May 2 23:47:14 2024 GMT Not After : May 9 23:47:14 2024 GMT Subject: CN=66342602-1203 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:96:c4:d1:7e:6a:dd:db:b8:fa:49:94:b7:ef: 42:5a:45:b3:c4:7d:ae:d5:fd:2b:aa:48:6b:3d:2c: 11:44:7b:7e:f1:75:f0:e0:8f:6a:69:e2:64:5c:d3: 41:ce:2d:ab:59:e8:44:a9:3f:e9:1c:87:28:a5:bd: bd:c3:b1:92:02:2e:35:0a:3e:5a:00:d0:f5:8b:3b: 1f:38:c8:69:c5:26:bb:fb:36:cb:a6:a0:de:0e:7f: 53:49:75:4d:45:73:1f:4d:45:0e:6a:ec:4b:b8:d2: 05:59:31:b3:6c:98:5f:b8:bc:f2:54:ca:d5:8b:c6: 67:30:40:08:ea:ce:0f:09:f1:e1:15:ef:28:73:01: 3b:fd:34:29:4b:80:0a:9f:af:8f:a8:d3:a2:fd:b3: 87:b7:1f:09:0c:ae:73:c5:b7:dc:8e:08:49:69:98: 3b:4e:48:c8:08:f2:ef:c2:94:b3:c5:66:61:10:20: 63:90:52:bd:95:db:2a:82:d5:87:32:97:4f:85:e8: 19:89:0e:62:13:6e:f5:fc:f5:c5:10:20:53:24:2c: 1a:1e:28:86:be:54:9b:9f:1f:23:af:7e:50:b7:6b: 8a:7d:c8:7d:3e:ad:42:2c:97:ac:f1:b9:06:26:61: ee:56:9f:5e:dc:e5:4e:fe:8b:69:7e:2c:71:36:7d: d1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D8:7E:1C:37:14:1D:23:AA:74:BD:94:5D:82:A5:30:56:95:A8:AD X509v3 Authority Key Identifier: keyid:2D:3E:F3:96:0D:28:A5:3F:CF:60:E9:8D:01:70:32:E9:28:EA:7B:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT7zlg0opT_PYOmNAXAy6Sjqezk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167278/2AE0AD603B3711EBA75B4D77C4F9AE02/LT7zlg0opT_PYOmNAXAy6Sjqezk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:f2:67:9b:37:29:99:eb:21:23:44:91:04:35:13:8d:81:f3: f6:9d:14:54:fd:bb:a7:da:65:67:3a:a6:75:4e:04:b0:01:02: ff:04:6c:53:c4:72:73:21:7e:bf:2e:75:8c:42:34:19:c2:32: c5:4a:bb:30:74:2f:e8:11:94:da:ef:91:7b:be:26:96:a3:16: 49:38:43:e6:c3:0d:a2:88:44:84:4b:ae:17:67:df:51:a6:4f: 3e:57:60:7c:e1:09:28:c4:96:58:a2:71:5b:2d:72:f1:2b:c8: b0:1c:a3:e4:fa:21:98:16:fe:0a:13:a9:1e:ca:af:b4:8b:cd: 68:6d:6e:36:5e:92:25:bc:2a:e8:89:38:d9:8c:6e:e1:2d:6a: e8:5e:e5:7b:9f:fa:9c:81:1e:2d:cf:28:58:18:9a:59:f4:b2: d5:bf:96:14:21:61:eb:e3:2b:37:e2:90:92:33:ca:c8:e1:19: 1b:bc:89:23:d7:bd:68:bf:7f:6c:cc:df:fe:c3:e5:25:10:4e: 72:59:1d:28:1f:49:ae:cb:5a:4f:80:31:0d:8f:ad:e8:37:fd: b9:7f:0d:f6:6e:5c:77:64:4e:63:d6:19:80:3c:8c:bb:b8:c7: 89:5d:bc:f7:a4:d0:25:6e:06:df:c9:1d:7a:00:92:a0:7a:64: 6f:d0:f5:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcyNzgxMTAvBgNVBAUTKDJEM0VGMzk2MEQyOEE1M0ZDRjYwRTk4RDAxNzAzMkU5 MjhFQTdCMzkwHhcNMjQwNTAyMjM0NzE0WhcNMjQwNTA5MjM0NzE0WjAYMRYwFAYD VQQDEw02NjM0MjYwMi0xMjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspbE0X5q3du4+kmUt+9CWkWzxH2u1f0rqkhrPSwRRHt+8XXw4I9qaeJkXNNB zi2rWehEqT/pHIcopb29w7GSAi41Cj5aAND1izsfOMhpxSa7+zbLpqDeDn9TSXVN RXMfTUUOauxLuNIFWTGzbJhfuLzyVMrVi8ZnMEAI6s4PCfHhFe8ocwE7/TQpS4AK n6+PqNOi/bOHtx8JDK5zxbfcjghJaZg7TkjICPLvwpSzxWZhECBjkFK9ldsqgtWH MpdPhegZiQ5iE271/PXFECBTJCwaHiiGvlSbnx8jr35Qt2uKfch9Pq1CLJes8bkG JmHuVp9e3OVO/otpfixxNn3RowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXYfhw3 FB0jqnS9lF2CpTBWlaitMB8GA1UdIwQYMBaAFC0+85YNKKU/z2DpjQFwMuko6ns5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzI3OC8yQUUwQUQ2MDNC MzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BUX1BZT21OQVhBeTZTanFl emsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUN3psZzBvcFRfUFlPbU5BWEF5NlNqcWV6ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzI3OC8yQUUwQUQ2MDNCMzcxMUVCQTc1QjRENzdDNEY5QUUwMi9MVDd6bGcwb3BU X1BZT21OQVhBeTZTanFlemsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz8mebNymZ6yEjRJEENRONgfP2nRRU/bun2mVnOqZ1TgSwAQL/BGxT xHJzIX6/LnWMQjQZwjLFSrswdC/oEZTa75F7viaWoxZJOEPmww2iiESES64XZ99R pk8+V2B84QkoxJZYonFbLXLxK8iwHKPk+iGYFv4KE6keyq+0i81obW42XpIlvCro iTjZjG7hLWroXuV7n/qcgR4tzyhYGJpZ9LLVv5YUIWHr4ys34pCSM8rI4RkbvIkj 171ov39szN/+w+UlEE5yWR0oH0muy1pPgDENj63oN/25fw32blx3ZE5j1hmAPIy7 uMeJXbz3pNAlbgbfyR16AJKgemRv0PW5 -----END CERTIFICATE-----Generated at Fri May 3 00:48:28 2024 by rpki-client on console-ams.rpki-client.org