$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft File: lRKEJmSsUb9nhVvG5PRr41UaTaM.mft (raw, json) Hash identifier: sYkhRhonHozEfZ6qRLx6qr8usV520uhlS76MvFquGuo= Subject key identifier: B4:42:E6:5D:69:E0:9C:F2:F2:50:FA:2D:5A:31:BB:50:DF:91:92:7D Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 01E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft Manifest number: 01E3 Signing time: Fri 03 May 2024 04:23:54 +0000 Manifest this update: Fri 03 May 2024 04:23:53 +0000 Manifest next update: Fri 10 May 2024 04:23:53 +0000 Files and hashes: 1: lRKEJmSsUb9nhVvG5PRr41UaTaM.crl (hash: EpZD+qjjH16TlJAaovFJSuRT7D/8bhYGkvtWW20vljg=) 2: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (hash: eSyp7t3iWcraqcscFEbTAI22/OP8CFUn1DarpkYJiKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 488 (0x1e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: May 3 04:23:53 2024 GMT Not After : May 10 04:23:53 2024 GMT Subject: CN=663466da-0304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0f:a5:08:00:53:26:aa:6b:93:59:5d:55:ec: b4:85:c5:c6:96:4b:55:67:c2:0c:f2:1e:af:1f:f1: a2:80:b8:a0:6a:b0:c0:19:55:e8:ff:54:ab:19:79: 55:e8:1a:42:92:32:26:7e:d6:69:9f:a4:cc:f2:f1: e5:89:49:5b:1f:32:18:f5:fc:6c:dd:67:a9:68:2d: c2:c1:24:bc:de:52:17:1a:fb:7e:7c:0c:e4:c3:af: 9e:88:e0:b9:0c:6d:82:9f:2a:70:0d:75:9f:61:46: 81:f8:8d:87:a8:2b:38:8b:33:b5:b4:2b:c0:0f:22: a8:ee:e6:51:3d:94:66:87:d2:55:cc:96:f1:ea:fe: 8d:3e:3c:49:84:0e:51:83:ed:17:4b:23:94:c3:ff: 03:d9:cc:3c:c6:2c:dc:98:67:00:ff:fb:bd:4a:e4: dc:87:10:dc:1c:a1:1d:e5:c7:d4:d3:f5:81:38:ca: dd:ae:ef:37:cc:d2:28:67:5f:7d:ed:19:1d:71:02: ad:25:eb:78:3d:3f:0d:c8:9b:3e:1c:6a:dd:18:8d: 78:a2:3b:36:72:fe:83:08:07:c5:9f:2f:29:03:b8: 7f:cc:1b:66:58:7e:cc:49:eb:a7:d0:86:57:cb:5b: 50:21:01:d9:b4:8e:4e:ab:bb:73:15:c0:9d:a7:39: 6d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:42:E6:5D:69:E0:9C:F2:F2:50:FA:2D:5A:31:BB:50:DF:91:92:7D X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:0d:87:28:61:c5:90:16:92:b5:2c:b2:c9:8c:da:cb:c5:7b: 50:ca:69:94:29:91:84:e7:36:5e:cd:5d:86:ec:e3:19:a7:bf: f1:71:9c:11:f2:9e:97:f2:00:b0:00:f2:82:7a:16:9e:33:5e: 39:45:e8:95:41:bb:c0:49:c9:0c:66:5d:fb:4b:f3:40:a4:9a: 89:e1:90:a8:45:7a:37:d5:d1:91:23:b2:82:b4:e5:ee:98:ca: db:d5:58:c9:ff:57:50:06:7b:55:bf:c0:52:77:7e:88:f0:c6: 41:22:f7:5b:64:94:82:aa:60:fd:49:cc:a9:d9:53:68:11:dd: 29:f7:8c:f1:51:e9:10:e4:17:af:2b:1f:fd:89:c0:d3:98:17: 22:9a:6f:cc:83:57:29:87:c7:6c:f4:ce:11:00:0a:7f:4e:bb: b2:4d:0e:19:29:3e:be:e3:7b:7d:0b:45:79:2b:97:47:df:33: 9d:f8:04:8a:6b:74:5e:10:13:99:f4:82:73:3b:34:d6:a7:6d: bd:0e:de:1e:2c:3c:8c:8a:8c:44:bf:a1:8c:47:aa:9b:7e:82: 86:be:c9:e7:f4:58:39:2f:7c:78:00:94:44:8c:b8:3c:59:70: 9c:c9:8e:7d:d7:66:0c:ce:77:bf:ef:74:ee:b1:5d:5f:5b:7e: 43:48:77:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjQwNTAzMDQyMzUzWhcNMjQwNTEwMDQyMzUzWjAYMRYwFAYD VQQDEw02NjM0NjZkYS0wMzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsA+lCABTJqprk1ldVey0hcXGlktVZ8IM8h6vH/GigLigarDAGVXo/1SrGXlV 6BpCkjImftZpn6TM8vHliUlbHzIY9fxs3WepaC3CwSS83lIXGvt+fAzkw6+eiOC5 DG2CnypwDXWfYUaB+I2HqCs4izO1tCvADyKo7uZRPZRmh9JVzJbx6v6NPjxJhA5R g+0XSyOUw/8D2cw8xizcmGcA//u9SuTchxDcHKEd5cfU0/WBOMrdru83zNIoZ199 7RkdcQKtJet4PT8NyJs+HGrdGI14ojs2cv6DCAfFny8pA7h/zBtmWH7MSeun0IZX y1tQIQHZtI5Oq7tzFcCdpzlthwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRC5l1p 4Jzy8lD6LVoxu1DfkZJ9MB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjdCMi8wRTYzMjE5NEZCN0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1Vi OW5oVnZHNVBScjQxVWFUYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaDYcoYcWQFpK1LLLJjNrLxXtQymmUKZGE5zZezV2G7OMZp7/xcZwR 8p6X8gCwAPKCehaeM145ReiVQbvASckMZl37S/NApJqJ4ZCoRXo31dGRI7KCtOXu mMrb1VjJ/1dQBntVv8BSd36I8MZBIvdbZJSCqmD9Scyp2VNoEd0p94zxUekQ5Bev Kx/9icDTmBcimm/Mg1cph8ds9M4RAAp/TruyTQ4ZKT6+43t9C0V5K5dH3zOd+ASK a3ReEBOZ9IJzOzTWp229Dt4eLDyMioxEv6GMR6qbfoKGvsnn9Fg5L3x4AJREjLg8 WXCcyY5912YMzne/73TusV1fW35DSHfA -----END CERTIFICATE-----Generated at Fri May 3 06:28:40 2024 by rpki-client on console-fra.rpki-client.org