$ rpki-client -vvf rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft File: lufMd6OOPhgL91JrodlTIYBONeY.mft (raw, json) Hash identifier: OCTXESLNhmo61avoXyN54Eo1SBQhol4Bn+tB3zDLp5s= Subject key identifier: 52:41:9F:DB:9C:8E:F1:39:A0:E8:70:5E:DC:86:8B:2B:3B:6C:7C:AC Authority key identifier: 96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 Certificate issuer: /CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft Manifest number: 0382 Signing time: Thu 23 May 2024 03:33:09 +0000 Manifest this update: Thu 23 May 2024 03:33:08 +0000 Manifest next update: Thu 30 May 2024 03:33:08 +0000 Files and hashes: 1: lufMd6OOPhgL91JrodlTIYBONeY.crl (hash: qr2wZIVOwIsRKJxWya/NPdhiIhMCLW2KF7IjuePlXTs=) 2: C310EE5AACD311ED84BAA06EC4F9AE02.roa (hash: qWXVDjibiHtSIWksvfhSyOreQF5fIpHdHGrtQkZOi7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C4FA/serialNumber=96E7CC77A38E3E180BF7526BA1D95321804E35E6 Validity Not Before: May 23 03:33:08 2024 GMT Not After : May 30 03:33:08 2024 GMT Subject: CN=664eb8f4-261a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9f:22:69:55:47:a1:79:73:ed:96:f9:a5:2a: 30:8a:49:1a:03:bd:a8:07:a9:5f:13:4c:36:7b:25: ac:0f:36:e0:77:11:de:80:c9:7e:b1:c8:21:c8:d0: b4:80:00:69:e7:0e:3c:e6:bb:4d:f0:a8:bb:1a:b0: cd:a6:8e:b9:d6:ed:59:9f:fa:9c:90:a6:86:c7:ff: 88:5e:21:af:16:1e:27:fd:97:ec:78:18:1c:a9:31: 47:fa:0c:95:9e:10:9b:8c:f0:21:f7:b4:28:6c:1d: 54:1b:d9:c4:68:d1:38:f4:c6:79:09:b1:37:33:d8: 69:fd:42:72:e8:60:10:28:78:22:c0:b6:c0:3c:65: 3c:c5:f8:f8:8a:9c:07:a0:2d:90:98:b4:ef:87:49: 39:a8:7c:35:3d:aa:46:af:00:d2:29:44:6e:ba:82: fc:6f:d2:ba:1c:5b:ee:00:7d:87:39:d8:72:2f:3b: ac:7a:73:9e:6a:95:23:ca:cc:01:ba:ba:f2:4d:ad: 40:59:b5:50:43:33:9d:fc:73:ac:f1:cc:f5:50:e7: a9:03:42:bd:9f:47:17:26:15:32:54:82:8d:bf:6f: 41:df:ac:a8:44:b3:b5:22:5f:06:e3:32:05:32:5a: af:b6:9b:a9:93:41:c9:44:18:41:6f:6d:0b:bf:a1: b3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:41:9F:DB:9C:8E:F1:39:A0:E8:70:5E:DC:86:8B:2B:3B:6C:7C:AC X509v3 Authority Key Identifier: keyid:96:E7:CC:77:A3:8E:3E:18:0B:F7:52:6B:A1:D9:53:21:80:4E:35:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lufMd6OOPhgL91JrodlTIYBONeY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C4FA/B89BCBF4BA6A11EC82AC0787C4F9AE02/lufMd6OOPhgL91JrodlTIYBONeY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:8c:1f:36:c3:87:cc:fc:f4:b7:5f:25:ec:66:3a:89:27:60: e0:62:74:9f:e3:51:b8:f5:59:f7:e7:3d:9c:1e:1f:4c:86:65: c2:be:30:cf:4c:64:24:11:f5:71:87:44:64:d0:1e:7d:8c:ef: 8b:5d:ec:24:92:70:88:c5:5b:a8:16:0c:56:69:63:ad:8a:d9: 9e:dd:43:f1:dc:d1:8b:43:9f:1e:05:da:d9:f1:1e:bb:31:88: 46:ee:90:82:07:b6:24:a8:08:5d:c3:3b:2b:74:0d:ab:e3:dd: 61:e7:f2:87:94:49:5f:f1:68:bd:c9:c2:36:e9:fb:65:65:3d: 8b:e1:87:bf:b8:78:21:80:68:d9:fe:0e:c1:07:72:f8:37:f6: 4b:8f:8a:e7:8f:63:11:2b:e0:71:b4:3a:16:35:ea:36:60:f0: 6d:46:62:40:72:d4:b1:44:f4:11:63:26:0f:e1:90:a1:0a:fc: 93:37:f2:83:c4:f0:b1:8c:c4:88:a7:b5:71:fc:06:c7:5c:ec: 97:77:45:ae:af:32:6f:29:0d:02:6f:7d:9d:27:0a:bb:1d:fc: 17:82:f0:91:05:27:8e:b5:7a:f2:1c:fa:2f:eb:ca:5a:33:93: 2a:d9:9c:4b:a7:ec:7f:19:eb:0f:30:e2:ee:3d:f9:02:85:bc: 81:0a:aa:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM0RkExMTAvBgNVBAUTKDk2RTdDQzc3QTM4RTNFMTgwQkY3NTI2QkExRDk1MzIx ODA0RTM1RTYwHhcNMjQwNTIzMDMzMzA4WhcNMjQwNTMwMDMzMzA4WjAYMRYwFAYD VQQDEw02NjRlYjhmNC0yNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv58iaVVHoXlz7Zb5pSowikkaA72oB6lfE0w2eyWsDzbgdxHegMl+scghyNC0 gABp5w485rtN8Ki7GrDNpo651u1Zn/qckKaGx/+IXiGvFh4n/ZfseBgcqTFH+gyV nhCbjPAh97QobB1UG9nEaNE49MZ5CbE3M9hp/UJy6GAQKHgiwLbAPGU8xfj4ipwH oC2QmLTvh0k5qHw1PapGrwDSKURuuoL8b9K6HFvuAH2HOdhyLzusenOeapUjyswB urryTa1AWbVQQzOd/HOs8cz1UOepA0K9n0cXJhUyVIKNv29B36yoRLO1Il8G4zIF Mlqvtpupk0HJRBhBb20Lv6Gz8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFJBn9uc jvE5oOhwXtyGiys7bHysMB8GA1UdIwQYMBaAFJbnzHejjj4YC/dSa6HZUyGATjXm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzRGQS9CODlCQ0JGNEJB NkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1BoZ0w5MUpyb2RsVElZQk9O ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1Zk1kNk9PUGhnTDkxSnJvZGxUSVlCT05lWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzRGQS9CODlCQ0JGNEJBNkExMUVDODJBQzA3ODdDNEY5QUUwMi9sdWZNZDZPT1Bo Z0w5MUpyb2RsVElZQk9OZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7jB82w4fM/PS3XyXsZjqJJ2DgYnSf41G49Vn35z2cHh9MhmXCvjDP TGQkEfVxh0Rk0B59jO+LXewkknCIxVuoFgxWaWOtitme3UPx3NGLQ58eBdrZ8R67 MYhG7pCCB7YkqAhdwzsrdA2r491h5/KHlElf8Wi9ycI26ftlZT2L4Ye/uHghgGjZ /g7BB3L4N/ZLj4rnj2MRK+BxtDoWNeo2YPBtRmJActSxRPQRYyYP4ZChCvyTN/KD xPCxjMSIp7Vx/AbHXOyXd0WurzJvKQ0Cb32dJwq7HfwXgvCRBSeOtXryHPov68pa M5Mq2ZxLp+x/GesPMOLuPfkChbyBCqri -----END CERTIFICATE-----Generated at Thu May 23 04:27:00 2024 by rpki-client on console-ams.rpki-client.org