$ rpki-client -vvf rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft File: l_lzn2QJyHWu4cSbtpqnQ882YRs.mft (raw, json) Hash identifier: 79Y0Ko8dZEXSWHD+hvGy91FwKgc4rSNc86c/p0LBr5s= Subject key identifier: AD:75:86:25:A5:AC:B5:1B:E9:1D:67:4B:5D:17:8A:11:F1:A0:47:C6 Authority key identifier: 97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B Certificate issuer: /CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Certificate serial: 0D7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft Manifest number: 0D6F Signing time: Thu 02 May 2024 18:40:36 +0000 Manifest this update: Thu 02 May 2024 18:40:35 +0000 Manifest next update: Thu 09 May 2024 18:40:35 +0000 Files and hashes: 1: l_lzn2QJyHWu4cSbtpqnQ882YRs.crl (hash: IwZ0UVjADlLYh6O4fwZ1o5Cp3yWWyZ9t2p2ABZDIvbk=) 2: 06FD60AAA8CE11EBBD4DB90DC4F9AE02.roa (hash: gRo/nB5FVjywkSM4b0+1/hARWp/3k9nPFiRph4ggjDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3450 (0xd7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917047F/serialNumber=97F9739F6409C875AEE1C49BB69AA743CF36611B Validity Not Before: May 2 18:40:35 2024 GMT Not After : May 9 18:40:35 2024 GMT Subject: CN=6633de23-ec3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8f:1c:a4:eb:83:62:fa:66:93:15:45:51:80: 5e:20:9a:f3:44:f5:29:d4:9b:d5:7a:36:b0:ae:4e: a1:ac:53:90:95:ab:d8:67:49:05:ac:b3:3a:0f:d7: 39:2c:e0:e6:0e:44:40:15:8e:67:a3:e0:53:33:0e: 90:7c:02:f5:9d:27:64:18:8f:49:c8:b8:43:70:a4: 46:14:34:e1:52:ab:6f:f1:b9:9e:de:c4:ad:d7:d2: d2:9c:92:2c:19:1a:61:69:f5:16:4a:6c:49:6d:71: b1:ed:d4:fb:b5:db:9f:76:d9:22:17:8e:95:1f:a7: 4b:d0:61:b8:b9:98:b4:bb:27:9c:65:ed:33:92:a7: ea:c5:c0:5f:04:ed:56:04:1a:8e:13:d4:08:d8:f4: d3:32:93:49:14:7d:d9:40:df:f6:0e:3f:f1:79:ce: 97:5c:c8:27:6f:ff:d0:0c:00:5a:93:47:2e:62:59: 6f:78:b6:41:23:95:3c:47:eb:61:36:cb:c8:1f:ec: 91:6d:28:55:e2:17:0d:37:dd:37:d0:71:d2:75:b8: aa:35:33:ae:0f:20:83:61:1a:70:08:56:91:50:9b: 6c:69:22:56:ef:51:6b:de:b7:1e:ef:2b:48:a0:77: 15:46:4f:ff:21:76:3e:9d:2f:a7:a0:68:e8:04:ec: 47:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:75:86:25:A5:AC:B5:1B:E9:1D:67:4B:5D:17:8A:11:F1:A0:47:C6 X509v3 Authority Key Identifier: keyid:97:F9:73:9F:64:09:C8:75:AE:E1:C4:9B:B6:9A:A7:43:CF:36:61:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l_lzn2QJyHWu4cSbtpqnQ882YRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917047F/FD72DE14A3A911E99F75777BC4F9AE02/l_lzn2QJyHWu4cSbtpqnQ882YRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:9d:eb:f2:3b:4c:21:8c:31:f3:b9:21:82:e8:9f:da:b0:ba: 86:55:06:93:10:8d:a0:bc:c6:69:90:b4:14:e6:49:bd:a2:59: 4f:e7:f6:ef:29:cb:f3:92:a2:0d:d1:88:21:ed:f4:11:57:93: 54:b2:15:69:42:03:39:a8:c6:91:5b:8a:87:30:e8:1f:88:3d: 6e:ab:d3:64:00:a3:1b:89:05:e7:cc:1e:11:3d:3e:ef:d6:04: d7:e0:56:16:af:2b:16:75:d5:ca:18:b3:3a:b6:11:11:b3:d4: ab:39:5e:00:e2:ce:08:fa:e7:8a:e0:aa:a7:b5:fa:7e:8f:2b: 1f:d2:15:9f:c1:db:04:7d:0a:2e:f4:04:d0:5b:1d:a2:93:73: 4f:03:72:dd:19:94:41:b7:fc:68:ea:4b:fa:0d:49:c8:18:f6: 74:c0:6c:d2:01:fe:7f:38:4e:52:62:65:ff:3d:4d:49:9a:a4: 59:79:ac:0e:1e:64:c3:34:19:b9:ef:8a:82:82:5a:26:96:cf: b7:24:05:a9:07:23:d0:1e:70:e7:c5:26:27:59:c5:17:4e:c9: 9c:2a:27:63:b7:34:04:50:88:ed:df:98:68:8d:a5:09:50:c7: 9c:06:c7:ad:f2:6b:24:0e:44:eb:89:45:85:ab:1b:52:46:23: c3:ba:c2:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA0N0YxMTAvBgNVBAUTKDk3Rjk3MzlGNjQwOUM4NzVBRUUxQzQ5QkI2OUFBNzQz Q0YzNjYxMUIwHhcNMjQwNTAyMTg0MDM1WhcNMjQwNTA5MTg0MDM1WjAYMRYwFAYD VQQDEw02NjMzZGUyMy1lYzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo8cpOuDYvpmkxVFUYBeIJrzRPUp1JvVejawrk6hrFOQlavYZ0kFrLM6D9c5 LODmDkRAFY5no+BTMw6QfAL1nSdkGI9JyLhDcKRGFDThUqtv8bme3sSt19LSnJIs GRphafUWSmxJbXGx7dT7tdufdtkiF46VH6dL0GG4uZi0uyecZe0zkqfqxcBfBO1W BBqOE9QI2PTTMpNJFH3ZQN/2Dj/xec6XXMgnb//QDABak0cuYllveLZBI5U8R+th NsvIH+yRbShV4hcNN9030HHSdbiqNTOuDyCDYRpwCFaRUJtsaSJW71Fr3rce7ytI oHcVRk//IXY+nS+noGjoBOxHZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK11hiWl rLUb6R1nS10XihHxoEfGMB8GA1UdIwQYMBaAFJf5c59kCch1ruHEm7aap0PPNmEb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDQ3Ri9GRDcyREUxNEEz QTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlIV3U0Y1NidHBxblE4ODJZ UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xfbHpuMlFKeUhXdTRjU2J0cHFuUTg4MllScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDQ3Ri9GRDcyREUxNEEzQTkxMUU5OUY3NTc3N0JDNEY5QUUwMi9sX2x6bjJRSnlI V3U0Y1NidHBxblE4ODJZUnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDXnevyO0whjDHzuSGC6J/asLqGVQaTEI2gvMZpkLQU5km9ollP5/bv KcvzkqIN0Ygh7fQRV5NUshVpQgM5qMaRW4qHMOgfiD1uq9NkAKMbiQXnzB4RPT7v 1gTX4FYWrysWddXKGLM6thERs9SrOV4A4s4I+ueK4Kqntfp+jysf0hWfwdsEfQou 9ATQWx2ik3NPA3LdGZRBt/xo6kv6DUnIGPZ0wGzSAf5/OE5SYmX/PU1JmqRZeawO HmTDNBm574qCglomls+3JAWpByPQHnDnxSYnWcUXTsmcKidjtzQEUIjt35hojaUJ UMecBset8mskDkTriUWFqxtSRiPDusLG -----END CERTIFICATE-----Generated at Thu May 2 20:04:39 2024 by rpki-client on console-ams.rpki-client.org