$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: Mwp5VcOkm/VGqru7j4xhZisC8YTtM5R0o4PtVbi6R6g= Subject key identifier: 08:51:E9:02:59:6C:DC:ED:8F:2F:9D:5C:2B:8E:DD:C5:B9:C4:BB:D7 Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: 87 Signing time: Fri 17 May 2024 07:14:26 +0000 Manifest this update: Fri 17 May 2024 07:14:26 +0000 Manifest next update: Fri 24 May 2024 07:14:26 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: 7blbRELFbyByjiDBXXvcSJdGTdtlCnx6jxf1yaaqS2s=) 2: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: JxKBFjyLkFcKUeUnxfqVxERJRU2rYWuYYc5hc1dcqKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 07:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: May 17 07:14:26 2024 GMT Not After : May 24 07:14:26 2024 GMT Subject: CN=664703d2-894c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:29:94:92:d1:3a:ff:9a:12:35:87:3b:61:69: d7:b6:fc:b3:f5:0f:08:28:68:74:2b:93:da:bc:79: af:0d:c2:d3:24:98:86:b6:22:73:fa:35:c8:9b:48: 4d:c1:7a:de:a8:f2:33:5c:09:5d:29:6c:1e:51:f0: 0e:1e:7e:ee:b7:5c:45:f9:aa:40:ed:8b:bd:4c:d4: 64:d4:8b:a8:4e:26:18:b4:c9:f3:63:fb:9b:86:23: 45:ad:31:a2:40:48:99:59:17:07:d6:d6:73:85:ff: ce:4b:5f:b8:58:d2:98:5e:0d:64:b3:80:d6:15:bf: a3:bf:a4:e4:15:b0:a0:a3:72:a2:55:12:fc:04:76: ad:41:ad:1e:78:88:bf:94:cd:da:81:72:5a:de:6c: 30:d2:ab:9b:2f:63:e3:55:62:a3:25:34:40:c5:9b: 44:0b:30:0f:39:e6:90:c8:03:67:aa:d1:c9:31:b1: e4:f0:fc:e0:91:e3:86:cd:49:79:44:53:75:84:04: d5:7a:9a:0f:2b:e6:20:a7:f0:1d:e1:69:13:0d:ac: f5:60:4a:18:e0:03:ac:d8:c4:35:aa:29:28:e4:8b: b3:cc:f0:22:2d:1d:69:4b:d6:2a:bb:f0:98:b3:24: 89:14:da:50:8e:f8:af:59:b0:40:40:dd:bc:48:84: 41:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:51:E9:02:59:6C:DC:ED:8F:2F:9D:5C:2B:8E:DD:C5:B9:C4:BB:D7 X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:48:84:75:43:9e:6b:60:5b:53:d1:54:c7:b1:5c:dc:0f:b3: 2b:5f:35:94:5f:d8:28:ce:94:da:ac:58:fa:b6:82:be:bb:92: b2:0b:0c:da:2d:26:70:92:20:89:8b:43:a1:cc:cb:a0:4f:21: 39:c1:9d:fd:a3:ca:cc:27:df:83:30:d0:79:18:83:f3:ce:82: f5:73:e7:36:27:29:b7:d4:c2:f2:4c:5d:8d:4e:d9:a1:b5:ef: d5:62:f0:e7:22:26:74:5a:29:79:93:c5:85:20:97:71:1a:b6: 12:73:ab:e3:ef:99:8c:60:f2:d4:6d:10:dc:f3:62:f8:af:59: 98:5d:41:2c:ba:eb:bf:d3:1f:2b:fc:14:7e:ba:9e:d4:8b:3d: c7:9f:5f:56:a8:1e:e6:2d:97:a7:50:9a:1d:85:ba:97:a7:9b: 81:16:7d:24:c4:df:fb:89:48:3e:4c:09:23:af:09:e6:bc:8e: 79:72:e0:fa:41:8e:ed:c8:0f:5e:b9:dc:34:ae:14:a2:e0:06: 43:fe:5d:6a:38:e1:8a:11:0e:66:c4:33:38:bb:60:f5:dc:09: e2:f5:95:fe:95:88:cb:9e:57:9e:c4:bd:b4:ea:53:83:44:d5: 9c:d9:66:7e:92:c6:c5:90:e3:57:b0:32:8b:94:5c:d4:61:8b: e2:7f:64:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjQwNTE3MDcxNDI2WhcNMjQwNTI0MDcxNDI2WjAYMRYwFAYD VQQDEw02NjQ3MDNkMi04OTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSmUktE6/5oSNYc7YWnXtvyz9Q8IKGh0K5PavHmvDcLTJJiGtiJz+jXIm0hN wXreqPIzXAldKWweUfAOHn7ut1xF+apA7Yu9TNRk1IuoTiYYtMnzY/ubhiNFrTGi QEiZWRcH1tZzhf/OS1+4WNKYXg1ks4DWFb+jv6TkFbCgo3KiVRL8BHatQa0eeIi/ lM3agXJa3mww0qubL2PjVWKjJTRAxZtECzAPOeaQyANnqtHJMbHk8PzgkeOGzUl5 RFN1hATVepoPK+Ygp/Ad4WkTDaz1YEoY4AOs2MQ1qiko5IuzzPAiLR1pS9Yqu/CY sySJFNpQjvivWbBAQN28SIRBAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhR6QJZ bNztjy+dXCuO3cW5xLvXMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTSIR1Q55rYFtT0VTHsVzcD7MrXzWUX9gozpTarFj6toK+u5KyCwza LSZwkiCJi0OhzMugTyE5wZ39o8rMJ9+DMNB5GIPzzoL1c+c2Jym31MLyTF2NTtmh te/VYvDnIiZ0Wil5k8WFIJdxGrYSc6vj75mMYPLUbRDc82L4r1mYXUEsuuu/0x8r /BR+up7Uiz3Hn19WqB7mLZenUJodhbqXp5uBFn0kxN/7iUg+TAkjrwnmvI55cuD6 QY7tyA9eudw0rhSi4AZD/l1qOOGKEQ5mxDM4u2D13Ani9ZX+lYjLnleexL206lOD RNWc2WZ+ksbFkONXsDKLlFzUYYvif2SL -----END CERTIFICATE-----Generated at Fri May 17 08:13:51 2024 by rpki-client on console-fra.rpki-client.org