$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft File: Lfmh43Whe46lYCe0WovWb5Z0fYY.mft (raw, json) Hash identifier: LAIiNIQAk3ZOmb81anbEaGnOWulJkFQP2vtDpequwtE= Subject key identifier: 75:EB:24:B2:7A:EF:FB:8C:2C:CD:D9:FC:21:1B:87:01:EC:F2:95:6A Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft Manifest number: 1D Signing time: Fri 17 May 2024 08:47:28 +0000 Manifest this update: Fri 17 May 2024 08:47:27 +0000 Manifest next update: Fri 24 May 2024 08:47:27 +0000 Files and hashes: 1: Lfmh43Whe46lYCe0WovWb5Z0fYY.crl (hash: HyWzTrHKo3cjMCkvab72Mam5MdVX8g+CedX1yNi8s4E=) 2: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (hash: yZ6MBJhoD6w3VG8OJH7ZW6bW41xKAcxHLnAOqa1PvDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: May 17 08:47:27 2024 GMT Not After : May 24 08:47:27 2024 GMT Subject: CN=664719a0-8cef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:65:a6:0d:b0:1c:59:d9:ac:b4:b9:d5:fe:28: 5f:0a:2c:2a:8c:ad:40:5a:63:f4:2d:33:3e:9d:3c: 64:6a:56:e7:7a:ad:5a:6f:97:5e:84:01:69:db:12: 84:83:5e:4d:d6:bf:e7:ba:69:50:55:91:20:e0:69: 01:e1:e9:71:6d:f3:a9:2e:ff:52:c5:66:e5:29:c4: f0:5e:3b:48:4e:3d:14:44:54:7a:6a:f8:2d:3c:c0: b9:6d:65:71:03:2c:0a:07:52:45:9f:eb:32:4a:c0: ac:e3:93:54:88:80:91:a9:c4:ad:0f:7e:64:50:45: 38:ed:29:a4:d1:51:9f:7b:0d:60:a8:56:1d:9a:34: 65:c9:6b:b0:91:c1:c5:d7:0a:58:f1:17:44:7f:36: 16:25:42:64:9d:46:d4:ac:5d:d8:3b:a1:e7:7e:c7: 3d:42:03:69:fc:14:41:0b:e9:cb:60:18:7d:53:a6: 74:aa:da:b7:60:08:45:02:88:31:eb:e4:22:cd:9c: 1b:b5:16:30:cc:7d:0a:41:9c:e9:8b:c5:ac:83:a0: 5a:b6:75:80:36:a7:b7:39:08:7b:c4:a2:3d:e0:b3: 85:50:3b:95:26:e2:5c:0e:82:dd:23:eb:1a:30:04: 61:09:30:e3:27:a1:27:88:b9:3a:79:af:68:47:33: 5b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EB:24:B2:7A:EF:FB:8C:2C:CD:D9:FC:21:1B:87:01:EC:F2:95:6A X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:a2:b5:1d:c0:18:9e:2c:84:93:24:af:ef:a6:6b:01:85:e1: ef:f0:0d:ac:bf:6a:b5:4e:f0:ee:87:26:47:8a:10:cf:cd:46: a9:54:89:46:4d:88:f7:32:17:bf:21:bf:d5:42:34:fd:31:c9: 65:d8:1b:4e:57:78:c2:91:11:a1:74:d1:b7:d1:8b:e7:79:d5: 76:84:c1:48:f1:7e:b3:ba:c1:94:b1:4b:c4:99:4c:72:02:85: 1e:22:b5:b3:59:49:ad:bb:bf:b1:10:99:ef:85:70:01:7f:ec: 46:66:a3:f2:03:2f:25:1e:bd:58:14:58:85:5e:cf:86:16:7e: 44:c2:e9:1d:f8:9b:8c:8b:ca:30:ca:67:74:a0:33:08:68:c5: 8c:c3:b0:9a:b6:01:d4:2b:ea:57:e7:e2:52:27:81:09:c8:cc: 44:9d:84:f1:2b:1e:a2:e7:bf:e2:a6:e5:81:6f:2e:f0:db:25: 47:bf:ee:dd:16:01:f3:d3:3d:db:72:4c:41:db:f3:0d:a0:5b: b6:e0:97:d5:6a:ce:23:ff:af:10:35:72:a3:b7:ca:32:98:04: c7:29:62:e5:11:89:4d:b4:8f:ad:6e:5a:c6:17:e1:36:99:dd: a2:81:e4:9c:be:46:83:64:63:b6:0e:d8:f7:bf:51:e3:2c:e9: 15:02:f3:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NUI2RDExMC8GA1UEBRMoMkRGOUExRTM3NUExN0I4RUE1NjAyN0I0NUE4QkQ2NkY5 Njc0N0Q4NjAeFw0yNDA1MTcwODQ3MjdaFw0yNDA1MjQwODQ3MjdaMBgxFjAUBgNV BAMTDTY2NDcxOWEwLThjZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRZaYNsBxZ2ay0udX+KF8KLCqMrUBaY/QtMz6dPGRqVud6rVpvl16EAWnbEoSD Xk3Wv+e6aVBVkSDgaQHh6XFt86ku/1LFZuUpxPBeO0hOPRREVHpq+C08wLltZXED LAoHUkWf6zJKwKzjk1SIgJGpxK0PfmRQRTjtKaTRUZ97DWCoVh2aNGXJa7CRwcXX CljxF0R/NhYlQmSdRtSsXdg7oed+xz1CA2n8FEEL6ctgGH1TpnSq2rdgCEUCiDHr 5CLNnBu1FjDMfQpBnOmLxayDoFq2dYA2p7c5CHvEoj3gs4VQO5Um4lwOgt0j6xow BGEJMOMnoSeIuTp5r2hHM1tfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdesksnrv +4wszdn8IRuHAezylWowHwYDVR0jBBgwFoAULfmh43Whe46lYCe0WovWb5Z0fYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1QjZELzE4MUI4MjIwRTc4 RTExRUU5ODMxRUI3RUM0RjlBRTAyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTGZtaDQzV2hlNDZsWUNlMFdvdldiNVowZllZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1 QjZELzE4MUI4MjIwRTc4RTExRUU5ODMxRUI3RUM0RjlBRTAyL0xmbWg0M1doZTQ2 bFlDZTBXb3ZXYjVaMGZZWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIeitR3AGJ4shJMkr++mawGF4e/wDay/arVO8O6HJkeKEM/NRqlUiUZN iPcyF78hv9VCNP0xyWXYG05XeMKREaF00bfRi+d51XaEwUjxfrO6wZSxS8SZTHIC hR4itbNZSa27v7EQme+FcAF/7EZmo/IDLyUevVgUWIVez4YWfkTC6R34m4yLyjDK Z3SgMwhoxYzDsJq2AdQr6lfn4lIngQnIzESdhPErHqLnv+Km5YFvLvDbJUe/7t0W AfPTPdtyTEHb8w2gW7bgl9VqziP/rxA1cqO3yjKYBMcpYuURiU20j61uWsYX4TaZ 3aKB5Jy+RoNkY7YO2Pe/UeMs6RUC84U= -----END CERTIFICATE-----Generated at Fri May 17 10:59:12 2024 by rpki-client on console-ams.rpki-client.org