$ rpki-client -vvf rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft File: lCJM-heqoN5UOrYQifwdOdGZDj4.mft (raw, json) Hash identifier: D27mtlPsMuDh5XXA7VmcvQehoPnr3tRjUU+lPgkGKso= Subject key identifier: F7:0F:3B:95:7D:B6:1A:58:36:24:85:90:34:CF:B3:9B:D0:25:3B:0B Authority key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E Certificate issuer: /CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Certificate serial: 2040 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft Manifest number: 2040 Signing time: Wed 08 May 2024 16:23:49 +0000 Manifest this update: Wed 08 May 2024 16:23:48 +0000 Manifest next update: Wed 15 May 2024 16:23:48 +0000 Files and hashes: 1: lCJM-heqoN5UOrYQifwdOdGZDj4.crl (hash: rdoOXiOTLCAme5mCqfKqkyPh9KQpaz+Bb1OljG6wz+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8256 (0x2040) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E Validity Not Before: May 8 16:23:48 2024 GMT Not After : May 15 16:23:48 2024 GMT Subject: CN=663ba715-b5a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:1d:76:a4:78:55:f2:1e:b7:01:c2:1d:a9: 78:86:24:58:31:02:5d:65:89:08:41:08:a6:76:d1: 1f:3d:27:dc:ee:53:74:02:49:7e:b7:44:e5:89:e0: 5c:64:56:06:4b:f6:62:67:3e:cf:99:b8:aa:cb:d2: 15:47:0e:de:b0:fd:67:8d:21:d2:cf:54:77:f0:16: 6f:f7:ce:c9:0f:6a:d9:63:51:be:5e:fa:b7:da:b6: d4:3d:d3:39:7a:d2:66:dd:6a:4a:1d:f2:3e:c9:83: 7a:ff:97:e1:da:fa:c3:1b:aa:fa:18:d3:79:44:11: a9:ce:44:2e:a6:d4:7a:12:cd:0e:ef:d8:8e:70:db: f6:2f:07:48:49:9e:af:6a:5a:18:fb:3c:d2:0f:34: d8:2c:13:5c:72:a3:51:0b:83:c0:a7:12:12:bc:a5: d7:c1:26:d0:3c:c9:70:59:9b:78:19:34:73:b0:6d: e1:24:1f:38:56:dd:84:e4:b5:cb:ec:af:a0:88:e2: 8c:4f:03:fa:46:99:8b:04:ae:e3:ad:2b:fb:90:d0: 5f:92:82:c8:d6:d8:13:d1:fd:bd:09:1f:e3:c1:ee: f9:9e:53:f0:a6:0b:ff:da:aa:f0:61:2c:75:6e:c0: 88:b1:7e:72:4d:41:4c:85:82:02:8c:3a:f8:9c:5a: 3a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:0F:3B:95:7D:B6:1A:58:36:24:85:90:34:CF:B3:9B:D0:25:3B:0B X509v3 Authority Key Identifier: keyid:94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:0c:ad:b1:72:dc:01:6f:d9:42:b7:eb:d6:d6:65:60:cd:2b: 3f:0d:f7:ec:89:e9:18:d6:c1:bb:a3:63:e7:67:96:3d:ed:62: 16:ce:f9:27:e9:6b:f8:05:27:53:79:9d:60:a9:1f:b8:51:e8: 46:29:ef:f3:65:45:0e:23:96:a6:e6:9a:0a:f2:b5:83:2c:c4: 29:8b:f5:57:52:da:72:ac:cb:f9:cb:44:ea:ca:ae:f3:a7:72: 11:39:c9:95:56:bd:69:8b:d4:20:4e:f5:42:c5:3b:c1:c5:66: 96:a1:a5:65:b3:e2:20:90:55:5a:b6:28:ab:85:c8:b3:1f:ef: 8b:8c:67:e7:3d:57:9e:1a:6b:89:4a:75:b5:8f:6c:ff:95:95: a1:1e:7a:72:ec:00:90:f8:6b:d1:d4:0d:78:4e:b4:95:a2:92: 91:68:00:e6:a6:59:43:0f:62:43:50:1f:9a:06:55:46:15:1f: 91:4a:33:b3:91:8f:fc:23:5a:cf:2d:42:06:d1:b5:d0:be:ac: 28:d1:05:9f:1d:f5:f7:8b:28:53:c7:fd:f2:72:a5:07:07:f7: b2:5f:9d:19:c0:09:37:eb:23:9b:a1:8a:d0:f0:f5:e4:f5:9f: 11:ae:d6:f7:f2:1c:d7:3e:03:47:c3:9f:d1:d8:3c:a6:5d:e0: 55:8a:7b:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI5MzYxMTAvBgNVBAUTKDk0MjI0Q0ZBMTdBQUEwREU1NDNBQjYxMDg5RkMxRDM5 RDE5OTBFM0UwHhcNMjQwNTA4MTYyMzQ4WhcNMjQwNTE1MTYyMzQ4WjAYMRYwFAYD VQQDEw02NjNiYTcxNS1iNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGkddqR4VfIetwHCHal4hiRYMQJdZYkIQQimdtEfPSfc7lN0Akl+t0TlieBc ZFYGS/ZiZz7Pmbiqy9IVRw7esP1njSHSz1R38BZv987JD2rZY1G+Xvq32rbUPdM5 etJm3WpKHfI+yYN6/5fh2vrDG6r6GNN5RBGpzkQuptR6Es0O79iOcNv2LwdISZ6v aloY+zzSDzTYLBNccqNRC4PApxISvKXXwSbQPMlwWZt4GTRzsG3hJB84Vt2E5LXL 7K+giOKMTwP6RpmLBK7jrSv7kNBfkoLI1tgT0f29CR/jwe75nlPwpgv/2qrwYSx1 bsCIsX5yTUFMhYICjDr4nFo6UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcPO5V9 thpYNiSFkDTPs5vQJTsLMB8GA1UdIwQYMBaAFJQiTPoXqqDeVDq2EIn8HTnRmQ4+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjkzNi80RUQyMkZEMkYw Q0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9ONVVPcllRaWZ3ZE9kR1pE ajQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xDSk0taGVxb041VU9yWVFpZndkT2RHWkRqNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjkzNi80RUQyMkZEMkYwQ0QxMUU1QTQ0MzJFNzRDNEY5QUUwMi9sQ0pNLWhlcW9O NVVPcllRaWZ3ZE9kR1pEajQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGDK2xctwBb9lCt+vW1mVgzSs/DffsiekY1sG7o2PnZ5Y97WIWzvkn 6Wv4BSdTeZ1gqR+4UehGKe/zZUUOI5am5poK8rWDLMQpi/VXUtpyrMv5y0Tqyq7z p3IROcmVVr1pi9QgTvVCxTvBxWaWoaVls+IgkFVatiirhcizH++LjGfnPVeeGmuJ SnW1j2z/lZWhHnpy7ACQ+GvR1A14TrSVopKRaADmpllDD2JDUB+aBlVGFR+RSjOz kY/8I1rPLUIG0bXQvqwo0QWfHfX3iyhTx/3ycqUHB/eyX50ZwAk36yOboYrQ8PXk 9Z8Rrtb38hzXPgNHw5/R2DymXeBVinuk -----END CERTIFICATE-----Generated at Wed May 8 17:47:03 2024 by rpki-client on console-ams.rpki-client.org