$ rpki-client -vvf rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft File: lMPujMByTro8sQMk-e24G6yFAyA.mft (raw, json) Hash identifier: yRiZMSlNivhTMK+CsPpwbIIeF+Io2PFcEYpbqbcbjwY= Subject key identifier: E6:57:4B:0A:A2:47:F3:EA:E8:44:2A:AF:B7:89:72:84:8E:A2:14:75 Authority key identifier: 94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 Certificate issuer: /CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft Manifest number: 5E Signing time: Wed 15 May 2024 07:45:13 +0000 Manifest this update: Wed 15 May 2024 07:45:12 +0000 Manifest next update: Wed 22 May 2024 07:45:12 +0000 Files and hashes: 1: lMPujMByTro8sQMk-e24G6yFAyA.crl (hash: Kve5jHP0DCvc2GgpNwdt+XAAvZjRzZCIhgrjd6QlKFE=) 2: 5E3ADA8C81CF11EE9AB1F360C4F9AE02.roa (hash: pbdOn1wwWQQMR5dF92uPTMRV6xEjd17wB+lzl55HYGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 07:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197DD5/serialNumber=94C3EE8CC0724EBA3CB10324F9EDB81BAC850320 Validity Not Before: May 15 07:45:12 2024 GMT Not After : May 22 07:45:12 2024 GMT Subject: CN=66446808-2e43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:43:5c:db:2c:2a:79:85:6d:6c:3c:74:fc: 57:0f:4e:83:09:e7:08:0e:18:cf:fd:e3:7c:0e:4a: c3:ca:4e:4f:7f:66:25:c3:62:84:3e:d5:c7:6d:bf: 08:d3:a9:f2:91:4d:63:f9:37:f4:54:4f:a5:d6:64: e1:a0:1a:69:7b:b5:fb:ab:ef:27:1b:64:f6:a6:d8: 1c:28:fc:1f:29:e2:8d:be:db:55:79:3c:ff:16:1c: fb:c9:68:42:fd:fc:f7:61:83:d6:d8:4d:99:6c:b6: a6:6b:97:c3:56:a9:8b:67:79:45:2f:f9:db:6a:e1: 7e:b1:37:d3:c5:fb:53:0a:23:10:5d:83:f2:88:20: cf:4a:88:48:57:c2:e2:1d:18:80:db:1c:84:73:6d: 6c:0f:1e:a3:89:d0:f8:11:2f:5b:29:d0:29:22:5e: 70:54:5d:01:72:d8:01:a8:5e:5b:a5:e0:77:3a:24: c8:47:db:1d:9a:15:3d:b1:0f:8a:1d:b8:81:bb:d8: e9:22:55:b5:66:96:40:ad:21:4d:8d:84:7b:1b:f4: 10:22:93:73:9b:32:1b:be:8a:36:81:c0:1e:54:bf: 5a:90:6f:d4:83:31:b2:2b:b0:26:ca:84:8c:29:1e: ea:88:2d:79:39:00:6b:cb:ca:be:7b:46:bd:df:92: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:57:4B:0A:A2:47:F3:EA:E8:44:2A:AF:B7:89:72:84:8E:A2:14:75 X509v3 Authority Key Identifier: keyid:94:C3:EE:8C:C0:72:4E:BA:3C:B1:03:24:F9:ED:B8:1B:AC:85:03:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMPujMByTro8sQMk-e24G6yFAyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197DD5/16D4B0DC81CF11EEBC152F60C4F9AE02/lMPujMByTro8sQMk-e24G6yFAyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:fa:b4:3e:8d:99:9c:2e:78:d8:03:c1:00:6e:0d:0f:23:5c: 9f:3d:92:25:ee:08:7a:79:ca:83:c2:61:f6:5c:c6:e8:d9:51: 60:bb:5a:c4:90:35:a9:a1:5f:19:55:72:2b:58:48:cc:1c:1f: 96:6e:47:74:59:97:5f:22:4f:1c:b7:48:5f:9b:37:e7:6c:32: 8c:67:be:dd:c7:5f:56:2f:18:1a:bd:7d:a6:15:a3:97:3a:ca: 30:cd:0d:02:ac:1f:ab:38:78:5d:dc:1e:f8:3f:63:47:d9:e7: 37:02:d8:55:d7:da:61:8c:3f:2f:17:7c:8d:8f:6d:7c:7a:39: 13:bc:f8:ad:4a:d2:e6:1e:0a:64:8b:0d:7d:ff:a1:a5:bc:a6: fd:b7:df:65:82:be:0a:58:d2:b2:2d:0b:83:c8:50:82:63:1f: 8f:7a:06:e0:7b:7b:74:f6:0a:90:e0:dd:1f:48:6d:0e:5c:81: 04:78:ea:25:ed:b7:8e:d0:db:36:22:90:2f:3f:26:41:99:9a: 73:c7:99:69:7a:71:86:ab:43:18:6e:2b:bf:2e:86:d1:ec:82: 6d:7b:80:7b:81:98:66:21:bb:d0:5d:f8:fe:0b:65:df:f8:6c: 43:75:a8:2b:c9:b4:fa:03:ec:1d:83:df:22:d3:d4:97:1d:66: 58:99:09:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0RENTExMC8GA1UEBRMoOTRDM0VFOENDMDcyNEVCQTNDQjEwMzI0RjlFREI4MUJB Qzg1MDMyMDAeFw0yNDA1MTUwNzQ1MTJaFw0yNDA1MjIwNzQ1MTJaMBgxFjAUBgNV BAMTDTY2NDQ2ODA4LTJlNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN1kNc2ywqeYVtbDx0/FcPToMJ5wgOGM/943wOSsPKTk9/ZiXDYoQ+1cdtvwjT qfKRTWP5N/RUT6XWZOGgGml7tfur7ycbZPam2Bwo/B8p4o2+21V5PP8WHPvJaEL9 /Pdhg9bYTZlstqZrl8NWqYtneUUv+dtq4X6xN9PF+1MKIxBdg/KIIM9KiEhXwuId GIDbHIRzbWwPHqOJ0PgRL1sp0CkiXnBUXQFy2AGoXlul4Hc6JMhH2x2aFT2xD4od uIG72OkiVbVmlkCtIU2NhHsb9BAik3ObMhu+ijaBwB5Uv1qQb9SDMbIrsCbKhIwp HuqILXk5AGvLyr57Rr3fklqzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5ldLCqJH 8+roRCqvt4lyhI6iFHUwHwYDVR0jBBgwFoAUlMPujMByTro8sQMk+e24G6yFAyAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3REQ1LzE2RDRCMERDODFD RjExRUVCQzE1MkY2MEM0RjlBRTAyL2xNUHVqTUJ5VHJvOHNRTWstZTI0RzZ5RkF5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE1QdWpNQnlUcm84c1FNay1lMjRHNnlGQXlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 REQ1LzE2RDRCMERDODFDRjExRUVCQzE1MkY2MEM0RjlBRTAyL2xNUHVqTUJ5VHJv OHNRTWstZTI0RzZ5RkF5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKv6tD6NmZwueNgDwQBuDQ8jXJ89kiXuCHp5yoPCYfZcxujZUWC7WsSQ NamhXxlVcitYSMwcH5ZuR3RZl18iTxy3SF+bN+dsMoxnvt3HX1YvGBq9faYVo5c6 yjDNDQKsH6s4eF3cHvg/Y0fZ5zcC2FXX2mGMPy8XfI2PbXx6ORO8+K1K0uYeCmSL DX3/oaW8pv2332WCvgpY0rItC4PIUIJjH496BuB7e3T2CpDg3R9IbQ5cgQR46iXt t47Q2zYikC8/JkGZmnPHmWl6cYarQxhuK78uhtHsgm17gHuBmGYhu9Bd+P4LZd/4 bEN1qCvJtPoD7B2D3yLT1JcdZliZCZ8= -----END CERTIFICATE-----Generated at Wed May 15 09:04:41 2024 by rpki-client on console-ams.rpki-client.org