$ rpki-client -vvf rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft File: lAmAjIoyxYSU2uV00F1rsiJyw1o.mft (raw, json) Hash identifier: zz/BQGbTjziNNo9eIqtDsOejPzBXKXh93A4459cHnxk= Subject key identifier: A1:D8:9C:79:36:9C:7D:1F:6E:89:6B:F4:00:B6:A5:3B:E8:83:27:C7 Authority key identifier: 94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A Certificate issuer: /CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Certificate serial: 1DAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft Manifest number: 1DA4 Signing time: Thu 02 May 2024 16:31:12 +0000 Manifest this update: Thu 02 May 2024 16:31:12 +0000 Manifest next update: Thu 09 May 2024 16:31:12 +0000 Files and hashes: 1: lAmAjIoyxYSU2uV00F1rsiJyw1o.crl (hash: 9Nl3rHf/UvSaAyDQmjDcZWryZaknPC6hnjwLm+3d71s=) 2: C7D60D34CC0611EC93451840C4F9AE02.roa (hash: TKz1bqjLKs8busQ1Wur8CtJhMMSsbpNLqqBYjFZgslU=) 3: C930C34ACC0611EC93451840C4F9AE02.roa (hash: WZPwLXFZ7LBKsxQ4FYjy2RV8EjAUzuOMPn9uugjc+Pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:31:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7597 (0x1dad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C77D/serialNumber=9409808C8A32C58494DAE574D05D6BB22272C35A Validity Not Before: May 2 16:31:12 2024 GMT Not After : May 9 16:31:12 2024 GMT Subject: CN=6633bfd0-9782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:b0:e5:fe:2d:d0:d2:09:a8:ce:29:7b:3c: e4:23:8b:99:73:90:ba:aa:46:68:8f:1d:92:02:6c: 6a:29:4d:55:85:bc:8d:ca:6e:74:ff:ff:ba:84:d9: 80:fa:3b:ff:cf:26:fc:84:3c:4f:5b:05:fc:dd:ca: 70:e6:61:88:4f:f2:ee:1b:bc:d9:0a:0c:b0:14:0a: d3:87:f8:d3:21:3b:8b:e5:cd:2a:dc:c8:22:e1:04: 50:eb:16:28:8a:3b:dd:fe:e1:f6:46:a0:78:da:d2: 39:b0:2b:4d:ba:3b:3f:f7:8d:28:93:23:a6:08:cb: 70:ee:94:61:1d:cf:30:ff:58:af:95:15:ea:c1:63: 9c:7a:ee:3d:72:0b:c9:36:53:ad:6f:f3:21:85:b4: 0b:37:b5:db:bb:79:03:e1:7d:20:01:5a:9d:32:2a: 32:0b:65:02:d7:59:44:fb:a6:fb:b6:58:00:9c:90: d7:be:d4:d6:b1:63:60:66:5e:1d:41:1d:45:c2:b4: 94:4b:38:51:f0:b6:ca:f7:bf:84:31:0a:d5:80:10: 15:1f:72:0c:9d:58:67:32:22:d1:08:b5:91:04:38: 7b:5a:51:0b:62:d9:4b:d5:9e:64:1a:f3:0d:6f:3b: 9d:3a:34:47:94:e6:aa:23:8c:e6:26:9b:89:cd:27: 06:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D8:9C:79:36:9C:7D:1F:6E:89:6B:F4:00:B6:A5:3B:E8:83:27:C7 X509v3 Authority Key Identifier: keyid:94:09:80:8C:8A:32:C5:84:94:DA:E5:74:D0:5D:6B:B2:22:72:C3:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lAmAjIoyxYSU2uV00F1rsiJyw1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C77D/7D4BFE06749911E6B0252B84C4F9AE02/lAmAjIoyxYSU2uV00F1rsiJyw1o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:17:ca:47:36:23:8c:85:50:e7:e0:0e:98:e3:4b:4d:71:d5: e0:23:5b:26:4e:0f:49:ee:44:5d:42:07:6e:85:59:60:be:53: f3:d4:e0:7a:0a:94:2b:3c:85:ba:be:8e:0b:5b:53:36:80:7b: 46:db:2a:fb:ea:d4:5b:0d:59:22:1a:7b:d6:b3:f6:1a:a7:81: a6:ce:37:6a:c5:0d:45:c4:d8:24:84:d7:1f:3c:91:7a:53:13: 9a:49:0d:64:2c:16:de:61:23:bb:dd:b5:f0:ce:e7:e2:0f:5a: f3:37:3c:42:6e:33:0c:ab:64:44:e6:dc:9a:c6:1b:71:40:75: fa:67:b8:8f:cc:f1:c9:1c:b0:e8:d5:0d:5a:fb:30:3c:eb:29: be:a0:43:cf:ce:29:0c:6b:2d:0d:e3:b3:e8:f5:31:0d:b2:3f: d2:b0:a8:93:bc:30:c7:e5:39:83:37:99:88:cb:38:a9:06:ca: 54:fe:8c:82:a0:70:b6:c2:08:38:e7:63:ba:f2:9c:4e:bb:ba: 63:42:66:66:96:90:23:70:90:a7:be:00:ef:26:c4:f1:7b:8a: b1:30:21:28:1d:0d:2b:14:5f:f5:70:99:9c:be:1e:78:5e:e2: 2f:34:eb:c9:e6:91:f2:79:1e:e0:a2:4a:e2:cd:4d:0f:ef:b4: 88:59:2a:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3N0QxMTAvBgNVBAUTKDk0MDk4MDhDOEEzMkM1ODQ5NERBRTU3NEQwNUQ2QkIy MjI3MkMzNUEwHhcNMjQwNTAyMTYzMTEyWhcNMjQwNTA5MTYzMTEyWjAYMRYwFAYD VQQDEw02NjMzYmZkMC05NzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8Sw5f4t0NIJqM4pezzkI4uZc5C6qkZojx2SAmxqKU1VhbyNym50//+6hNmA +jv/zyb8hDxPWwX83cpw5mGIT/LuG7zZCgywFArTh/jTITuL5c0q3Mgi4QRQ6xYo ijvd/uH2RqB42tI5sCtNujs/940okyOmCMtw7pRhHc8w/1ivlRXqwWOceu49cgvJ NlOtb/MhhbQLN7Xbu3kD4X0gAVqdMioyC2UC11lE+6b7tlgAnJDXvtTWsWNgZl4d QR1FwrSUSzhR8LbK97+EMQrVgBAVH3IMnVhnMiLRCLWRBDh7WlELYtlL1Z5kGvMN bzudOjRHlOaqI4zmJpuJzScGXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHYnHk2 nH0fbolr9AC2pTvogyfHMB8GA1UdIwQYMBaAFJQJgIyKMsWElNrldNBda7IicsNa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3RC83RDRCRkUwNjc0 OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZU1UydVYwMEYxcnNpSnl3 MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xBbUFqSW95eFlTVTJ1VjAwRjFyc2lKeXcxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Qzc3RC83RDRCRkUwNjc0OTkxMUU2QjAyNTJCODRDNEY5QUUwMi9sQW1BaklveXhZ U1UydVYwMEYxcnNpSnl3MW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbF8pHNiOMhVDn4A6Y40tNcdXgI1smTg9J7kRdQgduhVlgvlPz1OB6 CpQrPIW6vo4LW1M2gHtG2yr76tRbDVkiGnvWs/Yap4GmzjdqxQ1FxNgkhNcfPJF6 UxOaSQ1kLBbeYSO73bXwzufiD1rzNzxCbjMMq2RE5tyaxhtxQHX6Z7iPzPHJHLDo 1Q1a+zA86ym+oEPPzikMay0N47Po9TENsj/SsKiTvDDH5TmDN5mIyzipBspU/oyC oHC2wgg452O68pxOu7pjQmZmlpAjcJCnvgDvJsTxe4qxMCEoHQ0rFF/1cJmcvh54 XuIvNOvJ5pHyeR7gokrizU0P77SIWSrD -----END CERTIFICATE-----Generated at Thu May 2 17:43:45 2024 by rpki-client on console-fra.rpki-client.org