$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft File: LWNAd8yEe1nUBI1D4EszCWmP5jg.mft (raw, json) Hash identifier: 32mMI7BWq3RCv2cS4LLEZI1IEjW3eVqDz5OjNRxItDw= Subject key identifier: F6:89:74:64:C2:D9:8C:2B:A1:06:1E:48:35:AB:E0:78:69:DA:5A:C1 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft Manifest number: 0179 Signing time: Wed 01 May 2024 06:00:26 +0000 Manifest this update: Wed 01 May 2024 06:00:25 +0000 Manifest next update: Wed 08 May 2024 06:00:25 +0000 Files and hashes: 1: LWNAd8yEe1nUBI1D4EszCWmP5jg.crl (hash: ZkFQkdMCSEEAM4Kov/hUWK/XbSpT3b7wT3vO1iDA2Cc=) 2: CA1A46101A5B11EE89B07267C4F9AE02.roa (hash: XDpJ7fInf4sMxMx0koNzZ6zdirp9JuNL7cFrdNsmAJo=) 3: E9258B3C037211EE9E15EE32C4F9AE02.roa (hash: ehhP8ITXS/jxgUoFgI8ZJ3W4cuXpoQH/N9JT+CKEMkI=) 4: 94C13908C4AF11EDBCC55111C4F9AE02.roa (hash: sgeGdTCEg1aVxZonkxQ4HN7mUJeSeC9YD1Zcflsl44w=) 5: FDC6A888AEB111EE9A78E132C4F9AE02.roa (hash: aEcN2Cs7OgTpYZZvfACcGu7oN71BWJOcQaqEJASkqww=) 6: EA5D7A46037211EE9E15EE32C4F9AE02.roa (hash: fLLmb5M/URnjhsDvUJiV2NHee20e3X3bGrMpjo2KXJM=) 7: 357AE578ACFB11EDA84F9711C4F9AE02.roa (hash: yuB48ztij3OBdx+GOen23whE/mCBxtVIWwhGvDX7z6I=) 8: 755E6B82D21C11EEA166891AC4F9AE02.roa (hash: n1cuUZ8aWJTqctxPkSaEyESeOaF5mFv3afGG/1Cm9JI=) 9: 90647F2EA14A11ED8FFBA684C4F9AE02.roa (hash: VTDAs7qBfzVNGUAr0wXMJOFSKxSLaKpDcuB0fvcbj9g=) 10: 720F30326E5E11EEBFA4E75BC4F9AE02.roa (hash: tndYu5V2i4EBKzB2WQEa6Kz3slutPy4/CPHJxugLnew=) 11: FD124A14CC5811EDBE5D203FC4F9AE02.roa (hash: 4SBJwx4zgDEWphqMW4UuzwYVlvL2ESRxXFHTNtCrH7E=) 12: CD3C616E954111EEB7E55C14C4F9AE02.roa (hash: QMai3xxgFODCCuI7zUh7uDtivx399k/nR1T1yjN7J0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: May 1 06:00:25 2024 GMT Not After : May 8 06:00:25 2024 GMT Subject: CN=6631da79-5a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:70:e6:31:f5:d1:0e:d7:65:f2:67:34:0b:40: b3:ba:5a:17:61:c7:68:1f:bb:44:2c:47:8b:80:05: d1:d9:32:de:a7:a3:56:0e:b9:1f:9a:5b:e8:de:8b: 55:9f:e0:a6:c0:23:b2:62:69:25:89:2c:22:75:d6: a6:35:2f:4c:75:a4:6e:ad:3e:d5:f1:a1:2f:b2:44: 7c:6d:b3:1c:b7:8b:51:b9:c4:19:3b:af:2d:fb:cf: f1:f4:31:1a:b9:e9:9f:8a:2c:13:b9:03:79:f9:5d: 3f:95:5c:f3:22:e1:1e:f7:8d:7a:39:d6:36:3e:20: 16:10:76:23:e5:04:e0:b5:42:01:63:9c:a2:ce:e4: e5:07:a1:c9:ab:08:01:a7:98:78:19:12:10:d7:91: 22:af:03:8c:37:db:bd:cb:c7:de:5e:07:ed:9d:2d: 3f:f5:d5:49:a9:e9:de:1e:c9:ee:38:3e:06:6e:3b: aa:0a:95:67:be:c6:50:e2:1e:83:f6:a5:7c:8a:2f: 79:8d:ba:69:97:2d:ba:33:b5:14:e2:ba:27:a4:ba: 4b:c1:02:0a:1c:8d:94:67:e3:b9:fe:6e:63:c8:d9: f5:1c:96:28:9c:16:63:b0:5c:a0:72:4c:92:e7:b8: eb:b4:b3:25:2b:1b:b8:42:6c:0c:19:1a:ac:bc:71: 2a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:89:74:64:C2:D9:8C:2B:A1:06:1E:48:35:AB:E0:78:69:DA:5A:C1 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:0a:7e:bb:4a:1d:06:75:c4:0a:2c:e1:00:ad:ea:bf:c3:2b: 35:82:12:b2:f3:07:45:cd:9d:d3:04:d4:93:51:c8:7b:f5:ae: 1e:d7:d3:c4:82:fc:21:4e:c7:8f:e9:ad:76:0c:8e:a5:ec:0c: ff:9f:ba:5a:8f:ab:dd:b1:58:f4:ff:c5:29:0c:54:e4:0e:28: b6:85:b2:33:c5:cf:53:48:ed:07:aa:6d:c4:77:ce:66:02:8a: b7:67:3d:7f:97:d3:60:0b:eb:18:2f:e0:e2:0a:bd:85:0c:a0: 06:b0:4a:af:fe:59:eb:8c:10:61:f1:39:c7:d6:66:d9:d2:12: 05:5a:c3:92:e9:d7:53:ae:fb:0b:b2:9a:aa:c4:25:45:42:c0: 6d:83:be:bc:c2:41:1b:dd:f5:04:d4:48:fe:27:c7:c6:ab:c6: d1:79:6f:14:1d:e1:94:2e:1d:bb:2e:3d:ae:a4:f9:40:5c:91: 8e:e3:9e:81:cd:10:96:43:c6:87:d6:46:bd:97:e8:61:2f:2d: c5:fb:bf:f3:7e:1a:13:b6:85:b3:5a:77:3e:7a:91:c7:84:cc: 44:86:08:7c:53:75:ef:d9:d5:e9:19:8d:36:00:1a:c5:c6:3c: 8e:ee:b9:30:cf:65:d5:5a:06:01:3c:3f:4b:4d:85:41:e3:23: 67:a2:c2:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwNTAxMDYwMDI1WhcNMjQwNTA4MDYwMDI1WjAYMRYwFAYD VQQDEw02NjMxZGE3OS01YTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nDmMfXRDtdl8mc0C0CzuloXYcdoH7tELEeLgAXR2TLep6NWDrkfmlvo3otV n+CmwCOyYmkliSwiddamNS9MdaRurT7V8aEvskR8bbMct4tRucQZO68t+8/x9DEa uemfiiwTuQN5+V0/lVzzIuEe9416OdY2PiAWEHYj5QTgtUIBY5yizuTlB6HJqwgB p5h4GRIQ15EirwOMN9u9y8feXgftnS0/9dVJqeneHsnuOD4GbjuqCpVnvsZQ4h6D 9qV8ii95jbpply26M7UU4ronpLpLwQIKHI2UZ+O5/m5jyNn1HJYonBZjsFygckyS 57jrtLMlKxu4QmwMGRqsvHEqjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaJdGTC 2YwroQYeSDWr4Hhp2lrBMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjU4Ny80MTdENzFCNDkxODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUx blVCSTFENEVzekNXbVA1amcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqCn67Sh0GdcQKLOEAreq/wys1ghKy8wdFzZ3TBNSTUch79a4e19PE gvwhTseP6a12DI6l7Az/n7paj6vdsVj0/8UpDFTkDii2hbIzxc9TSO0Hqm3Ed85m Aoq3Zz1/l9NgC+sYL+DiCr2FDKAGsEqv/lnrjBBh8TnH1mbZ0hIFWsOS6ddTrvsL spqqxCVFQsBtg768wkEb3fUE1Ej+J8fGq8bReW8UHeGULh27Lj2upPlAXJGO456B zRCWQ8aH1ka9l+hhLy3F+7/zfhoTtoWzWnc+epHHhMxEhgh8U3Xv2dXpGY02ABrF xjyO7rkwz2XVWgYBPD9LTYVB4yNnosKK -----END CERTIFICATE-----Generated at Wed May 1 06:34:28 2024 by rpki-client on console-ams.rpki-client.org