$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft File: LD0jWhshn0FmEJALADuKv9wXAqI.mft (raw, json) Hash identifier: biDc1WYj2GpA0T0kp+25+6zeWEq7BBmeD+KvW5ulDw4= Subject key identifier: A3:98:56:50:A1:CC:B5:04:0A:ED:79:15:A9:46:5E:48:9F:59:E4:7D Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft Manifest number: 0534 Signing time: Fri 03 May 2024 01:08:54 +0000 Manifest this update: Fri 03 May 2024 01:08:54 +0000 Manifest next update: Fri 10 May 2024 01:08:53 +0000 Files and hashes: 1: LD0jWhshn0FmEJALADuKv9wXAqI.crl (hash: pcwRA3+s10ib0o4BqWpKZ7cpc5H9H8AeISxHLBHbmSc=) 2: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (hash: /vQQ5lhFzVE5J0DcEdqHnJDb6NDLcF26MBF4BLF50z4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: May 3 01:08:54 2024 GMT Not After : May 10 01:08:53 2024 GMT Subject: CN=66343926-7e49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:85:f4:e0:e8:6c:8c:b0:53:53:2b:bf:13: 84:c3:9b:a4:31:d8:2b:45:d6:4f:05:5d:a4:1c:ef: 1e:79:6a:fc:d4:eb:8f:6c:42:dd:8d:24:8a:e6:73: 87:7c:69:a6:7b:2c:e1:9a:d2:8d:23:67:df:ca:77: 43:aa:f5:d2:44:73:44:ee:8c:cc:a0:ab:87:2b:0c: e0:b0:36:7d:0c:54:fc:74:6d:f5:b6:e6:d7:9d:34: ca:39:c0:f6:df:c7:2e:12:c8:96:2e:53:88:67:e4: 94:ec:d3:85:f0:35:29:38:95:e8:6b:4e:d4:bf:43: 16:30:cb:25:5f:55:38:09:79:35:3a:0f:90:cf:6c: 13:83:30:46:c8:df:59:9f:97:19:e3:e6:28:71:9f: da:e2:c0:d5:3a:b4:02:a5:23:99:0f:68:19:19:77: 04:71:87:f7:cc:b0:29:21:ef:6a:d5:11:21:d9:a8: a3:d4:97:b0:c8:a5:87:bd:0f:91:c8:2c:40:58:21: 06:93:56:3e:16:56:73:fb:98:3b:c9:84:85:73:33: d9:8d:9e:c5:99:f5:45:22:59:6e:00:77:a0:d5:5d: 74:5b:51:91:36:6b:df:27:99:a0:50:d3:84:3e:72: 1b:f5:98:f7:a1:d5:d6:f4:8f:d2:cc:e7:fd:60:48: 2a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:98:56:50:A1:CC:B5:04:0A:ED:79:15:A9:46:5E:48:9F:59:E4:7D X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:38:fe:f0:00:8c:0e:f7:98:a7:37:f3:8c:b3:3a:3b:24:f1: bb:9a:f7:8d:ce:12:31:77:27:d6:97:cb:49:35:41:a5:ed:8e: f6:fc:25:c7:f3:67:43:dc:e2:e4:e9:82:35:76:d3:4f:eb:57: d2:3b:cb:50:d7:d2:10:4c:88:1d:43:71:e1:b1:31:06:cd:f1: d9:69:32:2c:63:26:9e:32:a5:7c:82:94:af:97:f1:af:17:75: 71:4f:57:fa:30:24:5b:fe:24:df:49:57:3e:29:81:51:04:b0: cc:72:64:36:a8:16:22:ba:f1:4e:59:50:95:ef:92:1c:44:50: 73:38:28:78:67:6e:93:89:c2:8b:37:5d:b8:75:07:84:d1:63: 16:e8:c3:11:03:04:c2:90:0c:86:d0:5f:7c:77:66:69:c7:44: cb:ec:25:a1:bd:60:fc:1f:c8:3a:6b:2e:80:69:9d:b7:cf:54: 3d:7d:ca:32:88:db:20:7b:49:d0:d3:99:6a:5d:37:e5:1e:0c: e2:92:16:ba:5b:28:e9:e4:86:a0:ca:44:52:58:0c:f1:c3:54: 3e:bf:9d:96:54:f3:2e:73:d2:b0:b4:3b:bb:c7:d0:3e:94:df: 13:5c:06:f5:7d:95:24:da:33:db:5e:ab:4e:80:d1:6c:63:09: 3e:62:9e:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjQwNTAzMDEwODU0WhcNMjQwNTEwMDEwODUzWjAYMRYwFAYD VQQDEw02NjM0MzkyNi03ZTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzSF9ODobIywU1MrvxOEw5ukMdgrRdZPBV2kHO8eeWr81OuPbELdjSSK5nOH fGmmeyzhmtKNI2ffyndDqvXSRHNE7ozMoKuHKwzgsDZ9DFT8dG31tubXnTTKOcD2 38cuEsiWLlOIZ+SU7NOF8DUpOJXoa07Uv0MWMMslX1U4CXk1Og+Qz2wTgzBGyN9Z n5cZ4+YocZ/a4sDVOrQCpSOZD2gZGXcEcYf3zLApIe9q1REh2aij1JewyKWHvQ+R yCxAWCEGk1Y+FlZz+5g7yYSFczPZjZ7FmfVFIlluAHeg1V10W1GRNmvfJ5mgUNOE PnIb9Zj3odXW9I/SzOf9YEgqRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOYVlCh zLUECu15FalGXkifWeR9MB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUE0MC84RTk2NEJDRUFGNzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4w Rm1FSkFMQUR1S3Y5d1hBcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9OP7wAIwO95inN/OMszo7JPG7mveNzhIxdyfWl8tJNUGl7Y72/CXH 82dD3OLk6YI1dtNP61fSO8tQ19IQTIgdQ3HhsTEGzfHZaTIsYyaeMqV8gpSvl/Gv F3VxT1f6MCRb/iTfSVc+KYFRBLDMcmQ2qBYiuvFOWVCV75IcRFBzOCh4Z26TicKL N124dQeE0WMW6MMRAwTCkAyG0F98d2Zpx0TL7CWhvWD8H8g6ay6AaZ23z1Q9fcoy iNsge0nQ05lqXTflHgzikha6Wyjp5IagykRSWAzxw1Q+v52WVPMuc9KwtDu7x9A+ lN8TXAb1fZUk2jPbXqtOgNFsYwk+Yp54 -----END CERTIFICATE-----Generated at Fri May 3 03:10:56 2024 by rpki-client on console-ams.rpki-client.org