$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft File: lpDF1gn85ELDW5kW1WP58Ye2itQ.mft (raw, json) Hash identifier: 479U2ocxGCgEgplqHDmsDqzFsDH1+g0MC3208BpVEbw= Subject key identifier: 48:84:C1:E0:9A:F9:C4:5F:78:85:AC:A7:5C:9D:84:64:E0:11:8A:23 Authority key identifier: 96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 Certificate issuer: /CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Certificate serial: 0D79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft Manifest number: 0D72 Signing time: Sat 18 May 2024 18:35:54 +0000 Manifest this update: Sat 18 May 2024 18:35:54 +0000 Manifest next update: Sat 25 May 2024 18:35:54 +0000 Files and hashes: 1: lpDF1gn85ELDW5kW1WP58Ye2itQ.crl (hash: T/98R3480QNkzqB6Mug8Qg4siA36GfJsDMbRDaP3l4s=) 2: 6C153768CE5511EB9DD80C30C4F9AE02.roa (hash: cNCnIW/S8JuD5LI17DPKAMRgfbIHKJbtMI/TR8OFIS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8E2C/serialNumber=9690C5D609FCE442C35B9916D563F9F187B68AD4 Validity Not Before: May 18 18:35:54 2024 GMT Not After : May 25 18:35:54 2024 GMT Subject: CN=6648f50a-91b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:2d:a7:c7:5e:60:ce:60:e6:14:fe:f8:1d: 88:88:ae:38:e9:bf:d7:df:f0:4a:07:3a:fb:47:8e: b6:54:9c:00:0b:9c:da:e6:6c:f1:30:88:17:81:1d: aa:7d:1e:7c:31:8e:6d:d8:c8:e7:62:b5:84:d3:7c: a3:d8:8c:1a:f6:43:59:7a:1c:91:ea:90:50:26:51: 39:fe:04:60:fd:84:bc:77:51:0c:1d:75:ff:df:10: ad:36:e8:88:16:53:b0:6a:15:55:74:a0:f8:59:be: 42:1f:6f:5a:6f:e1:0e:20:c2:50:a7:37:46:f3:fb: 70:d6:d2:6a:87:29:14:c9:14:c2:3b:2e:88:4a:cb: 45:e9:bf:f5:aa:4c:da:4f:8f:95:b6:78:6e:d4:8e: f9:fd:7e:63:ac:55:3a:cb:99:16:28:45:c7:cb:32: 6d:e7:b7:11:4c:5e:32:0d:f4:48:fd:84:f2:c4:68: ce:f9:47:1f:c5:e0:94:aa:15:e6:9a:3d:b6:d0:34: df:8f:fd:b1:ae:04:7b:55:65:93:b9:7c:6a:9c:71: 4b:ea:71:ed:79:e3:7c:ac:0c:08:bb:cd:df:bd:ff: 9b:b5:3e:20:04:ca:8f:26:4a:d5:55:fb:4f:58:38: fd:b7:9b:55:1b:48:93:15:bc:ba:ec:b8:b9:8e:27: 7b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:84:C1:E0:9A:F9:C4:5F:78:85:AC:A7:5C:9D:84:64:E0:11:8A:23 X509v3 Authority Key Identifier: keyid:96:90:C5:D6:09:FC:E4:42:C3:5B:99:16:D5:63:F9:F1:87:B6:8A:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lpDF1gn85ELDW5kW1WP58Ye2itQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8E2C/0FE1ED06A2FB11E9A526A57EC4F9AE02/lpDF1gn85ELDW5kW1WP58Ye2itQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:58:c6:6b:f1:53:54:7a:b0:a4:28:b5:1f:7b:60:9b:8b:54: c5:5e:f6:c2:ca:e4:8e:28:99:9c:71:64:5e:58:87:c5:1b:ca: a6:d0:a1:26:69:a5:c4:22:a5:d0:cf:8c:be:db:27:e5:04:28: 55:11:9a:aa:99:1a:23:0a:fe:c8:4d:b9:9c:65:da:87:ca:2f: 16:cf:a0:d1:a3:4d:14:5f:6d:8f:e6:b0:1e:94:cc:f5:c2:3c: e9:fd:17:8b:79:67:bc:ce:1a:99:01:61:4d:60:46:35:16:39: 0f:88:72:fd:0d:41:bf:03:38:5a:17:17:2a:8d:f9:ff:b8:de: da:22:c1:d7:84:b5:15:bb:6b:21:9f:c6:ed:e5:52:d6:b2:bc: ed:cf:a1:48:2c:e4:cf:1c:9e:74:97:a4:a7:47:44:cb:f9:9d: e6:e0:57:bd:83:83:33:63:48:83:80:44:db:f7:62:6a:b8:2e: 94:32:5d:f8:9f:81:8e:a3:92:e3:9d:ff:9b:c5:f9:59:0b:eb: 8e:85:59:0f:4b:c2:48:4d:1f:a5:f5:55:45:39:e5:4d:eb:84: aa:e5:1a:e3:73:f1:3f:3f:dc:be:9e:76:af:77:3c:ba:74:39: ab:3c:df:39:a6:65:c8:7c:b9:e2:49:c3:23:1f:9b:6a:af:90: 01:74:58:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFMkMxMTAvBgNVBAUTKDk2OTBDNUQ2MDlGQ0U0NDJDMzVCOTkxNkQ1NjNGOUYx ODdCNjhBRDQwHhcNMjQwNTE4MTgzNTU0WhcNMjQwNTI1MTgzNTU0WjAYMRYwFAYD VQQDEw02NjQ4ZjUwYS05MWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GAtp8deYM5g5hT++B2IiK446b/X3/BKBzr7R462VJwAC5za5mzxMIgXgR2q fR58MY5t2MjnYrWE03yj2Iwa9kNZehyR6pBQJlE5/gRg/YS8d1EMHXX/3xCtNuiI FlOwahVVdKD4Wb5CH29ab+EOIMJQpzdG8/tw1tJqhykUyRTCOy6ISstF6b/1qkza T4+Vtnhu1I75/X5jrFU6y5kWKEXHyzJt57cRTF4yDfRI/YTyxGjO+UcfxeCUqhXm mj220DTfj/2xrgR7VWWTuXxqnHFL6nHteeN8rAwIu83fvf+btT4gBMqPJkrVVftP WDj9t5tVG0iTFby67Li5jid7CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiEweCa +cRfeIWsp1ydhGTgEYojMB8GA1UdIwQYMBaAFJaQxdYJ/ORCw1uZFtVj+fGHtorU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEUyQy8wRkUxRUQwNkEy RkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVFTERXNWtXMVdQNThZZTJp dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xwREYxZ244NUVMRFc1a1cxV1A1OFllMml0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEUyQy8wRkUxRUQwNkEyRkIxMUU5QTUyNkE1N0VDNEY5QUUwMi9scERGMWduODVF TERXNWtXMVdQNThZZTJpdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIWMZr8VNUerCkKLUfe2Cbi1TFXvbCyuSOKJmccWReWIfFG8qm0KEm aaXEIqXQz4y+2yflBChVEZqqmRojCv7ITbmcZdqHyi8Wz6DRo00UX22P5rAelMz1 wjzp/ReLeWe8zhqZAWFNYEY1FjkPiHL9DUG/AzhaFxcqjfn/uN7aIsHXhLUVu2sh n8bt5VLWsrztz6FILOTPHJ50l6SnR0TL+Z3m4Fe9g4MzY0iDgETb92JquC6UMl34 n4GOo5Ljnf+bxflZC+uOhVkPS8JITR+l9VVFOeVN64Sq5Rrjc/E/P9y+nnavdzy6 dDmrPN85pmXIfLniScMjH5tqr5ABdFj5 -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org