$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft File: limscQ0-IdWZGSjVmk22VBGpa_8.mft (raw, json) Hash identifier: QLg3B7D70JXLrXGGYOIl8QRJBOoKUciVJ+8FHuys4NI= Subject key identifier: D7:9B:7F:E4:B3:59:79:C1:D1:B5:23:CA:B0:BF:4D:DF:22:66:CB:6C Authority key identifier: 96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF Certificate issuer: /CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Certificate serial: 0B70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft Manifest number: 0B68 Signing time: Mon 06 May 2024 19:37:41 +0000 Manifest this update: Mon 06 May 2024 19:37:41 +0000 Manifest next update: Mon 13 May 2024 19:37:41 +0000 Files and hashes: 1: limscQ0-IdWZGSjVmk22VBGpa_8.crl (hash: VUEeS0HMMCXilYBUuIkAQ9z26fPaZ793srRXhHUGmXs=) 2: 9CDAADC2091E11EAB375615BC4F9AE02.roa (hash: aBMu9G2pUD6O2IPIMcDI/GAMJ6VzUvCjlnn21Cf41Ns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 19:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2928 (0xb70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE6E8/serialNumber=9629AC710D3E21D5991928D59A4DB65411A96BFF Validity Not Before: May 6 19:37:41 2024 GMT Not After : May 13 19:37:41 2024 GMT Subject: CN=66393185-8d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:db:d2:74:e7:fd:ac:2c:c3:fd:94:02:d3:55: eb:7e:c8:34:8f:7c:fb:d2:78:3d:73:8e:1c:b4:88: 4c:47:60:b4:08:3e:c9:c9:c5:07:9c:4a:72:cf:c3: f4:5f:4c:6d:c6:a0:11:f8:49:8e:66:57:e6:9d:d0: e7:d4:04:01:d4:bd:79:a7:37:5b:ab:54:18:a1:44: 2a:b0:97:d5:e7:90:e1:43:4e:5a:0b:d3:ed:0d:60: db:58:61:3c:b9:97:ff:ec:87:0b:da:08:bb:b6:4c: f8:02:18:69:31:04:69:74:50:b6:d9:f4:50:29:8e: 7a:c3:90:cb:fd:29:61:83:b4:69:49:96:68:66:f6: b5:77:fb:7b:7b:66:8a:eb:a7:d4:ae:97:7d:f4:61: b9:a0:9a:ad:74:ef:de:61:53:b1:f6:64:bd:6e:b3: 6d:b3:0c:c3:a2:d3:2e:c5:c7:f7:b3:e4:d3:83:18: d9:fe:77:30:b7:12:16:22:9f:e3:9f:d7:86:0c:11: eb:e6:20:1c:43:2a:8e:f8:0d:c9:58:df:22:ab:15: 98:4e:51:1f:32:54:57:86:10:bd:1f:b3:c9:96:49: 91:fd:47:cf:4f:74:97:4c:c0:98:86:3f:16:b8:e7: d8:99:a1:0f:32:10:d4:96:dd:f4:53:bc:60:55:2a: 13:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9B:7F:E4:B3:59:79:C1:D1:B5:23:CA:B0:BF:4D:DF:22:66:CB:6C X509v3 Authority Key Identifier: keyid:96:29:AC:71:0D:3E:21:D5:99:19:28:D5:9A:4D:B6:54:11:A9:6B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/limscQ0-IdWZGSjVmk22VBGpa_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE6E8/7BCAFF02091D11EA93BD9E56C4F9AE02/limscQ0-IdWZGSjVmk22VBGpa_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:41:54:47:72:d3:b2:99:5f:b6:b7:8e:ff:22:58:c3:71:19: fc:7c:b2:24:92:78:2b:58:f7:aa:45:f7:27:3d:01:64:54:ec: a4:c4:fd:c4:43:02:e1:e2:9b:66:29:cd:7a:86:da:73:5f:a0: 4f:58:d1:a3:85:52:64:2e:e6:f2:3e:3e:5b:9b:b5:90:63:c0: ea:d6:7c:06:80:c1:0c:13:df:1d:01:89:4d:bb:fc:28:22:a3: 1a:17:2b:04:b1:18:5d:d0:f8:45:e6:29:58:51:de:60:84:c9: 19:f7:d4:8e:e8:31:a2:fd:61:ae:70:77:29:29:40:cf:ca:19: c3:0b:f4:a9:87:1b:2e:b9:e8:26:1c:f3:e9:4e:a2:1f:48:34: a1:58:03:ce:87:bb:24:83:0e:59:44:c1:84:68:e3:50:34:16: 33:91:68:24:9d:48:3c:54:02:0f:f7:c2:a8:46:6d:94:2f:bd: 04:16:ee:9f:bf:cd:88:10:bd:29:37:61:b6:d8:0e:40:c6:6a: 62:47:8b:8d:be:8c:52:24:1c:8c:3a:54:7b:d3:a1:c3:f4:0e: 61:14:ad:d3:47:97:c1:a0:4e:ab:9f:9b:a6:d9:f2:46:69:64: 69:9f:c2:3e:14:88:d0:cd:7e:57:d0:13:33:6d:62:2d:ca:a7: 7c:0b:aa:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU2RTgxMTAvBgNVBAUTKDk2MjlBQzcxMEQzRTIxRDU5OTE5MjhENTlBNERCNjU0 MTFBOTZCRkYwHhcNMjQwNTA2MTkzNzQxWhcNMjQwNTEzMTkzNzQxWjAYMRYwFAYD VQQDEw02NjM5MzE4NS04ZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0NvSdOf9rCzD/ZQC01Xrfsg0j3z70ng9c44ctIhMR2C0CD7JycUHnEpyz8P0 X0xtxqAR+EmOZlfmndDn1AQB1L15pzdbq1QYoUQqsJfV55DhQ05aC9PtDWDbWGE8 uZf/7IcL2gi7tkz4AhhpMQRpdFC22fRQKY56w5DL/Slhg7RpSZZoZva1d/t7e2aK 66fUrpd99GG5oJqtdO/eYVOx9mS9brNtswzDotMuxcf3s+TTgxjZ/ncwtxIWIp/j n9eGDBHr5iAcQyqO+A3JWN8iqxWYTlEfMlRXhhC9H7PJlkmR/UfPT3SXTMCYhj8W uOfYmaEPMhDUlt30U7xgVSoTTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNebf+Sz WXnB0bUjyrC/Td8iZstsMB8GA1UdIwQYMBaAFJYprHENPiHVmRko1ZpNtlQRqWv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTZFOC83QkNBRkYwMjA5 MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlkV1pHU2pWbWsyMlZCR3Bh XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xpbXNjUTAtSWRXWkdTalZtazIyVkJHcGFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTZFOC83QkNBRkYwMjA5MUQxMUVBOTNCRDlFNTZDNEY5QUUwMi9saW1zY1EwLUlk V1pHU2pWbWsyMlZCR3BhXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzQVRHctOymV+2t47/IljDcRn8fLIkkngrWPeqRfcnPQFkVOykxP3E QwLh4ptmKc16htpzX6BPWNGjhVJkLubyPj5bm7WQY8Dq1nwGgMEME98dAYlNu/wo IqMaFysEsRhd0PhF5ilYUd5ghMkZ99SO6DGi/WGucHcpKUDPyhnDC/Sphxsuuegm HPPpTqIfSDShWAPOh7skgw5ZRMGEaONQNBYzkWgknUg8VAIP98KoRm2UL70EFu6f v82IEL0pN2G22A5AxmpiR4uNvoxSJByMOlR706HD9A5hFK3TR5fBoE6rn5um2fJG aWRpn8I+FIjQzX5X0BMzbWItyqd8C6rP -----END CERTIFICATE-----Generated at Mon May 6 20:19:23 2024 by rpki-client on console-fra.rpki-client.org