$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft File: lQfxHRNjrFs5Lzb17zgixc_NaPk.mft (raw, json) Hash identifier: vVOD3gBF2ulNz7Dy7ghAFYHp5tClrnvH4grn5M6cuiA= Subject key identifier: 42:21:AD:F2:51:B6:C9:34:B3:24:19:3D:B9:C5:D4:C1:A7:90:BB:82 Authority key identifier: 95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 Certificate issuer: /CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft Manifest number: 0147 Signing time: Thu 13 Jun 2024 05:19:56 +0000 Manifest this update: Thu 13 Jun 2024 05:19:55 +0000 Manifest next update: Thu 20 Jun 2024 05:19:55 +0000 Files and hashes: 1: lQfxHRNjrFs5Lzb17zgixc_NaPk.crl (hash: 4HxBjawqrWajVh3nmvXly4gIMhKwoNR/esmwVRBXctQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 05:19:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE8AC/serialNumber=9507F11D1363AC5B392F36F5EF3822C5CFCD68F9 Validity Not Before: Jun 13 05:19:55 2024 GMT Not After : Jun 20 05:19:55 2024 GMT Subject: CN=666a817b-db7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c6:e1:52:fb:3c:29:1c:d7:2a:c8:4e:22:b2: 6f:b3:d8:50:90:3c:3c:d6:7d:2f:ae:c8:6d:b9:57: c1:73:f6:48:4e:6f:a0:50:17:9d:16:fa:bd:bb:19: 3f:a0:bb:19:ab:84:78:91:57:82:88:35:a9:26:0a: 7b:c6:b3:ce:48:69:76:61:c9:e5:b6:a6:93:79:5a: dc:7f:19:34:2c:0a:a9:28:81:3c:13:6c:d4:f4:fd: 72:b7:ed:c0:54:72:87:a7:a3:cd:36:20:6c:a5:fa: 86:8b:1a:b3:b6:ba:57:cb:dd:2c:29:88:16:2d:3e: 9a:40:a5:7c:92:54:3f:62:dd:76:3f:04:35:5a:87: c9:ae:dd:5f:60:38:f1:0c:58:97:c9:e2:e4:19:d0: 7f:9f:c8:24:b9:dc:81:18:a3:de:a5:e9:74:ca:00: c7:6b:f7:f1:30:28:4c:62:c0:a7:eb:61:fb:d2:72: fb:ad:9a:5a:5e:f4:65:37:a2:7a:17:c3:32:c7:1f: 44:e2:db:d6:cb:ef:88:c1:06:b2:88:8a:4c:01:ad: f2:ac:46:08:8d:0e:65:2c:13:0a:bc:cc:c0:97:dc: 31:d5:bb:d8:39:94:4b:c5:7f:a6:e3:38:7d:5e:29: 8c:38:90:22:fe:b7:a6:98:41:37:a7:de:63:6c:e0: e4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:21:AD:F2:51:B6:C9:34:B3:24:19:3D:B9:C5:D4:C1:A7:90:BB:82 X509v3 Authority Key Identifier: keyid:95:07:F1:1D:13:63:AC:5B:39:2F:36:F5:EF:38:22:C5:CF:CD:68:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQfxHRNjrFs5Lzb17zgixc_NaPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE8AC/5038EC8C7DEB11EDA7CA4A7EC4F9AE02/lQfxHRNjrFs5Lzb17zgixc_NaPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c5:aa:0a:fb:0e:3f:d8:f8:57:14:e9:f3:5e:f3:3c:70:31: c4:c6:88:fa:93:6e:00:a9:24:d9:f3:d3:ed:d8:87:fc:a9:9a: b1:81:e9:ea:6e:80:00:e4:4c:2b:fa:71:70:de:32:d0:c8:3b: db:9c:2e:f2:88:8b:56:e4:89:ad:d8:71:d7:da:1c:fa:79:be: 40:62:f2:bc:09:73:b9:9d:8c:65:66:9e:cc:52:6a:9b:3b:0f: 54:9b:6a:83:bd:21:d2:cc:df:8b:61:60:7a:f4:65:2d:e9:9a: fb:fd:47:6b:c5:91:4e:7c:74:b5:f0:60:a1:ea:28:42:0b:35: 7e:75:5e:8d:98:df:b7:8b:db:b8:30:0e:28:62:8d:d7:95:48: ed:cc:82:6b:a1:93:da:b7:db:f8:4a:42:e4:80:d8:fc:33:9f: 8f:ab:fc:46:11:c1:ff:a7:29:ac:12:a6:25:e6:98:61:81:01: da:62:5c:88:3a:31:a0:bb:32:ba:ac:29:22:2b:99:7d:78:71: 5e:3e:0a:ba:89:9b:22:d7:49:2c:f6:e1:38:02:66:3f:cb:f6: 97:8c:72:8c:b1:ce:86:a8:ac:cd:86:83:6d:0a:a4:cf:06:c0: 03:57:c6:f0:7a:42:39:d4:80:e7:c7:02:47:16:35:48:09:01: 7d:f4:d7:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU4QUMxMTAvBgNVBAUTKDk1MDdGMTFEMTM2M0FDNUIzOTJGMzZGNUVGMzgyMkM1 Q0ZDRDY4RjkwHhcNMjQwNjEzMDUxOTU1WhcNMjQwNjIwMDUxOTU1WjAYMRYwFAYD VQQDEw02NjZhODE3Yi1kYjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysbhUvs8KRzXKshOIrJvs9hQkDw81n0vrshtuVfBc/ZITm+gUBedFvq9uxk/ oLsZq4R4kVeCiDWpJgp7xrPOSGl2YcnltqaTeVrcfxk0LAqpKIE8E2zU9P1yt+3A VHKHp6PNNiBspfqGixqztrpXy90sKYgWLT6aQKV8klQ/Yt12PwQ1WofJrt1fYDjx DFiXyeLkGdB/n8gkudyBGKPepel0ygDHa/fxMChMYsCn62H70nL7rZpaXvRlN6J6 F8Myxx9E4tvWy++IwQayiIpMAa3yrEYIjQ5lLBMKvMzAl9wx1bvYOZRLxX+m4zh9 XimMOJAi/remmEE3p95jbODkXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIhrfJR tsk0syQZPbnF1MGnkLuCMB8GA1UdIwQYMBaAFJUH8R0TY6xbOS829e84IsXPzWj5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRThBQy81MDM4RUM4QzdE RUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJGczVMemIxN3pnaXhjX05h UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRZnhIUk5qckZzNUx6YjE3emdpeGNfTmFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RThBQy81MDM4RUM4QzdERUIxMUVEQTdDQTRBN0VDNEY5QUUwMi9sUWZ4SFJOanJG czVMemIxN3pnaXhjX05hUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7xaoK+w4/2PhXFOnzXvM8cDHExoj6k24AqSTZ89Pt2If8qZqxgenq boAA5Ewr+nFw3jLQyDvbnC7yiItW5Imt2HHX2hz6eb5AYvK8CXO5nYxlZp7MUmqb Ow9Um2qDvSHSzN+LYWB69GUt6Zr7/UdrxZFOfHS18GCh6ihCCzV+dV6NmN+3i9u4 MA4oYo3XlUjtzIJroZPat9v4SkLkgNj8M5+Pq/xGEcH/pymsEqYl5phhgQHaYlyI OjGguzK6rCkiK5l9eHFePgq6iZsi10ks9uE4AmY/y/aXjHKMsc6GqKzNhoNtCqTP BsADV8bwekI51IDnxwJHFjVICQF99Ncy -----END CERTIFICATE-----Generated at Thu Jun 13 08:02:35 2024 by rpki-client on console-ams.rpki-client.org