$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft File: LnNx4gZThK0R1DN9DS7NH2bSGco.mft (raw, json) Hash identifier: XW6aFry9S/EPo2vBYXaQF5uNi+OsMF7t9zwjvtaQm7Q= Subject key identifier: F7:BB:8E:4A:C6:5D:54:B7:26:CE:41:4F:85:70:B8:66:7B:4F:FB:46 Authority key identifier: 2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA Certificate issuer: /CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft Manifest number: 018B Signing time: Wed 01 May 2024 05:02:55 +0000 Manifest this update: Wed 01 May 2024 05:02:55 +0000 Manifest next update: Wed 08 May 2024 05:02:55 +0000 Files and hashes: 1: LnNx4gZThK0R1DN9DS7NH2bSGco.crl (hash: lrt8UDpv8tw5hjVPNq5PCf9l65Hjoj53BcX2CVnqDMU=) 2: 68C425FC1BBF11ED9F87C083C4F9AE02.roa (hash: T0f49ZjInwBaZPKtrl/4SLh0W6Ufl4R+u4BDxQcCIRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5753/serialNumber=2E7371E2065384AD11D4337D0D2ECD1F66D219CA Validity Not Before: May 1 05:02:55 2024 GMT Not After : May 8 05:02:55 2024 GMT Subject: CN=6631ccff-fbb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:a2:98:30:3a:5c:d1:2d:52:cb:9e:a0:a8: ef:66:64:cb:45:fa:a6:8b:49:73:31:ee:e1:5f:d0: 9a:9b:5f:cf:ac:6c:be:30:07:19:64:a8:05:9b:53: 4d:49:7d:c1:13:98:95:be:6c:c3:7e:3f:4c:a7:35: d3:11:3b:2c:e2:72:56:7e:4b:ba:9f:a1:9b:9c:8b: b3:e8:28:7f:15:68:18:fb:b2:6e:8a:97:bb:26:da: 90:06:1e:e9:13:75:a6:b4:b0:1d:bf:ed:94:77:4f: 40:60:53:46:2c:57:35:ae:9e:a9:3f:a5:43:61:ac: 94:7f:bc:a1:5c:4c:0e:4e:43:64:77:73:ca:3c:55: f3:79:45:6c:2c:71:a9:e2:7f:fb:9d:89:44:5f:5b: fa:b4:a7:d6:f1:15:36:06:34:ef:1d:0d:47:b1:e6: 78:fb:63:9f:9d:42:fa:08:46:18:89:ba:cb:b3:b9: 51:aa:d2:a2:b7:24:dd:c4:55:e7:b0:4e:d3:03:eb: c6:09:f9:b3:7e:25:d0:67:83:40:75:14:db:5d:7c: 40:29:aa:e4:9b:de:db:95:0e:b8:c2:72:b5:0a:fb: 24:da:e3:a3:f3:87:d4:0b:eb:c3:1b:a7:33:6e:d4: df:b6:25:b7:38:ea:9e:d8:d9:52:12:e1:a6:24:78: d5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:BB:8E:4A:C6:5D:54:B7:26:CE:41:4F:85:70:B8:66:7B:4F:FB:46 X509v3 Authority Key Identifier: keyid:2E:73:71:E2:06:53:84:AD:11:D4:33:7D:0D:2E:CD:1F:66:D2:19:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LnNx4gZThK0R1DN9DS7NH2bSGco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5753/7B5624441BBB11EDA87F6E67C4F9AE02/LnNx4gZThK0R1DN9DS7NH2bSGco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:f3:3d:e4:2f:bb:41:d0:c7:dd:69:9c:06:2e:19:9f:60:52: 16:81:ca:f8:1d:37:dd:22:d3:6c:34:0e:17:5e:0e:29:88:41: ee:f1:61:2a:6e:50:30:13:c0:d5:31:e7:6a:d1:aa:93:2a:ee: 7e:15:e1:25:ef:72:c2:35:c7:c3:57:db:25:6c:b7:b6:34:e2: 24:85:d8:71:9d:43:56:34:63:dd:85:88:32:00:e0:3d:e3:29: 34:f3:10:dc:f8:81:98:7e:a7:5b:59:e0:f2:ed:2d:64:8d:70: f4:0e:2b:43:60:93:cd:d8:a7:21:32:ac:95:cb:3e:f9:0e:b7: 21:b1:82:b2:d0:71:a1:b3:7b:a2:ef:1b:03:09:bf:c0:ff:af: 7c:d3:55:be:1d:7b:85:01:9b:f7:eb:cf:e5:96:bc:47:76:22: 36:5e:b6:73:4b:50:27:f8:21:f6:ef:b3:7d:db:d3:5b:37:d2: 57:36:15:f6:55:38:19:1f:92:e3:7e:78:8d:6c:a2:17:74:b0: 89:15:8a:b2:90:7a:cb:15:b0:f9:e4:0e:a4:00:7b:93:0c:51: 2e:65:d6:71:bd:c6:6b:34:be:63:8c:c9:67:e9:a4:c7:6a:b7: 50:32:6e:75:bc:e7:8c:2e:e9:7e:ab:9c:12:59:4e:89:97:62: 36:f6:7e:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU3NTMxMTAvBgNVBAUTKDJFNzM3MUUyMDY1Mzg0QUQxMUQ0MzM3RDBEMkVDRDFG NjZEMjE5Q0EwHhcNMjQwNTAxMDUwMjU1WhcNMjQwNTA4MDUwMjU1WjAYMRYwFAYD VQQDEw02NjMxY2NmZi1mYmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun+imDA6XNEtUsueoKjvZmTLRfqmi0lzMe7hX9Cam1/PrGy+MAcZZKgFm1NN SX3BE5iVvmzDfj9MpzXTETss4nJWfku6n6GbnIuz6Ch/FWgY+7Juipe7JtqQBh7p E3WmtLAdv+2Ud09AYFNGLFc1rp6pP6VDYayUf7yhXEwOTkNkd3PKPFXzeUVsLHGp 4n/7nYlEX1v6tKfW8RU2BjTvHQ1HseZ4+2OfnUL6CEYYibrLs7lRqtKityTdxFXn sE7TA+vGCfmzfiXQZ4NAdRTbXXxAKarkm97blQ64wnK1Cvsk2uOj84fUC+vDG6cz btTftiW3OOqe2NlSEuGmJHjVHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPe7jkrG XVS3Js5BT4VwuGZ7T/tGMB8GA1UdIwQYMBaAFC5zceIGU4StEdQzfQ0uzR9m0hnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTc1My83QjU2MjQ0NDFC QkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhLMFIxRE45RFM3TkgyYlNH Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xuTng0Z1pUaEswUjFETjlEUzdOSDJiU0djby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTc1My83QjU2MjQ0NDFCQkIxMUVEQTg3RjZFNjdDNEY5QUUwMi9Mbk54NGdaVGhL MFIxRE45RFM3TkgyYlNHY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj8z3kL7tB0MfdaZwGLhmfYFIWgcr4HTfdItNsNA4XXg4piEHu8WEq blAwE8DVMedq0aqTKu5+FeEl73LCNcfDV9slbLe2NOIkhdhxnUNWNGPdhYgyAOA9 4yk08xDc+IGYfqdbWeDy7S1kjXD0DitDYJPN2KchMqyVyz75DrchsYKy0HGhs3ui 7xsDCb/A/69801W+HXuFAZv368/llrxHdiI2XrZzS1An+CH277N929NbN9JXNhX2 VTgZH5LjfniNbKIXdLCJFYqykHrLFbD55A6kAHuTDFEuZdZxvcZrNL5jjMln6aTH ardQMm51vOeMLul+q5wSWU6Jl2I29n5b -----END CERTIFICATE-----Generated at Wed May 1 05:59:15 2024 by rpki-client on console-fra.rpki-client.org