$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: M2Zu8MQF3yMN9KhiTHLSyBwhcdccke4gB7Hcfi3yCz4= Subject key identifier: 4B:A5:5F:C2:CB:9B:49:AF:8B:6F:A2:95:8C:FF:C4:A2:D2:AF:C8:4C Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 0599 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 0590 Signing time: Sat 01 Jun 2024 01:26:05 +0000 Manifest this update: Sat 01 Jun 2024 01:26:05 +0000 Manifest next update: Sat 08 Jun 2024 01:26:05 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: uIH7Rw4w4sNmT9ChKYoEwmDYr0luNnar5R6rnsT+P6c=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: Ef/n9FoPzBDkjpMc9XUOPJVBpNPzwyhkP30323HeIr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1433 (0x599) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Jun 1 01:26:05 2024 GMT Not After : Jun 8 01:26:05 2024 GMT Subject: CN=665a78ad-c283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:52:ce:be:b4:74:34:41:f4:01:64:4d:4a:58: b0:2a:ce:30:63:7e:59:d6:0d:ae:fe:cc:f4:8b:50: a5:ef:28:13:a2:2c:2e:82:1c:78:54:fb:7d:16:e8: 47:e6:83:4a:8f:80:fb:fd:34:3b:93:f3:43:37:23: 72:f9:9d:5f:22:fa:5f:3b:ae:14:14:37:e3:f7:d2: 59:40:ac:64:63:37:e2:8f:ec:04:5f:c6:d5:92:b6: ab:e2:8c:79:39:25:56:70:79:15:1d:a6:c0:f6:15: bc:eb:8c:21:87:7b:3b:02:0d:68:d6:73:08:f3:ef: b9:76:ff:ed:b1:93:9f:0b:d8:59:f3:21:43:5d:40: 88:fe:d8:29:cc:1d:90:78:44:64:33:60:6e:48:e9: 9f:fc:3d:cd:21:ff:4d:85:3f:77:08:d8:a8:15:0f: 18:1e:5a:bc:e7:0e:24:8f:c8:96:4e:56:5c:ef:37: 1d:d4:ee:98:33:d6:c0:c9:38:38:3e:f8:f8:44:6c: a1:25:43:2b:75:0f:f9:0e:62:0f:6f:62:af:bd:41: c8:51:15:44:bf:48:16:88:da:21:f7:f3:62:0d:74: d9:30:8e:a8:4a:4c:86:85:df:83:74:3a:26:1f:cd: df:59:4f:7a:1b:06:70:5f:17:63:81:45:ac:5f:ca: fd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A5:5F:C2:CB:9B:49:AF:8B:6F:A2:95:8C:FF:C4:A2:D2:AF:C8:4C X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:16:a8:09:8e:05:52:57:a4:68:c1:a4:4c:a1:2c:1c:c8:5d: 2e:f8:cc:7b:49:89:76:70:68:da:69:02:dc:8f:df:12:d4:76: 8f:fc:ec:5d:d3:c0:3c:18:a5:42:a8:99:b3:83:b8:41:ee:99: a5:73:20:10:b4:31:16:c8:8c:bd:6e:52:19:6a:b5:de:72:00: a0:f3:5d:8b:c0:83:8a:c9:cf:16:1a:a1:cb:de:33:e4:e7:ba: 7b:5d:c7:7b:4e:37:3f:6e:33:49:7d:7c:e2:36:da:93:a6:fc: 98:78:06:bd:f7:be:fa:0e:eb:71:59:48:cb:a7:4c:15:dd:d6: 54:d8:ca:8c:9d:0e:42:ed:5d:eb:82:62:f4:d9:01:44:50:a6: f1:d3:dd:79:92:fd:1a:b5:93:87:c4:6c:d9:6d:bf:af:aa:77: 4c:a4:f5:e0:d3:5d:2f:6f:93:5e:ba:74:12:8d:81:19:2c:29: c0:52:78:5f:97:be:dc:a4:54:6a:b1:d2:ec:f0:f7:05:09:e2: 40:2d:02:fc:d6:38:c6:84:83:6a:57:60:6f:75:5f:99:3d:42: 73:be:c2:4c:c1:8b:53:36:04:cf:07:98:e9:75:71:d9:cd:9d: 06:9f:4f:fa:66:88:c4:aa:d7:80:f4:aa:b0:c3:46:a4:c9:a1: e1:4b:82:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjQwNjAxMDEyNjA1WhcNMjQwNjA4MDEyNjA1WjAYMRYwFAYD VQQDEw02NjVhNzhhZC1jMjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VLOvrR0NEH0AWRNSliwKs4wY35Z1g2u/sz0i1Cl7ygToiwughx4VPt9FuhH 5oNKj4D7/TQ7k/NDNyNy+Z1fIvpfO64UFDfj99JZQKxkYzfij+wEX8bVkrar4ox5 OSVWcHkVHabA9hW864whh3s7Ag1o1nMI8++5dv/tsZOfC9hZ8yFDXUCI/tgpzB2Q eERkM2BuSOmf/D3NIf9NhT93CNioFQ8YHlq85w4kj8iWTlZc7zcd1O6YM9bAyTg4 Pvj4RGyhJUMrdQ/5DmIPb2KvvUHIURVEv0gWiNoh9/NiDXTZMI6oSkyGhd+DdDom H83fWU96GwZwXxdjgUWsX8r9EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEulX8LL m0mvi2+ilYz/xKLSr8hMMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVFqgJjgVSV6RowaRMoSwcyF0u+Mx7SYl2cGjaaQLcj98S1HaP/Oxd 08A8GKVCqJmzg7hB7pmlcyAQtDEWyIy9blIZarXecgCg812LwIOKyc8WGqHL3jPk 57p7Xcd7Tjc/bjNJfXziNtqTpvyYeAa99776DutxWUjLp0wV3dZU2MqMnQ5C7V3r gmL02QFEUKbx0915kv0atZOHxGzZbb+vqndMpPXg010vb5NeunQSjYEZLCnAUnhf l77cpFRqsdLs8PcFCeJALQL81jjGhINqV2BvdV+ZPUJzvsJMwYtTNgTPB5jpdXHZ zZ0Gn0/6ZojEqteA9Kqww0akyaHhS4Jy -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:22 2024 by rpki-client on console-ams.rpki-client.org