$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: xz0IJqj9zIIazYJYquO+Bu35HbNPMJoOTGfSLIY/2bk= Subject key identifier: BD:24:2A:9E:1A:58:66:D1:9D:6A:92:F5:05:1F:BB:5C:8C:85:5E:28 Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 0551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 054B Signing time: Sun 19 May 2024 00:53:26 +0000 Manifest this update: Sun 19 May 2024 00:53:25 +0000 Manifest next update: Sun 26 May 2024 00:53:25 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: HGXvLa/BEL8gjRetgybf8pTJsJV+gnObfkpJk5NCvKQ=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: MqGrC8fwQYux13oeFuDih9vENr78iZJwaYG2VwbNU/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: May 19 00:53:25 2024 GMT Not After : May 26 00:53:25 2024 GMT Subject: CN=66494d86-6387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d4:b0:e6:8c:e6:19:88:61:6b:96:d1:ad:80: 02:76:22:c8:f0:1a:4e:21:c9:f2:c4:ce:4f:89:2f: 88:d4:13:e4:3f:71:3d:07:3a:ff:97:db:a7:03:37: 47:3c:0e:94:8e:09:9f:6d:6a:7d:fe:09:01:03:55: c6:13:19:7b:12:2e:58:32:61:00:05:18:79:18:33: 16:96:a0:66:49:7c:de:1c:fc:bf:d0:e8:1e:86:1c: 5b:92:98:40:2f:d6:e9:7a:1b:25:c2:f2:4e:42:97: 02:1a:0d:67:c1:82:b1:4c:af:9d:47:d2:a0:7e:dc: 88:ea:6e:30:21:0c:35:5a:e8:54:9e:17:46:92:29: 27:99:b2:bb:ca:cc:7b:80:af:c7:3a:a7:7f:98:9d: 6b:61:0e:6d:88:68:44:2a:fa:aa:b2:14:9c:0e:2f: 3c:71:6a:50:af:08:40:43:7f:be:57:7f:21:0f:5f: 75:30:7a:15:e2:31:d5:a6:ed:91:b0:27:9f:cf:7b: 4f:af:0e:de:46:33:9e:8c:bb:45:b9:df:26:6f:30: 68:1b:4d:b1:a0:7c:50:f5:1a:31:de:6c:37:cf:1f: af:d9:da:09:00:c4:9e:fa:35:bb:a0:4b:68:ab:07: 1e:d6:98:93:e3:10:fa:53:40:b8:9a:fa:1f:96:50: 85:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:24:2A:9E:1A:58:66:D1:9D:6A:92:F5:05:1F:BB:5C:8C:85:5E:28 X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:57:b2:0f:5a:00:8b:9c:8d:a1:3e:2f:52:cb:c6:35:6d:e4: 54:c2:17:6d:97:5a:72:45:20:f8:89:d8:cd:17:a4:5a:09:86: 87:ac:48:22:45:74:57:66:23:85:2e:a7:8d:30:55:56:02:d0: 15:db:f9:2c:dc:b7:37:e5:7a:a6:53:52:e6:40:51:71:d2:79: 58:b7:10:77:ce:d4:a9:17:60:ad:e9:ab:d5:d3:01:6e:83:7c: e9:9d:ae:cf:81:64:81:72:6a:e0:88:56:e7:79:39:99:cf:dd: df:90:13:09:cd:29:60:ee:7f:7c:81:4e:05:ad:a5:c2:f6:2e: 10:18:9a:f8:70:e8:21:5c:a4:c4:ba:9a:71:5a:56:d7:9e:5b: e6:0d:d1:11:3d:04:43:25:53:62:48:1d:bf:51:57:78:2a:ca: 7d:67:9d:c8:28:fd:fc:f7:b0:ea:bf:27:e5:ef:fe:fc:d5:66: 61:38:a4:bd:8f:56:4b:06:f8:1a:53:3b:f7:3c:92:f9:2c:13: 56:9a:91:b2:89:e1:c1:cf:52:31:a9:55:d3:9b:7a:40:b2:73: 9b:61:88:45:c4:7f:9b:a7:5a:1e:06:b5:9f:71:4e:7a:0d:9b: b9:04:51:86:97:04:c2:7e:30:05:a7:85:f6:8b:a9:89:71:01: 67:73:e5:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjQwNTE5MDA1MzI1WhcNMjQwNTI2MDA1MzI1WjAYMRYwFAYD VQQDEw02NjQ5NGQ4Ni02Mzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdSw5ozmGYhha5bRrYACdiLI8BpOIcnyxM5PiS+I1BPkP3E9Bzr/l9unAzdH PA6UjgmfbWp9/gkBA1XGExl7Ei5YMmEABRh5GDMWlqBmSXzeHPy/0OgehhxbkphA L9bpehslwvJOQpcCGg1nwYKxTK+dR9KgftyI6m4wIQw1WuhUnhdGkiknmbK7ysx7 gK/HOqd/mJ1rYQ5tiGhEKvqqshScDi88cWpQrwhAQ3++V38hD191MHoV4jHVpu2R sCefz3tPrw7eRjOejLtFud8mbzBoG02xoHxQ9Rox3mw3zx+v2doJAMSe+jW7oEto qwce1piT4xD6U0C4mvofllCFXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0kKp4a WGbRnWqS9QUfu1yMhV4oMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrV7IPWgCLnI2hPi9Sy8Y1beRUwhdtl1pyRSD4idjNF6RaCYaHrEgi RXRXZiOFLqeNMFVWAtAV2/ks3Lc35XqmU1LmQFFx0nlYtxB3ztSpF2Ct6avV0wFu g3zpna7PgWSBcmrgiFbneTmZz93fkBMJzSlg7n98gU4FraXC9i4QGJr4cOghXKTE uppxWlbXnlvmDdERPQRDJVNiSB2/UVd4Ksp9Z53IKP3897Dqvyfl7/781WZhOKS9 j1ZLBvgaUzv3PJL5LBNWmpGyieHBz1IxqVXTm3pAsnObYYhFxH+bp1oeBrWfcU56 DZu5BFGGlwTCfjAFp4X2i6mJcQFnc+UF -----END CERTIFICATE-----Generated at Sun May 19 01:47:09 2024 by rpki-client on console-ams.rpki-client.org