$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: wnHe7Fd8znaDX8SMyYADeOrWUzGGPPu8kamIFYBxEbo= Subject key identifier: DA:E0:F1:95:60:AC:5F:4F:63:81:DD:54:34:F0:09:DB:B5:91:B3:D4 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 017C Signing time: Sun 19 May 2024 04:45:18 +0000 Manifest this update: Sun 19 May 2024 04:45:18 +0000 Manifest next update: Sun 26 May 2024 04:45:18 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: KahrKC02wdej/y5kmCfb2R1SddDH+kVYAydousIZkhg=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: B6s3JcI3FZHbvgpbZ73yhI9vDTIx8VQ81ngula8qPrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: May 19 04:45:18 2024 GMT Not After : May 26 04:45:18 2024 GMT Subject: CN=664983de-6d48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cd:f6:3d:27:4b:83:4a:38:60:4d:f2:f8:86: f5:9b:29:93:13:65:3c:cd:0f:22:63:d5:f8:ff:ec: 94:8a:1c:26:be:40:a3:a2:99:1f:7f:62:e1:07:59: 0b:d7:04:28:a4:90:c6:de:8e:f7:47:e4:74:df:a2: 83:c4:47:10:f4:77:05:78:95:15:5f:ea:d1:67:35: cf:3f:b8:1c:3b:cb:d1:19:79:07:8a:ea:10:43:b8: 9c:e9:e6:76:cc:5e:45:e0:d8:f5:34:9a:58:59:25: 90:bb:cf:31:13:5c:f7:c0:53:f8:0f:5c:c7:58:2d: 8f:f7:3c:85:88:b9:29:dc:87:69:8b:5c:f7:de:0d: a8:38:69:20:04:92:3d:97:73:96:a3:1d:42:d4:3e: 60:59:2c:7a:37:b6:8c:0b:4b:91:53:8f:33:e5:7f: 66:7a:02:26:95:bb:0e:09:eb:98:63:49:8d:41:32: 24:d6:11:4c:d8:a6:b8:e5:74:c8:e3:2a:b0:81:63: cc:08:71:2b:51:5b:6c:85:cb:79:6c:aa:1c:c3:cf: ad:1e:f3:b5:d7:22:b7:a6:d7:20:34:9e:34:32:e4: 0c:77:0b:43:dc:6a:6d:ce:07:ef:9f:35:0b:d5:1a: 19:92:3a:2a:a6:9d:ca:33:f6:0e:5a:c9:50:93:c0: 0f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:E0:F1:95:60:AC:5F:4F:63:81:DD:54:34:F0:09:DB:B5:91:B3:D4 X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e5:9a:15:7f:7d:3c:72:20:05:b8:9d:60:e2:c2:ad:4b:63: 99:b5:2b:2f:b2:df:ef:5b:41:61:38:15:a6:16:5c:e4:15:01: 9b:be:aa:9f:9c:8d:5b:cb:95:82:49:5b:3a:d6:58:d9:12:d4: 7e:92:1f:77:f4:eb:04:b9:0e:e6:35:3b:2f:cf:cc:04:94:66: 3b:62:b7:5c:8c:d7:0e:8b:5d:09:f8:3d:25:f5:ee:a5:59:b0: 06:4c:e9:1f:96:f0:d4:42:b5:b9:54:a5:95:69:ef:b6:3b:23: 9e:87:9b:a7:aa:c4:aa:ff:21:e8:a7:c9:d5:1f:f2:4e:7f:35: f4:ac:0a:7c:ff:72:0e:68:ab:f9:05:41:04:37:ad:45:6e:7b: 1e:81:9c:c0:4b:af:dd:13:05:e3:ca:7d:b5:ce:71:4b:e2:6d: ab:b2:0c:33:01:b2:40:3e:59:fe:c5:86:e7:bd:3c:de:7b:11: 85:4e:39:8f:2e:3c:b0:a7:fc:7f:e7:c3:56:4c:70:2a:8e:5a: d2:08:9a:de:4a:1c:87:fc:79:f1:0e:27:cf:07:2f:bb:71:38: 70:df:50:bf:18:78:48:78:4e:bf:ec:d2:ac:fc:f4:f4:d2:3b: d2:74:b0:f7:1f:99:f1:6d:96:4b:dd:b0:be:a0:cf:25:6b:5b: e7:a1:a6:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjQwNTE5MDQ0NTE4WhcNMjQwNTI2MDQ0NTE4WjAYMRYwFAYD VQQDEw02NjQ5ODNkZS02ZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM32PSdLg0o4YE3y+Ib1mymTE2U8zQ8iY9X4/+yUihwmvkCjopkff2LhB1kL 1wQopJDG3o73R+R036KDxEcQ9HcFeJUVX+rRZzXPP7gcO8vRGXkHiuoQQ7ic6eZ2 zF5F4Nj1NJpYWSWQu88xE1z3wFP4D1zHWC2P9zyFiLkp3Idpi1z33g2oOGkgBJI9 l3OWox1C1D5gWSx6N7aMC0uRU48z5X9megImlbsOCeuYY0mNQTIk1hFM2Ka45XTI 4yqwgWPMCHErUVtshct5bKocw8+tHvO11yK3ptcgNJ40MuQMdwtD3GptzgfvnzUL 1RoZkjoqpp3KM/YOWslQk8APPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrg8ZVg rF9PY4HdVDTwCdu1kbPUMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ5ZoVf308ciAFuJ1g4sKtS2OZtSsvst/vW0FhOBWmFlzkFQGbvqqf nI1by5WCSVs61ljZEtR+kh939OsEuQ7mNTsvz8wElGY7YrdcjNcOi10J+D0l9e6l WbAGTOkflvDUQrW5VKWVae+2OyOeh5unqsSq/yHop8nVH/JOfzX0rAp8/3IOaKv5 BUEEN61FbnsegZzAS6/dEwXjyn21znFL4m2rsgwzAbJAPln+xYbnvTzeexGFTjmP Ljywp/x/58NWTHAqjlrSCJreShyH/HnxDifPBy+7cThw31C/GHhIeE6/7NKs/PT0 0jvSdLD3H5nxbZZL3bC+oM8la1vnoabn -----END CERTIFICATE-----Generated at Sun May 19 05:48:50 2024 by rpki-client on console-fra.rpki-client.org