$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: 8IRI6mWz5OQKQEPhM+JgkPm9LnB0cXW6KBheoN7I2Uo= Subject key identifier: 4F:DF:EA:BE:62:B0:B1:ED:D0:04:95:BF:0E:5D:4C:EA:1F:83:FE:38 Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 0545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 0542 Signing time: Sun 19 May 2024 00:53:54 +0000 Manifest this update: Sun 19 May 2024 00:53:54 +0000 Manifest next update: Sun 26 May 2024 00:53:54 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: BEsJ5kRmYG8zP6Dr1KuaV99xGwcX1P0KtCEy2JCSthY=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: 43mQrXDxX9O45FoRil0au5HJr3SgsT1YX0drxBI9ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1349 (0x545) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: May 19 00:53:54 2024 GMT Not After : May 26 00:53:54 2024 GMT Subject: CN=66494da2-504c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:41:9f:b6:61:5b:1b:67:12:81:e7:2f:ee:58: d7:b1:31:5a:8c:59:ef:10:80:a5:d9:e5:67:41:44: a7:45:8f:8a:66:d1:34:c4:36:6a:74:7c:e3:4d:b2: 58:a0:35:b8:53:27:4e:f0:0c:fc:85:b6:3b:dc:64: 1c:1a:c8:e4:90:4e:cc:9d:c3:e2:5d:86:a4:83:9e: 10:74:1d:f0:c1:cb:91:0a:e0:d3:49:af:d0:51:81: 89:63:f7:31:08:ce:f1:bd:41:8c:dc:04:a4:28:bd: 9f:63:c3:d4:68:59:16:b5:a2:05:1a:cf:0a:e6:e1: c9:e9:48:b9:6c:57:f3:42:8f:92:b1:53:43:6a:1b: 7f:2f:2a:f5:09:85:b7:1c:19:d3:d9:d9:e1:6e:4b: df:3e:ab:80:b8:bd:ed:43:59:f4:9c:37:46:09:dd: ac:ef:d5:52:e4:dc:83:d6:be:21:11:e6:08:e4:60: cf:64:00:81:38:93:16:6c:89:bb:5c:78:5d:ef:da: 42:ec:6e:5d:2f:05:ff:4e:7b:af:a2:99:ba:c3:d4: 0e:88:bf:1c:bd:06:eb:3f:ce:fc:c1:4f:ae:28:58: 34:e0:5f:e5:5f:16:4e:2c:a0:bf:0d:71:9b:b3:b6: c9:cd:f1:3d:8f:7c:81:a2:03:86:c5:2d:35:b5:62: d0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:DF:EA:BE:62:B0:B1:ED:D0:04:95:BF:0E:5D:4C:EA:1F:83:FE:38 X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a1:16:92:ef:49:81:c9:22:ef:29:22:af:db:c5:1d:e4:ab: 50:0a:ff:57:a5:f8:f2:aa:3a:9e:b1:33:44:60:a2:35:f4:cc: ea:c3:ec:08:af:18:1b:23:c8:db:ee:e3:d7:05:cb:c0:54:d1: 73:10:d5:7d:46:1f:0b:f2:02:97:f3:2d:b2:e3:04:0a:83:7d: 80:b6:75:61:75:39:6b:97:41:cb:c8:b1:8f:14:9e:8c:3a:23: 7b:d0:e6:cd:8c:fc:00:05:8d:4a:05:7c:83:94:ad:b2:6b:aa: 3b:81:a9:fd:51:16:0c:96:e8:c6:76:bd:fd:60:9f:9c:a1:b6: f5:94:a2:5d:2d:8c:b8:1f:ba:97:ce:a6:e7:75:f8:7e:93:58: 89:79:79:eb:be:5c:d5:87:41:a2:88:b3:36:d3:d7:03:85:96: 0f:73:f8:95:e0:ec:17:af:e1:17:2b:fa:45:26:3d:29:81:e6: e8:07:32:c8:e1:7f:fb:7f:7d:0c:9f:94:ce:bf:00:3c:94:fb: cc:f9:ab:62:d9:63:8f:94:de:b2:f9:56:30:61:39:16:33:be: 86:b2:f9:c6:a3:f2:59:f5:7f:70:b9:8d:7e:d4:d5:77:b2:ac: 9f:49:c8:d1:f5:e2:97:2c:de:8b:20:c4:3f:bc:a3:2a:68:5f: 97:4d:3b:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjQwNTE5MDA1MzU0WhcNMjQwNTI2MDA1MzU0WjAYMRYwFAYD VQQDEw02NjQ5NGRhMi01MDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kGftmFbG2cSgecv7ljXsTFajFnvEICl2eVnQUSnRY+KZtE0xDZqdHzjTbJY oDW4UydO8Az8hbY73GQcGsjkkE7MncPiXYakg54QdB3wwcuRCuDTSa/QUYGJY/cx CM7xvUGM3ASkKL2fY8PUaFkWtaIFGs8K5uHJ6Ui5bFfzQo+SsVNDaht/Lyr1CYW3 HBnT2dnhbkvfPquAuL3tQ1n0nDdGCd2s79VS5NyD1r4hEeYI5GDPZACBOJMWbIm7 XHhd79pC7G5dLwX/Tnuvopm6w9QOiL8cvQbrP878wU+uKFg04F/lXxZOLKC/DXGb s7bJzfE9j3yBogOGxS01tWLQXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/f6r5i sLHt0ASVvw5dTOofg/44MB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBoRaS70mBySLvKSKv28Ud5KtQCv9XpfjyqjqesTNEYKI19Mzqw+wI rxgbI8jb7uPXBcvAVNFzENV9Rh8L8gKX8y2y4wQKg32AtnVhdTlrl0HLyLGPFJ6M OiN70ObNjPwABY1KBXyDlK2ya6o7gan9URYMlujGdr39YJ+cobb1lKJdLYy4H7qX zqbndfh+k1iJeXnrvlzVh0GiiLM209cDhZYPc/iV4OwXr+EXK/pFJj0pgeboBzLI 4X/7f30Mn5TOvwA8lPvM+ati2WOPlN6y+VYwYTkWM76GsvnGo/JZ9X9wuY1+1NV3 sqyfScjR9eKXLN6LIMQ/vKMqaF+XTTvr -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org