$ rpki-client -vvf rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft File: 2leiQgcEcAjXOmXWgiSke5oD2qo.mft (raw, json) Hash identifier: yO+m/gkJ/W9K3BDiWzyRbv7Gskke6R2f+T5bqE4ifUo= Subject key identifier: 16:BB:8F:6E:8E:1E:3E:26:FD:07:AD:FE:8E:49:5A:E5:DD:0A:18:4E Authority key identifier: DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA Certificate issuer: /CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Certificate serial: 0547 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft Manifest number: 0542 Signing time: Fri 03 May 2024 01:03:29 +0000 Manifest this update: Fri 03 May 2024 01:03:29 +0000 Manifest next update: Fri 10 May 2024 01:03:29 +0000 Files and hashes: 1: 2leiQgcEcAjXOmXWgiSke5oD2qo.crl (hash: rWA15FXIGgJlgKgwYex3DvTWD4hjpIe9TAeLzkwGgQ4=) 2: B67E0BB4A5A511EB94C0DE0FC4F9AE02.roa (hash: CcnFaOSLEvGZEC5MxMmZqMKONNIWI7uob7fc7qSh9xE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:03:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914573E/serialNumber=DA57A24207047008D73A65D68224A47B9A03DAAA Validity Not Before: May 3 01:03:29 2024 GMT Not After : May 10 01:03:29 2024 GMT Subject: CN=663437e1-87e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5c:aa:5c:d2:6e:23:d4:e3:cb:e9:7b:32:84: 94:cf:9c:e2:20:ad:38:22:8a:61:dc:13:49:b1:9c: b9:1a:78:62:d1:ff:ab:73:59:ba:52:a1:a8:08:90: b3:e9:23:05:03:38:70:b1:81:11:f6:78:ee:4b:33: 4a:1e:c3:4b:c1:52:09:3e:44:f0:f0:2c:84:a4:d3: 56:e6:13:95:57:5d:c1:f8:01:6a:9a:89:03:e4:df: 30:53:eb:4f:bd:98:41:fc:0c:ec:60:a9:3b:7f:92: d4:1b:f0:6f:d8:0e:ef:1a:df:48:ce:6d:6a:6a:74: 0a:b3:d6:c6:d5:fa:a7:f7:fe:c0:62:6b:8c:3a:97: f4:f1:89:5b:f8:9e:a6:58:7c:1e:53:66:a0:6a:24: f6:dc:59:e4:2c:cf:dc:63:52:4c:2f:7b:8a:2e:92: 38:3a:fe:86:3d:fd:7c:96:b0:6e:dd:d7:a5:c5:b7: fd:54:31:e1:c9:a9:34:58:db:9f:bf:33:d5:e2:ff: 5d:6f:5f:bc:fe:6e:b9:ef:9f:85:a1:af:8c:0c:15: 95:85:fe:d7:8c:e9:95:d8:f3:eb:3f:51:1a:a2:ae: ef:20:85:07:63:ce:69:5d:68:46:93:86:44:57:35: 02:9b:f3:01:03:d1:71:0e:76:9a:40:98:20:94:41: 06:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:BB:8F:6E:8E:1E:3E:26:FD:07:AD:FE:8E:49:5A:E5:DD:0A:18:4E X509v3 Authority Key Identifier: keyid:DA:57:A2:42:07:04:70:08:D7:3A:65:D6:82:24:A4:7B:9A:03:DA:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2leiQgcEcAjXOmXWgiSke5oD2qo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914573E/6768978EA5A411EB98C3290FC4F9AE02/2leiQgcEcAjXOmXWgiSke5oD2qo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:9f:0b:5c:d1:ae:d7:31:c3:1e:df:7b:c9:ff:9e:38:58:97: 16:d5:97:71:9c:09:b1:5e:a3:be:b5:47:b8:58:12:f5:2d:36: 55:2d:e6:da:6c:fb:6d:f2:9a:bf:56:fa:f2:c9:9b:cb:91:ef: 06:a0:bc:cc:16:2f:ce:43:c5:37:29:14:77:53:49:26:24:e3: a6:bb:e9:be:be:11:0b:7f:d0:4f:85:fb:98:ef:b7:d7:ed:ce: 55:c6:ac:ca:f2:7a:67:05:b2:2a:68:dd:d7:eb:01:8e:83:9f: a2:5d:61:b3:bb:05:5c:35:3a:88:fe:6c:6f:65:c1:d0:24:2c: a8:a9:5c:df:47:8e:45:3e:f3:f2:b9:69:52:8b:f4:35:74:93: 96:36:ac:15:ce:90:89:5b:0d:90:61:d2:5a:e2:37:ff:cc:93: d1:58:13:52:fb:cb:04:cd:50:d6:57:80:ae:4f:0d:6e:18:f9: f9:6e:a7:16:a4:0f:47:ad:c4:39:15:8a:cd:12:bb:d4:a1:a1: 71:41:3b:55:1c:da:ce:f0:e2:10:27:49:d8:6c:a2:02:ce:9f: 45:1a:e9:3b:76:68:40:7b:8c:94:f0:75:29:df:c8:a4:b1:cd: ab:81:5c:fc:e9:a3:3f:42:ed:ba:cf:2f:0f:32:2f:b7:8e:7e: 5c:69:8e:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU3M0UxMTAvBgNVBAUTKERBNTdBMjQyMDcwNDcwMDhENzNBNjVENjgyMjRBNDdC OUEwM0RBQUEwHhcNMjQwNTAzMDEwMzI5WhcNMjQwNTEwMDEwMzI5WjAYMRYwFAYD VQQDEw02NjM0MzdlMS04N2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlyqXNJuI9Tjy+l7MoSUz5ziIK04Ioph3BNJsZy5Gnhi0f+rc1m6UqGoCJCz 6SMFAzhwsYER9njuSzNKHsNLwVIJPkTw8CyEpNNW5hOVV13B+AFqmokD5N8wU+tP vZhB/AzsYKk7f5LUG/Bv2A7vGt9Izm1qanQKs9bG1fqn9/7AYmuMOpf08Ylb+J6m WHweU2agaiT23FnkLM/cY1JML3uKLpI4Ov6GPf18lrBu3delxbf9VDHhyak0WNuf vzPV4v9db1+8/m6575+Foa+MDBWVhf7XjOmV2PPrP1Eaoq7vIIUHY85pXWhGk4ZE VzUCm/MBA9FxDnaaQJgglEEGTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBa7j26O Hj4m/Qet/o5JWuXdChhOMB8GA1UdIwQYMBaAFNpXokIHBHAI1zpl1oIkpHuaA9qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTczRS82NzY4OTc4RUE1 QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNBalhPbVhXZ2lTa2U1b0Qy cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsZWlRZ2NFY0FqWE9tWFdnaVNrZTVvRDJxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTczRS82NzY4OTc4RUE1QTQxMUVCOThDMzI5MEZDNEY5QUUwMi8ybGVpUWdjRWNB alhPbVhXZ2lTa2U1b0QycW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBknwtc0a7XMcMe33vJ/544WJcW1ZdxnAmxXqO+tUe4WBL1LTZVLeba bPtt8pq/VvryyZvLke8GoLzMFi/OQ8U3KRR3U0kmJOOmu+m+vhELf9BPhfuY77fX 7c5VxqzK8npnBbIqaN3X6wGOg5+iXWGzuwVcNTqI/mxvZcHQJCyoqVzfR45FPvPy uWlSi/Q1dJOWNqwVzpCJWw2QYdJa4jf/zJPRWBNS+8sEzVDWV4CuTw1uGPn5bqcW pA9HrcQ5FYrNErvUoaFxQTtVHNrO8OIQJ0nYbKICzp9FGuk7dmhAe4yU8HUp38ik sc2rgVz86aM/Qu26zy8PMi+3jn5caY41 -----END CERTIFICATE-----Generated at Fri May 3 04:45:12 2024 by rpki-client on console-fra.rpki-client.org