$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: 6JhsgQdKfpa1l+N9npiEhZFU9CeJhb5JXOfqWYpCI/k= Subject key identifier: FA:BF:DC:5B:3E:4E:80:49:92:59:F2:D3:6B:E0:3C:E3:60:D4:57:71 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 0175 Signing time: Fri 03 May 2024 04:53:21 +0000 Manifest this update: Fri 03 May 2024 04:53:20 +0000 Manifest next update: Fri 10 May 2024 04:53:20 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: WXHLNKp+yfWv8gadOQXk0xN9YCD+/fUbkgqrO+3kpCE=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: B6s3JcI3FZHbvgpbZ73yhI9vDTIx8VQ81ngula8qPrY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 03:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: May 3 04:53:20 2024 GMT Not After : May 10 04:53:20 2024 GMT Subject: CN=66346dc0-dec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:36:82:c9:b5:ef:78:11:9f:c1:2c:c8:69:26: c1:1e:57:da:1e:3b:03:e2:c5:7f:51:50:f4:f5:78: d5:3a:4c:97:8a:74:42:7f:29:dd:a8:54:c8:f8:2e: 07:f9:a5:52:29:70:57:51:e4:12:50:35:c7:7f:66: 57:7c:de:25:bb:b2:96:9b:a8:30:28:9a:4f:44:ea: 06:15:64:e8:b3:3f:54:70:6c:75:3f:86:85:36:87: 99:65:72:36:e4:78:b9:9f:12:d3:b8:ac:a1:3c:9e: 59:5a:0e:bc:28:0e:de:de:07:23:8f:d0:36:fc:c8: 6b:cd:02:dc:aa:ed:f7:29:9b:87:ee:84:ec:55:d7: ea:1c:6a:f9:a0:bb:17:da:49:8e:26:51:ab:d0:6a: 18:8d:66:b1:1d:5a:b1:cb:ae:98:cc:ed:52:3d:76: a2:20:29:66:ba:04:20:0e:67:b9:68:4e:a6:54:dd: 0a:71:b3:76:45:e6:38:9a:e5:02:bc:69:87:d3:28: cd:99:71:21:a7:07:e9:9b:89:f1:cf:7f:4e:48:b8: 11:a1:c2:9e:6f:d2:ee:9b:bd:57:f2:81:fe:89:2d: 4b:87:12:d2:75:ba:e0:ae:27:7c:df:ae:da:49:da: e0:84:b5:34:45:9b:02:9b:50:5a:59:d3:a5:9e:ba: a5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BF:DC:5B:3E:4E:80:49:92:59:F2:D3:6B:E0:3C:E3:60:D4:57:71 X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:cb:74:2b:74:1b:98:ab:94:85:0b:e9:bd:49:d5:4a:27:25: 41:ae:7c:2f:16:04:41:fc:46:d1:ab:ed:95:5a:b7:2c:51:64: 3b:ad:12:4f:9e:84:3e:6a:38:6f:ec:90:23:b6:21:25:b6:65: de:63:a5:9c:cf:bb:66:83:7a:96:73:46:34:4b:aa:17:41:18: 58:b7:04:68:52:4f:b8:58:ad:3e:9e:7b:17:6c:5a:e0:25:95: c8:ab:f7:2e:b4:bf:ad:cf:93:14:de:ce:cd:06:1c:0b:d6:c5: 1e:a0:c1:00:15:72:f7:ad:9d:98:25:58:e2:b2:21:6d:db:45: 0d:d2:07:d5:20:a6:3d:e8:79:a7:3b:91:3e:23:41:97:84:83: a4:b3:e6:19:5f:4e:74:43:60:08:c3:f3:50:9a:37:23:72:61: 5b:c4:4a:f4:e6:bb:65:c1:13:dd:12:c8:c4:cf:91:1d:9d:51: ae:9a:a4:86:79:9c:61:d2:35:46:10:28:de:e7:c7:30:ba:4b: 46:f9:9f:5a:de:75:07:45:09:3f:15:d6:da:ce:00:76:f7:72: 6f:a3:55:ae:b2:89:b5:0f:1b:80:b4:1a:c7:2d:36:50:8a:57: 4e:f8:4e:76:65:da:ea:93:42:01:f5:f3:96:8e:10:2a:59:61: cc:1c:e5:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjQwNTAzMDQ1MzIwWhcNMjQwNTEwMDQ1MzIwWjAYMRYwFAYD VQQDEw02NjM0NmRjMC1kZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DaCybXveBGfwSzIaSbBHlfaHjsD4sV/UVD09XjVOkyXinRCfyndqFTI+C4H +aVSKXBXUeQSUDXHf2ZXfN4lu7KWm6gwKJpPROoGFWTosz9UcGx1P4aFNoeZZXI2 5Hi5nxLTuKyhPJ5ZWg68KA7e3gcjj9A2/MhrzQLcqu33KZuH7oTsVdfqHGr5oLsX 2kmOJlGr0GoYjWaxHVqxy66YzO1SPXaiIClmugQgDme5aE6mVN0KcbN2ReY4muUC vGmH0yjNmXEhpwfpm4nxz39OSLgRocKeb9Lum71X8oH+iS1LhxLSdbrgrid8367a SdrghLU0RZsCm1BaWdOlnrqlWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPq/3Fs+ ToBJklny02vgPONg1FdxMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0y3QrdBuYq5SFC+m9SdVKJyVBrnwvFgRB/EbRq+2VWrcsUWQ7rRJP noQ+ajhv7JAjtiEltmXeY6Wcz7tmg3qWc0Y0S6oXQRhYtwRoUk+4WK0+nnsXbFrg JZXIq/cutL+tz5MU3s7NBhwL1sUeoMEAFXL3rZ2YJVjisiFt20UN0gfVIKY96Hmn O5E+I0GXhIOks+YZX050Q2AIw/NQmjcjcmFbxEr05rtlwRPdEsjEz5EdnVGumqSG eZxh0jVGECje58cwuktG+Z9a3nUHRQk/FdbazgB293Jvo1Wusom1DxuAtBrHLTZQ ildO+E52Zdrqk0IB9fOWjhAqWWHMHOVy -----END CERTIFICATE-----Generated at Fri May 3 05:32:33 2024 by rpki-client on console-ams.rpki-client.org