$ rpki-client -vvf rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft File: leqvwkta9LFytYuwGnAc_hltoZk.mft (raw, json) Hash identifier: Sa38FfN+lhWoTFpDXVuQBYCm9887QmJYXXQdsQBf0nM= Subject key identifier: F5:D6:27:83:E7:E4:C2:6A:F6:3B:9B:DF:27:35:41:6D:80:41:23:A0 Authority key identifier: 95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 Certificate issuer: /CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Certificate serial: 1058 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft Manifest number: 104F Signing time: Fri 24 May 2024 18:04:05 +0000 Manifest this update: Fri 24 May 2024 18:04:04 +0000 Manifest next update: Fri 31 May 2024 18:04:04 +0000 Files and hashes: 1: leqvwkta9LFytYuwGnAc_hltoZk.crl (hash: mWS1be4VdnudqOLP9ZAubY+cC430Pqz5owQSk2C0TiM=) 2: 2837843AA3E811EAB397F675C4F9AE02.roa (hash: /tJVaaLCTzYClGpQvcdtUybXo1hn6XUyjqkTeY+7mos=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4184 (0x1058) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972B6/serialNumber=95EAAFC24B5AF4B172B58BB01A701CFE196DA199 Validity Not Before: May 24 18:04:04 2024 GMT Not After : May 31 18:04:04 2024 GMT Subject: CN=6650d694-dc55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:90:c4:fb:e5:9f:f3:77:1a:cc:02:25:c7: af:19:cc:92:d7:80:3a:8c:0a:3f:0d:77:c1:54:90: 1f:2f:33:ce:d3:bb:76:02:b3:db:85:9e:f5:d2:40: f9:df:88:94:a0:9b:ac:c6:22:fd:3f:4e:f6:23:a3: 6e:91:a3:ea:0b:1b:36:f0:70:59:73:90:f1:8c:49: 98:da:e6:12:1b:7f:45:98:87:b0:8e:67:80:57:b8: a1:35:9c:5b:33:be:bb:c5:79:5c:f1:ec:a1:50:62: 72:67:d0:41:13:d6:5a:4e:09:a2:ce:87:31:59:de: 87:49:8a:2f:ab:87:8b:b2:56:df:a9:e1:63:7e:27: 5d:81:74:47:7a:82:c9:ae:e2:d1:02:9e:97:b1:91: 09:c7:ba:62:8c:98:30:31:5b:50:d0:cb:aa:ee:d8: 74:a1:02:2a:bd:8a:b4:84:47:1b:b3:c4:2c:eb:2f: c8:b1:24:1f:49:29:f0:c9:63:db:e5:72:23:60:31: 80:68:4f:20:54:f3:f3:a5:19:8c:e6:1b:eb:9e:cf: 2d:0e:d6:56:bb:8e:7a:59:52:ad:4d:a2:bf:3e:32: 53:75:33:2d:9d:98:ee:6d:3f:a4:66:2f:e4:50:0f: 19:34:ac:65:6c:71:65:b4:ca:16:e4:69:72:97:30: 61:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D6:27:83:E7:E4:C2:6A:F6:3B:9B:DF:27:35:41:6D:80:41:23:A0 X509v3 Authority Key Identifier: keyid:95:EA:AF:C2:4B:5A:F4:B1:72:B5:8B:B0:1A:70:1C:FE:19:6D:A1:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/leqvwkta9LFytYuwGnAc_hltoZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972B6/08243C8C132B11E9AE77AD7BC4F9AE02/leqvwkta9LFytYuwGnAc_hltoZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:51:26:30:44:b6:e3:e6:b7:20:51:0f:50:5e:4c:13:77:71: 0c:60:a7:ae:35:3e:cf:05:7b:55:5f:70:6d:b1:ab:07:ca:f2: ee:5b:a1:48:7b:d6:89:28:d0:ed:ad:69:99:1a:ee:aa:d5:58: 48:4d:4b:29:ff:76:64:2b:35:82:e2:01:0b:c0:98:59:d6:d9: c5:4f:fe:ca:4b:46:e1:94:fc:0b:3d:bb:4b:08:34:77:47:9c: 65:8c:52:df:ac:3a:1c:e0:60:0d:fb:38:25:6a:85:fd:07:8b: 94:00:e5:46:cf:5e:68:01:2f:de:70:fd:21:2e:a5:91:22:04: 64:c0:d0:c7:e4:36:49:60:3b:3c:13:c2:13:fc:99:ab:ff:0f: bf:ed:7d:c0:f3:66:b3:c2:3f:c9:0a:85:4e:b4:39:8f:89:72: 6a:9b:0a:b7:dd:94:9b:c8:63:6c:a0:42:ca:9c:35:bc:8e:f7: fe:4e:c6:50:3c:f2:a0:39:ba:0d:e3:72:54:66:b5:33:ae:3b: 27:0d:3b:5f:80:11:2b:be:b2:4e:b3:e0:87:41:93:9c:ea:64: 03:e5:78:14:be:8e:ca:a7:63:68:68:04:b1:f6:8d:7e:2f:53: 30:6a:1a:08:99:30:41:23:9c:79:3e:63:73:9a:89:2f:56:ba: 0e:9f:2e:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyQjYxMTAvBgNVBAUTKDk1RUFBRkMyNEI1QUY0QjE3MkI1OEJCMDFBNzAxQ0ZF MTk2REExOTkwHhcNMjQwNTI0MTgwNDA0WhcNMjQwNTMxMTgwNDA0WjAYMRYwFAYD VQQDEw02NjUwZDY5NC1kYzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxomQxPvln/N3GswCJcevGcyS14A6jAo/DXfBVJAfLzPO07t2ArPbhZ710kD5 34iUoJusxiL9P072I6NukaPqCxs28HBZc5DxjEmY2uYSG39FmIewjmeAV7ihNZxb M767xXlc8eyhUGJyZ9BBE9ZaTgmizocxWd6HSYovq4eLslbfqeFjfiddgXRHeoLJ ruLRAp6XsZEJx7pijJgwMVtQ0Muq7th0oQIqvYq0hEcbs8Qs6y/IsSQfSSnwyWPb 5XIjYDGAaE8gVPPzpRmM5hvrns8tDtZWu456WVKtTaK/PjJTdTMtnZjubT+kZi/k UA8ZNKxlbHFltMoW5GlylzBhLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXWJ4Pn 5MJq9jub3yc1QW2AQSOgMB8GA1UdIwQYMBaAFJXqr8JLWvSxcrWLsBpwHP4ZbaGZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzJCNi8wODI0M0M4QzEz MkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlMRnl0WXV3R25BY19obHRv WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xlcXZ3a3RhOUxGeXRZdXdHbkFjX2hsdG9aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJCNi8wODI0M0M4QzEzMkIxMUU5QUU3N0FEN0JDNEY5QUUwMi9sZXF2d2t0YTlM Rnl0WXV3R25BY19obHRvWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdUSYwRLbj5rcgUQ9QXkwTd3EMYKeuNT7PBXtVX3BtsasHyvLuW6FI e9aJKNDtrWmZGu6q1VhITUsp/3ZkKzWC4gELwJhZ1tnFT/7KS0bhlPwLPbtLCDR3 R5xljFLfrDoc4GAN+zglaoX9B4uUAOVGz15oAS/ecP0hLqWRIgRkwNDH5DZJYDs8 E8IT/Jmr/w+/7X3A82azwj/JCoVOtDmPiXJqmwq33ZSbyGNsoELKnDW8jvf+TsZQ PPKgOboN43JUZrUzrjsnDTtfgBErvrJOs+CHQZOc6mQD5XgUvo7Kp2NoaASx9o1+ L1MwahoImTBBI5x5PmNzmokvVroOny4u -----END CERTIFICATE-----Generated at Fri May 24 21:43:20 2024 by rpki-client on console-ams.rpki-client.org