$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: gw1sujfKQCIlGTnfYiW0kTs1FEyj6k1jZU7kzGL3arA= Subject key identifier: 36:77:9A:91:00:4B:8B:23:AC:6B:0A:BA:EB:98:15:B8:83:90:0E:8C Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 0349 Signing time: Sat 23 Nov 2024 00:34:21 +0000 Manifest this update: Sat 23 Nov 2024 00:34:21 +0000 Manifest next update: Sat 30 Nov 2024 00:34:21 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: Aqx8gw1b+5OrYMUWJoXwYl+akpaNTiJ4TSJygqM14ok=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: Bu3Y51K40CQI6i7+VAA30ksmXoBC9MegfCewbd1mMKY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Nov 23 00:34:21 2024 GMT Not After : Nov 30 00:34:21 2024 GMT Subject: CN=6741230d-5499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:85:cb:82:f9:da:33:e1:79:ad:ab:b1:ea:ea: ec:f7:32:9d:e8:34:81:65:6d:06:d4:41:69:31:3e: 37:b9:60:24:1b:1f:b8:0a:d8:12:9a:53:e5:b4:cb: 3b:e4:11:f8:73:9b:6a:cc:53:9f:6d:61:ad:24:ed: c4:73:21:55:bb:ad:db:27:25:41:c5:05:cf:92:82: e6:fd:7e:03:31:29:27:88:b4:10:89:97:ca:9e:45: f0:df:d6:e7:99:f4:f0:17:a2:f1:88:a2:f1:06:dd: 2c:1e:e2:ac:04:2c:6d:ff:83:c1:21:0f:e0:c0:62: 3a:ae:02:27:d6:c8:89:5d:06:8d:a5:a8:cd:16:3c: 03:02:67:6d:64:b5:91:ab:6e:27:c0:a9:b0:58:2a: 36:81:eb:7a:de:eb:8a:8e:09:78:0b:ec:81:d3:77: e7:9d:53:f1:33:16:bc:69:88:dc:a7:c0:56:64:eb: dd:ba:9a:1e:83:e9:be:48:6c:bb:3c:16:e5:6d:f3: 43:1e:f8:8f:68:63:8a:ea:28:1b:63:0d:18:b9:23: 18:d7:52:c0:32:36:91:c8:31:c1:ad:05:8b:7d:b5: f4:84:e8:3b:ec:62:25:3f:0e:47:15:d1:19:e7:df: a7:a4:76:1e:d0:0f:be:ed:58:8d:57:72:a2:69:3b: 41:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:77:9A:91:00:4B:8B:23:AC:6B:0A:BA:EB:98:15:B8:83:90:0E:8C X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:50:ea:ac:7f:57:5c:68:8b:41:a5:8c:8a:60:02:4e:d0:b2: 74:51:80:8d:12:05:32:ee:64:dd:6b:81:15:80:be:64:02:74: db:5b:71:63:43:08:63:3a:52:80:45:4d:b0:7f:e6:46:f2:f5: 23:b4:63:e6:ab:e1:ea:6f:6f:fd:af:5c:15:c4:14:5a:99:b8: a1:9d:5e:1a:06:15:00:95:dd:18:97:6d:7d:4d:ba:39:20:4b: ba:c3:d6:65:75:81:08:b9:00:b8:d3:03:81:9c:5b:80:2d:67: 27:19:37:07:47:82:90:57:23:8a:81:a6:48:db:e8:90:6b:91: e3:d7:7c:14:e5:a7:cb:47:c9:71:9b:ed:46:ad:b3:8c:3a:f6: 68:88:27:1f:c2:1c:72:6e:0b:be:66:97:69:d8:dd:77:fd:41: 92:b2:5e:28:f6:7c:a6:2c:69:94:77:43:4b:8d:bb:e2:56:00: 33:07:e4:6a:34:44:32:c1:95:ab:1a:0b:40:ad:4c:cf:4a:12: 7e:1e:c5:0e:ba:44:04:3a:6d:0a:6e:d1:dc:b2:29:f6:53:9d: 32:f1:10:fd:08:fb:af:96:a9:43:b5:18:79:7b:cb:fb:a1:db: ae:c3:14:8e:59:5e:90:6f:6b:5e:e8:d1:2b:02:a2:b4:d9:97: 5f:52:a0:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjQxMTIzMDAzNDIxWhcNMjQxMTMwMDAzNDIxWjAYMRYwFAYD VQQDEw02NzQxMjMwZC01NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIXLgvnaM+F5raux6urs9zKd6DSBZW0G1EFpMT43uWAkGx+4CtgSmlPltMs7 5BH4c5tqzFOfbWGtJO3EcyFVu63bJyVBxQXPkoLm/X4DMSkniLQQiZfKnkXw39bn mfTwF6LxiKLxBt0sHuKsBCxt/4PBIQ/gwGI6rgIn1siJXQaNpajNFjwDAmdtZLWR q24nwKmwWCo2get63uuKjgl4C+yB03fnnVPxMxa8aYjcp8BWZOvdupoeg+m+SGy7 PBblbfNDHviPaGOK6igbYw0YuSMY11LAMjaRyDHBrQWLfbX0hOg77GIlPw5HFdEZ 59+npHYe0A++7ViNV3KiaTtBtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZ3mpEA S4sjrGsKuuuYFbiDkA6MMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfUOqsf1dcaItBpYyKYAJO0LJ0UYCNEgUy7mTda4EVgL5kAnTbW3Fj QwhjOlKARU2wf+ZG8vUjtGPmq+Hqb2/9r1wVxBRambihnV4aBhUAld0Yl219Tbo5 IEu6w9ZldYEIuQC40wOBnFuALWcnGTcHR4KQVyOKgaZI2+iQa5Hj13wU5afLR8lx m+1GrbOMOvZoiCcfwhxybgu+Zpdp2N13/UGSsl4o9nymLGmUd0NLjbviVgAzB+Rq NEQywZWrGgtArUzPShJ+HsUOukQEOm0KbtHcsin2U50y8RD9CPuvlqlDtRh5e8v7 oduuwxSOWV6Qb2te6NErAqK02ZdfUqAX -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org