$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: gfqtucMgxt7kgZgTDsf4mRGI5Ur9DQ81SXN+AFfjTmE= Subject key identifier: B3:E8:68:AD:DC:FE:2F:4A:9B:A9:60:7C:2B:81:6E:7E:B4:1D:D5:96 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0288 Signing time: Sat 23 Nov 2024 01:09:15 +0000 Manifest this update: Sat 23 Nov 2024 01:09:15 +0000 Manifest next update: Sat 30 Nov 2024 01:09:15 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: r+6qcZW8KX9O5w2gtpesCqGOhTppP8syT2NE64HCkE8=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: rJOay/9KosJKH4xAyXnCJek3gQV9STnlHAs4YwiimrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Nov 23 01:09:15 2024 GMT Not After : Nov 30 01:09:15 2024 GMT Subject: CN=67412b3b-956f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0a:98:df:eb:da:01:1e:1d:08:0b:81:ff:16: 3e:66:da:22:cc:9d:12:f6:2d:d2:ce:61:a5:cb:52: bc:10:c8:f1:14:78:0e:97:9f:ec:01:3d:0d:d5:40: 1e:ec:e7:c3:cb:13:4c:35:02:31:48:08:5d:4a:bf: f8:1a:e6:40:89:fd:e8:cb:c7:de:02:00:ea:82:7f: f4:d5:aa:73:e9:2b:05:0b:81:b7:ec:2f:81:be:f9: e3:a2:bd:5d:80:2d:c4:38:49:12:2d:b2:d9:c1:ce: 46:d8:f2:14:2c:8c:8e:19:e9:b1:88:cd:a2:c1:5a: 56:87:27:40:74:ce:be:f6:dd:3e:66:e2:f2:c6:d5: 6f:a2:13:98:2b:80:4a:ca:d7:e1:e9:4c:42:76:60: 76:07:64:ba:38:ff:9e:ea:8b:97:a8:4a:ec:6c:eb: a4:76:e4:e9:5c:3a:aa:f7:02:96:b5:31:8c:6c:d3: 50:54:74:ff:af:92:66:2a:67:52:c9:96:c8:63:4d: 44:dc:cb:b0:d7:83:6d:ad:95:cc:83:68:e6:51:d3: df:11:fb:37:01:27:dd:4e:85:75:24:09:42:4b:ac: 12:f9:61:c9:69:b6:8c:e6:e4:c6:3f:7c:bd:8b:08: a5:8d:88:bd:27:a0:d7:b8:9b:57:73:e3:b9:b1:10: 57:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E8:68:AD:DC:FE:2F:4A:9B:A9:60:7C:2B:81:6E:7E:B4:1D:D5:96 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:61:a3:d3:91:4f:6c:fa:c1:b1:59:fe:2e:6c:48:88:9d:80: 0b:c5:aa:1b:6d:50:90:1a:64:ca:53:dc:20:60:94:1f:a8:65: 2e:d7:6f:78:67:21:44:55:8f:f0:d3:c9:04:b6:45:74:b5:d6: 48:0e:51:d1:8f:89:4a:8f:88:89:d0:6f:1a:ef:45:e3:6a:95: a2:9a:fc:9d:0b:33:0f:c8:05:a3:4c:7d:f3:02:54:81:45:68: 81:6d:04:12:ef:f9:60:23:18:e3:b9:a5:cc:fd:77:1f:75:cb: 9b:6a:17:be:f7:99:db:58:7f:32:bf:a1:04:84:5e:7d:23:2f: b4:0c:7b:84:ee:92:31:14:5e:9e:04:72:ec:9f:7b:2d:16:01: b1:d8:7b:25:60:3c:8a:98:bd:73:43:ed:16:d6:d2:df:b9:55: bb:62:06:bd:e5:7f:b8:bb:d8:ab:d3:e8:11:11:a4:92:95:ba: 54:e0:16:d7:12:ac:e0:63:19:ce:fe:e7:81:9f:38:a2:0b:45: bd:33:47:f0:2d:81:8d:f6:d3:4b:1f:6c:b1:f2:c9:91:b0:f6: b3:d3:3e:8f:11:51:70:2d:17:09:87:9d:b6:1b:2d:06:6e:4a: 11:0a:b9:a1:23:f2:3e:7a:6a:0a:45:2c:82:4c:bd:51:cd:be: 2c:4c:46:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjQxMTIzMDEwOTE1WhcNMjQxMTMwMDEwOTE1WjAYMRYwFAYD VQQDEw02NzQxMmIzYi05NTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAqY3+vaAR4dCAuB/xY+ZtoizJ0S9i3SzmGly1K8EMjxFHgOl5/sAT0N1UAe 7OfDyxNMNQIxSAhdSr/4GuZAif3oy8feAgDqgn/01apz6SsFC4G37C+Bvvnjor1d gC3EOEkSLbLZwc5G2PIULIyOGemxiM2iwVpWhydAdM6+9t0+ZuLyxtVvohOYK4BK ytfh6UxCdmB2B2S6OP+e6ouXqErsbOukduTpXDqq9wKWtTGMbNNQVHT/r5JmKmdS yZbIY01E3Muw14NtrZXMg2jmUdPfEfs3ASfdToV1JAlCS6wS+WHJabaM5uTGP3y9 iwiljYi9J6DXuJtXc+O5sRBXfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPoaK3c /i9Km6lgfCuBbn60HdWWMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdYaPTkU9s+sGxWf4ubEiInYALxaobbVCQGmTKU9wgYJQfqGUu1294 ZyFEVY/w08kEtkV0tdZIDlHRj4lKj4iJ0G8a70XjapWimvydCzMPyAWjTH3zAlSB RWiBbQQS7/lgIxjjuaXM/Xcfdcubahe+95nbWH8yv6EEhF59Iy+0DHuE7pIxFF6e BHLsn3stFgGx2HslYDyKmL1zQ+0W1tLfuVW7Yga95X+4u9ir0+gREaSSlbpU4BbX EqzgYxnO/ueBnziiC0W9M0fwLYGN9tNLH2yx8smRsPaz0z6PEVFwLRcJh522Gy0G bkoRCrmhI/I+emoKRSyCTL1Rzb4sTEY4 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org