$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: P42omp7RYB5i2mv1Tur7AdvKwEhYU1E6iCjGryeGxgU= Subject key identifier: 1B:D1:3B:20:6B:72:71:81:0C:E3:E2:C5:56:EE:82:AE:86:F6:05:D4 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0229 Signing time: Sun 19 May 2024 04:02:46 +0000 Manifest this update: Sun 19 May 2024 04:02:46 +0000 Manifest next update: Sun 26 May 2024 04:02:46 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: pScWvYvYM51FtO37ay4aL2C31XhzWzcjABX9zHBk/kc=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: rJOay/9KosJKH4xAyXnCJek3gQV9STnlHAs4YwiimrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: May 19 04:02:46 2024 GMT Not After : May 26 04:02:46 2024 GMT Subject: CN=664979e6-f127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ce:cf:ac:75:ed:36:f8:3b:92:dd:f3:f2:81: 96:a1:ea:df:b7:2c:80:2c:22:88:60:a4:fa:fd:57: 70:49:21:35:17:75:9f:55:17:55:1b:fe:04:21:ca: 10:0a:a2:d0:66:c9:b4:33:a2:98:1f:b7:b2:e4:5c: 1a:82:f3:98:a2:55:e0:3c:41:37:0f:10:a1:d7:50: d8:f7:80:3a:5a:47:53:22:ac:88:30:0d:fd:d7:a6: 9b:81:7c:d2:79:c6:ae:ed:da:3e:e1:f2:1d:18:cb: ad:89:b0:21:6b:7b:f2:81:13:15:5e:21:c8:8f:96: e6:6e:0a:1a:7a:4c:f8:ac:1c:93:2a:e6:2f:5d:3a: b1:b5:38:46:e6:67:9c:37:92:db:b3:27:c3:d9:ce: 88:cd:ac:fb:1c:ce:a6:d7:b3:2b:de:d3:74:92:34: c3:af:5a:99:06:56:79:fc:72:4c:77:35:a4:91:47: 5a:ed:41:f3:57:f1:49:11:19:4e:0a:f9:dd:c5:75: a7:fb:b5:68:06:43:82:04:3a:c6:2d:6a:0f:46:fc: 13:6f:80:bf:44:d2:ac:c4:f7:e6:d7:1d:6f:bb:c4: 0a:ad:16:3d:e6:cb:ee:bc:0f:85:f7:9d:85:2c:67: 74:f9:17:28:a1:4e:fa:8b:3a:36:b5:f6:86:24:21: b4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D1:3B:20:6B:72:71:81:0C:E3:E2:C5:56:EE:82:AE:86:F6:05:D4 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:fd:06:47:ef:76:d5:2a:19:1c:b5:c7:3e:ac:ba:56:e5:50: 5c:9b:ef:1b:33:90:91:5d:f6:03:d2:7b:b0:37:47:27:d1:db: 7d:f4:cb:1e:3f:d6:e9:c6:96:12:fb:b5:33:46:c2:aa:46:57: 0b:8a:75:1c:89:ea:d2:d1:04:6c:d6:53:67:82:79:9f:9b:c5: 12:c8:12:ce:bb:ba:9c:3e:a1:2e:6a:1c:f9:e4:40:00:51:3d: 17:74:10:3f:3b:8c:3e:53:6f:ed:8d:dd:11:27:c3:3d:6b:d6: 4a:55:3b:65:a9:73:7a:f2:f4:48:11:6e:49:a8:ef:97:f5:d4: d3:1a:98:18:ee:71:02:af:40:26:3d:a4:d9:bf:3e:03:68:b8: c9:b5:79:31:7f:82:8b:89:16:65:3d:65:e7:bf:39:c6:36:15: df:cf:51:f1:54:91:d1:59:db:54:83:32:3f:02:8d:d0:d1:49: 8f:bf:ea:93:43:7f:3e:0e:24:38:22:de:0e:21:66:8a:95:3d: c6:78:e5:e9:3f:13:54:4b:3c:0d:1b:68:3e:0b:45:48:65:23: c1:a3:90:68:ed:34:ae:03:64:41:ea:85:73:55:d1:a6:83:0d: 07:99:a4:90:88:2f:c9:71:1b:0d:de:52:0a:32:da:90:7f:61: 8c:c9:3b:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjQwNTE5MDQwMjQ2WhcNMjQwNTI2MDQwMjQ2WjAYMRYwFAYD VQQDEw02NjQ5NzllNi1mMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc7PrHXtNvg7kt3z8oGWoerftyyALCKIYKT6/VdwSSE1F3WfVRdVG/4EIcoQ CqLQZsm0M6KYH7ey5FwagvOYolXgPEE3DxCh11DY94A6WkdTIqyIMA3916abgXzS ecau7do+4fIdGMutibAha3vygRMVXiHIj5bmbgoaekz4rByTKuYvXTqxtThG5mec N5LbsyfD2c6Izaz7HM6m17Mr3tN0kjTDr1qZBlZ5/HJMdzWkkUda7UHzV/FJERlO CvndxXWn+7VoBkOCBDrGLWoPRvwTb4C/RNKsxPfm1x1vu8QKrRY95svuvA+F952F LGd0+RcooU76izo2tfaGJCG0bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvROyBr cnGBDOPixVbugq6G9gXUMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0/QZH73bVKhkctcc+rLpW5VBcm+8bM5CRXfYD0nuwN0cn0dt99Mse P9bpxpYS+7UzRsKqRlcLinUcierS0QRs1lNngnmfm8USyBLOu7qcPqEuahz55EAA UT0XdBA/O4w+U2/tjd0RJ8M9a9ZKVTtlqXN68vRIEW5JqO+X9dTTGpgY7nECr0Am PaTZvz4DaLjJtXkxf4KLiRZlPWXnvznGNhXfz1HxVJHRWdtUgzI/Ao3Q0UmPv+qT Q38+DiQ4It4OIWaKlT3GeOXpPxNUSzwNG2g+C0VIZSPBo5Bo7TSuA2RB6oVzVdGm gw0HmaSQiC/JcRsN3lIKMtqQf2GMyTtl -----END CERTIFICATE-----Generated at Sun May 19 05:08:05 2024 by rpki-client on console-ams.rpki-client.org