$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: 2R1cvJiVAgG/JU7vnonX31eEf/F4o4gaMJl8PqM0j48= Subject key identifier: 5C:3C:CE:F1:EA:16:9E:80:38:46:76:06:28:3A:39:AE:B9:28:8C:17 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 24A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 24A1 Signing time: Wed 20 Nov 2024 14:16:29 +0000 Manifest this update: Wed 20 Nov 2024 14:16:28 +0000 Manifest next update: Wed 27 Nov 2024 14:16:28 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: utrBy8PM9l5B9Cldnp0tKtT44s6bmiBSp6ImYcY2B3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:16:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9377 (0x24a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Nov 20 14:16:28 2024 GMT Not After : Nov 27 14:16:28 2024 GMT Subject: CN=673def3d-9f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:32:6b:fe:b4:94:ca:3e:14:ff:67:55:86:8b: ff:db:28:f9:b8:16:b7:9e:4e:8c:80:70:ce:7b:c4: 1f:c3:93:6c:b7:f4:37:47:39:01:81:c0:6a:d7:6d: 1e:44:66:fb:de:b8:3f:26:f6:ff:2b:a1:c6:b4:b0: 74:66:1c:f6:af:5b:26:83:51:a0:bd:1a:4f:e1:04: 22:e2:13:0a:6e:af:91:c2:ad:8f:08:07:96:36:7f: 4f:8f:c7:0e:fc:2d:6a:51:1b:9a:8a:92:9d:1a:4b: 3f:22:b8:24:b8:30:06:84:61:62:85:96:b4:9f:78: f3:35:1b:26:2b:f7:16:d6:85:b9:4a:77:27:16:ae: 64:98:f5:a5:18:77:83:da:cf:72:5f:84:ef:2a:f2: 02:76:20:7a:a0:27:20:22:a0:02:d3:5f:ad:95:d8: 9d:2c:5c:45:c3:96:ae:db:ea:34:5e:7f:bb:43:78: 47:ad:95:a0:fc:f8:42:d5:80:79:3e:6e:6c:23:a7: b3:1d:75:6c:79:f6:48:16:f4:1c:43:6d:a7:52:ee: d5:a7:e9:01:2f:d7:2f:93:f9:f4:ab:46:a2:c9:be: f1:cf:eb:a0:82:34:6c:70:9d:49:bd:34:e7:6e:54: 77:9c:8f:42:f2:50:6c:2d:5b:98:10:82:4a:27:7c: 96:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:3C:CE:F1:EA:16:9E:80:38:46:76:06:28:3A:39:AE:B9:28:8C:17 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e2:52:64:a0:d8:15:82:8f:86:74:d9:bb:15:fc:d3:33:11: 61:ca:2f:2a:be:ce:71:5e:f0:57:ba:51:83:74:60:cf:bd:7d: 4f:c3:a8:9f:f2:97:51:20:0a:ed:3d:c5:03:1b:14:a1:0c:45: 1d:c0:3f:70:94:b6:8b:cd:07:90:04:c8:00:57:6c:1a:69:07: d9:b2:19:b2:1b:33:ac:da:7e:f2:53:67:43:b0:67:e9:16:92: 23:7a:bb:7f:24:bc:55:76:3f:3d:28:11:4c:31:c4:0a:be:70: 0d:6a:b0:4b:66:00:90:ef:1b:f4:d6:a1:c2:31:32:f8:8d:dc: 70:99:b2:cc:87:e2:01:4a:dd:17:94:b6:67:8c:ce:de:0a:53: 4e:b5:fa:f0:fd:fa:e6:4d:9d:5c:2c:c9:9a:0e:34:2d:f9:47: 03:a2:f1:74:e9:9e:20:52:7d:a2:51:a6:a5:a1:e1:d0:c2:ab: af:fe:6f:29:50:33:ba:39:92:1f:ce:b9:e1:30:74:cf:a0:8a: 80:0d:04:12:c2:32:b2:a1:22:48:e0:5e:56:d5:67:6d:ea:bb: 7b:47:ae:89:41:a8:53:2e:47:c6:92:77:f6:88:4c:c5:06:1b: 85:36:9b:04:ac:4c:c2:3a:dd:e2:69:8d:a9:bd:d7:35:98:6e: 25:e6:65:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjQxMTIwMTQxNjI4WhcNMjQxMTI3MTQxNjI4WjAYMRYwFAYD VQQDEw02NzNkZWYzZC05ZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DJr/rSUyj4U/2dVhov/2yj5uBa3nk6MgHDOe8Qfw5Nst/Q3RzkBgcBq120e RGb73rg/Jvb/K6HGtLB0Zhz2r1smg1GgvRpP4QQi4hMKbq+Rwq2PCAeWNn9Pj8cO /C1qURuaipKdGks/IrgkuDAGhGFihZa0n3jzNRsmK/cW1oW5SncnFq5kmPWlGHeD 2s9yX4TvKvICdiB6oCcgIqAC01+tldidLFxFw5au2+o0Xn+7Q3hHrZWg/PhC1YB5 Pm5sI6ezHXVsefZIFvQcQ22nUu7Vp+kBL9cvk/n0q0aiyb7xz+uggjRscJ1JvTTn blR3nI9C8lBsLVuYEIJKJ3yW/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw8zvHq Fp6AOEZ2Big6Oa65KIwXMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAs4lJkoNgVgo+GdNm7FfzTMxFhyi8qvs5xXvBXulGDdGDPvX1Pw6if 8pdRIArtPcUDGxShDEUdwD9wlLaLzQeQBMgAV2waaQfZshmyGzOs2n7yU2dDsGfp FpIjert/JLxVdj89KBFMMcQKvnANarBLZgCQ7xv01qHCMTL4jdxwmbLMh+IBSt0X lLZnjM7eClNOtfrw/frmTZ1cLMmaDjQt+UcDovF06Z4gUn2iUaaloeHQwquv/m8p UDO6OZIfzrnhMHTPoIqADQQSwjKyoSJI4F5W1Wdt6rt7R66JQahTLkfGknf2iEzF BhuFNpsErEzCOt3iaY2pvdc1mG4l5mUo -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:06 2024 by rpki-client on console-ams.rpki-client.org