$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: rCdjbH6VaB792oSFrn7ss95LM2cU2BNCZcNesZVa7R0= Subject key identifier: FC:21:0D:E3:82:9C:02:50:5C:AE:86:DC:43:82:78:5B:1F:D3:18:CC Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 03F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 03EB Signing time: Wed 20 Nov 2024 17:06:57 +0000 Manifest this update: Wed 20 Nov 2024 17:06:56 +0000 Manifest next update: Wed 27 Nov 2024 17:06:56 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: kag6yK4/HtlWk7vHUrZF9NlQSqaPv5KHAsu5aFUfVEE=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: sxrmm3JlL/k0ct5wIWAW6jZv0BJa2muxpRwSyTLfsOs=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: yVqJXkyhmawyWOzSapKy8QYIEjCOWt6iWvrokohhmLc=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: BB94ioWlwmy+5Fk/XHM3As2KqIhpAGjiHmhVZf8F+aE=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: wiOEudTGWtiO2PCJUHgbdooBMCVi8hh164T5dQWF5Es=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: ozCsjqAuq1SouBvB98Jf4Yq1iuHvv/bdbzijdLA64Oc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Nov 20 17:06:56 2024 GMT Not After : Nov 27 17:06:56 2024 GMT Subject: CN=673e1731-5b91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e4:e4:2e:06:90:11:21:be:e3:48:e1:b6:04: da:e2:0b:28:01:ce:a5:d8:bf:da:6d:1a:d7:bb:f4: 66:44:f2:74:67:00:fb:bd:f5:d7:b8:1e:b9:0b:44: a3:27:ca:95:8d:df:14:70:90:6c:95:50:ad:09:68: e3:01:a7:7b:a8:e5:90:76:9b:5e:17:ea:9c:77:56: f7:b7:c0:6c:14:4e:1e:d7:90:f7:0c:4c:6e:4c:6b: 96:a9:fc:d9:e6:79:64:43:58:6d:5c:95:e9:b1:02: 47:eb:2d:ba:45:dc:1f:02:f1:06:30:c9:a0:0e:00: b2:67:40:4f:c9:c4:e6:b0:48:92:54:58:59:80:b2: ef:0b:f4:aa:6c:0d:4b:4d:66:0e:03:01:ea:6b:c9: 2e:f1:8b:f4:3e:85:ed:e2:dd:ec:42:3d:7b:fd:04: 24:99:4d:fa:9c:ae:1e:b5:3e:2c:de:44:55:b3:fa: 41:ef:27:fb:a2:88:a8:5e:e3:16:92:e7:01:a9:f9: 11:5a:8f:d8:e6:68:f0:fe:dd:d4:3d:fa:99:ca:e0: bc:4d:3a:53:d4:be:70:77:93:46:bc:a5:53:72:ff: 31:de:f5:1b:be:ce:2f:ac:e3:87:ea:46:65:0c:c0: d6:60:e1:76:ef:a0:9d:9c:ce:73:84:25:6e:5e:a5: 48:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:21:0D:E3:82:9C:02:50:5C:AE:86:DC:43:82:78:5B:1F:D3:18:CC X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:ad:fe:5c:a3:1a:e3:99:25:bd:28:d5:65:52:1c:07:43:f7: 42:fe:bd:6f:9d:3c:91:9d:b3:11:ac:68:27:c1:c9:c8:1b:7f: cc:35:cb:de:0d:db:e0:7c:46:0c:78:1c:3b:44:a9:4e:32:a0: fd:4d:b7:2f:7c:3d:cf:a9:4e:ec:ca:58:ef:22:68:a3:91:d6: 5b:0c:bd:81:1d:66:a7:39:df:a9:f0:c3:e5:50:8a:19:b8:d3: 61:9a:f9:31:62:4f:d7:88:c0:25:04:e3:b3:41:d6:49:7e:bb: 19:25:ad:54:e1:4d:41:6c:68:14:d1:15:06:4b:47:fa:4e:04: 42:70:cd:fd:86:dc:32:1a:2f:1a:bc:16:0f:a0:5f:44:5e:b7: 8a:e5:e8:e2:de:cf:74:b7:c3:ff:ac:0e:9c:7b:bd:51:a2:cd: 54:a4:a9:df:89:77:ce:7f:34:3b:f7:df:d8:c0:78:22:e4:94: 49:99:cf:cf:5c:3d:e5:3a:6f:b7:c1:57:bf:81:97:24:87:62: 33:a8:6f:8f:c5:f2:d5:f2:d3:db:59:6b:2f:82:c0:d7:ea:f7: df:3a:86:02:2d:90:6a:8f:a6:46:b9:ab:d1:11:96:ee:ff:09: 51:52:d9:26:56:53:89:04:73:73:7a:fc:4f:32:c6:6a:4b:d0: 56:3a:b3:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjQxMTIwMTcwNjU2WhcNMjQxMTI3MTcwNjU2WjAYMRYwFAYD VQQDEw02NzNlMTczMS01YjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruTkLgaQESG+40jhtgTa4gsoAc6l2L/abRrXu/RmRPJ0ZwD7vfXXuB65C0Sj J8qVjd8UcJBslVCtCWjjAad7qOWQdpteF+qcd1b3t8BsFE4e15D3DExuTGuWqfzZ 5nlkQ1htXJXpsQJH6y26RdwfAvEGMMmgDgCyZ0BPycTmsEiSVFhZgLLvC/SqbA1L TWYOAwHqa8ku8Yv0PoXt4t3sQj17/QQkmU36nK4etT4s3kRVs/pB7yf7ooioXuMW kucBqfkRWo/Y5mjw/t3UPfqZyuC8TTpT1L5wd5NGvKVTcv8x3vUbvs4vrOOH6kZl DMDWYOF276CdnM5zhCVuXqVIPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwhDeOC nAJQXK6G3EOCeFsf0xjMMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfrf5coxrjmSW9KNVlUhwHQ/dC/r1vnTyRnbMRrGgnwcnIG3/MNcve DdvgfEYMeBw7RKlOMqD9TbcvfD3PqU7syljvImijkdZbDL2BHWanOd+p8MPlUIoZ uNNhmvkxYk/XiMAlBOOzQdZJfrsZJa1U4U1BbGgU0RUGS0f6TgRCcM39htwyGi8a vBYPoF9EXreK5eji3s90t8P/rA6ce71Ros1UpKnfiXfOfzQ799/YwHgi5JRJmc/P XD3lOm+3wVe/gZckh2IzqG+PxfLV8tPbWWsvgsDX6vffOoYCLZBqj6ZGuavREZbu /wlRUtkmVlOJBHNzevxPMsZqS9BWOrOx -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:55 2024 by rpki-client on console-fra.rpki-client.org