$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: Em5jE3gA7/Ydus9f9Wcjc93L9/eUHaBCe9/6ivvizKM= Subject key identifier: 60:4C:BF:B7:A0:80:AD:4A:07:DB:44:E6:C1:C8:7E:88:D0:D6:7B:09 Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 0894 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 088E Signing time: Fri 31 May 2024 22:20:54 +0000 Manifest this update: Fri 31 May 2024 22:20:54 +0000 Manifest next update: Fri 07 Jun 2024 22:20:54 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: 1YTSBcXFiGoEDBdMSdBSWB5sczXIh0/KWfqWvmgt7YA=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: rjzGIvptWhz9SrTPyNL/UbNFgu4AqImIMWcg32gAnNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2196 (0x894) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: May 31 22:20:54 2024 GMT Not After : Jun 7 22:20:54 2024 GMT Subject: CN=665a4d46-201b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:23:13:01:f3:a1:9a:39:e9:bb:69:0e:82:2a: fd:8c:a7:85:c1:90:fd:ce:f2:a5:d5:fb:bc:61:c0: c0:34:29:f8:44:28:1a:15:ae:d0:82:71:a5:3b:f6: 9f:b5:e2:78:ff:e3:74:49:82:9e:cd:68:e5:f5:1d: 6e:24:3d:85:4a:73:88:cc:51:c5:18:3d:4e:1e:4e: 65:d4:47:bd:10:b6:c2:ed:d9:69:2b:e1:ff:49:50: 6c:a4:1d:5c:cc:a6:60:b4:d8:0d:23:d8:a6:6a:7f: c9:dd:f5:3a:6f:2f:74:0d:a0:74:07:71:5b:47:6b: 98:bb:cc:d6:bc:13:5f:8c:ad:0d:ff:70:ed:30:aa: f7:da:c9:6d:9e:38:cd:78:31:06:d7:51:24:6a:67: 7d:0d:0d:a9:4e:48:04:fc:7d:5c:65:16:97:d5:c2: 65:b5:42:f9:40:6c:89:1a:e9:39:c9:63:38:1a:49: 94:aa:e7:0b:b5:af:6f:2a:2e:ad:e0:57:5b:12:f4: 7f:cb:2a:b9:5f:d1:d3:03:36:d5:7a:66:a3:e3:ec: 6f:34:df:92:c1:30:05:73:b0:4d:05:c1:70:9f:33: 42:af:56:62:e8:57:ed:3c:df:43:4e:e5:34:eb:7e: 9e:48:66:32:5a:dc:2c:ce:e1:f9:6c:95:a7:32:0d: 94:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:4C:BF:B7:A0:80:AD:4A:07:DB:44:E6:C1:C8:7E:88:D0:D6:7B:09 X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:1b:1b:69:81:f1:ca:36:aa:ee:43:ab:46:d4:73:40:9c:11: 8a:97:cb:b3:3d:bb:b9:84:71:2d:3f:20:c2:55:61:da:55:44: 53:a9:38:5a:43:cf:a0:a1:c1:2f:96:e3:4e:dd:b3:c6:01:29: db:74:1c:33:db:1a:b7:24:7b:68:18:a0:e6:87:d7:35:a5:98: c6:e7:66:90:b7:e6:7e:8e:99:5c:3a:51:51:0d:4c:68:74:98: a6:ef:a8:0a:b3:2e:61:45:aa:bf:1a:85:78:6d:c1:56:06:15: d8:41:95:a3:e4:c6:c4:b5:64:27:bf:27:1f:f0:21:67:a4:c0: a2:e6:c3:ad:5f:f2:c5:e5:ef:38:0f:3e:14:14:f5:b9:35:2b: ea:d4:42:ed:f8:c5:06:13:30:9f:6a:7a:ff:d5:78:24:01:56: 7e:8a:24:14:8d:c0:64:af:ce:bb:e4:07:dd:91:fa:bf:d4:06: a5:d8:5d:29:7e:25:65:7d:d7:ae:c6:ce:f1:8f:65:3b:3a:aa: 96:24:b5:ca:39:91:28:e2:81:c8:b7:4a:e9:fe:83:ac:82:1b: 56:de:8f:ee:f5:ec:cc:d2:06:e8:95:49:7a:df:9d:0f:bc:5c: 3c:4b:a1:65:5e:95:90:7e:3b:fc:d9:da:a5:cc:51:bb:2a:d3: a1:08:ed:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjQwNTMxMjIyMDU0WhcNMjQwNjA3MjIyMDU0WjAYMRYwFAYD VQQDEw02NjVhNGQ0Ni0yMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniMTAfOhmjnpu2kOgir9jKeFwZD9zvKl1fu8YcDANCn4RCgaFa7QgnGlO/af teJ4/+N0SYKezWjl9R1uJD2FSnOIzFHFGD1OHk5l1Ee9ELbC7dlpK+H/SVBspB1c zKZgtNgNI9iman/J3fU6by90DaB0B3FbR2uYu8zWvBNfjK0N/3DtMKr32sltnjjN eDEG11Ekamd9DQ2pTkgE/H1cZRaX1cJltUL5QGyJGuk5yWM4GkmUqucLta9vKi6t 4FdbEvR/yyq5X9HTAzbVemaj4+xvNN+SwTAFc7BNBcFwnzNCr1Zi6FftPN9DTuU0 636eSGYyWtwszuH5bJWnMg2UwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBMv7eg gK1KB9tE5sHIfojQ1nsJMB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNGxtpgfHKNqruQ6tG1HNAnBGKl8uzPbu5hHEtPyDCVWHaVURTqTha Q8+gocEvluNO3bPGASnbdBwz2xq3JHtoGKDmh9c1pZjG52aQt+Z+jplcOlFRDUxo dJim76gKsy5hRaq/GoV4bcFWBhXYQZWj5MbEtWQnvycf8CFnpMCi5sOtX/LF5e84 Dz4UFPW5NSvq1ELt+MUGEzCfanr/1XgkAVZ+iiQUjcBkr8675Afdkfq/1Aal2F0p fiVlfdeuxs7xj2U7OqqWJLXKOZEo4oHIt0rp/oOsghtW3o/u9ezM0gbolUl6350P vFw8S6FlXpWQfjv82dqlzFG7KtOhCO2K -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:11 2024 by rpki-client on console-ams.rpki-client.org