$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: sa0K2yB3sVkODcXA+cWxq9skpu7FAzKvtLAewKxpfcs= Subject key identifier: BF:80:7E:14:F1:B1:AE:2B:91:EB:2B:DE:4F:C3:20:F1:B6:2A:2D:DB Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 09B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 09B2 Signing time: Sat 18 May 2024 20:49:45 +0000 Manifest this update: Sat 18 May 2024 20:49:44 +0000 Manifest next update: Sat 25 May 2024 20:49:44 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: fX7sios2xb/vd+FlQAEUifPOTv3VZ1XBBLQZTRfon2s=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: UcCgHLDSa/nATLjTOvF+awz11JiWwNz5KrAUsxqebvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2488 (0x9b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: May 18 20:49:44 2024 GMT Not After : May 25 20:49:44 2024 GMT Subject: CN=66491469-2a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:22:bf:1f:b8:e1:1d:b8:4c:9b:b2:43:8b: f7:42:3b:8c:04:81:02:46:bf:da:f6:90:05:97:3a: d3:38:9d:d1:d0:9c:5c:a4:36:44:91:62:5c:f7:cd: db:71:15:75:2e:43:e4:3b:b1:69:7a:56:94:fa:27: 02:4e:cf:96:b3:5a:f1:15:a9:e2:ca:cb:ab:38:83: bf:64:b7:1f:ee:ee:5a:8a:bc:e8:92:c8:5b:93:cc: a2:0e:66:35:c6:17:9a:70:a7:68:87:2a:79:ec:c0: 42:b2:3e:7c:90:18:8a:af:32:8d:6b:81:0d:ad:6e: ba:76:6a:e1:65:df:0d:a8:08:67:47:62:8e:c1:1b: e4:aa:af:24:96:e4:bb:c3:44:a7:75:ca:67:10:3b: bc:af:b9:ed:96:6e:ab:c4:15:0c:d7:d1:07:38:cb: 6d:44:d4:39:2b:5f:33:e2:2a:2a:78:93:af:fd:4d: d1:8a:3e:fa:ba:33:43:76:3c:eb:a7:4c:0c:f8:50: eb:d9:2f:2e:f5:a2:71:13:11:39:e7:76:3d:fa:90: 2d:7d:5f:ba:b4:fd:85:c3:42:62:30:b8:12:bc:a9: 7f:45:a5:6e:00:cf:20:13:86:1f:36:27:c0:06:a2: 31:1a:64:01:70:ee:3f:92:3b:d1:20:99:52:d8:45: cd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:80:7E:14:F1:B1:AE:2B:91:EB:2B:DE:4F:C3:20:F1:B6:2A:2D:DB X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:51:8d:2a:58:88:e8:bc:ba:d1:ce:42:d0:9b:61:de:6a:23: b3:8e:ac:b1:ba:7c:d1:a7:5d:15:89:92:35:f3:63:7c:3b:86: 39:cb:d3:8d:e0:f8:a5:24:9a:02:94:d8:dc:e9:35:89:01:0c: 9c:3e:6f:d3:a2:9c:7b:e3:d5:4b:fa:db:3b:f8:f3:94:99:36: 9b:c9:be:3c:e1:f0:3c:4f:c8:84:47:d8:c8:0d:9a:63:61:26: a0:65:fe:ec:72:f9:b6:c8:49:2f:60:ba:3b:2b:5a:19:c8:41: b1:21:49:79:5c:99:2a:e3:14:fd:68:d0:7d:ca:6b:10:6e:77: 53:a7:48:2a:91:df:2c:d2:e1:44:d7:4d:07:a7:0a:dc:86:47: c3:05:77:86:1f:77:06:1e:6e:6e:61:bc:e6:00:4d:94:b7:a7: 86:7f:b4:92:a7:a1:46:96:d5:52:9f:3e:03:46:6e:fe:40:03: 87:d0:60:9f:6d:42:97:3e:a0:d9:48:86:3d:9a:2e:cf:d0:df: 45:57:12:47:3e:ac:bd:c3:2a:b3:fc:1d:62:63:4c:7a:b0:9d: c5:5a:52:96:3c:7d:83:b6:5d:74:e7:31:3f:1e:a8:03:69:43: 99:98:68:4d:e4:1f:b2:e6:b5:bc:b5:e5:f6:f1:ff:99:c2:a3: ae:47:25:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjQwNTE4MjA0OTQ0WhcNMjQwNTI1MjA0OTQ0WjAYMRYwFAYD VQQDEw02NjQ5MTQ2OS0yYTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwcivx+44R24TJuyQ4v3QjuMBIECRr/a9pAFlzrTOJ3R0JxcpDZEkWJc983b cRV1LkPkO7FpelaU+icCTs+Ws1rxFaniysurOIO/ZLcf7u5airzokshbk8yiDmY1 xheacKdohyp57MBCsj58kBiKrzKNa4ENrW66dmrhZd8NqAhnR2KOwRvkqq8kluS7 w0SndcpnEDu8r7ntlm6rxBUM19EHOMttRNQ5K18z4ioqeJOv/U3Rij76ujNDdjzr p0wM+FDr2S8u9aJxExE553Y9+pAtfV+6tP2Fw0JiMLgSvKl/RaVuAM8gE4YfNifA BqIxGmQBcO4/kjvRIJlS2EXNwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+AfhTx sa4rkesr3k/DIPG2Ki3bMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFUY0qWIjovLrRzkLQm2HeaiOzjqyxunzRp10ViZI182N8O4Y5y9ON 4PilJJoClNjc6TWJAQycPm/Topx749VL+ts7+POUmTabyb484fA8T8iER9jIDZpj YSagZf7scvm2yEkvYLo7K1oZyEGxIUl5XJkq4xT9aNB9ymsQbndTp0gqkd8s0uFE 100HpwrchkfDBXeGH3cGHm5uYbzmAE2Ut6eGf7SSp6FGltVSnz4DRm7+QAOH0GCf bUKXPqDZSIY9mi7P0N9FVxJHPqy9wyqz/B1iY0x6sJ3FWlKWPH2Dtl105zE/HqgD aUOZmGhN5B+y5rW8teX28f+ZwqOuRyX0 -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org