$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: shIL5e7FFXDWcxEfzU0oY7sgsneE1n1Y3fO5zlKY4W4= Subject key identifier: 02:8C:61:A1:E9:E0:33:D2:BD:48:43:CD:81:29:AB:B1:73:34:EE:21 Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0A18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0A12 Signing time: Fri 22 Nov 2024 19:34:40 +0000 Manifest this update: Fri 22 Nov 2024 19:34:39 +0000 Manifest next update: Fri 29 Nov 2024 19:34:39 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: 83dgVvml/0ATioXLec65oI1KX12mNI7JD+LwGveRjnA=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: UcCgHLDSa/nATLjTOvF+awz11JiWwNz5KrAUsxqebvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:34:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Nov 22 19:34:39 2024 GMT Not After : Nov 29 19:34:39 2024 GMT Subject: CN=6740dcd0-879d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bd:72:c6:db:63:83:85:89:c3:1a:6f:5a:31: 9f:07:0f:70:e0:f3:57:d7:8e:b0:a8:06:e8:58:e3: 8e:c9:aa:78:75:2f:f3:cb:71:3b:23:1a:da:bb:ab: 9f:8e:9c:da:cc:66:ee:f9:d8:4f:98:a8:9d:38:c1: 9c:f0:4d:9b:a5:39:ab:dc:ab:d0:d8:c6:c7:da:2f: 26:0c:0b:da:56:a4:bc:83:3b:69:fb:8f:2c:7f:9d: f6:a8:39:c9:73:11:e5:84:7e:91:01:b3:bd:41:63: 4d:70:26:3e:4a:52:89:51:a0:d6:d4:41:4b:e2:95: 9f:f7:76:61:9d:c9:50:96:70:8c:2d:21:d1:6d:ff: 37:75:ef:09:31:93:18:80:77:8f:a2:fa:59:eb:8c: 94:c1:22:d0:f8:e9:83:da:54:6c:ec:2e:ef:44:81: f6:3e:5b:f0:09:de:3d:a9:e9:c5:e0:fe:69:2c:0e: 5d:bf:e8:19:64:63:5d:dc:5c:d9:43:97:9a:73:4a: 86:9c:6f:40:14:24:41:ef:71:c3:a0:9a:98:3a:af: 42:db:bc:de:34:77:c2:01:ed:f7:a4:97:f6:af:58: 2d:fc:35:14:90:fd:69:6f:a1:5f:dd:5a:09:84:7b: 07:17:cb:ca:d2:06:f1:e9:8e:32:30:5c:60:5b:dd: ee:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8C:61:A1:E9:E0:33:D2:BD:48:43:CD:81:29:AB:B1:73:34:EE:21 X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:5e:84:39:81:62:ed:e4:fd:cb:6b:08:d7:8f:d3:42:a6:b0: fc:b6:f4:23:7a:ae:03:b2:f7:2f:65:37:db:d4:07:ec:fa:2c: ba:e8:8b:52:cc:eb:d1:e5:d7:2b:4d:ed:a3:db:02:18:5b:5c: ed:5e:24:17:01:c3:29:e4:7e:50:ff:99:c4:5a:6f:1c:df:0f: cb:8b:15:ac:34:d7:9d:a3:8d:1c:81:70:8e:b9:57:ab:00:18: a7:8e:af:c1:a3:ca:f7:dc:2c:4a:a9:2f:fd:f3:66:12:b0:52: d8:26:e2:45:16:cc:23:4c:77:35:29:fe:f3:f6:ae:ad:6a:18: 96:b6:78:34:4d:e6:b0:29:72:c5:c4:ca:ce:e7:76:5c:d5:7a: 53:c9:50:be:c8:03:e3:4d:23:9f:11:7e:7c:2f:06:22:78:79: b4:75:8f:63:9c:1a:7a:44:8e:89:49:38:b0:f1:48:6a:57:86: 87:f2:28:6c:02:94:26:ef:bc:34:e9:f4:cc:e5:07:e6:94:e6: 8b:e8:d4:2b:d7:72:f3:ec:c9:1a:13:90:78:58:90:16:57:dd: 26:cf:ef:1a:a8:63:25:3b:10:3f:dc:fb:32:bc:83:02:5d:68: c9:9a:27:b4:68:67:61:a0:84:52:e1:67:eb:bd:e6:c5:89:c8: 35:02:25:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjQxMTIyMTkzNDM5WhcNMjQxMTI5MTkzNDM5WjAYMRYwFAYD VQQDEw02NzQwZGNkMC04NzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx71yxttjg4WJwxpvWjGfBw9w4PNX146wqAboWOOOyap4dS/zy3E7Ixrau6uf jpzazGbu+dhPmKidOMGc8E2bpTmr3KvQ2MbH2i8mDAvaVqS8gztp+48sf532qDnJ cxHlhH6RAbO9QWNNcCY+SlKJUaDW1EFL4pWf93ZhnclQlnCMLSHRbf83de8JMZMY gHePovpZ64yUwSLQ+OmD2lRs7C7vRIH2PlvwCd49qenF4P5pLA5dv+gZZGNd3FzZ Q5eac0qGnG9AFCRB73HDoJqYOq9C27zeNHfCAe33pJf2r1gt/DUUkP1pb6Ff3VoJ hHsHF8vK0gbx6Y4yMFxgW93u8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKMYaHp 4DPSvUhDzYEpq7FzNO4hMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbXoQ5gWLt5P3LawjXj9NCprD8tvQjeq4DsvcvZTfb1Afs+iy66ItS zOvR5dcrTe2j2wIYW1ztXiQXAcMp5H5Q/5nEWm8c3w/LixWsNNedo40cgXCOuVer ABinjq/Bo8r33CxKqS/982YSsFLYJuJFFswjTHc1Kf7z9q6tahiWtng0TeawKXLF xMrO53Zc1XpTyVC+yAPjTSOfEX58LwYieHm0dY9jnBp6RI6JSTiw8UhqV4aH8ihs ApQm77w06fTM5QfmlOaL6NQr13Lz7MkaE5B4WJAWV90mz+8aqGMlOxA/3PsyvIMC XWjJmie0aGdhoIRS4WfrvebFicg1AiVu -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org