$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft File: ObsL_xT7a0tfhhNydNQlE_N1Okc.mft (raw, json) Hash identifier: jZ6VVOHGkeKJmU/JKt8uGMSf6Whfl8GOGOOJkBn1Bno= Subject key identifier: 46:63:31:5B:03:BB:37:5B:52:54:7C:92:0E:37:41:0A:26:01:02:4A Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 0427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft Manifest number: 0423 Signing time: Sat 27 Apr 2024 01:59:22 +0000 Manifest this update: Sat 27 Apr 2024 01:59:22 +0000 Manifest next update: Sat 04 May 2024 01:59:22 +0000 Files and hashes: 1: ObsL_xT7a0tfhhNydNQlE_N1Okc.crl (hash: C7yemIshWa1SURs9gb3lNiiWo4MPXU7QBWsPmKcCSeQ=) 2: 5D4B0B5E153611ECA897546BC4F9AE02.roa (hash: DqlBCHLgYBfwa2Dql2gd6kD09NgBwEMrDmWuDNyQkRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1063 (0x427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Validity Not Before: Apr 27 01:59:22 2024 GMT Not After : May 4 01:59:22 2024 GMT Subject: CN=662c5bfa-5889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:45:8e:e3:8e:a0:29:15:3f:62:dd:92:f5:87: 0a:20:41:25:ac:9a:82:b3:8c:8f:71:69:5c:ff:d3: a9:be:95:9a:2f:b6:fb:99:d6:78:36:9e:1c:47:32: 79:72:e3:dc:c3:ad:cc:e3:ea:ed:a8:e1:b2:a4:5f: 60:73:1b:73:73:e3:83:64:21:d1:0e:08:e3:92:de: bb:d7:42:88:ca:6a:01:e3:94:db:76:46:e9:2f:94: 96:90:a7:3d:8c:7e:50:b5:90:76:f8:4c:b9:97:06: 59:04:2d:e1:01:fc:cf:c2:f2:7b:af:04:aa:39:a8: 57:31:36:be:52:db:de:29:3a:9a:bf:39:b9:5d:58: 06:5e:0a:45:94:3a:12:af:03:0a:8a:61:40:c1:0f: 0c:45:60:14:ff:8c:7d:90:2c:a4:51:04:e4:d9:26: 52:3a:10:0f:d8:be:9f:09:e5:d0:14:fc:06:b1:dd: 62:e0:a2:4d:06:bf:95:d8:00:6d:54:e4:c6:2a:72: ec:d1:e5:13:c2:46:5f:77:9c:98:98:b9:9f:8e:e5: ad:5d:79:ba:0a:a6:4e:f1:6d:31:09:5b:52:25:58: a1:22:75:de:7c:ed:fb:25:79:17:51:cd:ca:3a:85: 9e:cf:31:fd:2a:8f:3e:8e:f9:99:e8:a5:94:eb:43: b5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:63:31:5B:03:BB:37:5B:52:54:7C:92:0E:37:41:0A:26:01:02:4A X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:39:03:92:6a:07:5a:e4:7a:09:00:65:16:39:fa:a9:81:bd: 35:ad:41:a6:94:0d:5d:69:b6:6d:d2:79:c7:dd:99:b2:23:64: d1:5c:f4:89:b4:26:9b:07:7d:97:80:8f:63:4d:8c:b9:1d:57: d2:32:00:9a:e1:d0:fc:85:e5:cf:a2:f6:23:0f:a4:c8:29:ec: 48:72:73:ee:54:58:d5:2a:9e:e7:d7:a1:f9:ee:b3:b9:6b:11: 52:99:a6:da:55:7d:e2:4c:33:bf:af:bf:cf:8f:3c:b2:57:11: 79:84:10:8d:a4:77:ad:4c:3a:e9:54:db:ff:f5:92:9d:7b:c2: 4a:33:dc:aa:be:e3:da:64:34:7c:54:55:e7:ae:6b:5a:8d:e6: f5:ea:c8:db:06:9d:1f:fa:6c:9d:50:3f:14:55:b8:4b:f1:a7: fd:3e:11:8d:35:f0:0c:5f:9e:58:5a:a8:9f:d5:ea:1c:cc:1d: f3:79:12:6d:50:cf:68:46:46:cf:59:96:e6:61:68:0e:b1:78: c0:45:27:0b:a9:5c:18:26:f3:6f:67:e3:bf:14:7e:8a:60:10: 2f:e2:1c:4a:0c:16:1a:25:3d:30:9e:dc:7a:74:10:eb:a6:80: 3b:cd:d5:aa:cd:b5:bc:d7:1c:94:b3:7a:36:dd:ff:2d:39:08: 17:25:c2:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjQwNDI3MDE1OTIyWhcNMjQwNTA0MDE1OTIyWjAYMRYwFAYD VQQDEw02NjJjNWJmYS01ODg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEWO446gKRU/Yt2S9YcKIEElrJqCs4yPcWlc/9OpvpWaL7b7mdZ4Np4cRzJ5 cuPcw63M4+rtqOGypF9gcxtzc+ODZCHRDgjjkt6710KIymoB45TbdkbpL5SWkKc9 jH5QtZB2+Ey5lwZZBC3hAfzPwvJ7rwSqOahXMTa+UtveKTqavzm5XVgGXgpFlDoS rwMKimFAwQ8MRWAU/4x9kCykUQTk2SZSOhAP2L6fCeXQFPwGsd1i4KJNBr+V2ABt VOTGKnLs0eUTwkZfd5yYmLmfjuWtXXm6CqZO8W0xCVtSJVihInXefO37JXkXUc3K OoWezzH9Ko8+jvmZ6KWU60O1eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZjMVsD uzdbUlR8kg43QQomAQJKMB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDQy9GODlDM0VCNjE1MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2Ew dGZoaE55ZE5RbEVfTjFPa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABOQOSagda5HoJAGUWOfqpgb01rUGmlA1dabZt0nnH3ZmyI2TRXPSJ tCabB32XgI9jTYy5HVfSMgCa4dD8heXPovYjD6TIKexIcnPuVFjVKp7n16H57rO5 axFSmabaVX3iTDO/r7/PjzyyVxF5hBCNpHetTDrpVNv/9ZKde8JKM9yqvuPaZDR8 VFXnrmtajeb16sjbBp0f+mydUD8UVbhL8af9PhGNNfAMX55YWqif1eoczB3zeRJt UM9oRkbPWZbmYWgOsXjARScLqVwYJvNvZ+O/FH6KYBAv4hxKDBYaJT0wntx6dBDr poA7zdWqzbW81xyUs3o23f8tOQgXJcKy -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:23 2024 by rpki-client on console-ams.rpki-client.org