$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: TbMCCAEa35hsiTB+6fJMUV/lRk31uN6kpv+f0xVOg2s= Subject key identifier: AA:2F:0D:8A:D8:63:AB:D9:32:97:47:8C:AD:26:54:F0:00:0F:67:BD Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 08ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 08E7 Signing time: Fri 22 Nov 2024 20:10:34 +0000 Manifest this update: Fri 22 Nov 2024 20:10:33 +0000 Manifest next update: Fri 29 Nov 2024 20:10:33 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: eizb3iN5WPlhfu3/bzvpYRAsmJD+7B9DUuatla+TwsA=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: rjzGIvptWhz9SrTPyNL/UbNFgu4AqImIMWcg32gAnNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:10:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2285 (0x8ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Nov 22 20:10:33 2024 GMT Not After : Nov 29 20:10:33 2024 GMT Subject: CN=6740e53a-b9bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1e:c5:ad:61:4b:3f:85:10:e3:a6:6c:8d:31: 78:55:4d:d4:e8:bc:59:3f:cb:aa:d7:ea:55:39:fb: 62:75:02:9a:b8:a2:00:95:32:fd:8a:08:5c:8b:35: 5e:52:dd:de:a5:df:d3:fd:5e:fe:41:5c:ab:14:d8: 1c:c1:7c:82:c7:97:6d:b9:6f:3f:ef:8f:0e:e0:e9: 32:d8:cd:2f:00:65:a7:b6:63:06:22:9d:58:bd:3b: 80:47:4b:d8:3a:2e:d4:b0:9e:fa:43:aa:50:e0:aa: 6b:97:72:1b:b2:b6:dd:59:0e:b8:cd:7a:91:ef:e8: 6f:11:ff:5a:9a:30:6f:14:38:fe:6f:0a:dd:ee:a2: 8a:e5:5c:7a:75:b1:cf:f9:6f:9e:76:1d:42:9d:dc: b0:c1:3d:53:37:d3:de:de:32:c8:71:28:69:fe:19: 09:14:ff:bb:9b:7d:1c:0f:84:43:a9:f6:9b:3e:cb: 75:ec:7d:e3:b6:71:3a:fd:00:4b:9f:5a:c9:83:82: 25:ff:37:5c:07:d6:7d:17:f9:e6:ce:72:54:51:e7: 12:bf:7c:1e:1c:e5:af:fa:32:1f:46:03:0b:03:6f: 05:ba:6a:4a:9f:c3:07:c9:62:91:3e:cc:98:bf:68: df:8b:ee:e2:12:26:91:42:74:00:9d:b7:49:a7:ee: 7a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:2F:0D:8A:D8:63:AB:D9:32:97:47:8C:AD:26:54:F0:00:0F:67:BD X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5b:50:d1:1d:08:0f:98:11:88:dc:fc:1b:1b:c2:8a:b0:23: 62:e7:72:13:7a:3c:a2:dd:27:af:57:11:77:6c:da:dc:32:b3: d5:4a:2d:eb:dc:77:9f:4a:81:36:78:bf:04:ba:cf:d6:ae:56: 44:6e:b2:09:bd:ff:00:c4:a8:4a:ee:ef:e8:6f:eb:42:d8:bf: 44:56:7c:58:94:f3:7b:fd:b3:8a:2f:2b:56:58:a0:96:13:ad: 6d:05:6b:81:40:15:35:36:8d:fe:e4:a2:29:a2:41:48:b7:27: 71:52:65:49:c7:de:38:fb:20:30:0c:8d:9d:35:c2:e4:de:06: 95:16:8c:de:a5:42:1e:3a:d9:3b:d9:e7:4c:69:11:91:d7:ca: 8a:44:41:ce:7b:5a:e9:88:3b:cd:98:34:28:46:25:eb:d1:3c: a0:fe:67:d0:e8:69:3d:a4:9b:9f:8b:cd:d6:92:8f:98:53:4e: b2:6d:92:45:e5:92:79:c7:54:f2:9e:8c:d3:85:ad:81:79:eb: 38:f4:b6:82:4d:bc:99:ac:d9:e2:a8:9e:6d:9b:90:c4:4b:4d: a3:ac:7f:1f:95:54:b4:83:d6:be:2e:24:a2:1d:dc:87:fc:a3: 94:6a:3c:8d:f8:6e:e9:f5:20:3f:01:3e:66:7d:e4:08:23:20: 68:80:1e:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjQxMTIyMjAxMDMzWhcNMjQxMTI5MjAxMDMzWjAYMRYwFAYD VQQDEw02NzQwZTUzYS1iOWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwh7FrWFLP4UQ46ZsjTF4VU3U6LxZP8uq1+pVOftidQKauKIAlTL9ighcizVe Ut3epd/T/V7+QVyrFNgcwXyCx5dtuW8/748O4Oky2M0vAGWntmMGIp1YvTuAR0vY Oi7UsJ76Q6pQ4Kprl3IbsrbdWQ64zXqR7+hvEf9amjBvFDj+bwrd7qKK5Vx6dbHP +W+edh1CndywwT1TN9Pe3jLIcShp/hkJFP+7m30cD4RDqfabPst17H3jtnE6/QBL n1rJg4Il/zdcB9Z9F/nmznJUUecSv3weHOWv+jIfRgMLA28FumpKn8MHyWKRPsyY v2jfi+7iEiaRQnQAnbdJp+56GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKovDYrY Y6vZMpdHjK0mVPAAD2e9MB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsW1DRHQgPmBGI3PwbG8KKsCNi53ITejyi3SevVxF3bNrcMrPVSi3r 3HefSoE2eL8Eus/WrlZEbrIJvf8AxKhK7u/ob+tC2L9EVnxYlPN7/bOKLytWWKCW E61tBWuBQBU1No3+5KIpokFItydxUmVJx944+yAwDI2dNcLk3gaVFozepUIeOtk7 2edMaRGR18qKREHOe1rpiDvNmDQoRiXr0Tyg/mfQ6Gk9pJufi83Wko+YU06ybZJF 5ZJ5x1TynozTha2Bees49LaCTbyZrNniqJ5tm5DES02jrH8flVS0g9a+LiSiHdyH /KOUajyN+G7p9SA/AT5mfeQIIyBogB7z -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org