$ rpki-client -vvf rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft File: OHvc-OlHoaBOL0OH-99wZUpE0b0.mft (raw, json) Hash identifier: btjv59Q96waxMlv2x6LyOPRulVcD2PHDXxTxFF+13ZI= Subject key identifier: 93:42:DF:CE:8C:1D:0C:41:FE:21:34:D1:57:B6:E7:E8:71:6E:B5:7D Authority key identifier: 38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD Certificate issuer: /CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Certificate serial: 0885 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft Manifest number: 087F Signing time: Tue 30 Apr 2024 21:55:45 +0000 Manifest this update: Tue 30 Apr 2024 21:55:44 +0000 Manifest next update: Tue 07 May 2024 21:55:44 +0000 Files and hashes: 1: OHvc-OlHoaBOL0OH-99wZUpE0b0.crl (hash: Es64+9W4HbBrYsciGBf3rSU/Kmg6Kcbm5xP3AKmwDT4=) 2: 25E6E72899FE11EAB3E30513C4F9AE02.roa (hash: rjzGIvptWhz9SrTPyNL/UbNFgu4AqImIMWcg32gAnNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 21:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ACF4/serialNumber=387BDCF8E947A1A04E2F4387FBDF70654A44D1BD Validity Not Before: Apr 30 21:55:44 2024 GMT Not After : May 7 21:55:44 2024 GMT Subject: CN=663168e1-6332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f4:27:48:b4:a4:60:bb:b5:78:19:21:d3:b3: ed:a7:2c:23:27:05:b1:57:fc:90:ff:f0:db:de:4f: ec:e7:cc:1f:a0:11:c6:eb:8b:82:d2:ed:bb:cc:dc: ed:e5:ef:db:de:82:c3:52:0c:8f:f5:6b:e1:1a:8a: 06:68:b8:9b:b0:2e:a1:a9:14:16:cf:34:3c:7d:4a: c0:bc:fa:fb:fc:4a:84:8c:af:8a:89:b8:cc:7c:a1: 11:25:29:76:48:7e:e5:7c:a2:66:43:9d:c7:92:a8: 68:5d:02:d8:14:01:bb:25:e8:a9:fc:16:42:9d:2e: 5d:0b:b8:66:9f:2b:09:fe:9b:f4:17:66:b8:25:9b: b5:10:1e:00:5a:46:eb:ec:3a:2c:e2:f0:7b:ca:13: a3:08:10:3a:9d:2d:5a:f8:20:67:9a:31:8e:f2:ed: 8c:3c:9b:21:1c:b7:b6:17:ac:45:a8:dc:2c:32:df: dd:9e:d2:40:b8:86:a9:fa:45:6f:90:7f:08:c7:69: 8b:19:55:ef:31:49:e7:36:6f:7c:1e:0d:e7:d6:68: dc:69:ad:fd:86:51:13:7b:0f:bf:97:b3:a6:6a:6a: 18:5e:68:21:24:5c:8f:06:fa:45:6f:9e:d3:56:7f: 5c:d7:59:1c:8c:29:b4:e6:eb:e0:99:70:61:58:4a: ee:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:42:DF:CE:8C:1D:0C:41:FE:21:34:D1:57:B6:E7:E8:71:6E:B5:7D X509v3 Authority Key Identifier: keyid:38:7B:DC:F8:E9:47:A1:A0:4E:2F:43:87:FB:DF:70:65:4A:44:D1:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OHvc-OlHoaBOL0OH-99wZUpE0b0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ACF4/70E3036C99FC11EA96554510C4F9AE02/OHvc-OlHoaBOL0OH-99wZUpE0b0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:c4:66:12:8c:f9:92:60:68:4e:c9:39:59:c8:e2:aa:f5:ab: a8:89:be:49:eb:e8:0d:ce:84:5f:4a:4e:45:5c:31:6f:a6:cf: 9f:2c:a5:b3:8e:ab:e2:dd:8f:0d:6e:f1:64:c5:d2:65:34:f0: 7e:6f:0d:3f:d1:a8:f6:07:44:2d:34:43:04:25:fd:6d:93:40: 96:58:d7:55:5e:8a:0e:66:1e:f8:98:93:52:06:ae:c3:60:36: e7:a5:8e:f4:c4:58:26:db:7b:1a:ef:65:ca:04:72:df:85:53: d2:0d:4a:5e:c2:d6:f1:bd:0a:33:a9:a6:3c:b4:3a:3a:63:39: eb:90:17:04:f6:15:73:df:cc:d6:00:24:d0:bc:83:ed:b7:6a: 56:f0:73:5c:1b:4c:d0:1b:a5:e3:5c:b6:0e:9e:f4:2e:7d:76: 5d:63:5d:21:21:c1:37:50:c0:83:1a:d4:d0:4f:85:69:c5:b6: 8e:6c:e1:f1:81:d1:24:1e:ae:5d:1c:c6:97:c4:93:23:a8:25: 56:41:dc:0d:b2:bb:eb:ae:2f:5f:93:7d:2d:fd:85:4e:77:a2: 8b:73:4b:fc:17:40:56:81:a4:e6:28:5b:14:67:8f:ff:65:c7: 1a:95:e1:66:3d:1a:6d:c4:3b:58:80:1b:33:fd:ba:dd:54:02: ac:36:a7:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FDRjQxMTAvBgNVBAUTKDM4N0JEQ0Y4RTk0N0ExQTA0RTJGNDM4N0ZCREY3MDY1 NEE0NEQxQkQwHhcNMjQwNDMwMjE1NTQ0WhcNMjQwNTA3MjE1NTQ0WjAYMRYwFAYD VQQDEw02NjMxNjhlMS02MzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6fQnSLSkYLu1eBkh07PtpywjJwWxV/yQ//Db3k/s58wfoBHG64uC0u27zNzt 5e/b3oLDUgyP9WvhGooGaLibsC6hqRQWzzQ8fUrAvPr7/EqEjK+KibjMfKERJSl2 SH7lfKJmQ53HkqhoXQLYFAG7Jeip/BZCnS5dC7hmnysJ/pv0F2a4JZu1EB4AWkbr 7Dos4vB7yhOjCBA6nS1a+CBnmjGO8u2MPJshHLe2F6xFqNwsMt/dntJAuIap+kVv kH8Ix2mLGVXvMUnnNm98Hg3n1mjcaa39hlETew+/l7OmamoYXmghJFyPBvpFb57T Vn9c11kcjCm05uvgmXBhWEruTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNC386M HQxB/iE00Ve25+hxbrV9MB8GA1UdIwQYMBaAFDh73PjpR6GgTi9Dh/vfcGVKRNG9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUNGNC83MEUzMDM2Qzk5 RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9hQk9MME9ILTk5d1pVcEUw YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09IdmMtT2xIb2FCT0wwT0gtOTl3WlVwRTBiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUNGNC83MEUzMDM2Qzk5RkMxMUVBOTY1NTQ1MTBDNEY5QUUwMi9PSHZjLU9sSG9h Qk9MME9ILTk5d1pVcEUwYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqxGYSjPmSYGhOyTlZyOKq9auoib5J6+gNzoRfSk5FXDFvps+fLKWz jqvi3Y8NbvFkxdJlNPB+bw0/0aj2B0QtNEMEJf1tk0CWWNdVXooOZh74mJNSBq7D YDbnpY70xFgm23sa72XKBHLfhVPSDUpewtbxvQozqaY8tDo6YznrkBcE9hVz38zW ACTQvIPtt2pW8HNcG0zQG6XjXLYOnvQufXZdY10hIcE3UMCDGtTQT4VpxbaObOHx gdEkHq5dHMaXxJMjqCVWQdwNsrvrri9fk30t/YVOd6KLc0v8F0BWgaTmKFsUZ4// ZccaleFmPRptxDtYgBsz/brdVAKsNqfJ -----END CERTIFICATE-----Generated at Tue Apr 30 23:05:06 2024 by rpki-client on console-ams.rpki-client.org