$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft File: opsbaAnOwakkcMWcbDa_pc84cYY.mft (raw, json) Hash identifier: Dyg+S8C93TEYVRS2Wwli+v+o2ISf6zDaycMGPHvTPn4= Subject key identifier: 59:56:C0:C9:25:58:56:5B:D8:2B:8E:18:07:AD:CA:6B:3D:48:3F:D8 Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft Manifest number: 0F Signing time: Wed 05 Feb 2025 06:28:51 +0000 Manifest this update: Wed 05 Feb 2025 06:28:50 +0000 Manifest next update: Wed 12 Feb 2025 06:28:50 +0000 Files and hashes: 1: opsbaAnOwakkcMWcbDa_pc84cYY.crl (hash: hrTmbHS3aAUeWjD++c64I/sOs9hnvW3TLU0nsUQ0n2E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC Validity Not Before: Feb 5 06:28:50 2025 GMT Not After : Feb 12 06:28:50 2025 GMT Subject: CN=67a30522-f22f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:9d:5d:7c:14:ea:aa:5b:e2:29:f6:7a:36: 4c:89:78:3b:14:62:ce:69:3b:b1:9c:11:08:57:08: 7e:34:71:45:66:bc:43:c6:ba:17:3d:f9:44:cf:a6: 53:3f:bc:af:98:71:2c:7d:49:1c:0b:92:fe:17:af: ea:eb:40:9a:b1:ca:ce:01:86:e8:ea:03:87:ca:49: 16:31:a1:54:59:95:06:7a:f0:f4:ac:62:b6:2e:41: 9a:ff:ce:ff:96:f1:c1:c8:c0:27:50:c9:6e:42:f0: b6:50:4a:27:cf:f9:18:28:c8:ae:75:e7:9e:21:14: 25:18:9d:17:b8:ff:68:9d:0c:6e:58:0c:34:bb:84: 2b:66:d6:c5:d5:ea:cc:4c:08:d5:eb:c8:60:1f:df: 7c:af:ce:79:d7:f7:c3:7e:45:3c:c2:be:32:a5:e8: c5:25:c2:cd:a8:2d:ed:42:09:e9:4f:cc:f5:7e:fd: f0:f5:93:72:23:3d:a4:3b:4d:cc:2e:26:8f:08:e8: e5:52:f9:ff:38:4d:3e:69:00:83:ed:9d:61:cd:11: 9f:5a:c3:d4:c5:b4:5c:dc:c1:3e:91:b9:7a:3c:5b: 04:f3:d4:0b:52:d1:ec:88:e4:a4:68:b9:94:3a:5a: 36:7b:07:60:16:b2:38:0e:4f:65:0e:f9:09:1d:79: 74:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:56:C0:C9:25:58:56:5B:D8:2B:8E:18:07:AD:CA:6B:3D:48:3F:D8 X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:8a:40:09:31:8c:6a:cd:0f:93:c1:0c:b5:8b:60:ca:3a:b1: 46:fc:9a:4f:0b:37:35:2f:12:df:b3:70:94:ba:1b:33:41:79: f2:f4:83:a0:d7:77:5a:f7:59:48:77:de:de:ca:5c:a5:4e:95: 51:05:a6:a2:4a:5f:68:36:aa:9a:5c:9c:29:da:20:21:a8:26: d9:8d:67:8a:28:95:bd:95:01:eb:d5:f7:81:90:54:12:4f:14: 6f:21:08:47:14:4f:d2:24:01:14:f9:88:5f:7c:f6:81:11:ce: cd:39:92:86:11:2f:16:36:eb:50:77:0c:ea:65:18:81:f1:4f: 4e:7c:95:d9:90:c3:73:4d:90:13:9c:be:ca:f6:b1:15:94:21: f8:47:58:5f:51:20:d5:79:38:f2:82:69:0a:7d:b3:41:cb:b7: 1c:15:6e:ad:21:dc:87:57:14:39:4c:87:cf:6e:91:1a:f5:e4: 90:ee:74:d1:85:d1:72:ed:53:7e:6b:4f:77:48:d3:dc:51:ef: 62:67:b9:fa:48:bd:8f:d8:ed:c9:fd:9a:c2:47:dd:ba:77:93: 70:0c:ff:fc:16:0b:04:dc:13:99:9d:bb:63:a0:09:2c:97:e8: 93:82:e3:c7:64:7b:98:d9:d8:2c:ea:7f:cd:8c:e2:e8:6c:91: 2f:0c:15:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 N0JBQzExMC8GA1UEBRMoQTI5QjFCNjgwOUNFQzFBOTI0NzBDNTlDNkMzNkJGQTVD RjM4NzE4NjAeFw0yNTAyMDUwNjI4NTBaFw0yNTAyMTIwNjI4NTBaMBgxFjAUBgNV BAMTDTY3YTMwNTIyLWYyMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt/Z1dfBTqqlviKfZ6NkyJeDsUYs5pO7GcEQhXCH40cUVmvEPGuhc9+UTPplM/ vK+YcSx9SRwLkv4Xr+rrQJqxys4BhujqA4fKSRYxoVRZlQZ68PSsYrYuQZr/zv+W 8cHIwCdQyW5C8LZQSifP+RgoyK51554hFCUYnRe4/2idDG5YDDS7hCtm1sXV6sxM CNXryGAf33yvznnX98N+RTzCvjKl6MUlws2oLe1CCelPzPV+/fD1k3IjPaQ7Tcwu Jo8I6OVS+f84TT5pAIPtnWHNEZ9aw9TFtFzcwT6RuXo8WwTz1AtS0eyI5KRouZQ6 WjZ7B2AWsjgOT2UO+QkdeXTVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWVbAySVY VlvYK44YB63Kaz1IP9gwHwYDVR0jBBgwFoAUopsbaAnOwakkcMWcbDa/pc84cYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3QkFDL0M2QUQzRTBBRDAy QzExRUZCNTU4NDkxNUM0RjlBRTAyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZ WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BzYmFBbk93YWtrY01XY2JEYV9wYzg0Y1lZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3 QkFDL0M2QUQzRTBBRDAyQzExRUZCNTU4NDkxNUM0RjlBRTAyL29wc2JhQW5Pd2Fr a2NNV2NiRGFfcGM4NGNZWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABmKQAkxjGrND5PBDLWLYMo6sUb8mk8LNzUvEt+zcJS6GzNBefL0g6DX d1r3WUh33t7KXKVOlVEFpqJKX2g2qppcnCnaICGoJtmNZ4oolb2VAevV94GQVBJP FG8hCEcUT9IkART5iF989oERzs05koYRLxY261B3DOplGIHxT058ldmQw3NNkBOc vsr2sRWUIfhHWF9RINV5OPKCaQp9s0HLtxwVbq0h3IdXFDlMh89ukRr15JDudNGF 0XLtU35rT3dI09xR72JnufpIvY/Y7cn9msJH3bp3k3AM//wWCwTcE5mdu2OgCSyX 6JOC48dke5jZ2Czqf82M4uhskS8MFX8= -----END CERTIFICATE-----Generated at Thu Feb 6 04:42:36 2025 by rpki-client