$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: gMi2RRqCyjVVcEiXg1W1uMi93hJVELc7EDDMS0ezoeY= Subject key identifier: C8:00:03:89:E2:88:BD:8E:7F:18:C0:BA:73:45:92:59:B0:43:21:2A Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 0380 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 037B Signing time: Wed 01 May 2024 03:03:32 +0000 Manifest this update: Wed 01 May 2024 03:03:32 +0000 Manifest next update: Wed 08 May 2024 03:03:32 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: 7nhkaIPk4zOhlrOUpjS9wJfxB6qRyCUaHH+8X9z91Tk=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: rtjJ+8YJHm8TD9MmHexSEIl8L6PhSApOF2kwezSiIRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: May 1 03:03:32 2024 GMT Not After : May 8 03:03:32 2024 GMT Subject: CN=6631b104-5ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:7c:4c:04:76:2c:1e:ff:bd:26:8e:bc:60:6b: 02:9a:79:c0:ac:45:63:35:ea:77:b0:a8:c8:77:c7: 1e:17:f8:74:98:2c:52:78:97:77:8a:76:7e:bc:80: b9:44:1f:2f:c9:ea:77:e1:95:2e:2b:f0:8f:e3:08: e7:fb:89:a9:38:31:bb:b7:79:9e:e3:bb:b7:35:ab: 58:45:fd:33:04:1e:59:09:c2:6b:50:fb:98:d8:70: b7:a7:ba:48:86:93:dd:27:5a:ca:a8:42:7b:a4:3b: 4c:a8:ec:24:89:1f:7f:94:cf:c3:7c:58:6d:af:ff: ee:f9:e6:4a:eb:3d:5c:6e:25:b5:da:3d:a1:7f:fd: 73:60:21:2b:52:34:a8:27:48:cc:9f:8f:c7:77:95: 14:47:50:dc:4f:d7:62:1f:9b:bc:ac:32:af:79:36: e9:d0:a1:a4:d6:51:92:e9:43:77:09:db:ac:a8:73: 7b:05:55:11:7d:23:48:f9:3c:4a:d4:94:af:e3:82: 80:47:b8:42:87:5a:6a:47:c4:82:92:36:47:a1:2c: 9f:8d:80:8d:51:ea:05:f1:21:e1:78:27:23:7f:2b: 3e:15:f4:38:12:3f:9e:4e:3d:b6:c2:ad:2d:7a:cd: 85:6c:a4:c3:2f:2d:fe:5e:44:2a:62:b6:01:44:d8: 37:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:00:03:89:E2:88:BD:8E:7F:18:C0:BA:73:45:92:59:B0:43:21:2A X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:13:81:61:51:6e:e6:b7:77:c2:2b:cb:63:10:10:43:e6:77: 32:53:66:9d:37:8e:58:40:ca:11:cc:99:9b:d5:93:ad:71:4e: 2c:15:8b:cd:33:f2:74:bb:bd:05:59:87:1f:9c:6e:40:26:a8: 0b:5f:e9:fc:7e:ac:1e:f8:16:c1:73:66:ad:13:92:d3:2f:20: 80:8f:15:ae:77:1f:cf:08:41:fd:cf:3c:d6:29:b7:e0:c5:bd: d3:c4:0c:3b:ed:83:28:82:18:e3:27:0f:88:eb:0d:76:d1:fc: fa:34:5a:e1:0b:0e:ec:91:fc:1a:77:46:90:2f:ee:55:d0:c2: f8:fe:14:1f:c6:20:8c:e7:4d:87:e2:84:3d:20:c6:8b:23:4e: e3:9a:8a:b2:3a:32:9e:61:62:ed:3b:15:04:4d:96:ef:e4:67: 5a:52:d3:c5:09:da:41:67:71:86:81:72:df:a4:b7:a6:a6:76: fa:13:1b:c5:68:ce:1b:7c:8b:d9:d0:7c:bd:e7:8a:97:9a:a9: 09:cb:c5:42:33:14:16:74:ca:90:f4:26:43:08:e5:19:08:c9: a8:34:10:a1:cc:e8:50:6b:15:ee:23:c9:dd:76:d7:75:56:1f: a5:2f:65:d4:39:1e:4a:8b:24:6c:78:c2:ba:fe:47:5f:31:56: f9:ac:28:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjQwNTAxMDMwMzMyWhcNMjQwNTA4MDMwMzMyWjAYMRYwFAYD VQQDEw02NjMxYjEwNC01ZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HxMBHYsHv+9Jo68YGsCmnnArEVjNep3sKjId8ceF/h0mCxSeJd3inZ+vIC5 RB8vyep34ZUuK/CP4wjn+4mpODG7t3me47u3NatYRf0zBB5ZCcJrUPuY2HC3p7pI hpPdJ1rKqEJ7pDtMqOwkiR9/lM/DfFhtr//u+eZK6z1cbiW12j2hf/1zYCErUjSo J0jMn4/Hd5UUR1DcT9diH5u8rDKveTbp0KGk1lGS6UN3CdusqHN7BVURfSNI+TxK 1JSv44KAR7hCh1pqR8SCkjZHoSyfjYCNUeoF8SHheCcjfys+FfQ4Ej+eTj22wq0t es2FbKTDLy3+XkQqYrYBRNg3bwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgAA4ni iL2OfxjAunNFklmwQyEqMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAE4FhUW7mt3fCK8tjEBBD5ncyU2adN45YQMoRzJmb1ZOtcU4sFYvN M/J0u70FWYcfnG5AJqgLX+n8fqwe+BbBc2atE5LTLyCAjxWudx/PCEH9zzzWKbfg xb3TxAw77YMoghjjJw+I6w120fz6NFrhCw7skfwad0aQL+5V0ML4/hQfxiCM502H 4oQ9IMaLI07jmoqyOjKeYWLtOxUETZbv5GdaUtPFCdpBZ3GGgXLfpLempnb6ExvF aM4bfIvZ0Hy954qXmqkJy8VCMxQWdMqQ9CZDCOUZCMmoNBChzOhQaxXuI8nddtd1 Vh+lL2XUOR5KiyRseMK6/kdfMVb5rCik -----END CERTIFICATE-----Generated at Wed May 1 04:49:26 2024 by rpki-client on console-ams.rpki-client.org