$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: ndh0Ok7MzmG1B2P2G80FGazn5yqy7CK16b2k59zon+M= Subject key identifier: 5C:CC:F0:77:8B:F8:75:56:50:ED:7D:B1:6A:B5:95:D7:35:57:01:4E Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 09B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 09AD Signing time: Mon 06 May 2024 20:57:17 +0000 Manifest this update: Mon 06 May 2024 20:57:17 +0000 Manifest next update: Mon 13 May 2024 20:57:17 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: IlP6VvFy8IfDzX1ikE7BBeTUGcAhC1HRhUFx5nJeyqw=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: UcCgHLDSa/nATLjTOvF+awz11JiWwNz5KrAUsxqebvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2483 (0x9b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: May 6 20:57:17 2024 GMT Not After : May 13 20:57:17 2024 GMT Subject: CN=6639442d-b87d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9b:e9:fc:48:85:fc:f4:63:3c:47:b6:af:fb: a4:63:ff:da:67:70:55:a2:54:4d:8f:1a:74:97:b9: d1:94:46:c2:fc:fa:ec:bf:4e:7d:07:ee:52:0b:37: 25:5c:e3:dc:d2:c9:f8:b2:ee:16:58:01:cb:b2:f9: 01:37:52:0c:8a:ba:57:af:50:81:d2:0c:ad:36:c4: dc:68:6f:86:d6:6d:e1:66:a6:12:ea:e2:15:dd:37: 37:65:5b:f3:44:2d:54:7a:c2:14:91:8c:1e:6c:89: bd:c6:72:48:6b:5c:53:da:5e:48:69:94:4b:4e:cf: 64:ad:b1:50:71:da:ad:ff:9a:4e:c9:c8:a9:72:34: 44:4c:f6:33:b3:9d:2d:fb:dc:cf:58:b3:f8:19:b6: fb:2a:37:f5:8e:06:e0:26:17:44:9b:e3:86:91:60: a6:0b:a1:d5:60:3f:aa:5d:63:b8:ff:cb:b8:77:59: 0f:79:02:19:d1:91:1f:4d:f5:c9:61:5e:9e:ad:57: d5:18:ce:49:c7:88:69:4f:27:70:a4:b6:6e:0e:93: e7:4b:bc:c9:4b:b1:d5:2e:da:5f:fe:bd:8a:33:56: e5:52:73:0f:2f:9f:cc:6d:c8:5d:f1:de:df:a5:ba: 51:e9:cf:8a:87:6e:c9:1f:27:e6:ee:6c:68:49:1c: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:CC:F0:77:8B:F8:75:56:50:ED:7D:B1:6A:B5:95:D7:35:57:01:4E X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:d6:6e:e1:eb:5f:66:4b:bb:e1:ba:d0:0b:e1:32:c0:85:4b: de:4b:3b:cc:64:77:3f:36:b0:0a:1c:50:08:33:0a:4e:39:b8: 00:5e:0d:58:b3:3d:df:05:f9:d1:97:15:60:5e:96:38:9b:1c: 59:af:ac:c5:46:1d:ad:c7:67:64:55:09:a3:a7:b2:52:58:07: 02:c2:79:ec:c8:25:71:ca:c4:ef:0e:12:0a:51:0f:b0:a9:38: 8b:5b:71:cb:cc:62:56:c3:cc:b5:43:29:db:e7:9a:ef:cb:91: af:92:21:7e:20:a9:92:6b:93:d6:96:a7:82:6e:8f:6a:ae:3a: 9a:bb:75:ac:53:bf:27:77:42:da:fa:df:a8:f4:30:9d:7f:2a: 01:5a:64:e9:4d:16:8c:0a:d7:6a:d3:7c:61:f1:e6:ed:78:9c: 0d:f6:b2:46:90:7e:e4:7e:f7:41:d4:59:5e:f1:90:5d:a9:80: d2:f3:b6:24:5a:3e:cf:f4:59:a7:32:93:e6:fd:15:69:f6:d9: 66:4d:fd:c3:1c:e0:ba:1b:f9:91:91:6e:0b:62:8a:cb:fb:f7: fb:8f:9d:f0:f8:59:59:33:6e:77:ca:3e:de:69:c2:da:aa:95: 51:8f:cf:d8:c7:d9:1c:5c:ac:13:a2:b4:f0:aa:a1:4f:72:c1: 88:23:20:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjQwNTA2MjA1NzE3WhcNMjQwNTEzMjA1NzE3WjAYMRYwFAYD VQQDEw02NjM5NDQyZC1iODdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5vp/EiF/PRjPEe2r/ukY//aZ3BVolRNjxp0l7nRlEbC/Prsv059B+5SCzcl XOPc0sn4su4WWAHLsvkBN1IMirpXr1CB0gytNsTcaG+G1m3hZqYS6uIV3Tc3ZVvz RC1UesIUkYwebIm9xnJIa1xT2l5IaZRLTs9krbFQcdqt/5pOycipcjRETPYzs50t +9zPWLP4Gbb7Kjf1jgbgJhdEm+OGkWCmC6HVYD+qXWO4/8u4d1kPeQIZ0ZEfTfXJ YV6erVfVGM5Jx4hpTydwpLZuDpPnS7zJS7HVLtpf/r2KM1blUnMPL5/Mbchd8d7f pbpR6c+Kh27JHyfm7mxoSRzsjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzM8HeL +HVWUO19sWq1ldc1VwFOMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI1m7h619mS7vhutAL4TLAhUveSzvMZHc/NrAKHFAIMwpOObgAXg1Y sz3fBfnRlxVgXpY4mxxZr6zFRh2tx2dkVQmjp7JSWAcCwnnsyCVxysTvDhIKUQ+w qTiLW3HLzGJWw8y1Qynb55rvy5GvkiF+IKmSa5PWlqeCbo9qrjqau3WsU78nd0La +t+o9DCdfyoBWmTpTRaMCtdq03xh8ebteJwN9rJGkH7kfvdB1Fle8ZBdqYDS87Yk Wj7P9FmnMpPm/RVp9tlmTf3DHOC6G/mRkW4LYorL+/f7j53w+FlZM253yj7eacLa qpVRj8/Yx9kcXKwTorTwqqFPcsGIIyDt -----END CERTIFICATE-----Generated at Mon May 6 23:05:50 2024 by rpki-client on console-fra.rpki-client.org