$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: c8s1Z1L8N9QfURv+o/QYUv6ZzC3N+q5NsrJsqMWVAYg= Subject key identifier: 85:AC:16:DB:45:0B:90:61:FA:DD:05:20:1B:13:AC:0C:D5:68:37:5B Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0A66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0A5F Signing time: Fri 18 Apr 2025 19:43:48 +0000 Manifest this update: Fri 18 Apr 2025 19:43:47 +0000 Manifest next update: Fri 25 Apr 2025 19:43:47 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: 8c/c4TTL3ObpKx5AxY77YPUHQhSZ0PFu6GuHQBIO7fM=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 19:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2662 (0xa66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Apr 18 19:43:47 2025 GMT Not After : Apr 25 19:43:47 2025 GMT Subject: CN=6802ab73-169d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5c:dc:28:d2:66:d2:d7:7f:64:c6:ef:e4:00: 8c:e2:26:19:b7:2f:a7:14:d0:c7:9b:13:d9:ba:dc: 5f:95:3a:0e:c7:c0:33:8c:37:24:fc:1b:78:b7:42: 52:24:c6:c7:c9:45:5f:b3:27:eb:84:f6:04:a7:a9: 0a:85:4d:20:e4:fe:9c:1b:a0:f7:b1:c6:dd:42:a3: a6:04:52:e8:6b:f3:b2:99:f5:e7:33:26:1d:b8:3c: 9f:85:7a:92:35:8b:f2:ac:07:47:2f:06:3c:4d:58: e6:0e:04:91:58:c3:e3:63:2b:2a:fa:94:a5:db:bf: 10:43:d4:7a:5a:27:b8:5e:ac:23:c1:04:7b:5a:d9: 1f:87:c8:05:a8:36:20:2b:62:df:8a:c1:8a:cd:96: bb:f2:91:63:82:00:c4:9e:34:af:ae:77:f8:7d:eb: 59:32:0a:bd:f3:18:cf:7c:90:e9:8e:59:af:3c:37: 25:dd:91:fa:c6:09:2b:04:56:2a:8c:58:45:d2:5a: 3f:c2:93:df:24:19:82:c7:ed:75:c2:0d:ef:2a:0c: 4e:b9:34:10:32:fe:f3:07:3e:fe:fa:3f:1e:2a:d6: ea:76:49:0f:6f:15:5a:21:56:4b:af:64:aa:5d:15: 82:a4:ae:55:8f:ab:b9:fa:2f:c0:46:79:f0:30:11: 0c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AC:16:DB:45:0B:90:61:FA:DD:05:20:1B:13:AC:0C:D5:68:37:5B X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ff:c2:35:40:a8:96:58:c2:83:b2:0c:76:e0:89:a9:2a:82: 09:15:5c:9e:57:ff:39:35:a8:04:c4:33:73:4b:cb:f5:2b:6d: 73:4a:77:93:a8:12:4d:e0:aa:c8:29:77:25:db:b9:cb:86:6a: 35:74:ab:8a:fc:15:07:af:3f:1f:d8:b8:e6:20:1e:b3:d1:0c: f4:d3:a5:a3:7d:f8:52:08:26:0f:39:62:10:78:68:23:b3:ea: 57:ce:01:97:2b:b3:a0:96:2d:25:25:90:68:8a:e8:36:f9:1e: e4:98:70:73:01:69:53:ee:b6:f5:9c:f3:f3:3c:65:7d:49:83: f8:be:71:0a:aa:d5:37:2b:d4:bb:b2:3e:30:e6:a9:8d:c6:75: 6d:27:ce:2e:03:72:05:d9:dd:21:f1:5c:20:13:ad:9f:6c:03: 28:d6:37:40:44:67:bc:fa:38:97:49:ad:9f:be:0b:b9:57:cb: 84:14:35:4d:9e:47:07:72:33:d8:9a:18:7f:4b:3a:9d:f9:dc: cf:d4:5e:92:bc:0e:53:13:4b:aa:08:dd:f7:98:66:05:01:33: 44:0a:3c:4b:9f:8e:72:09:2c:c5:bb:ef:d5:f0:e7:de:f4:99: cc:38:6f:0b:cb:5b:30:e3:1d:cc:17:85:58:64:73:07:44:91: 3d:38:f0:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUwNDE4MTk0MzQ3WhcNMjUwNDI1MTk0MzQ3WjAYMRYwFAYD VQQDEw02ODAyYWI3My0xNjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFzcKNJm0td/ZMbv5ACM4iYZty+nFNDHmxPZutxflToOx8AzjDck/Bt4t0JS JMbHyUVfsyfrhPYEp6kKhU0g5P6cG6D3scbdQqOmBFLoa/OymfXnMyYduDyfhXqS NYvyrAdHLwY8TVjmDgSRWMPjYysq+pSl278QQ9R6Wie4XqwjwQR7Wtkfh8gFqDYg K2LfisGKzZa78pFjggDEnjSvrnf4fetZMgq98xjPfJDpjlmvPDcl3ZH6xgkrBFYq jFhF0lo/wpPfJBmCx+11wg3vKgxOuTQQMv7zBz7++j8eKtbqdkkPbxVaIVZLr2Sq XRWCpK5Vj6u5+i/ARnnwMBEMPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWsFttF C5Bh+t0FIBsTrAzVaDdbMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0/8I1QKiWWMKDsgx24ImpKoIJFVyeV/85NagExDNzS8v1K21zSneT qBJN4KrIKXcl27nLhmo1dKuK/BUHrz8f2LjmIB6z0Qz006WjffhSCCYPOWIQeGgj s+pXzgGXK7Ogli0lJZBoiug2+R7kmHBzAWlT7rb1nPPzPGV9SYP4vnEKqtU3K9S7 sj4w5qmNxnVtJ84uA3IF2d0h8VwgE62fbAMo1jdARGe8+jiXSa2fvgu5V8uEFDVN nkcHcjPYmhh/Szqd+dzP1F6SvA5TE0uqCN33mGYFATNECjxLn45yCSzFu+/V8Ofe 9JnMOG8Ly1sw4x3MF4VYZHMHRJE9OPB/ -----END CERTIFICATE-----Generated at Sat Apr 19 05:26:59 2025 by rpki-client