$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft File: ObsL_xT7a0tfhhNydNQlE_N1Okc.mft (raw, json) Hash identifier: 1OLy9pbkMiwzJgpC07rafKHTQ34LctTws7i9+9qAIDY= Subject key identifier: CA:3C:64:89:B1:6C:C2:42:40:3A:6C:0F:B2:E1:C6:23:84:7C:D2:3A Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 04F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft Manifest number: 04F0 Signing time: Fri 30 May 2025 23:55:39 +0000 Manifest this update: Fri 30 May 2025 23:55:38 +0000 Manifest next update: Fri 06 Jun 2025 23:55:38 +0000 Files and hashes: 1: ObsL_xT7a0tfhhNydNQlE_N1Okc.crl (hash: pNfuEeU1Bo8bFMfY1D8tINNaXc14WnUVKnjQocxOd44=) 2: 5D4B0B5E153611ECA897546BC4F9AE02.roa (hash: fYltceYUoBqgTTGDszHZ6k9POl5N1iPgLRw9G0J0Rws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1270 (0x4f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC, serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Validity Not Before: May 30 23:55:38 2025 GMT Not After : Jun 6 23:55:38 2025 GMT Subject: CN=683a457b-72a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:ac:07:ca:34:6e:8d:b3:99:18:62:26:b7: e4:02:82:6b:45:d1:50:d5:b7:67:07:06:ac:ad:58: 73:e1:79:bd:68:ed:ca:50:ea:93:22:f7:b5:c5:c4: 47:71:12:32:05:e8:6f:62:e3:dd:15:1e:cf:3b:c0: c3:6e:9c:3c:bb:12:6d:2c:2d:ac:ec:a8:ac:1d:57: 35:d7:1f:e6:7e:eb:17:26:14:82:73:5d:55:7a:3e: e8:0b:81:72:dd:33:bd:17:3d:ed:3c:78:29:58:13: f4:1c:65:9a:34:a4:f2:5e:b2:de:87:6f:6f:d1:fd: 64:c4:30:06:41:08:f3:f5:0a:6b:26:df:c4:34:1a: 59:1a:87:c4:9d:ee:f2:60:85:11:4b:02:05:52:2a: 3a:bd:88:a2:cf:ad:57:e8:f8:4a:13:43:f5:b8:54: a9:a7:0b:21:ae:b5:22:d2:9b:3f:d4:bc:63:f5:cf: bb:d3:bd:90:68:e8:d4:03:34:1e:c7:a5:2a:3d:9e: e1:c6:49:4f:3d:42:08:28:41:e4:d9:25:50:84:03: 0b:d9:88:a5:f5:c1:20:50:4b:49:6e:de:55:82:38: 4a:b1:8c:f5:63:57:ba:f7:79:a8:b4:25:b9:0c:6b: 75:04:dd:9d:25:cd:98:e4:43:d7:98:88:f4:a6:82: b4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3C:64:89:B1:6C:C2:42:40:3A:6C:0F:B2:E1:C6:23:84:7C:D2:3A X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:77:60:a1:25:19:31:ed:4c:4d:e3:02:ee:67:21:12:85:b8: 2a:ef:9e:d3:62:04:85:01:7a:ab:53:69:5d:89:d3:a2:8b:90: a3:65:ff:9e:f4:cd:8e:9a:82:85:d3:be:8a:70:68:be:79:25: a3:53:70:f9:96:53:d0:cb:d5:7d:dc:87:17:97:f2:01:44:52: b9:a8:bd:63:ab:b7:ab:76:80:03:a9:ea:4c:92:09:00:44:da: 17:4e:d2:bd:1e:dd:e3:f3:4a:83:04:cd:f1:b7:61:0c:87:ff: 22:02:ce:db:57:bc:bd:70:e8:53:49:8f:56:4b:33:d0:5f:ac: 8f:aa:17:77:e8:17:6c:8a:d9:d7:6c:48:e5:01:db:f5:41:5f: 49:ea:fe:70:b3:4d:af:9c:a1:c9:65:a5:6f:65:cf:e3:18:14: 6f:20:22:02:bf:c4:0e:37:b5:51:66:fd:a9:7e:0c:b4:fd:10: 30:8a:71:00:2b:44:b9:57:bf:c0:ac:7f:e7:6e:b6:a8:18:bf: 1f:07:20:fa:5a:21:e6:56:f9:20:0a:c1:f0:2d:8b:b8:45:91: 80:f8:d0:c4:51:6e:c5:45:bd:49:da:31:02:3e:9b:da:0f:17: bc:48:da:3b:22:11:da:40:14:bc:a7:0c:3e:56:1f:2d:a5:21: 38:aa:3c:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjUwNTMwMjM1NTM4WhcNMjUwNjA2MjM1NTM4WjAYMRYwFAYD VQQDEw02ODNhNDU3Yi03MmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uqsB8o0bo2zmRhiJrfkAoJrRdFQ1bdnBwasrVhz4Xm9aO3KUOqTIve1xcRH cRIyBehvYuPdFR7PO8DDbpw8uxJtLC2s7KisHVc11x/mfusXJhSCc11Vej7oC4Fy 3TO9Fz3tPHgpWBP0HGWaNKTyXrLeh29v0f1kxDAGQQjz9QprJt/ENBpZGofEne7y YIURSwIFUio6vYiiz61X6PhKE0P1uFSppwshrrUi0ps/1Lxj9c+7072QaOjUAzQe x6UqPZ7hxklPPUIIKEHk2SVQhAML2Yil9cEgUEtJbt5VgjhKsYz1Y1e693motCW5 DGt1BN2dJc2Y5EPXmIj0poK0XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMo8ZImx bMJCQDpsD7LhxiOEfNI6MB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjRDQy9GODlDM0VCNjE1MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2Ew dGZoaE55ZE5RbEVfTjFPa2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByd2ChJRkx7UxN4wLuZyEShbgq757TYgSFAXqrU2ldidOii5CjZf+e 9M2OmoKF076KcGi+eSWjU3D5llPQy9V93IcXl/IBRFK5qL1jq7erdoADqepMkgkA RNoXTtK9Ht3j80qDBM3xt2EMh/8iAs7bV7y9cOhTSY9WSzPQX6yPqhd36BdsitnX bEjlAdv1QV9J6v5ws02vnKHJZaVvZc/jGBRvICICv8QON7VRZv2pfgy0/RAwinEA K0S5V7/ArH/nbraoGL8fByD6WiHmVvkgCsHwLYu4RZGA+NDEUW7FRb1J2jECPpva Dxe8SNo7IhHaQBS8pww+Vh8tpSE4qjy9 -----END CERTIFICATE-----Generated at Sat May 31 16:28:48 2025 by rpki-client