$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: acow6xVB7z81bY8+bN7Bg66Wsi68lMsNxzBmTzzjSn4= Subject key identifier: 56:6D:51:6B:82:5F:B4:0B:AE:BD:89:71:E9:88:21:C6:BA:46:5A:09 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 87 Signing time: Sat 31 May 2025 06:07:29 +0000 Manifest this update: Sat 31 May 2025 06:07:29 +0000 Manifest next update: Sat 07 Jun 2025 06:07:29 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: BNm6Im0QtdPQ06sLFuFto4THpikBG/DK0RNwnbfBLZI=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: May 31 06:07:29 2025 GMT Not After : Jun 7 06:07:29 2025 GMT Subject: CN=683a9ca1-b2ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:46:5a:41:47:50:b6:db:96:02:a5:6a:d1:eb: a9:7e:49:48:fb:6e:cc:d4:08:4f:61:6e:1d:0c:2f: b5:f6:57:79:c2:1e:a2:55:d7:29:50:90:e3:f8:66: 68:c3:20:75:60:4b:95:61:ca:23:c8:d2:2b:5b:b1: 6d:58:e1:4e:82:4d:8d:74:81:cd:d6:68:3f:60:a5: e6:78:7f:8c:7b:e8:24:f7:65:95:c7:cb:1f:1e:3f: b7:d2:77:b0:d0:8b:9b:cd:69:57:71:c5:d3:fb:ed: 0a:af:a6:08:5b:f1:07:af:7d:d3:99:bc:2f:dc:d9: 24:d6:43:51:be:52:5e:ab:7e:16:78:1b:92:8f:4a: 1b:4c:d2:00:8a:cd:21:7c:2d:a3:c9:f7:5d:10:9c: f2:7b:b6:88:ef:fd:d0:ea:66:6e:27:c8:18:83:eb: 58:b2:5e:3e:8e:c0:8d:3a:f8:d9:84:f7:9d:64:cf: 3b:2a:3d:aa:ca:d4:52:b0:51:c5:21:86:07:96:33: c8:e0:31:82:09:92:0e:31:ec:9c:89:2e:fb:65:1f: 6c:7b:64:0b:6f:27:7b:24:11:5a:44:7c:3b:95:6f: 0b:7b:da:db:70:26:96:bb:ed:61:7b:03:33:5a:60: 0d:ea:c3:9b:ac:7c:6a:99:09:d8:8d:95:15:a5:58: 77:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6D:51:6B:82:5F:B4:0B:AE:BD:89:71:E9:88:21:C6:BA:46:5A:09 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:01:2b:87:02:29:59:97:be:98:f7:6b:01:36:14:bc:ac:6e: 9e:21:25:c3:24:b0:80:2d:1d:77:85:52:93:95:1f:89:69:e0: e7:1e:ed:21:4c:eb:6d:09:72:6c:ae:15:19:19:7f:af:55:51: 91:98:bb:75:cf:ac:6e:4f:8d:26:a8:5b:db:ff:32:54:55:19: ff:56:8c:a3:d5:33:88:a5:c2:2a:f0:0d:ac:5b:02:4a:be:56: 70:5d:ab:85:a1:ce:9b:8e:f1:bf:e9:8c:2a:2b:a5:75:42:09: fc:31:3a:14:56:c3:bd:18:a7:de:ee:ae:ba:c8:8b:a4:e5:14: 55:cc:9c:57:b8:01:94:f4:8f:29:c4:91:b9:cd:3f:a5:87:45: 54:e7:a1:bc:8b:b3:ae:3b:1a:d9:b3:9e:84:30:1a:9e:4d:11: cf:11:0f:45:37:ba:e9:3c:c9:bb:c9:26:69:21:10:b5:c2:80: d2:97:96:11:92:12:cb:d5:6c:c1:dd:ea:49:11:6a:ad:a6:9e: ec:d4:e4:4c:64:d2:90:16:92:1a:f6:21:94:eb:24:10:4b:35: 3a:d6:e7:f5:c0:13:8d:b4:7d:af:cc:e3:ee:67:b9:b5:12:40: d1:61:ef:1c:40:60:67:fa:f4:45:f6:64:c4:fd:58:7a:31:e9: 66:59:32:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUwNTMxMDYwNzI5WhcNMjUwNjA3MDYwNzI5WjAYMRYwFAYD VQQDEw02ODNhOWNhMS1iMmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40ZaQUdQttuWAqVq0eupfklI+27M1AhPYW4dDC+19ld5wh6iVdcpUJDj+GZo wyB1YEuVYcojyNIrW7FtWOFOgk2NdIHN1mg/YKXmeH+Me+gk92WVx8sfHj+30new 0IubzWlXccXT++0Kr6YIW/EHr33Tmbwv3Nkk1kNRvlJeq34WeBuSj0obTNIAis0h fC2jyfddEJzye7aI7/3Q6mZuJ8gYg+tYsl4+jsCNOvjZhPedZM87Kj2qytRSsFHF IYYHljPI4DGCCZIOMeyciS77ZR9se2QLbyd7JBFaRHw7lW8Le9rbcCaWu+1hewMz WmAN6sObrHxqmQnYjZUVpVh3JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZtUWuC X7QLrr2JcemIIca6RloJMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcASuHAilZl76Y92sBNhS8rG6eISXDJLCALR13hVKTlR+JaeDnHu0h TOttCXJsrhUZGX+vVVGRmLt1z6xuT40mqFvb/zJUVRn/Voyj1TOIpcIq8A2sWwJK vlZwXauFoc6bjvG/6YwqK6V1Qgn8MToUVsO9GKfe7q66yIuk5RRVzJxXuAGU9I8p xJG5zT+lh0VU56G8i7OuOxrZs56EMBqeTRHPEQ9FN7rpPMm7ySZpIRC1woDSl5YR khLL1WzB3epJEWqtpp7s1ORMZNKQFpIa9iGU6yQQSzU61uf1wBONtH2vzOPuZ7m1 EkDRYe8cQGBn+vRF9mTE/Vh6MelmWTIy -----END CERTIFICATE-----Generated at Sat May 31 14:46:34 2025 by rpki-client