$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: PujTXUSrfVQZgRRnGLZld4ZveXe4nPjY/4NeOmiG89g= Subject key identifier: 53:2C:DF:FE:4C:0B:A9:11:75:5B:F8:5A:0F:64:64:1D:79:1C:80:2D Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0AA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0A9F Signing time: Sun 24 Aug 2025 19:32:08 +0000 Manifest this update: Sun 24 Aug 2025 19:32:08 +0000 Manifest next update: Sun 31 Aug 2025 19:32:08 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: WtI1sOPpNaq8NLPvlByJHx9fC8ZIAuCtvduL6TsIA0I=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2726 (0xaa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Aug 24 19:32:08 2025 GMT Not After : Aug 31 19:32:08 2025 GMT Subject: CN=68ab68b8-14a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:46:0d:13:4a:2a:37:89:b0:06:33:0a:b1: c1:b2:76:a4:8a:9f:3d:e4:08:ac:86:93:c6:38:2c: 9e:32:81:6a:27:78:47:26:03:a0:ab:78:26:f0:3e: 42:96:26:2c:23:51:04:e4:46:0c:58:14:d9:1b:95: 5d:89:35:76:4f:3f:9e:bb:86:98:a1:98:02:9d:81: e4:e9:ca:16:e3:96:61:47:8c:be:c2:2b:53:f7:03: b0:f7:69:a1:4c:7a:71:83:0a:c8:a8:32:a7:62:8b: 81:5b:12:e0:72:e1:ef:23:cd:78:55:1c:78:6e:c6: e0:2b:d7:f9:96:7f:73:92:28:90:b5:7d:32:f0:a5: 09:f5:ff:6c:16:83:24:48:d4:29:65:40:ba:aa:ae: b3:7d:7e:2f:ca:b4:7d:55:5d:fb:53:88:49:82:7c: 33:4e:cd:7a:b8:27:d8:45:9f:d1:46:ba:6b:f4:b0: ed:71:82:ef:9c:18:a1:e1:a4:cc:e8:80:47:f1:2d: b1:04:ac:fa:8a:96:91:3d:75:6c:43:15:16:37:04: 24:e9:76:35:b6:51:61:fa:e3:8c:ea:2f:98:a6:59: 88:dc:2d:25:7a:66:19:f8:87:42:69:d5:81:fd:5e: 92:f7:68:26:23:01:95:b4:fc:09:17:31:0a:1f:66: e7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2C:DF:FE:4C:0B:A9:11:75:5B:F8:5A:0F:64:64:1D:79:1C:80:2D X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:69:10:74:e9:17:3e:0f:88:ed:f2:9f:3d:56:c5:56:d6:72: b7:be:2d:45:32:4f:8a:ac:22:ca:d0:8d:dd:77:87:93:73:ff: f4:73:ac:f3:1d:e5:d2:e9:e1:19:2f:83:2a:3b:dd:ac:18:e1: 11:d2:4a:cf:3b:45:3c:73:a7:d2:62:ed:1e:40:db:5b:e5:94: 75:5c:1a:52:42:63:ed:84:dd:ba:79:bb:c8:92:3c:12:ee:06: 1e:23:50:f6:23:e0:79:19:99:b6:07:5d:fc:e8:48:00:ab:0a: 16:9f:3f:6b:64:33:5f:21:63:21:92:f1:da:fe:bb:e1:04:5e: bb:5c:da:e6:41:77:2f:d5:da:76:28:4f:92:48:3e:0b:d6:82: cf:ff:83:9a:25:1f:98:3a:6a:df:8d:14:5e:6b:b8:9c:09:dd: fd:d0:d0:e2:cd:fd:61:00:e5:8f:bd:8f:5a:5e:d8:f3:2d:4d: bd:7a:a6:c0:f3:44:66:91:1b:a6:e5:8c:e6:a5:23:91:40:b1: 07:d4:20:7a:72:72:5f:25:93:e3:c3:12:31:8c:71:6e:5d:26: 14:71:37:f6:83:97:ea:83:ad:23:3d:0a:48:b4:62:f7:f2:29: 5b:9a:40:32:56:5d:c3:43:d5:78:d2:9f:43:3f:a1:a7:48:32: d1:14:b3:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUwODI0MTkzMjA4WhcNMjUwODMxMTkzMjA4WjAYMRYwFAYD VQQDEw02OGFiNjhiOC0xNGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIBGDRNKKjeJsAYzCrHBsnakip895AishpPGOCyeMoFqJ3hHJgOgq3gm8D5C liYsI1EE5EYMWBTZG5VdiTV2Tz+eu4aYoZgCnYHk6coW45ZhR4y+witT9wOw92mh THpxgwrIqDKnYouBWxLgcuHvI814VRx4bsbgK9f5ln9zkiiQtX0y8KUJ9f9sFoMk SNQpZUC6qq6zfX4vyrR9VV37U4hJgnwzTs16uCfYRZ/RRrpr9LDtcYLvnBih4aTM 6IBH8S2xBKz6ipaRPXVsQxUWNwQk6XY1tlFh+uOM6i+YplmI3C0lemYZ+IdCadWB /V6S92gmIwGVtPwJFzEKH2bncQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMs3/5M C6kRdVv4Wg9kZB15HIAtMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIaRB06Rc+D4jt8p89VsVW1nK3vi1FMk+KrCLK0I3dd4eTc//0c6zz HeXS6eEZL4MqO92sGOER0krPO0U8c6fSYu0eQNtb5ZR1XBpSQmPthN26ebvIkjwS 7gYeI1D2I+B5GZm2B1386EgAqwoWnz9rZDNfIWMhkvHa/rvhBF67XNrmQXcv1dp2 KE+SSD4L1oLP/4OaJR+YOmrfjRRea7icCd390NDizf1hAOWPvY9aXtjzLU29eqbA 80RmkRum5YzmpSORQLEH1CB6cnJfJZPjwxIxjHFuXSYUcTf2g5fqg60jPQpItGL3 8ilbmkAyVl3DQ9V40p9DP6GnSDLRFLO0 -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:11 2025 by rpki-client