$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: 9BG2Sp/OjyueOM2/94oUnQGB0iZ1eDuaBWjw002bqyQ= Subject key identifier: B3:B9:FE:83:B0:9D:11:17:F8:9E:D6:42:AD:BB:45:CC:B8:86:F5:7C Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0A80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0A79 Signing time: Tue 10 Jun 2025 19:30:29 +0000 Manifest this update: Tue 10 Jun 2025 19:30:28 +0000 Manifest next update: Tue 17 Jun 2025 19:30:28 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: DJU6fAFtw9kLjeRcmGNuF7V7qrv41wvK0A7fLH24poc=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 19:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2688 (0xa80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Jun 10 19:30:28 2025 GMT Not After : Jun 17 19:30:28 2025 GMT Subject: CN=684887d4-d3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:48:c4:da:4e:bd:68:62:9b:58:6d:76:e4: 81:af:c3:90:90:c6:22:50:41:5d:e2:9d:c5:4f:db: 67:ef:e5:c3:19:3b:e2:1b:82:ba:9f:98:68:b0:ab: dc:ed:60:39:5a:d8:af:3f:a8:0e:b4:c4:e9:6f:50: 4b:af:73:d4:bd:71:63:62:2e:8a:c2:80:77:00:d1: 10:a1:44:00:8d:67:a0:cc:03:7a:32:5b:d2:f5:0a: a6:de:ad:d0:91:db:01:01:b5:fd:8b:9c:66:4b:06: f7:07:1f:47:c9:3b:44:0d:7f:d6:a9:b3:de:6c:9a: 11:89:35:79:b2:9a:fe:8d:c0:99:d4:15:36:3b:36: 8f:dc:05:45:20:b5:a9:bb:44:b1:76:3e:f9:b9:ec: e6:4c:4c:83:b3:24:a8:10:5e:fa:3b:ac:a6:2b:65: ed:a5:36:30:d6:11:1d:e5:76:38:58:64:53:0e:77: 9d:80:89:24:a1:9a:d5:c1:69:2f:40:ff:a4:10:a2: ea:ed:9e:0a:c6:16:71:bf:f8:5c:02:d2:50:0d:c7: 38:3d:22:2c:8b:7c:a3:f9:e9:cb:3e:da:c6:d5:38: 88:1a:34:e7:f6:b8:1d:4e:e6:3c:ec:c5:28:23:c0: 8c:67:1e:8e:e4:08:09:d5:05:52:b1:2f:dd:11:d1: 58:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B9:FE:83:B0:9D:11:17:F8:9E:D6:42:AD:BB:45:CC:B8:86:F5:7C X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:52:30:f4:dd:ce:f7:c1:2d:a4:f7:97:cb:c2:30:51:ee:95: 9b:a8:ce:c4:ce:2a:8d:c2:bd:47:31:27:05:ec:8f:aa:7d:72: e0:ee:b7:3f:4f:70:a2:0a:eb:30:1c:b5:a9:24:46:ea:9f:df: 9c:61:1d:79:5f:db:09:81:5f:67:71:76:b5:69:19:76:aa:50: 4f:d4:a0:0b:1a:26:d2:76:7f:94:23:79:d9:1b:57:d7:f5:47: 7c:56:98:f7:c1:4e:da:24:62:0d:9b:56:2a:41:1f:51:8a:89: 28:42:f1:c9:dd:8a:42:55:05:77:50:09:23:11:67:9c:1c:c4: 26:a6:c1:2d:31:e9:1a:d8:f9:a1:39:82:fd:a9:8b:71:6c:a2: 54:27:8f:f6:fa:bc:79:33:a9:b4:8c:7b:ad:d5:04:67:5d:16: e5:fb:a3:cf:5e:4c:87:89:2c:f3:3b:97:7b:da:7c:de:7e:9d: 2e:11:ef:94:63:2a:f9:fb:46:e5:0b:8c:67:fa:f1:6b:ec:2b: 22:56:2d:27:49:82:03:60:e6:93:ce:4a:d1:c5:ea:b6:50:1c: 2d:64:cb:4d:ab:a8:22:68:5f:75:2f:c4:4c:27:0a:e4:ae:87: ca:8e:c3:41:02:07:4c:aa:40:a4:9e:b5:c9:0b:6a:cb:10:30: 7b:b3:10:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUwNjEwMTkzMDI4WhcNMjUwNjE3MTkzMDI4WjAYMRYwFAYD VQQDEw02ODQ4ODdkNC1kM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOZIxNpOvWhim1htduSBr8OQkMYiUEFd4p3FT9tn7+XDGTviG4K6n5hosKvc 7WA5WtivP6gOtMTpb1BLr3PUvXFjYi6KwoB3ANEQoUQAjWegzAN6MlvS9Qqm3q3Q kdsBAbX9i5xmSwb3Bx9HyTtEDX/WqbPebJoRiTV5spr+jcCZ1BU2OzaP3AVFILWp u0Sxdj75uezmTEyDsySoEF76O6ymK2XtpTYw1hEd5XY4WGRTDnedgIkkoZrVwWkv QP+kEKLq7Z4KxhZxv/hcAtJQDcc4PSIsi3yj+enLPtrG1TiIGjTn9rgdTuY87MUo I8CMZx6O5AgJ1QVSsS/dEdFYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLO5/oOw nREX+J7WQq27Rcy4hvV8MB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADUjD03c73wS2k95fLwjBR7pWbqM7EziqNwr1HMScF7I+qfXLg7rc/ T3CiCuswHLWpJEbqn9+cYR15X9sJgV9ncXa1aRl2qlBP1KALGibSdn+UI3nZG1fX 9Ud8Vpj3wU7aJGINm1YqQR9RiokoQvHJ3YpCVQV3UAkjEWecHMQmpsEtMeka2Pmh OYL9qYtxbKJUJ4/2+rx5M6m0jHut1QRnXRbl+6PPXkyHiSzzO5d72nzefp0uEe+U Yyr5+0blC4xn+vFr7CsiVi0nSYIDYOaTzkrRxeq2UBwtZMtNq6giaF91L8RMJwrk rofKjsNBAgdMqkCknrXJC2rLEDB7sxA+ -----END CERTIFICATE-----Generated at Thu Jun 12 20:53:00 2025 by rpki-client