$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: F6PT4m+vddzuEMNC+9Rr8mdzogk1xWZno7KNUO5YU7s= Subject key identifier: DD:7C:90:46:10:E6:F0:88:13:AA:04:77:2E:42:75:8F:DB:B3:8E:91 Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0A7A Signing time: Thu 12 Jun 2025 19:24:30 +0000 Manifest this update: Thu 12 Jun 2025 19:24:29 +0000 Manifest next update: Thu 19 Jun 2025 19:24:29 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: NQstXsRWIvglZDwyDzrVz+XfiSdHCPJy0ZadjWyxem4=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Jun 12 19:24:29 2025 GMT Not After : Jun 19 19:24:29 2025 GMT Subject: CN=684b296e-f34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fd:cc:c3:bd:e3:64:1a:0b:60:f2:e5:18:73: f7:ba:06:40:ed:3d:e3:f8:08:44:1d:e8:f0:d2:82: 75:39:b5:df:69:7e:16:cc:b1:84:9b:f2:31:95:bb: a1:b8:a8:84:13:59:fe:a1:54:a9:dc:ab:ed:89:d7: 41:f5:60:ed:1b:a7:dc:ea:64:01:82:0e:25:09:89: 0c:69:e5:3b:f5:9e:4c:c9:de:8a:cf:91:f6:09:e5: 90:c1:9c:2d:3a:8a:8b:0a:25:77:59:bc:19:98:4c: a2:99:08:ba:6d:1f:55:60:2d:d7:3a:04:cc:9b:76: fa:38:f5:21:61:f4:dc:2b:f1:61:2a:41:e3:4c:5f: 9f:0a:d4:66:2d:e0:ee:10:e5:95:b9:d7:6b:e5:cb: ed:03:7f:c6:c7:04:7e:71:7f:d4:92:f9:b2:0a:af: 03:65:b3:e9:9e:a3:20:b4:af:17:87:36:6d:cf:e2: 57:ee:66:97:7c:1e:a6:9e:02:6d:e9:f3:71:ba:15: c1:ff:52:9c:22:6e:b3:ed:44:8b:99:fb:fb:b2:e3: de:cc:d0:51:91:f8:ab:3d:5e:42:27:71:d9:ad:4c: 3c:1a:df:5e:8e:31:1c:f7:7a:7f:b3:b2:2b:8a:4a: 6a:d6:72:7e:9d:11:4d:a4:46:9e:37:21:01:07:02: c5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7C:90:46:10:E6:F0:88:13:AA:04:77:2E:42:75:8F:DB:B3:8E:91 X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ae:37:a2:a9:f4:59:1f:88:72:96:59:7c:ba:c7:1e:27:4f: 66:23:b0:67:a4:7b:22:21:76:fc:6d:3a:c4:78:4a:e0:17:d9: 2c:3e:a7:22:4b:a2:59:df:1f:67:0e:ce:b4:8e:26:16:31:23: 58:c4:55:80:b1:e6:95:18:91:e0:0b:eb:00:1d:e8:22:22:08: a5:4d:24:d8:6b:df:13:14:0e:43:03:7f:6b:88:62:67:32:53: 83:6b:56:e7:c0:e0:46:51:bb:3d:17:fb:ed:a0:c8:c9:3c:20: 80:b2:6b:03:f8:6b:28:96:90:03:72:df:68:a1:c7:ca:e6:bb: 2c:f4:1d:86:43:91:53:60:7b:58:1b:7b:9a:3b:54:da:66:b7: 19:05:c1:60:68:8c:04:89:7a:d6:27:1e:31:ee:d8:f5:98:d8: 76:2d:8a:f2:de:bc:6c:a4:f7:09:7f:16:ee:6c:31:d5:2b:ff: 0b:07:ed:ca:d2:e5:76:18:d6:d9:0d:a0:c1:77:43:68:b7:0a: 8e:50:fe:b2:2b:84:f0:b7:ae:4e:95:c1:95:d7:de:dc:6a:de: 90:5d:4e:a4:97:ca:59:20:20:fa:57:ad:7b:ea:76:85:28:dd: b9:73:34:91:c0:d6:1d:99:95:83:fe:b0:dc:c6:1a:cf:e1:f0: be:ef:23:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUwNjEyMTkyNDI5WhcNMjUwNjE5MTkyNDI5WjAYMRYwFAYD VQQDEw02ODRiMjk2ZS1mMzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6P3Mw73jZBoLYPLlGHP3ugZA7T3j+AhEHejw0oJ1ObXfaX4WzLGEm/Ixlbuh uKiEE1n+oVSp3KvtiddB9WDtG6fc6mQBgg4lCYkMaeU79Z5Myd6Kz5H2CeWQwZwt OoqLCiV3WbwZmEyimQi6bR9VYC3XOgTMm3b6OPUhYfTcK/FhKkHjTF+fCtRmLeDu EOWVuddr5cvtA3/GxwR+cX/UkvmyCq8DZbPpnqMgtK8XhzZtz+JX7maXfB6mngJt 6fNxuhXB/1KcIm6z7USLmfv7suPezNBRkfirPV5CJ3HZrUw8Gt9ejjEc93p/s7Ir ikpq1nJ+nRFNpEaeNyEBBwLF0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN18kEYQ 5vCIE6oEdy5CdY/bs46RMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3rjeiqfRZH4hylll8usceJ09mI7BnpHsiIXb8bTrEeErgF9ksPqci S6JZ3x9nDs60jiYWMSNYxFWAseaVGJHgC+sAHegiIgilTSTYa98TFA5DA39riGJn MlODa1bnwOBGUbs9F/vtoMjJPCCAsmsD+GsolpADct9oocfK5rss9B2GQ5FTYHtY G3uaO1TaZrcZBcFgaIwEiXrWJx4x7tj1mNh2LYry3rxspPcJfxbubDHVK/8LB+3K 0uV2GNbZDaDBd0NotwqOUP6yK4Twt65OlcGV197cat6QXU6kl8pZICD6V6176naF KN25czSRwNYdmZWD/rDcxhrP4fC+7yPX -----END CERTIFICATE-----Generated at Fri Jun 13 07:30:40 2025 by rpki-client