$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft File: OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft (raw, json) Hash identifier: k5KnAH8YFNbPt9esJVdULe5VWQkdvWVkSoF0j9AK4/U= Subject key identifier: A2:A4:2B:5B:4A:4A:FC:43:C3:23:C5:2E:5F:4D:FD:92:88:71:FC:9F Authority key identifier: 38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A Certificate issuer: /CN=A91DB0C2/serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Certificate serial: 0A7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft Manifest number: 0A78 Signing time: Sun 08 Jun 2025 19:21:24 +0000 Manifest this update: Sun 08 Jun 2025 19:21:24 +0000 Manifest next update: Sun 15 Jun 2025 19:21:24 +0000 Files and hashes: 1: OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl (hash: 8786Fv7j1cYJ9UVzUNRYhbLbo6CKDVCJIuk78X5Vl5c=) 2: E8DA2D1C5F5211EABFCF4128C4F9AE02.roa (hash: RsV1HG0sblH5nYeZVkL9f/OZ/ev49KnYKTaHyjLrK0g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 19:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB0C2, serialNumber=381E53485046CB302791C909F2DBD67DAF8D781A Validity Not Before: Jun 8 19:21:24 2025 GMT Not After : Jun 15 19:21:24 2025 GMT Subject: CN=6845e2b4-983e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cd:48:09:c5:b8:74:36:94:87:b4:17:e7:32: 91:58:f1:ed:8c:66:d8:26:4f:82:d2:e4:0b:7c:0e: 66:b2:79:68:46:15:75:80:98:e0:a2:46:c9:26:ca: 71:b9:7a:ba:f0:79:3a:3d:ed:d6:88:f8:9f:03:87: 6b:5c:87:5f:54:1c:88:01:7e:ed:3c:ef:aa:a8:dc: a6:7b:bc:27:54:44:61:83:af:ac:f9:25:3f:7f:de: 10:60:c7:5e:10:35:e5:aa:78:55:1c:02:e1:3a:2e: 90:37:da:8c:d2:9a:2c:9c:ed:b6:67:2b:63:f1:b6: cb:11:95:a6:c8:9f:a7:0b:7c:a0:07:50:a9:cc:5f: 34:8d:80:4b:fc:fe:55:1e:17:33:bd:66:c1:43:34: d3:10:6c:0b:25:ce:f2:7c:7f:2f:df:0a:7b:ca:68: 4b:e7:cc:cc:d8:8d:bc:43:48:6d:e8:3b:87:47:e3: e0:bf:5a:4a:bc:93:12:1f:f0:11:39:e0:39:86:5d: aa:55:3f:e2:a8:0a:9a:e2:c3:08:08:ef:93:00:5e: b4:0f:3e:1c:f2:10:8f:50:9d:02:00:e2:8f:31:6d: 62:9e:a6:b4:f0:f3:ac:cd:91:4c:be:ec:ea:67:3c: a7:c7:c0:34:50:b1:65:64:e9:32:2e:b2:f7:e8:68: de:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:A4:2B:5B:4A:4A:FC:43:C3:23:C5:2E:5F:4D:FD:92:88:71:FC:9F X509v3 Authority Key Identifier: keyid:38:1E:53:48:50:46:CB:30:27:91:C9:09:F2:DB:D6:7D:AF:8D:78:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OB5TSFBGyzAnkckJ8tvWfa-NeBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB0C2/FD8838225F5111EA89993D27C4F9AE02/OB5TSFBGyzAnkckJ8tvWfa-NeBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:23:0b:ea:d5:35:ef:5c:a8:4d:4b:a5:53:04:f2:1f:ad:88: bd:3b:46:82:d6:b9:36:b3:61:73:44:84:d2:18:9c:2b:a2:d8: 5f:cc:c9:61:7c:4d:d3:22:94:01:a3:ca:80:e1:c4:83:fd:b3: 68:3c:88:d3:02:2e:13:d9:68:2a:76:54:0c:fc:95:77:10:01: 07:67:c0:a3:65:85:8d:08:d6:aa:ce:9e:8d:8c:ac:a2:bf:ff: 21:86:0b:15:c0:b9:e8:ed:1a:ef:e6:91:bf:6c:cb:a7:b9:19: ac:18:9a:7b:e4:ce:5e:bf:2a:b4:5a:63:d6:83:44:7b:97:21: 41:a1:c7:e1:ea:f7:8e:78:06:6d:0c:b0:97:53:53:61:2d:b9: de:32:a4:7b:db:85:8b:56:42:12:11:c3:fc:9c:fa:bc:d4:5a: ce:5d:47:eb:ee:42:e1:ed:79:3f:ba:7e:ce:0a:aa:69:c1:ee: 16:98:6c:61:06:dc:4d:34:db:c9:77:86:aa:4d:60:3d:00:da: 13:3c:2f:14:07:c7:8d:c4:ca:77:86:ec:25:2f:ec:db:50:de: d0:51:26:6e:48:c8:71:d1:c6:bc:d3:a1:ce:7f:3f:dd:b7:52: 9b:c1:20:5a:1f:2f:67:17:ee:2d:27:27:18:06:cf:93:55:d2: f9:e9:19:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwQzIxMTAvBgNVBAUTKDM4MUU1MzQ4NTA0NkNCMzAyNzkxQzkwOUYyREJENjdE QUY4RDc4MUEwHhcNMjUwNjA4MTkyMTI0WhcNMjUwNjE1MTkyMTI0WjAYMRYwFAYD VQQDEw02ODQ1ZTJiNC05ODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0s1ICcW4dDaUh7QX5zKRWPHtjGbYJk+C0uQLfA5msnloRhV1gJjgokbJJspx uXq68Hk6Pe3WiPifA4drXIdfVByIAX7tPO+qqNyme7wnVERhg6+s+SU/f94QYMde EDXlqnhVHALhOi6QN9qM0posnO22Zytj8bbLEZWmyJ+nC3ygB1CpzF80jYBL/P5V HhczvWbBQzTTEGwLJc7yfH8v3wp7ymhL58zM2I28Q0ht6DuHR+Pgv1pKvJMSH/AR OeA5hl2qVT/iqAqa4sMICO+TAF60Dz4c8hCPUJ0CAOKPMW1inqa08POszZFMvuzq Zzynx8A0ULFlZOkyLrL36GjeMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKkK1tK SvxDwyPFLl9N/ZKIcfyfMB8GA1UdIwQYMBaAFDgeU0hQRsswJ5HJCfLb1n2vjXga MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjBDMi9GRDg4MzgyMjVG NTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6QW5rY2tKOHR2V2ZhLU5l Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CNVRTRkJHeXpBbmtja0o4dHZXZmEtTmVCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjBDMi9GRDg4MzgyMjVGNTExMUVBODk5OTNEMjdDNEY5QUUwMi9PQjVUU0ZCR3l6 QW5rY2tKOHR2V2ZhLU5lQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyIwvq1TXvXKhNS6VTBPIfrYi9O0aC1rk2s2FzRITSGJwrothfzMlh fE3TIpQBo8qA4cSD/bNoPIjTAi4T2WgqdlQM/JV3EAEHZ8CjZYWNCNaqzp6NjKyi v/8hhgsVwLno7Rrv5pG/bMunuRmsGJp75M5evyq0WmPWg0R7lyFBocfh6veOeAZt DLCXU1NhLbneMqR724WLVkISEcP8nPq81FrOXUfr7kLh7Xk/un7OCqppwe4WmGxh BtxNNNvJd4aqTWA9ANoTPC8UB8eNxMp3huwlL+zbUN7QUSZuSMhx0ca806HOfz/d t1KbwSBaHy9nF+4tJycYBs+TVdL56Rn2 -----END CERTIFICATE-----Generated at Tue Jun 10 14:49:12 2025 by rpki-client