$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: Ct8YkN5bAJqQLk5bfy2dgLv8nTJHohmx0tL4jGUkMH0= Subject key identifier: 9A:63:1F:30:41:5E:33:C6:37:51:2F:D7:A7:5A:DF:FF:02:EE:30:F4 Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 045A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 0454 Signing time: Thu 03 Jul 2025 00:33:42 +0000 Manifest this update: Thu 03 Jul 2025 00:33:41 +0000 Manifest next update: Thu 10 Jul 2025 00:33:41 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: nBfe/gNU/FyXfq/YK9S7UiMxgGt5kscanmvxgMyLp04=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: /fF1tdSaYFH2w1w+0HXHgYqEthaF4A0sGCD2uCBxpiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Jul 3 00:33:41 2025 GMT Not After : Jul 10 00:33:41 2025 GMT Subject: CN=6865cfe6-fdf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:30:f0:82:df:12:8a:37:1a:1b:73:2e:36: 82:7d:10:cd:4e:50:12:72:60:3b:83:42:1c:2c:41: f9:46:ee:9d:cd:24:cf:bf:db:ec:b7:eb:46:a9:a2: b4:48:75:82:38:d2:0f:70:df:23:73:99:23:f9:d0: 61:a8:5b:28:4d:f7:75:69:26:4e:dd:4b:b2:97:e1: 4c:18:ba:4c:0d:d8:f7:88:70:6d:53:0c:bc:44:24: cc:8d:57:0f:ca:85:2d:e5:32:ba:b0:e2:3a:3c:28: 53:70:d7:ae:55:94:c6:06:fd:48:bc:d6:ed:92:ba: 41:72:91:9e:d8:5a:eb:82:9d:33:55:54:5a:4c:d7: dc:54:2a:28:ac:f2:80:f7:e9:32:9e:79:23:97:c1: a5:9c:f9:0c:18:e9:99:46:1e:ff:04:a2:0b:89:33: 8d:dc:15:54:5c:1f:f9:87:5d:36:57:b7:6a:34:61: 21:d9:06:1f:48:5b:44:60:96:55:c1:f2:6a:11:56: 1b:75:1c:80:98:f5:93:09:ce:a3:8e:b0:f5:8b:ca: 56:2b:23:39:2c:09:52:87:aa:03:26:0c:55:ea:d8: 4f:aa:72:32:c9:8d:e3:bb:8b:b0:a9:7a:ff:f4:c2: e7:08:65:2a:d1:56:f8:c7:5d:5a:1d:6a:b6:04:a8: af:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:63:1F:30:41:5E:33:C6:37:51:2F:D7:A7:5A:DF:FF:02:EE:30:F4 X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:ba:92:5d:57:6e:57:08:90:d4:58:ba:f6:d0:87:c7:8f:a0: a7:ff:15:a8:6a:cd:a0:53:4b:9e:98:0f:9a:b2:7a:61:07:32: e6:e5:4f:ad:95:86:f7:32:50:52:0b:47:34:f8:98:05:d6:2a: 76:00:ff:95:e1:32:2f:9a:cf:e9:57:83:a3:40:3d:31:ee:b4: 5d:31:b0:c2:d3:c1:98:49:5c:c4:25:a1:e8:68:45:f8:c2:2a: 3a:30:b4:e8:e1:11:68:b6:1b:a5:bb:92:be:14:47:8d:eb:d9: 45:99:78:98:8d:a2:ba:70:d2:be:8b:2e:51:2d:99:ea:44:86: 06:69:65:0b:59:fc:60:0e:59:ca:91:01:42:bf:6c:1d:f6:ac: 34:38:75:de:3e:7a:35:6d:8d:3f:58:ab:6b:86:1a:77:76:ab: 7b:f5:fe:d2:dd:08:54:9a:29:80:94:22:a2:2f:2d:af:8e:f4: 4a:e2:10:2d:cb:12:ed:e6:03:a0:78:3a:2f:38:7b:90:18:8c: 37:53:1c:24:3d:18:e0:1e:11:c3:84:e2:81:4a:86:48:16:89: 8f:1a:49:a9:57:89:31:19:93:3e:42:18:b1:38:c0:a2:78:e7: 28:ec:bf:78:60:23:e6:bb:9d:d2:6d:8a:e8:84:38:a8:cb:4f: 3e:1a:3c:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUwNzAzMDAzMzQxWhcNMjUwNzEwMDAzMzQxWjAYMRYwFAYD VQQDEw02ODY1Y2ZlNi1mZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLUw8ILfEoo3GhtzLjaCfRDNTlAScmA7g0IcLEH5Ru6dzSTPv9vst+tGqaK0 SHWCONIPcN8jc5kj+dBhqFsoTfd1aSZO3Uuyl+FMGLpMDdj3iHBtUwy8RCTMjVcP yoUt5TK6sOI6PChTcNeuVZTGBv1IvNbtkrpBcpGe2Frrgp0zVVRaTNfcVCoorPKA 9+kynnkjl8GlnPkMGOmZRh7/BKILiTON3BVUXB/5h102V7dqNGEh2QYfSFtEYJZV wfJqEVYbdRyAmPWTCc6jjrD1i8pWKyM5LAlSh6oDJgxV6thPqnIyyY3ju4uwqXr/ 9MLnCGUq0Vb4x11aHWq2BKivfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJpjHzBB XjPGN1Ev16da3/8C7jD0MB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzupJdV25XCJDUWLr20IfHj6Cn/xWoas2gU0uemA+asnphBzLm5U+t lYb3MlBSC0c0+JgF1ip2AP+V4TIvms/pV4OjQD0x7rRdMbDC08GYSVzEJaHoaEX4 wio6MLTo4RFothulu5K+FEeN69lFmXiYjaK6cNK+iy5RLZnqRIYGaWULWfxgDlnK kQFCv2wd9qw0OHXePno1bY0/WKtrhhp3dqt79f7S3QhUmimAlCKiLy2vjvRK4hAt yxLt5gOgeDovOHuQGIw3UxwkPRjgHhHDhOKBSoZIFomPGkmpV4kxGZM+QhixOMCi eOco7L94YCPmu53SbYrohDioy08+Gjwv -----END CERTIFICATE-----Generated at Fri Jul 4 06:49:46 2025 by rpki-client