$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: AEgTBKwFEvltgs7Uq19wBvaU9gkjTq3CtOLp+9aBppc= Subject key identifier: EE:D4:64:2C:32:AD:DF:E1:AB:D6:3B:07:5D:39:C6:A9:6F:2C:22:DE Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: B2 Signing time: Sat 23 Aug 2025 06:15:12 +0000 Manifest this update: Sat 23 Aug 2025 06:15:11 +0000 Manifest next update: Sat 30 Aug 2025 06:15:11 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: pAaF9o7NHRQEFEy5BVrviBZHNE5PY+BkDRFWLuSVEhc=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:15:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Aug 23 06:15:11 2025 GMT Not After : Aug 30 06:15:11 2025 GMT Subject: CN=68a95c70-11c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:51:c1:57:ba:7e:b7:6a:36:1a:1f:84:37: 96:a4:e2:cb:5c:7f:ac:65:12:8e:ae:c5:21:26:98: df:52:27:9d:8e:1a:7a:54:1e:d2:51:cb:1e:ae:ce: 08:a4:1b:cb:cf:bb:b2:9e:f6:ce:ad:93:ea:75:2d: 2e:c4:d3:09:55:29:44:57:f9:cd:39:ce:68:95:32: d6:d8:c5:75:61:72:53:5f:9c:73:c2:da:8c:a6:70: 1f:73:28:3d:7d:c9:90:04:17:04:be:ab:83:d1:ec: 81:06:4a:46:b5:3a:3f:f8:c9:e0:fa:7c:e4:b0:68: da:88:7e:c4:18:f2:8f:5c:eb:65:7c:9e:29:d7:b3: f7:64:d2:c0:ba:1d:62:dd:3d:d1:b4:53:9a:bc:a0: 16:0e:0a:28:a0:d1:e8:d7:0b:cf:d1:e2:cf:48:f2: 65:d3:75:9c:93:4a:a9:a5:31:5c:bf:1d:c3:61:5d: f0:72:79:f0:e1:9a:64:77:62:90:37:f1:e7:10:06: 8c:0b:e6:4e:2f:46:f7:c7:e7:cb:b5:0b:89:46:c5: 80:12:3a:64:5d:8f:6c:d3:bc:75:64:2f:24:05:b5: 88:79:86:d3:af:62:b2:44:79:d0:49:d9:87:69:96: c6:6a:72:6c:1c:ab:41:53:7e:5b:5d:62:86:ff:67: c8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D4:64:2C:32:AD:DF:E1:AB:D6:3B:07:5D:39:C6:A9:6F:2C:22:DE X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:51:33:77:f7:65:29:55:24:f9:da:e7:47:06:8a:64:c3:d5: 04:dd:22:cd:c4:23:4e:70:42:03:b8:e4:be:a1:07:00:db:45: 26:01:12:e0:de:e6:67:fa:a3:80:72:49:20:49:0f:fa:8b:50: 69:17:80:e2:9b:78:1b:3a:ce:4e:de:a6:fc:5f:42:f9:ce:c9: d0:09:4b:19:3a:60:06:43:5c:04:7b:61:d2:85:51:5a:56:eb: 7f:3e:3e:8b:20:82:5c:10:a3:2f:37:08:95:4b:1b:01:c2:d7: cf:fd:f4:02:c8:35:27:24:f8:03:52:22:2b:ee:12:3f:0e:c0: 7d:1d:aa:e5:d9:3f:41:65:cb:18:14:6a:30:ae:8f:0e:9e:e4: 5c:89:eb:66:b4:a6:c3:b7:59:cc:02:a6:05:f4:b3:06:2c:cb: de:b7:82:b8:19:9d:c0:74:d6:57:3d:c4:0a:41:f0:83:31:0c: 40:16:94:e2:95:26:93:6d:77:2c:9d:69:1c:ad:4b:07:37:74: ce:88:e1:0f:96:25:41:c1:e7:f4:5e:84:2e:7a:a7:0f:92:62: 62:78:fd:fe:e8:0f:24:f2:49:6c:43:92:42:90:e1:78:eb:77: 28:b4:48:09:49:9e:c6:20:a1:15:69:f9:f3:60:7a:64:a5:8d: 9d:f7:c6:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUwODIzMDYxNTExWhcNMjUwODMwMDYxNTExWjAYMRYwFAYD VQQDEw02OGE5NWM3MC0xMWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/xRwVe6frdqNhofhDeWpOLLXH+sZRKOrsUhJpjfUiedjhp6VB7SUcsers4I pBvLz7uynvbOrZPqdS0uxNMJVSlEV/nNOc5olTLW2MV1YXJTX5xzwtqMpnAfcyg9 fcmQBBcEvquD0eyBBkpGtTo/+Mng+nzksGjaiH7EGPKPXOtlfJ4p17P3ZNLAuh1i 3T3RtFOavKAWDgoooNHo1wvP0eLPSPJl03Wck0qppTFcvx3DYV3wcnnw4Zpkd2KQ N/HnEAaMC+ZOL0b3x+fLtQuJRsWAEjpkXY9s07x1ZC8kBbWIeYbTr2KyRHnQSdmH aZbGanJsHKtBU35bXWKG/2fIBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7UZCwy rd/hq9Y7B105xqlvLCLeMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9UTN392UpVST52udHBopkw9UE3SLNxCNOcEIDuOS+oQcA20UmARLg 3uZn+qOAckkgSQ/6i1BpF4Dim3gbOs5O3qb8X0L5zsnQCUsZOmAGQ1wEe2HShVFa Vut/Pj6LIIJcEKMvNwiVSxsBwtfP/fQCyDUnJPgDUiIr7hI/DsB9Harl2T9BZcsY FGowro8OnuRcietmtKbDt1nMAqYF9LMGLMvet4K4GZ3AdNZXPcQKQfCDMQxAFpTi lSaTbXcsnWkcrUsHN3TOiOEPliVBwef0XoQueqcPkmJieP3+6A8k8klsQ5JCkOF4 63cotEgJSZ7GIKEVafnzYHpkpY2d98az -----END CERTIFICATE-----Generated at Sat Aug 23 18:44:01 2025 by rpki-client