$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: BaRJ6NHNqHqNgjO3RS0DUIBJXWW09dysgqnDtRKGefo= Subject key identifier: CC:A3:E0:03:9D:F4:3C:51:23:A9:E4:7F:04:F5:01:C7:8C:94:A9:26 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 96 Signing time: Sun 29 Jun 2025 05:24:25 +0000 Manifest this update: Sun 29 Jun 2025 05:24:24 +0000 Manifest next update: Sun 06 Jul 2025 05:24:24 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: VlZeNyS4XImFGVJZKvuQedwQ+OJ+8M6orlz4fzWjLOc=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Jun 29 05:24:24 2025 GMT Not After : Jul 6 05:24:24 2025 GMT Subject: CN=6860ce08-d755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:48:6c:71:fd:9e:3a:be:d4:89:c4:da:e3:26: 50:9e:1a:ad:56:d9:0c:a8:16:2d:a0:f2:e3:69:82: f2:4b:56:a1:0c:b8:98:22:10:eb:a2:be:f0:ad:50: ad:99:b6:ef:8f:f3:3b:20:12:03:da:e4:f0:b8:8c: b0:4d:ce:33:5f:31:6c:d7:46:48:bb:5e:46:a9:32: 56:28:7c:c7:99:ec:ad:0e:39:08:ee:b6:d9:88:93: 76:37:5e:f0:84:9d:df:40:4c:0e:5b:df:21:29:fd: 00:d1:08:07:d1:88:ca:7d:a9:d5:9b:cd:a3:13:45: df:60:3e:f7:c5:0d:81:ae:fd:55:cb:54:e8:d1:5d: f3:63:86:2b:ab:68:50:7b:7e:58:f9:8e:71:29:9a: e9:17:c4:ee:ce:f8:d3:8f:8b:f2:94:7a:8f:05:fa: ae:b5:1e:94:14:09:6c:98:d0:d6:68:db:f9:b5:6c: 40:aa:f2:79:33:9c:f7:b6:ca:63:5a:3b:82:38:ad: e4:2e:98:cf:3a:85:e7:f8:a7:c0:5e:66:91:d7:7b: 31:bc:c8:6c:31:5c:e1:5c:07:79:a5:31:e6:ff:dd: 73:25:a0:b8:98:38:5c:34:91:c9:6e:05:58:f4:e3: cd:88:59:4e:0b:b3:67:29:c6:0b:f7:f2:0d:aa:43: f5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A3:E0:03:9D:F4:3C:51:23:A9:E4:7F:04:F5:01:C7:8C:94:A9:26 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:08:49:01:21:08:f5:1b:35:b0:00:23:73:8d:ce:e8:e0:16: 48:db:4b:11:e8:fe:1b:a0:f3:de:e5:97:a2:fc:14:5a:13:6e: 56:fd:c6:a0:44:d8:ac:eb:17:1a:bb:5c:ce:6a:af:d1:20:f2: 41:d2:f0:22:12:9e:60:73:f1:63:8e:3b:d5:69:27:fa:4d:71: ef:99:17:0e:06:bb:98:ac:f0:91:c0:d3:9f:88:ff:c4:a7:e8: bb:96:d8:11:66:63:45:e5:4e:61:e3:e1:19:d4:cc:27:8b:b3: ea:81:5c:50:04:e0:d1:59:bc:4e:64:93:52:5a:c7:b5:01:82: 3a:da:16:70:f5:74:86:f6:94:93:30:ca:af:a4:ff:1f:3f:b7: ce:1b:6f:56:1d:04:4c:62:af:f6:f6:90:f6:40:03:6e:00:76: b5:1b:4a:ba:a4:20:3f:5a:e2:e9:84:08:ed:73:1b:50:95:86: 29:6c:9b:03:3b:9d:92:7a:cb:aa:5f:7c:d3:e3:39:c5:f1:18: cd:e6:64:b8:a3:ad:82:5b:e5:4c:3f:7b:68:99:77:18:9b:0d: a5:27:1f:d0:27:56:ae:2a:1e:94:26:72:88:a1:7e:2f:36:f1: f8:15:6f:eb:93:9b:51:5a:b4:25:0e:4a:8d:c1:f0:27:29:f5: 53:ac:f7:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUwNjI5MDUyNDI0WhcNMjUwNzA2MDUyNDI0WjAYMRYwFAYD VQQDEw02ODYwY2UwOC1kNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0hscf2eOr7UicTa4yZQnhqtVtkMqBYtoPLjaYLyS1ahDLiYIhDror7wrVCt mbbvj/M7IBID2uTwuIywTc4zXzFs10ZIu15GqTJWKHzHmeytDjkI7rbZiJN2N17w hJ3fQEwOW98hKf0A0QgH0YjKfanVm82jE0XfYD73xQ2Brv1Vy1To0V3zY4Yrq2hQ e35Y+Y5xKZrpF8TuzvjTj4vylHqPBfqutR6UFAlsmNDWaNv5tWxAqvJ5M5z3tspj WjuCOK3kLpjPOoXn+KfAXmaR13sxvMhsMVzhXAd5pTHm/91zJaC4mDhcNJHJbgVY 9OPNiFlOC7NnKcYL9/INqkP1eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyj4AOd 9DxRI6nkfwT1AceMlKkmMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUFCOS9EMTE4QzBCQzZFODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdz dzJPMGN2VDJuYWc3NjFaaE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTCEkBIQj1GzWwACNzjc7o4BZI20sR6P4boPPe5Zei/BRaE25W/cag RNis6xcau1zOaq/RIPJB0vAiEp5gc/FjjjvVaSf6TXHvmRcOBruYrPCRwNOfiP/E p+i7ltgRZmNF5U5h4+EZ1Mwni7PqgVxQBODRWbxOZJNSWse1AYI62hZw9XSG9pST MMqvpP8fP7fOG29WHQRMYq/29pD2QANuAHa1G0q6pCA/WuLphAjtcxtQlYYpbJsD O52SesuqX3zT4znF8RjN5mS4o62CW+VMP3tomXcYmw2lJx/QJ1auKh6UJnKIoX4v NvH4FW/rk5tRWrQlDkqNwfAnKfVTrPck -----END CERTIFICATE-----Generated at Tue Jul 1 05:21:53 2025 by rpki-client