$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: 34poYKLpUMYw8iANqnrtVFlxPs/QSZksqt28E8q0O7k= Subject key identifier: 7E:50:B0:D3:6A:70:B6:9D:D9:92:AD:EF:82:C9:3F:FC:D1:39:14:58 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 7B Signing time: Mon 05 May 2025 05:32:54 +0000 Manifest this update: Mon 05 May 2025 05:32:53 +0000 Manifest next update: Mon 12 May 2025 05:32:53 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: JQTs4jFh1pLI6TIlWSrfdedwXkmwVoMYo0yqzcGX1Wc=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 05:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: May 5 05:32:53 2025 GMT Not After : May 12 05:32:53 2025 GMT Subject: CN=68184d86-fa90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:86:df:fb:94:58:79:74:df:cd:42:26:45: 2b:ca:dd:e8:35:3d:e7:82:d8:db:4f:b9:18:89:2f: fb:13:f4:af:a8:79:3e:6b:4b:8d:70:0e:d4:7c:13: cf:e0:cf:58:c1:44:e4:27:b0:82:e3:c5:7c:26:8b: 57:48:b5:77:12:35:12:97:19:68:72:ef:dd:a6:1e: f0:84:0e:7c:2d:08:6c:3a:9d:72:9f:8b:1a:f5:12: d0:4b:e0:f6:ac:95:a1:d3:df:b4:27:83:e9:76:2e: 04:f7:85:4b:aa:75:78:c1:c2:db:4a:fe:30:5b:4b: 4a:e6:b6:7d:f2:7a:09:19:bb:76:48:9f:55:0e:50: 97:3f:fd:c9:4f:db:2c:d9:13:c3:c9:2a:e6:ff:95: a7:28:c3:3c:b0:68:f9:30:0a:8e:1f:45:5b:55:1d: 51:47:ce:15:58:5e:f2:17:ba:b3:36:6f:e3:ac:d9: c8:1f:99:5d:61:19:23:e3:bd:8a:a6:60:0a:2e:7d: 64:f3:aa:18:c1:ab:97:21:c2:b5:c6:1e:a6:ed:52: c3:cd:eb:a0:59:c7:d5:03:85:41:10:ba:e4:36:eb: ad:15:46:cb:3e:db:76:1a:30:bb:82:a2:05:02:eb: 37:ba:f9:c6:1a:6d:82:51:c3:eb:b5:38:ad:e9:47: ce:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:50:B0:D3:6A:70:B6:9D:D9:92:AD:EF:82:C9:3F:FC:D1:39:14:58 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:8d:db:fb:ee:b7:45:5b:a4:10:59:a0:fe:a6:eb:68:ce:71: 81:e7:48:4e:45:c2:c4:6b:b7:dd:f8:aa:29:66:79:07:30:47: e8:1e:5d:8f:e2:bd:ef:1d:22:1a:3d:27:14:e4:fd:7c:98:12: 84:69:e1:1a:18:39:17:ca:b8:f2:21:a1:f9:31:1e:01:5b:44: 84:69:3a:c3:7d:53:df:45:97:6c:86:3c:27:57:7f:fc:20:70: a1:d2:58:79:9e:60:4f:df:34:9c:25:0a:ad:c1:ce:7b:39:e0: d8:fa:d4:df:e3:16:6a:14:54:bc:5e:9d:00:64:90:e6:79:40: d0:4e:db:d1:e3:bf:63:a4:08:1a:6a:94:f0:81:52:89:c4:dd: 5f:f0:49:c2:55:db:78:4d:d3:7c:60:f0:ba:09:0e:ef:7e:f4: 4b:ee:ba:3e:88:77:d2:0a:60:c2:33:3d:c4:5a:75:3d:a4:81: ff:0e:df:e5:4d:5a:56:8a:83:4d:d1:51:f4:dd:e1:27:3a:1d: 57:d0:88:27:f2:cb:79:5e:72:d6:ee:73:30:a7:cf:31:85:02: 53:b3:54:67:c6:64:e6:e0:d5:ba:20:cb:f4:ae:44:52:89:d7: f1:61:6a:b8:c1:cc:04:5a:01:4d:14:e1:ae:81:93:6c:78:68: 93:fd:36:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUFCOTExMC8GA1UEBRMoMzgxN0NGRTAwQTVGMUFDQzM2M0I0NzJGNEY2OURBODNC RUI1NjYxMzAeFw0yNTA1MDUwNTMyNTNaFw0yNTA1MTIwNTMyNTNaMBgxFjAUBgNV BAMTDTY4MTg0ZDg2LWZhOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1XIbf+5RYeXTfzUImRSvK3eg1PeeC2NtPuRiJL/sT9K+oeT5rS41wDtR8E8/g z1jBROQnsILjxXwmi1dItXcSNRKXGWhy792mHvCEDnwtCGw6nXKfixr1EtBL4Pas laHT37Qng+l2LgT3hUuqdXjBwttK/jBbS0rmtn3yegkZu3ZIn1UOUJc//clP2yzZ E8PJKub/lacowzywaPkwCo4fRVtVHVFHzhVYXvIXurM2b+Os2cgfmV1hGSPjvYqm YAoufWTzqhjBq5chwrXGHqbtUsPN66BZx9UDhUEQuuQ2660VRss+23YaMLuCogUC 6ze6+cYabYJRw+u1OK3pR85DAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUflCw02pw tp3Zkq3vgsk//NE5FFgwHwYDVR0jBBgwFoAUOBfP4ApfGsw2O0cvT2nag761ZhMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QUI5L0QxMThDMEJDNkU4 NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0JmUDRBcGZHc3cyTzBjdlQybmFnNzYxWmhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QUI5L0QxMThDMEJDNkU4NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3 Mk8wY3ZUMm5hZzc2MVpoTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJiN2/vut0VbpBBZoP6m62jOcYHnSE5FwsRrt934qilmeQcwR+geXY/i ve8dIho9JxTk/XyYEoRp4RoYORfKuPIhofkxHgFbRIRpOsN9U99Fl2yGPCdXf/wg cKHSWHmeYE/fNJwlCq3Bzns54Nj61N/jFmoUVLxenQBkkOZ5QNBO29Hjv2OkCBpq lPCBUonE3V/wScJV23hN03xg8LoJDu9+9Evuuj6Id9IKYMIzPcRadT2kgf8O3+VN WlaKg03RUfTd4Sc6HVfQiCfyy3lectbuczCnzzGFAlOzVGfGZObg1bogy/SuRFKJ 1/FharjBzARaAU0U4a6Bk2x4aJP9Nog= -----END CERTIFICATE-----Generated at Mon May 5 07:20:23 2025 by rpki-client