$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft File: oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft (raw, json) Hash identifier: RXLzPpy73FgUPmDiSjurnTYnlq/VKtH33kTDW7CUKfg= Subject key identifier: C6:CD:BA:91:0F:FE:09:80:88:93:99:3E:74:EA:33:7D:EB:B2:FA:D9 Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 03BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft Manifest number: 03A7 Signing time: Sun 11 May 2025 00:20:08 +0000 Manifest this update: Sun 11 May 2025 00:20:08 +0000 Manifest next update: Sun 18 May 2025 00:20:08 +0000 Files and hashes: 1: oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl (hash: a3EMaTtzFhVtz2caOKD8qJV95OasIS/63TtM6YZMTVg=) 2: 5A76CDC2989511EC821F343DC4F9AE02.roa (hash: PFHGyRpc2XbCpMP3oZwcoRFS7cS4eDGCTFH+DmvXr+c=) 3: 17D3C6A89B2611EC8880303EC4F9AE02.roa (hash: dmwskcX+7K87R4MLVSKhbA64Ib5h40ZpO651aHbL2xA=) 4: 8F5EABBE919F11EDA7387A37C4F9AE02.roa (hash: 8Wa5zRD8JBVDnPrtDrMM10W+ePzBdP7fVD0dPyvthC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:20:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 957 (0x3bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D, serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: May 11 00:20:08 2025 GMT Not After : May 18 00:20:08 2025 GMT Subject: CN=681fed38-e4b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0d:c1:a8:88:3d:5e:fa:35:8e:63:ca:71:a5: 85:8d:9f:58:81:1a:b4:70:63:37:d5:ed:0b:8c:75: e2:22:8a:7a:88:16:52:ba:82:ad:c6:80:b8:ba:22: 0b:f3:ff:fc:2b:87:48:b2:9e:b7:08:34:80:e5:28: 75:ed:c7:c5:dd:6c:fd:3e:60:b5:6c:d8:d1:35:cc: 6f:a9:e8:aa:d5:19:0c:9f:0b:58:af:2f:ab:0d:38: 0b:97:5a:1f:b4:2c:84:7d:d4:d9:ce:27:7d:eb:19: f2:fa:58:52:b0:95:a5:d0:1e:a9:1f:a3:8a:f6:d0: 71:07:17:25:4e:90:5d:5e:e4:f3:6a:e1:b1:fb:84: f7:16:e3:a5:69:bb:ac:30:60:7e:06:37:5d:d2:9c: 1c:f3:b9:36:2d:19:61:0c:3e:c7:29:d8:78:89:9f: ab:0c:29:b8:cc:d7:95:bf:94:ce:cc:bb:4c:32:93: 4a:e7:7b:df:ea:03:ab:ce:6c:fa:46:b3:54:d9:6e: 9c:48:9e:3a:0a:06:49:5f:63:41:9c:73:c6:ec:ec: da:b6:13:c5:f6:b0:45:40:53:6e:15:68:3f:86:e3: 95:74:2c:27:fe:ad:de:71:17:2d:d9:29:8d:fe:87: 23:11:0d:63:94:8e:01:3c:cc:7f:c5:fa:93:fc:53: 38:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:CD:BA:91:0F:FE:09:80:88:93:99:3E:74:EA:33:7D:EB:B2:FA:D9 X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:01:88:94:16:3b:d3:eb:c3:b8:a9:91:8a:9f:98:15:e9:4a: 76:02:62:b7:57:c7:43:35:fe:bf:1d:cf:c3:ef:68:a2:33:11: e8:c5:52:fb:4e:26:6f:6a:fd:36:35:df:a0:46:0e:e6:81:1d: e6:a2:27:b8:1f:fe:1b:c5:fb:63:a0:9f:65:ef:be:4e:ec:ce: 1d:d0:00:70:aa:0d:56:b0:b6:97:5a:6e:98:49:6f:bc:ee:7b: 5c:89:b3:25:a7:df:f3:6d:48:60:21:9a:14:92:a3:5c:9d:55: 2a:fc:44:d0:9a:c0:ec:b3:90:d1:d5:5a:8b:85:98:fc:9c:e1: bd:36:5c:16:45:a2:1e:ac:56:0d:d0:98:b9:63:ff:68:fe:0c: 94:07:c9:24:85:21:de:d8:4b:2b:81:38:d6:6d:a3:33:77:44: 38:b8:bc:52:f2:21:89:3e:da:f8:f7:82:9b:f9:12:d7:08:24: 1d:52:db:d3:31:01:b8:5d:9d:ad:a7:db:00:64:fb:8c:c9:f3: 6e:01:aa:03:99:f7:e8:f1:7f:c7:df:a5:7d:07:19:cc:d1:f2: 80:22:a9:cd:6f:fc:8f:0a:ac:79:f2:d5:57:b9:b2:9e:6c:04: 53:6a:89:2c:58:20:8c:40:27:30:9d:96:f4:47:aa:a2:a7:8f: 4c:d4:40:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjUwNTExMDAyMDA4WhcNMjUwNTE4MDAyMDA4WjAYMRYwFAYD VQQDEw02ODFmZWQzOC1lNGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyw3BqIg9Xvo1jmPKcaWFjZ9YgRq0cGM31e0LjHXiIop6iBZSuoKtxoC4uiIL 8//8K4dIsp63CDSA5Sh17cfF3Wz9PmC1bNjRNcxvqeiq1RkMnwtYry+rDTgLl1of tCyEfdTZzid96xny+lhSsJWl0B6pH6OK9tBxBxclTpBdXuTzauGx+4T3FuOlabus MGB+Bjdd0pwc87k2LRlhDD7HKdh4iZ+rDCm4zNeVv5TOzLtMMpNK53vf6gOrzmz6 RrNU2W6cSJ46CgZJX2NBnHPG7OzathPF9rBFQFNuFWg/huOVdCwn/q3ecRct2SmN /ocjEQ1jlI4BPMx/xfqT/FM4VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbNupEP /gmAiJOZPnTqM33rsvrZMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUYyRC9DRDZENkU1Njk4OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03 NFFhLXJ0My1uenVEUnROMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHAYiUFjvT68O4qZGKn5gV6Up2AmK3V8dDNf6/Hc/D72iiMxHoxVL7 TiZvav02Nd+gRg7mgR3moie4H/4bxftjoJ9l775O7M4d0ABwqg1WsLaXWm6YSW+8 7ntcibMlp9/zbUhgIZoUkqNcnVUq/ETQmsDss5DR1VqLhZj8nOG9NlwWRaIerFYN 0Ji5Y/9o/gyUB8kkhSHe2EsrgTjWbaMzd0Q4uLxS8iGJPtr494Kb+RLXCCQdUtvT MQG4XZ2tp9sAZPuMyfNuAaoDmffo8X/H36V9BxnM0fKAIqnNb/yPCqx58tVXubKe bARTaoksWCCMQCcwnZb0R6qip49M1EDo -----END CERTIFICATE-----Generated at Sun May 11 09:42:46 2025 by rpki-client