$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft File: oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft (raw, json) Hash identifier: vJGtVSxSWdtcPymPw/WBw1ytSFFPZ4E5IQcC9AT28QQ= Subject key identifier: E0:DC:19:A8:0B:9C:E0:C3:82:43:E8:B0:2F:4B:38:63:12:C5:F3:7F Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 03D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft Manifest number: 03C0 Signing time: Tue 01 Jul 2025 01:16:36 +0000 Manifest this update: Tue 01 Jul 2025 01:16:35 +0000 Manifest next update: Tue 08 Jul 2025 01:16:35 +0000 Files and hashes: 1: oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl (hash: 49BlyNwejFpkxc4QBoO7CHGh3KqfsMdXT8MAeIEyqUA=) 2: 5A76CDC2989511EC821F343DC4F9AE02.roa (hash: PFHGyRpc2XbCpMP3oZwcoRFS7cS4eDGCTFH+DmvXr+c=) 3: 17D3C6A89B2611EC8880303EC4F9AE02.roa (hash: dmwskcX+7K87R4MLVSKhbA64Ib5h40ZpO651aHbL2xA=) 4: 8F5EABBE919F11EDA7387A37C4F9AE02.roa (hash: 8Wa5zRD8JBVDnPrtDrMM10W+ePzBdP7fVD0dPyvthC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 982 (0x3d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D, serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Jul 1 01:16:35 2025 GMT Not After : Jul 8 01:16:35 2025 GMT Subject: CN=686336f4-479b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:34:44:c3:76:14:36:ed:bc:c0:9b:00:b4:9a: 51:34:c1:69:cb:49:3d:f8:71:60:f7:7a:f8:60:86: e7:c6:8b:61:4e:a6:d0:30:f4:df:18:94:91:cb:4a: 6c:45:e5:5b:89:8d:be:12:c8:9c:34:48:7d:27:73: da:19:49:4a:bf:01:d7:07:00:f5:88:d1:1e:20:41: 5c:d5:d0:f0:d1:ac:c2:de:79:7d:00:ad:e8:ec:47: 34:2a:aa:22:d8:2b:c6:13:95:3f:9d:16:a7:01:6e: ed:50:5d:10:ff:be:f4:5e:8a:8c:24:52:9e:6d:41: 21:52:8a:58:d3:79:d8:cb:45:c7:17:d4:f8:e6:4d: 9a:1d:7e:ce:03:1c:7a:7a:d0:e2:d8:58:a4:d3:c1: 29:a5:04:bb:2f:96:ca:06:3e:16:9c:d6:59:a5:84: 8d:a6:6d:d4:b9:c5:94:33:8e:4f:70:ec:47:e8:f1: 0c:ca:eb:13:43:8b:fd:76:e8:95:f0:6c:e7:1e:1a: 36:53:cb:d6:5c:a9:ab:d3:ca:a6:d5:a1:8a:c9:b3: 0c:39:90:f8:4e:0c:2e:3a:e0:b4:11:f0:50:02:f2: 93:8f:69:96:89:d0:af:98:b4:7b:5a:55:99:83:a8: 34:ed:97:fd:2d:a1:56:43:86:24:5a:15:6d:04:71: 79:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DC:19:A8:0B:9C:E0:C3:82:43:E8:B0:2F:4B:38:63:12:C5:F3:7F X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e2:45:42:cb:13:59:d1:6e:6f:ca:7f:27:10:dd:69:1c:2c: 6b:da:e2:b9:ab:ee:66:8d:a3:12:f6:18:4e:60:ca:01:aa:84: 33:ff:a2:fd:5e:a5:f4:cd:5e:fd:ab:fb:ce:c9:79:04:f7:b3: ad:45:f9:2a:d1:5d:20:85:87:79:c5:29:99:e6:7a:01:7a:75: 4a:30:ca:95:a9:a6:ea:f6:4e:bd:a8:b4:f7:c5:9d:42:b0:50: a9:cb:ad:5a:ee:fa:44:f6:6d:42:49:0d:a5:94:81:b8:4d:ba: 8c:3c:29:29:6e:6e:80:3c:91:94:f3:e3:89:4c:84:fe:03:68: 9e:c0:c9:c0:0f:a9:d6:d3:ef:f6:36:ec:a2:52:e9:96:93:dd: 72:aa:09:4f:28:ac:b0:1e:01:4a:a5:d6:18:a5:5e:21:5d:88: 86:e7:b4:54:51:aa:c9:14:5a:32:ae:c0:df:d8:c2:bc:33:b9: cc:8d:4d:89:fb:94:b2:12:57:b0:27:fd:b7:57:5a:4f:9a:7c: f3:a0:76:1a:47:42:98:a6:2c:49:f1:94:c1:ef:60:2a:f9:ba: b5:0c:2e:21:6b:ed:1e:93:1d:3e:1a:48:e6:93:cc:3a:35:f0: 4d:85:67:5d:9c:c1:71:94:c9:14:1f:18:56:fb:ba:0b:3d:d4: 5b:77:41:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjUwNzAxMDExNjM1WhcNMjUwNzA4MDExNjM1WjAYMRYwFAYD VQQDEw02ODYzMzZmNC00NzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DREw3YUNu28wJsAtJpRNMFpy0k9+HFg93r4YIbnxothTqbQMPTfGJSRy0ps ReVbiY2+EsicNEh9J3PaGUlKvwHXBwD1iNEeIEFc1dDw0azC3nl9AK3o7Ec0Kqoi 2CvGE5U/nRanAW7tUF0Q/770XoqMJFKebUEhUopY03nYy0XHF9T45k2aHX7OAxx6 etDi2Fik08EppQS7L5bKBj4WnNZZpYSNpm3UucWUM45PcOxH6PEMyusTQ4v9duiV 8GznHho2U8vWXKmr08qm1aGKybMMOZD4TgwuOuC0EfBQAvKTj2mWidCvmLR7WlWZ g6g07Zf9LaFWQ4YkWhVtBHF57wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODcGagL nODDgkPosC9LOGMSxfN/MB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUYyRC9DRDZENkU1Njk4OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03 NFFhLXJ0My1uenVEUnROMGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj4kVCyxNZ0W5vyn8nEN1pHCxr2uK5q+5mjaMS9hhOYMoBqoQz/6L9 XqX0zV79q/vOyXkE97OtRfkq0V0ghYd5xSmZ5noBenVKMMqVqabq9k69qLT3xZ1C sFCpy61a7vpE9m1CSQ2llIG4TbqMPCkpbm6APJGU8+OJTIT+A2iewMnAD6nW0+/2 NuyiUumWk91yqglPKKywHgFKpdYYpV4hXYiG57RUUarJFFoyrsDf2MK8M7nMjU2J +5SyElewJ/23V1pPmnzzoHYaR0KYpixJ8ZTB72Aq+bq1DC4ha+0ekx0+Gkjmk8w6 NfBNhWddnMFxlMkUHxhW+7oLPdRbd0HQ -----END CERTIFICATE-----Generated at Tue Jul 1 11:09:08 2025 by rpki-client