$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: er8ehnddQE3LXDieOqf2KoWclNdOTRIA6eULLAio8IM= Subject key identifier: CC:FE:78:86:DC:DE:DF:CC:B4:69:64:4A:07:75:8A:09:44:A9:19:84 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 2612 Signing time: Mon 30 Jun 2025 15:45:04 +0000 Manifest this update: Mon 30 Jun 2025 15:45:03 +0000 Manifest next update: Mon 07 Jul 2025 15:45:03 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: NvotOR06g8AVcaAPvmWQYXIMVJItY4BbCq4zqRrjl3c=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: +bflLncVpUKisFQ3ZZUQI/J0k3+BOK9UN6bLx8p1G6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9767 (0x2627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Jun 30 15:45:03 2025 GMT Not After : Jul 7 15:45:03 2025 GMT Subject: CN=6862b100-0dbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:9d:5a:95:35:8d:b8:de:b0:51:1a:5d:3c:5d: 65:65:e1:0f:7a:3a:b5:d4:35:8a:12:af:b5:b2:fc: 13:e8:da:11:91:4e:65:10:ab:73:03:32:dc:ba:b3: 35:a7:65:c7:af:de:f4:6a:f3:78:bf:25:9e:b5:f8: cc:a4:1e:97:e4:52:c1:09:6f:0e:35:e5:66:d7:8d: 1f:ab:bf:32:e8:8c:2e:2e:50:41:2a:b9:a7:a1:53: 8f:37:b6:0b:b6:7d:dc:c3:a1:11:32:99:1a:0d:a9: 1e:58:d4:f9:2c:bd:ba:a4:40:6f:54:02:cb:0b:97: b4:d1:aa:94:4e:37:64:b4:28:d5:c6:8e:1b:f8:3a: 5f:ba:ba:d9:80:ed:30:b1:d0:1d:bf:94:92:ca:a2: 50:e0:88:d1:bd:2d:1e:e7:2b:85:2b:fb:d0:14:9c: cd:87:00:bb:7b:7c:50:b1:f7:11:63:71:c6:07:a7: 1a:a8:f1:47:3d:49:22:8d:b1:de:46:a1:30:dd:d5: aa:9d:7a:82:26:81:be:68:0a:9b:ea:5e:6f:49:91: 00:c0:a6:6e:82:8f:de:47:8a:d0:cc:f1:77:a0:a8: 2e:f0:b2:7a:ca:6d:3b:b1:81:74:6a:fa:82:95:92: 22:70:c6:89:ef:ee:02:a0:d5:af:b6:ff:bd:3b:fc: 1c:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FE:78:86:DC:DE:DF:CC:B4:69:64:4A:07:75:8A:09:44:A9:19:84 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:1c:a5:f0:3a:16:df:db:67:3e:82:2a:7f:11:7c:e1:98:d8: 27:8e:1a:fc:00:c1:13:78:f4:b6:9f:b6:1d:80:f0:e9:62:cd: 50:e3:d8:bc:51:92:3d:0d:58:94:8a:77:29:fc:ba:17:26:95: 35:55:1b:de:75:f3:30:44:85:a7:b6:86:dc:66:ae:de:e0:40: e3:ea:39:e8:33:76:ed:28:57:c1:7a:21:24:aa:63:ad:8f:f9: 94:f7:29:27:79:d8:e4:e4:7c:ed:6f:7c:f2:57:3b:df:60:b9: 77:99:49:27:ae:05:60:f6:09:fd:8b:44:8c:e0:ab:72:fe:d0: 94:9f:77:87:3f:1a:3e:54:3c:30:55:2a:4c:27:15:a8:da:a9: 2b:b2:a6:33:34:c7:db:d7:17:f6:8f:90:85:21:72:42:ca:c9: 29:16:6e:6f:70:96:b1:25:95:47:f4:5b:a1:40:ab:5b:f8:4b: 9a:01:4b:27:8b:f3:96:10:dd:36:72:58:6b:23:cc:93:16:9a: 5a:dc:3e:3d:7e:00:7f:2f:95:f2:13:12:b5:59:9e:12:e8:a9: cd:66:09:82:c0:99:7f:5f:5e:26:ce:fe:23:b7:76:77:97:df: f8:6d:00:45:46:34:09:4d:71:d3:ec:c7:31:38:02:14:ef:94: 2e:76:60:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwNjMwMTU0NTAzWhcNMjUwNzA3MTU0NTAzWjAYMRYwFAYD VQQDEw02ODYyYjEwMC0wZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7p1alTWNuN6wURpdPF1lZeEPejq11DWKEq+1svwT6NoRkU5lEKtzAzLcurM1 p2XHr970avN4vyWetfjMpB6X5FLBCW8ONeVm140fq78y6IwuLlBBKrmnoVOPN7YL tn3cw6ERMpkaDakeWNT5LL26pEBvVALLC5e00aqUTjdktCjVxo4b+DpfurrZgO0w sdAdv5SSyqJQ4IjRvS0e5yuFK/vQFJzNhwC7e3xQsfcRY3HGB6caqPFHPUkijbHe RqEw3dWqnXqCJoG+aAqb6l5vSZEAwKZugo/eR4rQzPF3oKgu8LJ6ym07sYF0avqC lZIicMaJ7+4CoNWvtv+9O/wcEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMz+eIbc 3t/MtGlkSgd1iglEqRmEMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQHKXwOhbf22c+gip/EXzhmNgnjhr8AMETePS2n7YdgPDpYs1Q49i8 UZI9DViUincp/LoXJpU1VRvedfMwRIWntobcZq7e4EDj6jnoM3btKFfBeiEkqmOt j/mU9yknedjk5Hztb3zyVzvfYLl3mUknrgVg9gn9i0SM4Kty/tCUn3eHPxo+VDww VSpMJxWo2qkrsqYzNMfb1xf2j5CFIXJCyskpFm5vcJaxJZVH9FuhQKtb+EuaAUsn i/OWEN02clhrI8yTFppa3D49fgB/L5XyExK1WZ4S6KnNZgmCwJl/X14mzv4jt3Z3 l9/4bQBFRjQJTXHT7McxOAIU75QudmD+ -----END CERTIFICATE-----Generated at Tue Jul 1 20:49:07 2025 by rpki-client