$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: hBMEl88YGnLYKG0sOTUe9I43iJDlTTMryTn+dcM/TWY= Subject key identifier: 42:BD:F2:4C:82:D3:32:0B:61:BF:29:66:BC:D6:F1:0D:59:1F:85:DB Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 260D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 25F8 Signing time: Sat 10 May 2025 15:38:53 +0000 Manifest this update: Sat 10 May 2025 15:38:53 +0000 Manifest next update: Sat 17 May 2025 15:38:53 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: EDjF5uLTGBj+nsHYner5TIWrtrckuLJJv1RslAgXziQ=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: +bflLncVpUKisFQ3ZZUQI/J0k3+BOK9UN6bLx8p1G6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9741 (0x260d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: May 10 15:38:53 2025 GMT Not After : May 17 15:38:53 2025 GMT Subject: CN=681f730d-9e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:23:3f:1a:94:2d:65:2f:06:64:2b:a5:2b:a7: 81:b8:18:66:0e:f6:1a:9d:8a:89:85:8f:10:fa:ed: 07:d2:84:6d:6d:ed:6c:bc:b6:dc:1a:a5:2e:c0:52: 28:c0:64:a0:e8:e9:c3:a8:37:a3:8b:e6:a9:1a:c9: 8c:e5:54:07:7c:a5:dc:10:b1:c6:e0:ba:d0:35:6a: 8e:5d:c5:c9:73:ed:01:ee:88:67:fb:14:c6:ee:dd: a6:d9:c5:d0:90:93:a8:fc:dc:ef:4c:27:45:86:9e: 0f:70:97:5c:c2:89:5f:2f:bb:19:66:2b:fd:2e:0c: 46:d1:09:e9:d8:4b:08:f0:3d:12:8c:e0:11:db:6c: 38:f8:b3:49:64:73:42:ab:98:29:53:f2:22:43:f0: cd:58:9c:40:89:52:e2:33:46:ce:be:cb:8d:23:95: 30:7c:f7:ea:e4:b9:0f:7b:69:8b:c5:bb:2e:e2:b5: 6d:f2:58:dc:bc:55:45:42:81:e5:95:06:12:03:fd: 2b:c4:20:48:0b:18:e6:67:5c:c4:95:f0:a7:be:dc: 6e:45:cc:17:11:ef:b0:c8:2e:f1:81:4c:66:18:cd: 69:e4:34:94:4b:cb:64:b2:42:83:0e:5c:8a:3f:b8: b4:8b:4d:02:c4:93:2f:41:98:87:57:2e:9e:d3:e3: 02:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BD:F2:4C:82:D3:32:0B:61:BF:29:66:BC:D6:F1:0D:59:1F:85:DB X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:69:cc:6f:a5:72:8c:3f:7c:62:8a:02:9b:7b:64:17:36:79: 1a:4e:18:ff:c9:19:fc:47:78:a6:7f:f7:c2:31:48:0a:01:06: 20:54:2f:a6:1c:55:64:11:3e:79:c7:47:0a:36:0d:db:91:a5: 84:9e:0a:95:6d:41:51:7c:30:df:dc:ab:6f:42:0d:d1:50:eb: ce:0c:50:ec:04:8a:50:35:ee:72:da:c1:8d:8f:82:e5:e4:25: 80:4b:c8:e4:28:25:95:6c:94:58:51:c7:98:de:37:6c:3f:3f: 19:47:bf:56:a8:c4:09:0f:42:5c:22:d6:d4:e2:78:fc:ca:07: 33:f9:5d:b8:6b:d8:c4:bf:b3:3b:79:64:20:b2:b3:7a:c5:1a: a0:21:9b:ea:8a:f5:26:4c:cb:6f:09:aa:34:26:3a:6d:4f:e2: d2:01:21:84:34:cb:01:89:b2:98:87:cd:d3:60:8e:a5:5c:dc: ba:73:4f:25:df:b3:58:b2:ee:49:23:f2:37:c9:01:0d:8c:0c: de:88:27:08:8c:f2:2a:ee:e8:dd:a4:d3:26:98:1f:ad:3a:8e: 99:8c:0e:26:bc:a8:fb:df:99:9b:d3:a7:df:1a:a1:49:c4:7b: e7:5c:f5:37:6b:68:d1:a2:3f:03:ef:92:55:9d:a7:5b:0f:8a: a6:91:a9:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwNTEwMTUzODUzWhcNMjUwNTE3MTUzODUzWjAYMRYwFAYD VQQDEw02ODFmNzMwZC05ZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyM/GpQtZS8GZCulK6eBuBhmDvYanYqJhY8Q+u0H0oRtbe1svLbcGqUuwFIo wGSg6OnDqDeji+apGsmM5VQHfKXcELHG4LrQNWqOXcXJc+0B7ohn+xTG7t2m2cXQ kJOo/NzvTCdFhp4PcJdcwolfL7sZZiv9LgxG0Qnp2EsI8D0SjOAR22w4+LNJZHNC q5gpU/IiQ/DNWJxAiVLiM0bOvsuNI5UwfPfq5LkPe2mLxbsu4rVt8ljcvFVFQoHl lQYSA/0rxCBICxjmZ1zElfCnvtxuRcwXEe+wyC7xgUxmGM1p5DSUS8tkskKDDlyK P7i0i00CxJMvQZiHVy6e0+MCRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEK98kyC 0zILYb8pZrzW8Q1ZH4XbMB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMacxvpXKMP3xiigKbe2QXNnkaThj/yRn8R3imf/fCMUgKAQYgVC+m HFVkET55x0cKNg3bkaWEngqVbUFRfDDf3KtvQg3RUOvODFDsBIpQNe5y2sGNj4Ll 5CWAS8jkKCWVbJRYUceY3jdsPz8ZR79WqMQJD0JcItbU4nj8ygcz+V24a9jEv7M7 eWQgsrN6xRqgIZvqivUmTMtvCao0JjptT+LSASGENMsBibKYh83TYI6lXNy6c08l 37NYsu5JI/I3yQENjAzeiCcIjPIq7ujdpNMmmB+tOo6ZjA4mvKj735mb06ffGqFJ xHvnXPU3a2jRoj8D75JVnadbD4qmkal9 -----END CERTIFICATE-----Generated at Sun May 11 11:01:07 2025 by rpki-client