$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: RAAC0MFVPJdf9mP6JO2PAIFH/Aa4KwxrO6Cn4oP0G1g= Subject key identifier: 4C:CE:77:33:1D:84:DE:B8:32:CA:02:48:C1:69:CD:59:30:AF:A6:0D Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0D52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0D4A Signing time: Wed 02 Jul 2025 18:13:08 +0000 Manifest this update: Wed 02 Jul 2025 18:13:08 +0000 Manifest next update: Wed 09 Jul 2025 18:13:08 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: 5OlUQaRxDPQemBln0Npdh4ENkpBW0ep/b76fQzdHpHw=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: C8YUnzVpdG1ic9MCuW7celmXkhXkYeCvagfWnZShYbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3410 (0xd52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Jul 2 18:13:08 2025 GMT Not After : Jul 9 18:13:08 2025 GMT Subject: CN=686576b4-99ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:10:11:31:40:4a:af:3c:8b:2d:1d:e4:b7:75: 57:e3:7e:b5:53:fb:d3:12:3c:74:e4:14:6b:aa:a9: 96:7d:2c:20:51:13:44:f1:34:0d:b0:4b:6f:a8:84: e6:c8:cc:c5:91:9d:8c:fe:ee:e6:4c:c6:11:bc:5a: 01:f7:71:c9:78:23:68:9f:f1:20:c3:b8:0d:cc:c1: cd:82:4e:59:51:22:59:d2:10:54:6a:bb:b8:d9:c1: bf:b0:4c:ff:d3:8a:2f:d6:c8:53:6f:54:ff:5e:74: 10:c3:c0:ae:79:28:5b:ca:2e:19:33:80:7d:0b:27: 56:92:bb:49:8c:ab:55:d7:44:09:a7:f9:99:96:2b: c4:73:d4:01:a1:ab:07:e4:0b:b6:ec:50:72:3b:dc: e0:60:dc:5e:54:99:2e:6b:0a:55:64:aa:83:9c:19: 52:ae:0b:5f:ef:34:c3:99:7c:b9:d6:6e:54:88:d2: 90:10:31:1d:c1:eb:fb:a1:7a:71:fa:d8:91:c6:49: 4b:c3:92:7b:c9:ed:06:6b:fa:19:6a:b8:8b:5f:c9: 36:07:7a:20:3b:76:eb:6a:c0:fd:b8:5e:b1:53:49: 61:b5:71:40:41:07:d6:cf:05:ab:53:1b:e9:ee:b0: 95:c9:fb:07:68:b1:77:bb:15:ce:8c:0f:cb:1d:6f: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:CE:77:33:1D:84:DE:B8:32:CA:02:48:C1:69:CD:59:30:AF:A6:0D X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:a4:18:80:04:7b:e4:f4:da:ec:0d:ff:7d:69:a2:dd:6d:6d: c5:95:56:06:7e:f2:8c:a6:7a:a1:44:a0:ca:c2:a8:e4:16:e8: 3e:61:26:47:a3:b0:c1:20:08:e5:68:11:6d:21:d7:8c:e8:94: a6:f5:70:d9:70:a5:9c:a6:99:48:24:85:4f:45:4c:66:e9:ee: 9b:cd:f3:9a:52:03:17:0c:08:b4:c7:dc:bd:56:ff:f9:5c:c9: 1a:57:ac:af:e8:82:8f:aa:05:36:d2:f3:c5:2e:a3:37:c0:cc: a6:7a:16:5a:6e:b1:d3:e8:a7:b1:69:91:6d:59:d7:a7:7e:14: ea:83:f2:8d:95:b5:bf:d9:0a:4e:2d:83:89:b1:5f:98:fc:6c: 37:0d:61:0b:d2:5a:84:1b:aa:15:7d:0c:2f:e1:60:53:89:d4: bf:36:f2:3b:0e:b7:04:32:1f:73:be:2d:32:ae:56:d8:c7:c9: 8b:c8:4a:e5:5a:91:e3:6e:a5:d2:8f:2b:c0:db:2f:c8:0f:ea: d6:fc:00:bb:1a:f8:82:20:06:21:c5:ca:33:96:c2:0a:7d:a6: 5a:3c:21:91:01:0f:ae:94:21:13:49:cb:ea:ef:f9:42:34:90: a4:b8:16:00:7c:56:4f:97:cf:f4:f4:ac:9f:7d:ef:ac:48:e0: c3:4e:9b:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjUwNzAyMTgxMzA4WhcNMjUwNzA5MTgxMzA4WjAYMRYwFAYD VQQDEw02ODY1NzZiNC05OWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBARMUBKrzyLLR3kt3VX4361U/vTEjx05BRrqqmWfSwgURNE8TQNsEtvqITm yMzFkZ2M/u7mTMYRvFoB93HJeCNon/Egw7gNzMHNgk5ZUSJZ0hBUaru42cG/sEz/ 04ov1shTb1T/XnQQw8CueShbyi4ZM4B9CydWkrtJjKtV10QJp/mZlivEc9QBoasH 5Au27FByO9zgYNxeVJkuawpVZKqDnBlSrgtf7zTDmXy51m5UiNKQEDEdwev7oXpx +tiRxklLw5J7ye0Ga/oZariLX8k2B3ogO3brasD9uF6xU0lhtXFAQQfWzwWrUxvp 7rCVyfsHaLF3uxXOjA/LHW+RlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzOdzMd hN64MsoCSMFpzVkwr6YNMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZpBiABHvk9NrsDf99aaLdbW3FlVYGfvKMpnqhRKDKwqjkFug+YSZH o7DBIAjlaBFtIdeM6JSm9XDZcKWcpplIJIVPRUxm6e6bzfOaUgMXDAi0x9y9Vv/5 XMkaV6yv6IKPqgU20vPFLqM3wMymehZabrHT6KexaZFtWdenfhTqg/KNlbW/2QpO LYOJsV+Y/Gw3DWEL0lqEG6oVfQwv4WBTidS/NvI7DrcEMh9zvi0yrlbYx8mLyErl WpHjbqXSjyvA2y/ID+rW/AC7GviCIAYhxcozlsIKfaZaPCGRAQ+ulCETScvq7/lC NJCkuBYAfFZPl8/09Kyffe+sSODDTpvJ -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:52 2025 by rpki-client