$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft File: DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft (raw, json) Hash identifier: LU1phladRzncJoVLpIILSltFTExRspd6cgQUdWWdBQY= Subject key identifier: C4:EE:1F:09:33:F7:02:5A:A8:E5:F2:60:83:A7:C3:52:35:9D:83:5E Authority key identifier: 0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 Certificate issuer: /CN=A91F2C07/serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft Manifest number: 25 Signing time: Thu 03 Jul 2025 08:03:44 +0000 Manifest this update: Thu 03 Jul 2025 08:03:44 +0000 Manifest next update: Thu 10 Jul 2025 08:03:44 +0000 Files and hashes: 1: DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl (hash: JWPuGI7pEeAirQo266x6mb1pu7W7AErCu7Hotgv53PU=) 2: FDD4FA341E6111F0B8D45B79C4F9AE02.roa (hash: 7JB/cgKUwfUR4YGlIPTezqpMMVQ3OA1LBmpMpECbKmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2C07, serialNumber=0CE060C2E430DD851810C9F20FEC1BA21199E3D6 Validity Not Before: Jul 3 08:03:44 2025 GMT Not After : Jul 10 08:03:44 2025 GMT Subject: CN=68663960-392e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e6:fa:f0:56:37:e1:73:31:6f:8d:b9:26:60: 0a:db:e4:e7:e2:00:5d:71:27:54:28:2b:88:2f:eb: 09:f9:43:1f:2e:c2:fe:2c:51:1c:d0:8e:7a:68:a0: e6:80:00:7e:9c:da:10:0d:45:44:d1:c9:eb:28:c1: aa:67:cf:29:2f:c5:56:40:96:f7:e9:13:4c:fc:f5: 71:40:e2:ad:ff:ce:d4:1e:43:0b:05:67:1a:dd:50: 75:55:0c:c4:52:a7:5a:d7:a5:6c:0e:86:64:18:f6: e9:4a:96:d4:0b:c2:7b:f3:ef:1f:2e:0d:63:a7:ed: 51:e9:4f:6b:ba:aa:2e:8a:8d:7d:05:19:28:7a:77: 0c:48:f7:d3:e5:1c:31:1f:6f:82:cc:f9:9f:60:eb: d7:be:56:4a:a7:b2:58:5b:26:10:b2:67:2b:40:d7: cb:6e:a9:9b:89:a7:b0:bb:22:08:ef:33:74:04:a3: b1:69:88:f5:6e:a4:d9:56:51:bc:7d:e8:5f:d1:dd: be:24:8a:48:a2:fd:a2:59:a0:9f:49:eb:6e:df:56: f5:1a:24:20:0b:fd:bd:ca:a3:90:a0:95:65:b2:3d: db:b0:a7:21:4d:37:19:33:6e:22:0a:73:e3:7d:45: 17:c3:6b:a3:e3:5d:5c:80:ac:db:29:42:0b:46:78: 43:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:EE:1F:09:33:F7:02:5A:A8:E5:F2:60:83:A7:C3:52:35:9D:83:5E X509v3 Authority Key Identifier: keyid:0C:E0:60:C2:E4:30:DD:85:18:10:C9:F2:0F:EC:1B:A2:11:99:E3:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOBgwuQw3YUYEMnyD-wbohGZ49Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2C07/A774A9CE1E6011F0B7DC7654C4F9AE02/DOBgwuQw3YUYEMnyD-wbohGZ49Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:13:3b:65:72:8e:61:bf:df:79:f0:69:07:47:d7:09:10:ea: 37:ff:d9:9a:d3:0a:7e:3b:28:cb:dd:86:b9:67:99:6d:8a:28: 52:e1:8e:18:5d:0e:12:0f:d5:73:70:f0:6b:7f:ec:f7:3f:6e: ba:b4:ac:02:97:ef:8f:4e:c2:3c:c1:0c:e3:c4:c3:e8:84:15: 85:59:85:aa:fc:3f:20:42:0a:0d:fc:e0:ca:f8:9f:75:7a:24: 8b:fb:f0:20:90:e9:de:07:de:1c:7b:e6:b7:5a:e3:8c:55:f0: f6:b3:69:c3:9e:e1:b0:96:7d:bd:cd:4f:be:4d:0f:be:70:f8: f9:c3:95:a9:92:25:82:20:1e:c0:4d:01:54:24:42:0d:d2:07: d2:fb:eb:6e:ca:58:13:08:5e:04:5e:ad:00:0b:6e:6a:f7:aa: 52:23:73:89:95:8d:ad:ba:50:66:eb:7e:b8:4b:51:cd:d3:e0: 2c:53:7b:d1:b5:7e:18:9c:d7:46:c6:ee:48:4e:ff:14:2b:79: db:1e:c8:be:b5:97:68:0f:32:2d:45:f6:e7:66:f3:93:d5:dc: 26:60:b5:23:20:77:01:40:74:54:71:d4:e9:b5:49:f2:28:30: 32:bd:4b:4c:73:dd:65:3e:71:aa:d2:70:c0:67:7b:61:da:2c: d6:4c:0f:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkMwNzExMC8GA1UEBRMoMENFMDYwQzJFNDMwREQ4NTE4MTBDOUYyMEZFQzFCQTIx MTk5RTNENjAeFw0yNTA3MDMwODAzNDRaFw0yNTA3MTAwODAzNDRaMBgxFjAUBgNV BAMTDTY4NjYzOTYwLTM5MmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDu5vrwVjfhczFvjbkmYArb5OfiAF1xJ1QoK4gv6wn5Qx8uwv4sURzQjnpooOaA AH6c2hANRUTRyesowapnzykvxVZAlvfpE0z89XFA4q3/ztQeQwsFZxrdUHVVDMRS p1rXpWwOhmQY9ulKltQLwnvz7x8uDWOn7VHpT2u6qi6KjX0FGSh6dwxI99PlHDEf b4LM+Z9g69e+VkqnslhbJhCyZytA18tuqZuJp7C7IgjvM3QEo7FpiPVupNlWUbx9 6F/R3b4kikii/aJZoJ9J627fVvUaJCAL/b3Ko5CglWWyPduwpyFNNxkzbiIKc+N9 RRfDa6PjXVyArNspQgtGeEOtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxO4fCTP3 Alqo5fJgg6fDUjWdg14wHwYDVR0jBBgwFoAUDOBgwuQw3YUYEMnyD+wbohGZ49Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyQzA3L0E3NzRBOUNFMUU2 MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lVWUVNbnlELXdib2hHWjQ5 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRE9CZ3d1UXczWVVZRU1ueUQtd2JvaEdaNDlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy QzA3L0E3NzRBOUNFMUU2MDExRjBCN0RDNzY1NEM0RjlBRTAyL0RPQmd3dVF3M1lV WUVNbnlELXdib2hHWjQ5WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJkTO2VyjmG/33nwaQdH1wkQ6jf/2ZrTCn47KMvdhrlnmW2KKFLhjhhd DhIP1XNw8Gt/7Pc/brq0rAKX749OwjzBDOPEw+iEFYVZhar8PyBCCg384Mr4n3V6 JIv78CCQ6d4H3hx75rda44xV8PazacOe4bCWfb3NT75ND75w+PnDlamSJYIgHsBN AVQkQg3SB9L7627KWBMIXgRerQALbmr3qlIjc4mVja26UGbrfrhLUc3T4CxTe9G1 fhic10bG7khO/xQredseyL61l2gPMi1F9udm85PV3CZgtSMgdwFAdFRx1Om1SfIo MDK9S0xz3WU+carScMBne2HaLNZMD74= -----END CERTIFICATE-----Generated at Thu Jul 3 15:15:25 2025 by rpki-client