$ rpki-client -vvf rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft File: OhbEBL_tNHJEowpa__ZuSZKqKCE.mft (raw, json) Hash identifier: OylAaLsZCUhp5/AX7jTNqna7hR9dZa1mNQYK8rxQznk= Subject key identifier: 72:6E:A0:A8:B2:59:1D:A0:C4:20:E3:31:27:86:34:B7:5E:B5:3A:8B Authority key identifier: 3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 Certificate issuer: /CN=A91A65C4/serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Certificate serial: 0451 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft Manifest number: 044B Signing time: Sat 14 Jun 2025 23:58:26 +0000 Manifest this update: Sat 14 Jun 2025 23:58:26 +0000 Manifest next update: Sat 21 Jun 2025 23:58:26 +0000 Files and hashes: 1: OhbEBL_tNHJEowpa__ZuSZKqKCE.crl (hash: qFSYBWo7Im515WitmpTAQXUsLnYmqkZBXnUiC/LowYU=) 2: 9D77DCA4599A11ECA574BF52C4F9AE02.roa (hash: /fF1tdSaYFH2w1w+0HXHgYqEthaF4A0sGCD2uCBxpiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1105 (0x451) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A65C4, serialNumber=3A16C404BFED347244A30A5AFFF66E4992AA2821 Validity Not Before: Jun 14 23:58:26 2025 GMT Not After : Jun 21 23:58:26 2025 GMT Subject: CN=684e0ca2-314c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d7:f3:e2:b0:ae:29:c6:cc:89:c1:ac:47:86: 5c:6c:ea:2c:27:cb:e6:8a:1a:b0:0a:69:47:b3:f4: 57:cf:ad:37:40:bf:3b:22:12:cb:b9:d6:46:68:fb: fd:f1:54:6c:38:bb:1f:4e:89:0d:85:6f:de:8c:10: 81:10:25:ca:a4:bd:c7:50:02:98:09:7e:14:8e:31: 96:30:f9:68:28:cc:05:62:3c:ad:73:72:bf:3c:59: 65:8d:33:44:de:5c:33:a7:c7:6e:86:46:1a:76:e3: bc:b2:29:19:72:bd:ab:92:21:c9:74:49:2d:52:6e: 1c:d9:db:a2:e1:c4:47:1d:5f:d9:30:83:b8:7a:67: ea:ce:c8:48:9d:8b:c5:bd:8f:10:6d:55:57:19:ce: 10:48:5b:a9:53:8a:77:74:f8:91:91:90:da:42:c4: 7e:ac:3f:06:f6:2f:db:7a:8d:85:c9:73:64:80:8a: 13:82:53:61:6e:61:ff:d4:e7:19:8a:b3:7f:03:ff: 59:7f:7c:3c:1b:33:ce:10:2e:fa:ff:3c:de:41:43: 09:ee:80:8e:05:84:88:f6:0c:df:a5:87:30:a6:fc: 61:aa:9c:89:5b:b1:ef:58:5f:47:ab:80:2c:f4:94: 98:6f:9b:2f:92:1f:68:3e:b8:61:85:ab:73:3f:6b: 8d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:6E:A0:A8:B2:59:1D:A0:C4:20:E3:31:27:86:34:B7:5E:B5:3A:8B X509v3 Authority Key Identifier: keyid:3A:16:C4:04:BF:ED:34:72:44:A3:0A:5A:FF:F6:6E:49:92:AA:28:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OhbEBL_tNHJEowpa__ZuSZKqKCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A65C4/3E3A5502599811EC9391D550C4F9AE02/OhbEBL_tNHJEowpa__ZuSZKqKCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e1:dd:65:7f:32:5d:cb:e4:55:b2:ac:31:28:11:03:c1:6f: 98:9d:61:9a:c4:d1:66:c5:a2:bc:0c:5b:86:b1:ef:92:0e:a3: b8:d0:fa:b9:9d:03:4e:2f:c6:73:a4:9e:0c:3d:e1:3c:a6:6e: 50:62:7a:22:39:77:c2:89:30:43:de:63:35:e5:e7:95:32:d7: 77:02:43:6f:c3:46:24:b3:c3:e6:7e:33:25:03:b8:7a:a2:f3: cd:8e:f4:14:f8:87:3a:45:43:10:f2:10:76:9d:95:74:7c:7f: f6:47:d3:05:63:0b:f5:cb:91:50:13:98:01:bd:22:c0:bb:96: 15:d3:64:13:ec:50:e7:61:de:36:53:54:b0:eb:64:09:97:c7: 7d:6d:20:e1:a1:cf:b0:e0:fb:15:f5:61:e9:da:b1:f5:59:e7: a5:b0:5f:6f:3f:c1:0c:77:c5:f8:6e:f1:83:7d:b0:37:e7:d4: 76:b7:84:55:14:70:42:a9:e9:03:e4:60:6b:12:af:b4:07:ef: 61:c1:98:b7:05:5d:59:37:18:32:d5:aa:ef:f2:e1:65:9f:45: a7:59:63:52:68:ff:e7:df:9e:6b:b5:34:8d:68:8a:af:7f:72: c2:34:69:11:8b:78:47:b6:6a:0b:3f:2f:4f:25:15:73:7f:ec: 0d:e4:b7:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1QzQxMTAvBgNVBAUTKDNBMTZDNDA0QkZFRDM0NzI0NEEzMEE1QUZGRjY2RTQ5 OTJBQTI4MjEwHhcNMjUwNjE0MjM1ODI2WhcNMjUwNjIxMjM1ODI2WjAYMRYwFAYD VQQDEw02ODRlMGNhMi0zMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9fz4rCuKcbMicGsR4ZcbOosJ8vmihqwCmlHs/RXz603QL87IhLLudZGaPv9 8VRsOLsfTokNhW/ejBCBECXKpL3HUAKYCX4UjjGWMPloKMwFYjytc3K/PFlljTNE 3lwzp8duhkYaduO8sikZcr2rkiHJdEktUm4c2dui4cRHHV/ZMIO4emfqzshInYvF vY8QbVVXGc4QSFupU4p3dPiRkZDaQsR+rD8G9i/beo2FyXNkgIoTglNhbmH/1OcZ irN/A/9Zf3w8GzPOEC76/zzeQUMJ7oCOBYSI9gzfpYcwpvxhqpyJW7HvWF9Hq4As 9JSYb5svkh9oPrhhhatzP2uNLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJuoKiy WR2gxCDjMSeGNLdetTqLMB8GA1UdIwQYMBaAFDoWxAS/7TRyRKMKWv/2bkmSqigh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjVDNC8zRTNBNTUwMjU5 OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5ISkVvd3BhX19adVNaS3FL Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09oYkVCTF90TkhKRW93cGFfX1p1U1pLcUtDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjVDNC8zRTNBNTUwMjU5OTgxMUVDOTM5MUQ1NTBDNEY5QUUwMi9PaGJFQkxfdE5I SkVvd3BhX19adVNaS3FLQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ4d1lfzJdy+RVsqwxKBEDwW+YnWGaxNFmxaK8DFuGse+SDqO40Pq5 nQNOL8ZzpJ4MPeE8pm5QYnoiOXfCiTBD3mM15eeVMtd3AkNvw0Yks8PmfjMlA7h6 ovPNjvQU+Ic6RUMQ8hB2nZV0fH/2R9MFYwv1y5FQE5gBvSLAu5YV02QT7FDnYd42 U1Sw62QJl8d9bSDhoc+w4PsV9WHp2rH1WeelsF9vP8EMd8X4bvGDfbA359R2t4RV FHBCqekD5GBrEq+0B+9hwZi3BV1ZNxgy1arv8uFln0WnWWNSaP/n355rtTSNaIqv f3LCNGkRi3hHtmoLPy9PJRVzf+wN5LcB -----END CERTIFICATE-----Generated at Sun Jun 15 08:40:11 2025 by rpki-client