$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft File: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft (raw, json) Hash identifier: MVftosL5VhuO4F+3qm8ANOWyO8LqrjZAbgcimPnqfRk= Subject key identifier: CD:D7:1D:8B:C2:DD:04:3F:5A:9E:A5:AD:91:A8:4B:AC:E1:BA:63:79 Authority key identifier: 39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 Certificate issuer: /CN=A91DC302/serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Certificate serial: 2605 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft Manifest number: 25F0 Signing time: Thu 24 Apr 2025 15:43:30 +0000 Manifest this update: Thu 24 Apr 2025 15:43:30 +0000 Manifest next update: Thu 01 May 2025 15:43:30 +0000 Files and hashes: 1: Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl (hash: Ajo3wkVRPf0b+93MPYbb4oLHXH2UdhktyppI4KCXjCU=) 2: E54E5FF6632311ED8D313442C4F9AE02.roa (hash: +bflLncVpUKisFQ3ZZUQI/J0k3+BOK9UN6bLx8p1G6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9733 (0x2605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC302, serialNumber=39BF96994AB4C54C983EE0F510365F4FD9841541 Validity Not Before: Apr 24 15:43:30 2025 GMT Not After : May 1 15:43:30 2025 GMT Subject: CN=680a5c22-3f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:09:07:24:87:de:45:5e:45:f7:13:dd:38:ae: a5:31:6a:16:20:49:72:d2:2f:b7:3a:86:7c:f2:24: 43:91:74:53:1c:a9:9c:5d:36:f3:b6:de:69:d4:70: 6f:90:82:44:26:7c:d9:85:c7:f9:73:85:6e:7b:21: 6a:59:95:cd:d8:2d:c6:fc:92:63:03:c2:00:dd:07: f2:e1:76:b8:d5:59:be:b5:b0:24:02:b7:41:c7:ad: 49:54:f4:7d:87:05:5a:14:33:08:a6:80:00:4d:92: f7:17:13:ad:46:cd:b7:cc:fd:22:e3:a4:a9:ed:3a: 32:5c:17:ae:e6:3f:cc:48:79:3c:fe:e9:b9:b1:1d: 1a:41:67:a9:f8:38:0b:0e:ef:43:52:50:1e:21:6a: 73:9f:52:13:7d:75:28:7d:5a:cf:4b:8b:49:0b:ca: b3:57:9b:d4:5f:4f:60:87:40:5d:20:45:7e:24:06: 89:47:94:74:37:60:7c:95:16:c3:99:29:33:ad:24: b9:f6:ea:af:3f:04:d8:a6:66:f2:1f:08:fe:67:53: 30:26:14:44:6a:df:a8:79:02:1d:81:2e:8d:4a:46: 15:a5:ff:56:00:4d:1f:cd:59:de:99:e9:82:5a:cb: 49:b7:d9:7b:45:7f:70:e4:c4:ff:08:08:41:c2:5d: 4b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D7:1D:8B:C2:DD:04:3F:5A:9E:A5:AD:91:A8:4B:AC:E1:BA:63:79 X509v3 Authority Key Identifier: keyid:39:BF:96:99:4A:B4:C5:4C:98:3E:E0:F5:10:36:5F:4F:D9:84:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC302/4EA48E84FBA911E4A8B34C23C4F9AE02/Ob-WmUq0xUyYPuD1EDZfT9mEFUE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:79:03:92:ec:ed:5b:b6:7a:b5:43:08:91:93:6c:18:56:b6: dc:c3:17:be:be:52:59:6d:48:d9:09:7f:83:7b:73:94:18:9c: e7:85:cf:df:e6:40:86:88:b8:4d:13:00:a5:f7:86:97:e2:79: ce:5b:43:71:fc:8a:37:fd:60:75:8a:d8:06:98:8b:97:40:df: d1:ff:40:72:6f:d1:59:a0:2c:9b:26:1e:93:c4:3b:7a:51:02: 55:a3:78:1e:b6:61:3b:d7:6b:56:85:22:9f:1d:dd:6e:63:27: c4:8e:0f:8d:10:c6:65:f3:d1:76:c5:11:4d:39:62:f9:39:3f: 1e:ee:c6:bc:6d:4d:6c:fc:e1:67:b3:82:29:a7:22:bc:e4:77: 04:a0:79:de:29:7f:1a:bf:37:53:d6:3a:1c:fd:be:82:c7:be: 28:c6:29:cd:d4:b6:4a:fa:65:7e:12:84:27:76:1b:62:f1:ee: b8:29:db:ee:cb:ca:c9:39:ce:82:e5:59:c8:a1:72:97:6d:5e: 14:60:be:2a:c7:fe:0a:d5:fd:2d:6f:9c:82:d2:87:6e:2e:1b: 39:61:4b:2b:df:1f:10:a2:b4:0c:37:c3:39:26:ca:eb:4f:2e: 92:b8:e2:f2:a4:a0:97:d3:4f:ae:c9:20:98:78:64:01:b0:41: ef:f4:76:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMDIxMTAvBgNVBAUTKDM5QkY5Njk5NEFCNEM1NEM5ODNFRTBGNTEwMzY1RjRG RDk4NDE1NDEwHhcNMjUwNDI0MTU0MzMwWhcNMjUwNTAxMTU0MzMwWjAYMRYwFAYD VQQDEw02ODBhNWMyMi0zZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgkHJIfeRV5F9xPdOK6lMWoWIEly0i+3OoZ88iRDkXRTHKmcXTbztt5p1HBv kIJEJnzZhcf5c4VueyFqWZXN2C3G/JJjA8IA3Qfy4Xa41Vm+tbAkArdBx61JVPR9 hwVaFDMIpoAATZL3FxOtRs23zP0i46Sp7ToyXBeu5j/MSHk8/um5sR0aQWep+DgL Du9DUlAeIWpzn1ITfXUofVrPS4tJC8qzV5vUX09gh0BdIEV+JAaJR5R0N2B8lRbD mSkzrSS59uqvPwTYpmbyHwj+Z1MwJhREat+oeQIdgS6NSkYVpf9WAE0fzVnememC WstJt9l7RX9w5MT/CAhBwl1LEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3XHYvC 3QQ/Wp6lrZGoS6zhumN5MB8GA1UdIwQYMBaAFDm/lplKtMVMmD7g9RA2X0/ZhBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMwMi80RUE0OEU4NEZC QTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhVeVlQdUQxRURaZlQ5bUVG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09iLVdtVXEweFV5WVB1RDFFRFpmVDltRUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMwMi80RUE0OEU4NEZCQTkxMUU0QThCMzRDMjNDNEY5QUUwMi9PYi1XbVVxMHhV eVlQdUQxRURaZlQ5bUVGVUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoeQOS7O1btnq1QwiRk2wYVrbcwxe+vlJZbUjZCX+De3OUGJznhc/f 5kCGiLhNEwCl94aX4nnOW0Nx/Io3/WB1itgGmIuXQN/R/0Byb9FZoCybJh6TxDt6 UQJVo3getmE712tWhSKfHd1uYyfEjg+NEMZl89F2xRFNOWL5OT8e7sa8bU1s/OFn s4IppyK85HcEoHneKX8avzdT1joc/b6Cx74oxinN1LZK+mV+EoQndhti8e64Kdvu y8rJOc6C5VnIoXKXbV4UYL4qx/4K1f0tb5yC0oduLhs5YUsr3x8QorQMN8M5Jsrr Ty6SuOLypKCX00+uySCYeGQBsEHv9HZ9 -----END CERTIFICATE-----Generated at Sat Apr 26 03:39:38 2025 by rpki-client