$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft File: ovb2YTEslb8FoLUjCxNx1GIv1ic.mft (raw, json) Hash identifier: oFFL7qUaxVYkG5tu+TGjKMLqKzHUnmiIzy3SVC8shMU= Subject key identifier: 0D:E2:2D:92:D4:BA:DC:16:1F:72:6B:8D:30:CF:FB:67:5F:D7:FF:DA Authority key identifier: A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 Certificate issuer: /CN=A91E7BC4/serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Certificate serial: 0D4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft Manifest number: 0D43 Signing time: Wed 18 Jun 2025 17:56:57 +0000 Manifest this update: Wed 18 Jun 2025 17:56:56 +0000 Manifest next update: Wed 25 Jun 2025 17:56:56 +0000 Files and hashes: 1: ovb2YTEslb8FoLUjCxNx1GIv1ic.crl (hash: cRKm/6brmSwckrtHnicF3ApJVi2ysDrNwhedfXr8ZPU=) 2: 05054224D8E411E9BEB7986DC4F9AE02.roa (hash: C8YUnzVpdG1ic9MCuW7celmXkhXkYeCvagfWnZShYbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3403 (0xd4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=A2F6F661312C95BF05A0B5230B1371D4622FD627 Validity Not Before: Jun 18 17:56:56 2025 GMT Not After : Jun 25 17:56:56 2025 GMT Subject: CN=6852fde8-6de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3b:16:72:02:70:88:30:b2:28:34:d9:b2:7c: 10:a3:20:32:12:87:dd:c4:18:b5:b9:b2:a6:9d:a3: 99:07:96:c5:90:64:3f:9a:53:23:2e:3d:94:c4:3f: 3e:d0:ba:e2:db:15:9f:73:dc:71:5e:3b:86:00:fa: 12:c8:eb:6d:a2:76:a4:32:64:84:f1:55:44:8b:ea: 12:a2:fc:df:a1:95:27:68:f2:2b:cb:6f:36:52:e7: 2b:7b:57:54:84:5c:7f:c6:c9:20:42:75:46:46:e9: 81:0d:62:67:ea:88:74:e3:34:6e:d4:5d:2b:03:09: 4b:c0:22:7a:a6:51:0d:91:a9:5c:98:d0:44:45:33: 7b:3f:7f:61:45:1a:72:fa:02:7f:17:d9:68:bb:36: 29:b4:0e:6f:9e:d1:15:f0:63:eb:a9:10:98:10:07: aa:44:3f:f0:c2:77:0a:07:fd:b3:92:60:57:94:64: 53:7a:40:20:d1:a8:2e:08:56:89:25:69:b3:8e:5f: 4e:cb:b9:92:d9:0b:bc:c2:d9:aa:00:e0:ba:1e:b8: 96:4a:aa:88:61:36:0c:e1:51:6d:5a:55:c9:96:71: 23:7a:ee:0a:f4:2e:d5:d2:28:47:db:20:c0:32:31: 25:91:d5:19:ad:2e:ae:73:e5:44:0d:6d:42:1f:ed: 73:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:E2:2D:92:D4:BA:DC:16:1F:72:6B:8D:30:CF:FB:67:5F:D7:FF:DA X509v3 Authority Key Identifier: keyid:A2:F6:F6:61:31:2C:95:BF:05:A0:B5:23:0B:13:71:D4:62:2F:D6:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ovb2YTEslb8FoLUjCxNx1GIv1ic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/261D2830D50D11E9BAD6C226C4F9AE02/ovb2YTEslb8FoLUjCxNx1GIv1ic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:27:eb:28:fd:ec:0c:bb:da:28:f6:ab:d3:ea:6b:c1:b0:71: 88:0b:85:ee:a9:f3:df:58:9a:7b:c0:f2:8d:a9:c7:80:0b:6b: f4:1e:e9:2c:dd:2e:c0:b1:b4:27:b6:69:12:f0:b7:73:4e:d4: 90:77:c7:e9:64:33:e4:8c:cf:eb:45:47:45:ba:16:cf:54:42: 88:e8:ca:d5:39:a9:3c:2d:b5:7b:3b:73:e4:b7:9b:3f:16:72: b7:a7:eb:be:e2:eb:f0:02:90:d3:3f:f3:3f:e2:60:06:46:55: 4b:ed:7a:a2:30:5e:b2:7e:3e:5a:b4:0d:4f:cc:46:3e:fd:09: c2:d5:f6:22:42:a4:b9:a2:1c:92:bc:86:b5:09:e2:65:e3:f4: 1e:9d:77:38:a5:56:c3:46:ff:5a:2c:d7:7c:9b:3a:3d:4c:ab: 5d:fd:db:7f:08:38:70:98:23:91:be:27:cd:fd:97:c3:c3:13: 1f:8b:ba:95:5c:5f:8d:69:bb:4b:15:e5:5a:25:a8:18:82:83: 3c:1c:1e:57:6b:79:fc:04:19:d1:a5:af:bc:79:e3:a6:af:63: 87:c4:ae:1c:70:21:ad:be:25:1e:ab:c3:5a:8b:72:f6:6d:e3: e6:f8:75:39:5b:ef:cf:e5:6a:ec:05:15:c3:84:69:5e:b7:4a: cb:fd:cf:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEEyRjZGNjYxMzEyQzk1QkYwNUEwQjUyMzBCMTM3MUQ0 NjIyRkQ2MjcwHhcNMjUwNjE4MTc1NjU2WhcNMjUwNjI1MTc1NjU2WjAYMRYwFAYD VQQDEw02ODUyZmRlOC02ZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuDsWcgJwiDCyKDTZsnwQoyAyEofdxBi1ubKmnaOZB5bFkGQ/mlMjLj2UxD8+ 0Lri2xWfc9xxXjuGAPoSyOttonakMmSE8VVEi+oSovzfoZUnaPIry282Uucre1dU hFx/xskgQnVGRumBDWJn6oh04zRu1F0rAwlLwCJ6plENkalcmNBERTN7P39hRRpy +gJ/F9louzYptA5vntEV8GPrqRCYEAeqRD/wwncKB/2zkmBXlGRTekAg0aguCFaJ JWmzjl9Oy7mS2Qu8wtmqAOC6HriWSqqIYTYM4VFtWlXJlnEjeu4K9C7V0ihH2yDA MjElkdUZrS6uc+VEDW1CH+1zQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3iLZLU utwWH3JrjTDP+2df1//aMB8GA1UdIwQYMBaAFKL29mExLJW/BaC1IwsTcdRiL9Yn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yNjFEMjgzMEQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xiOEZvTFVqQ3hOeDFHSXYx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL292YjJZVEVzbGI4Rm9MVWpDeE54MUdJdjFpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JDNC8yNjFEMjgzMEQ1MEQxMUU5QkFENkMyMjZDNEY5QUUwMi9vdmIyWVRFc2xi OEZvTFVqQ3hOeDFHSXYxaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAJ+so/ewMu9oo9qvT6mvBsHGIC4XuqfPfWJp7wPKNqceAC2v0Huks 3S7AsbQntmkS8LdzTtSQd8fpZDPkjM/rRUdFuhbPVEKI6MrVOak8LbV7O3Pkt5s/ FnK3p+u+4uvwApDTP/M/4mAGRlVL7XqiMF6yfj5atA1PzEY+/QnC1fYiQqS5ohyS vIa1CeJl4/QenXc4pVbDRv9aLNd8mzo9TKtd/dt/CDhwmCORvifN/ZfDwxMfi7qV XF+NabtLFeVaJagYgoM8HB5Xa3n8BBnRpa+8eeOmr2OHxK4ccCGtviUeq8Nai3L2 bePm+HU5W+/P5WrsBRXDhGlet0rL/c9X -----END CERTIFICATE-----Generated at Thu Jun 19 20:33:14 2025 by rpki-client