$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: wp9uRF8iEutYYMGnvr7RsHmm40lWxxk6aEVvNvRmea0= Subject key identifier: 93:DE:D4:70:15:67:21:03:77:BD:8C:52:92:0E:78:D7:62:20:1E:94 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 032C Signing time: Thu 03 Jul 2025 01:28:35 +0000 Manifest this update: Thu 03 Jul 2025 01:28:34 +0000 Manifest next update: Thu 10 Jul 2025 01:28:34 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: FOjt1dgmlh8r453Oon4pnTaxIbaPng9PRDGw/YsfXKI=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 820 (0x334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Jul 3 01:28:34 2025 GMT Not After : Jul 10 01:28:34 2025 GMT Subject: CN=6865dcc2-e1fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5a:41:58:b9:73:68:b2:83:f4:e4:27:af:80: 6b:93:d6:99:eb:67:39:d4:12:04:08:fc:05:c3:2f: 15:26:42:bd:6b:28:43:c7:b0:b9:77:26:4d:6a:27: 8b:02:bc:aa:b6:95:59:f7:84:f0:45:49:12:00:12: 84:cf:b4:ad:56:dc:a7:97:40:41:37:ce:87:17:40: 49:ad:b7:da:a5:f4:bb:18:43:61:2f:46:48:a0:8b: bb:a4:e9:47:dd:63:7f:70:af:77:d2:d5:ba:93:df: 2b:22:48:93:39:ae:dd:7e:ec:90:48:b7:73:da:35: 64:ea:81:af:37:29:9a:81:44:cb:ea:88:58:6d:b7: fd:a6:22:33:5d:74:06:bf:b2:00:40:01:d7:32:51: fe:2a:61:97:27:1b:34:e3:bb:de:f6:a9:43:27:86: 25:c5:36:e2:e8:3d:80:b3:b3:fd:57:77:1f:ab:57: 4c:3a:65:f8:49:92:6d:eb:6b:5b:0a:a7:8a:2a:d5: f3:85:b6:fd:15:d8:ca:e9:61:72:73:9f:cc:83:ee: 3b:64:c3:14:99:56:e0:7c:67:0d:7c:14:2b:97:10: 12:08:ff:fd:9d:31:77:c3:c3:ab:52:3a:0c:23:2c: bf:0e:e1:f8:6e:05:87:1c:09:d7:0d:cf:bb:33:82: ae:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:DE:D4:70:15:67:21:03:77:BD:8C:52:92:0E:78:D7:62:20:1E:94 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:22:6c:ac:98:85:69:c0:80:1f:7b:50:01:9e:9f:d7:01:7b: 26:ca:f2:a1:50:3e:a8:52:0f:d2:b9:8e:6f:d4:ef:08:b3:d0: 42:88:41:bc:a4:54:41:59:b0:35:9f:4b:19:56:54:9e:06:ea: 87:00:01:c6:fe:ee:de:dd:6f:b1:92:a2:2a:37:04:c3:1b:15: 5e:59:e1:b1:d8:00:6b:b0:66:b6:01:93:d2:00:fe:dd:b3:4c: 1f:00:5d:f1:bb:11:38:19:58:b7:a8:6a:9e:17:b0:a1:de:bf: c6:20:87:49:38:e8:2e:5c:98:b4:52:ec:eb:33:5d:34:8d:a6: 42:9c:40:a4:83:b8:f8:7f:13:27:82:23:08:0d:2e:d4:d4:97: d2:d8:e3:52:09:0e:a2:34:0c:58:31:b1:93:3e:cc:7a:b3:3b: 1d:b1:12:9d:78:3c:ca:af:33:d5:17:37:ff:2b:b5:46:68:53: 60:28:6d:ce:cd:49:29:6f:53:c7:d0:d9:f3:01:74:a1:ee:84: 49:e1:0e:69:11:7e:2e:0c:73:91:02:2c:0c:78:5f:2a:97:f2: ce:06:db:f7:13:99:9c:cf:3f:fb:e9:bd:94:da:30:43:16:14: 8c:9b:f5:26:ce:d9:de:88:4c:fb:c2:03:a5:e1:79:ef:fb:4f: 78:fa:a1:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUwNzAzMDEyODM0WhcNMjUwNzEwMDEyODM0WjAYMRYwFAYD VQQDEw02ODY1ZGNjMi1lMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FpBWLlzaLKD9OQnr4Brk9aZ62c51BIECPwFwy8VJkK9ayhDx7C5dyZNaieL AryqtpVZ94TwRUkSABKEz7StVtynl0BBN86HF0BJrbfapfS7GENhL0ZIoIu7pOlH 3WN/cK930tW6k98rIkiTOa7dfuyQSLdz2jVk6oGvNymagUTL6ohYbbf9piIzXXQG v7IAQAHXMlH+KmGXJxs047ve9qlDJ4YlxTbi6D2As7P9V3cfq1dMOmX4SZJt62tb CqeKKtXzhbb9FdjK6WFyc5/Mg+47ZMMUmVbgfGcNfBQrlxASCP/9nTF3w8OrUjoM Iyy/DuH4bgWHHAnXDc+7M4KudwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPe1HAV ZyEDd72MUpIOeNdiIB6UMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWImysmIVpwIAfe1ABnp/XAXsmyvKhUD6oUg/SuY5v1O8Is9BCiEG8 pFRBWbA1n0sZVlSeBuqHAAHG/u7e3W+xkqIqNwTDGxVeWeGx2ABrsGa2AZPSAP7d s0wfAF3xuxE4GVi3qGqeF7Ch3r/GIIdJOOguXJi0UuzrM100jaZCnECkg7j4fxMn giMIDS7U1JfS2ONSCQ6iNAxYMbGTPsx6szsdsRKdeDzKrzPVFzf/K7VGaFNgKG3O zUkpb1PH0NnzAXSh7oRJ4Q5pEX4uDHORAiwMeF8ql/LOBtv3E5mczz/76b2U2jBD FhSMm/UmztneiEz7wgOl4Xnv+094+qGw -----END CERTIFICATE-----Generated at Fri Jul 4 14:11:51 2025 by rpki-client