$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: 02Zs7pMD5zf1JJVo5kEvHqoRFRE2BeqkZ20B7GiS4H8= Subject key identifier: 8B:2A:D8:E7:95:C1:2E:A3:B8:C5:96:85:07:2D:06:70:04:82:99:8B Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 012B Signing time: Sat 23 Aug 2025 04:44:15 +0000 Manifest this update: Sat 23 Aug 2025 04:44:14 +0000 Manifest next update: Sat 30 Aug 2025 04:44:14 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: FYYY7qLDGwwIoY9PgUKgnsUnWUTvyRa7HhPpr/bwTWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Aug 23 04:44:14 2025 GMT Not After : Aug 30 04:44:14 2025 GMT Subject: CN=68a9471e-1515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b4:3e:6d:26:28:b7:a6:a0:1b:92:bb:eb:67: c4:37:08:d0:75:d5:4c:65:4b:6a:66:88:36:1d:9b: da:85:5d:56:41:e2:5c:00:bf:38:40:26:45:96:53: a6:50:11:6f:a4:2b:5b:fc:6d:a2:a1:e1:0e:9d:c4: 2d:a4:e5:1b:da:5a:99:1f:0b:5e:fa:64:0f:7b:eb: 25:b0:c0:09:d4:a4:fb:ec:17:e2:2e:60:34:62:74: 1f:f7:f7:8c:54:db:5c:2e:3a:8d:9f:a5:b3:4e:ad: 30:f8:72:e5:fe:fb:0c:63:42:f5:99:6f:01:dc:6e: 85:e4:cd:e4:85:76:3b:56:71:7d:a2:2c:ba:85:ee: b9:71:17:69:f9:33:2c:39:ae:71:f1:19:07:ee:48: 8c:9a:9d:b1:a5:5a:df:ad:70:8c:24:97:ae:cb:9d: 08:e1:ae:de:c1:18:eb:35:b1:5b:98:e9:36:71:b6: 36:68:a9:00:52:5d:6b:50:6a:fa:02:8d:51:ea:8b: 9a:77:62:7b:31:40:6c:a9:ae:85:16:b6:79:6a:55: 1b:d2:a5:c6:98:31:92:91:64:d5:d0:60:c5:09:5b: 8d:f0:f7:ff:9d:2e:92:db:bf:5e:4b:44:7e:15:25: 01:f3:36:99:1d:57:02:af:09:ad:f4:b1:5e:45:5f: 64:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2A:D8:E7:95:C1:2E:A3:B8:C5:96:85:07:2D:06:70:04:82:99:8B X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3e:93:9e:0d:76:14:10:6b:c6:96:5d:4f:e4:c5:76:aa:bc: ef:fa:bc:e3:ca:ef:cc:5c:f1:2d:d0:af:89:59:c2:fb:0c:e0: 12:2f:bd:d1:5a:e5:d1:1e:ce:81:ef:a4:78:40:fc:c3:4b:c8: 02:f9:2d:40:dc:43:f2:4c:37:b6:33:a1:dd:e0:47:6a:28:8a: 6c:3a:4d:31:bf:2d:af:da:43:c7:e5:92:b9:4d:1d:38:4a:d4: 9a:b5:93:d5:1c:05:72:32:61:95:3b:09:c8:a3:3b:39:93:d7: 69:73:ee:1b:fd:f9:f5:55:05:5c:f8:9a:94:86:9c:0a:e1:a9: c1:c2:c5:48:d8:17:11:5c:9d:0c:e6:f6:e3:ac:3d:d7:55:6d: fe:18:9d:de:79:cf:3a:c1:f4:56:cf:bd:54:85:7e:51:49:9f: 7b:39:9e:d6:d2:64:8b:4e:a4:66:f1:f7:6b:dd:cf:07:9c:85: 79:4b:36:a7:e6:08:28:65:54:62:bd:25:48:5f:30:07:b4:e7: 66:73:18:a4:1d:21:5f:9c:9e:46:88:e6:c2:f3:39:9b:35:9e: 20:83:5f:33:2c:b9:ff:fa:ff:ff:f9:c7:5b:96:4d:c5:1d:69: d4:9a:ea:11:58:08:b7:11:23:77:ee:14:6e:83:72:08:f0:64: 60:9c:c0:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjUwODIzMDQ0NDE0WhcNMjUwODMwMDQ0NDE0WjAYMRYwFAYD VQQDEw02OGE5NDcxZS0xNTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7Q+bSYot6agG5K762fENwjQddVMZUtqZog2HZvahV1WQeJcAL84QCZFllOm UBFvpCtb/G2ioeEOncQtpOUb2lqZHwte+mQPe+slsMAJ1KT77BfiLmA0YnQf9/eM VNtcLjqNn6WzTq0w+HLl/vsMY0L1mW8B3G6F5M3khXY7VnF9oiy6he65cRdp+TMs Oa5x8RkH7kiMmp2xpVrfrXCMJJeuy50I4a7ewRjrNbFbmOk2cbY2aKkAUl1rUGr6 Ao1R6ouad2J7MUBsqa6FFrZ5alUb0qXGmDGSkWTV0GDFCVuN8Pf/nS6S279eS0R+ FSUB8zaZHVcCrwmt9LFeRV9k9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsq2OeV wS6juMWWhQctBnAEgpmLMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAPpOeDXYUEGvGll1P5MV2qrzv+rzjyu/MXPEt0K+JWcL7DOASL73R WuXRHs6B76R4QPzDS8gC+S1A3EPyTDe2M6Hd4EdqKIpsOk0xvy2v2kPH5ZK5TR04 StSatZPVHAVyMmGVOwnIozs5k9dpc+4b/fn1VQVc+JqUhpwK4anBwsVI2BcRXJ0M 5vbjrD3XVW3+GJ3eec86wfRWz71UhX5RSZ97OZ7W0mSLTqRm8fdr3c8HnIV5Szan 5ggoZVRivSVIXzAHtOdmcxikHSFfnJ5GiObC8zmbNZ4gg18zLLn/+v//+cdblk3F HWnUmuoRWAi3ESN37hRug3II8GRgnMD2 -----END CERTIFICATE-----Generated at Sat Aug 23 18:54:13 2025 by rpki-client