$ rpki-client -vvf rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft File: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft (raw, json) Hash identifier: NmoMiEKUMbcYu/A0UpHG/95efxdBtz88zKJqCgqZL9E= Subject key identifier: 3F:DD:F8:EF:FA:66:08:F6:F0:D8:9B:27:D6:0C:AD:21:F9:67:DF:F2 Authority key identifier: A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C Certificate issuer: /CN=A918D771/serialNumber=A32153712537600D71342EC069A57F3EED60D70C Certificate serial: 0775 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft Manifest number: 0761 Signing time: Wed 02 Jul 2025 21:54:43 +0000 Manifest this update: Wed 02 Jul 2025 21:54:42 +0000 Manifest next update: Wed 09 Jul 2025 21:54:42 +0000 Files and hashes: 1: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl (hash: vN6FgCYkbXLgF9g9mzk0JTV5cR+rWWRdAsGeJqIush4=) 2: B10AE62CBC4711EFAB43324BC4F9AE02.roa (hash: Cg9ICYE9I7QHfG+L0DGU6D2Wt92m7BQcheqj3kGMwFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1909 (0x775) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D771, serialNumber=A32153712537600D71342EC069A57F3EED60D70C Validity Not Before: Jul 2 21:54:42 2025 GMT Not After : Jul 9 21:54:42 2025 GMT Subject: CN=6865aaa2-71a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9f:a4:59:8c:da:dc:a3:83:b4:33:fd:6d:7a: 94:bf:a0:28:42:56:d0:f1:0c:44:52:df:a5:6a:7f: c7:3e:53:fd:af:ba:6b:71:8f:92:36:42:cd:56:a9: 6c:65:35:cf:27:d9:18:03:f4:2f:66:b8:49:2c:dc: 6d:c7:7c:4e:07:90:90:4e:72:2d:ce:f5:a3:43:7b: 99:c8:9a:83:92:9e:a2:3f:54:97:b8:62:a4:79:de: 55:02:54:e1:28:b1:3f:3f:ae:44:0e:0e:97:93:18: 98:65:35:87:df:e7:86:71:08:e3:7e:3e:74:f7:7f: 67:23:6a:9d:d0:cf:46:0f:b0:b6:49:f2:fc:01:20: c6:ab:58:d5:b9:4f:61:ba:c2:1f:81:34:0b:32:51: 02:f6:25:da:bf:66:49:25:96:bd:06:52:0b:ad:f9: ec:ed:f7:47:6d:ea:ab:4a:cb:1e:aa:03:b7:4a:9d: f9:5e:ed:22:c5:5b:1c:05:86:0c:34:a3:09:19:95: 2d:9f:1f:6d:a2:ec:58:20:e4:69:07:59:b0:00:6f: e2:ba:3e:f2:b5:00:fc:e4:cf:bf:c8:82:73:e2:78: 34:95:9b:11:6f:40:c2:1c:e7:f2:ee:86:07:11:de: 17:34:37:a1:e0:22:ec:57:53:04:13:e1:10:00:48: 0d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:DD:F8:EF:FA:66:08:F6:F0:D8:9B:27:D6:0C:AD:21:F9:67:DF:F2 X509v3 Authority Key Identifier: keyid:A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:91:63:d7:b7:d7:2c:4e:22:b1:07:a7:01:bd:a9:c4:61:a9: 18:24:fa:b7:24:e3:d0:44:0d:f2:5c:fb:e8:67:53:12:4a:1d: 50:33:63:f0:37:d1:d9:c8:c7:e3:80:17:a5:be:cb:6b:91:62: 85:49:b6:ea:d5:bf:4f:fc:cc:72:15:2b:06:f4:84:43:b6:16: 1e:fb:e0:4d:5c:f5:4e:e2:80:0c:2a:b0:66:40:4c:27:50:c8: a3:c9:37:04:35:cd:90:e5:84:1b:6f:bd:91:12:a6:e9:43:95: 4a:14:8b:64:8b:db:58:95:ec:30:07:8e:7e:8e:31:32:7e:a8: 51:29:50:62:fb:cc:42:f8:5b:47:c6:6a:77:1d:cc:43:da:a8: da:a6:9d:ea:0f:dd:2d:ff:9a:f0:83:74:5d:0d:8b:9f:22:94: c7:ab:3b:5c:d9:36:6b:53:65:40:4f:e9:8d:b0:30:13:75:7b: 1e:ea:41:bf:e9:1c:e6:b2:50:1b:72:cb:31:35:f6:5e:dc:96: 40:b2:73:a0:0b:71:f1:c4:6e:bd:1d:7a:68:8d:2d:6e:ec:fe: f6:e6:b2:6e:36:62:6c:53:c2:93:c7:ba:28:04:bb:4e:0b:ab: ef:86:72:13:20:d2:66:bc:ec:00:81:29:61:08:ef:df:0a:c2: 60:64:e3:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NzExMTAvBgNVBAUTKEEzMjE1MzcxMjUzNzYwMEQ3MTM0MkVDMDY5QTU3RjNF RUQ2MEQ3MEMwHhcNMjUwNzAyMjE1NDQyWhcNMjUwNzA5MjE1NDQyWjAYMRYwFAYD VQQDEw02ODY1YWFhMi03MWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ+kWYza3KODtDP9bXqUv6AoQlbQ8QxEUt+lan/HPlP9r7prcY+SNkLNVqls ZTXPJ9kYA/QvZrhJLNxtx3xOB5CQTnItzvWjQ3uZyJqDkp6iP1SXuGKked5VAlTh KLE/P65EDg6XkxiYZTWH3+eGcQjjfj50939nI2qd0M9GD7C2SfL8ASDGq1jVuU9h usIfgTQLMlEC9iXav2ZJJZa9BlILrfns7fdHbeqrSsseqgO3Sp35Xu0ixVscBYYM NKMJGZUtnx9touxYIORpB1mwAG/iuj7ytQD85M+/yIJz4ng0lZsRb0DCHOfy7oYH Ed4XNDeh4CLsV1MEE+EQAEgNBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/d+O/6 Zgj28NibJ9YMrSH5Z9/yMB8GA1UdIwQYMBaAFKMhU3ElN2ANcTQuwGmlfz7tYNcM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc3MS81MEMwODA0RTI5 NEIxMUVCQTc4QzFCMkZDNEY5QUUwMi9veUZUY1NVM1lBMXhOQzdBYWFWX1B1MWcx d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL295RlRjU1UzWUExeE5DN0FhYVZfUHUxZzF3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc3MS81MEMwODA0RTI5NEIxMUVCQTc4QzFCMkZDNEY5QUUwMi9veUZUY1NVM1lB MXhOQzdBYWFWX1B1MWcxd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXkWPXt9csTiKxB6cBvanEYakYJPq3JOPQRA3yXPvoZ1MSSh1QM2Pw N9HZyMfjgBelvstrkWKFSbbq1b9P/MxyFSsG9IRDthYe++BNXPVO4oAMKrBmQEwn UMijyTcENc2Q5YQbb72REqbpQ5VKFItki9tYlewwB45+jjEyfqhRKVBi+8xC+FtH xmp3HcxD2qjapp3qD90t/5rwg3RdDYufIpTHqztc2TZrU2VAT+mNsDATdXse6kG/ 6RzmslAbcssxNfZe3JZAsnOgC3HxxG69HXpojS1u7P725rJuNmJsU8KTx7ooBLtO C6vvhnITINJmvOwAgSlhCO/fCsJgZOMm -----END CERTIFICATE-----Generated at Thu Jul 3 14:57:50 2025 by rpki-client