$ rpki-client -vvf rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft File: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft (raw, json) Hash identifier: QmpY6Jyih6RBUDg4nQP6ozfOMdTQqcx+OrgU4rTUva4= Subject key identifier: 54:20:BD:C5:6B:13:A0:90:AC:27:30:D0:C8:84:87:40:89:A6:45:A3 Authority key identifier: A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C Certificate issuer: /CN=A918D771/serialNumber=A32153712537600D71342EC069A57F3EED60D70C Certificate serial: 078F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft Manifest number: 077B Signing time: Fri 22 Aug 2025 21:42:22 +0000 Manifest this update: Fri 22 Aug 2025 21:42:22 +0000 Manifest next update: Fri 29 Aug 2025 21:42:22 +0000 Files and hashes: 1: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl (hash: lRmuK+HP+VAbf1z+06BG9dQXrhDNr93kcKY53bgEXlA=) 2: B10AE62CBC4711EFAB43324BC4F9AE02.roa (hash: Cg9ICYE9I7QHfG+L0DGU6D2Wt92m7BQcheqj3kGMwFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1935 (0x78f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D771, serialNumber=A32153712537600D71342EC069A57F3EED60D70C Validity Not Before: Aug 22 21:42:22 2025 GMT Not After : Aug 29 21:42:22 2025 GMT Subject: CN=68a8e43e-dd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:34:d0:30:3e:50:6d:85:53:4e:eb:06:85:d5: 69:d8:20:df:a4:bc:ce:8c:ab:b2:a3:1c:6b:ee:2f: 3f:60:90:9e:ec:ce:ab:63:8b:8a:6d:a6:86:15:3a: 94:d9:cd:92:45:b0:2c:42:b6:31:7a:f9:34:ee:8b: e4:36:a5:78:de:c7:cb:0f:8a:75:b8:c0:d0:ab:9a: 58:c6:c4:4a:e5:52:2a:be:2a:ac:95:a7:af:d0:40: 8b:e1:be:22:8c:2d:6a:e2:52:9b:23:51:3c:7f:d9: d4:37:01:52:2b:1d:eb:41:fb:a5:9c:15:2a:42:5a: 07:5c:69:6f:17:91:59:b1:ff:e4:42:70:d4:f9:a4: 9b:45:4a:85:aa:5a:c1:3b:08:a9:09:b1:ca:17:9e: 4c:b3:c0:24:08:fb:20:f9:61:31:47:e5:bc:2b:0f: 98:ef:c0:96:07:45:a7:02:20:95:97:9c:e1:68:e5: 32:ba:74:c2:d0:e7:55:85:ca:ed:06:72:d6:d7:ec: 4f:f5:44:95:0f:c5:bf:80:bf:7e:10:9b:c8:5a:0e: 26:d3:87:25:6c:64:a0:39:de:98:1a:72:56:6d:ff: ee:41:e4:62:0f:83:a4:16:7c:59:80:ab:c0:dd:7d: 2d:26:5c:dc:e9:a8:7d:f5:92:fe:b7:ed:14:b9:69: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:20:BD:C5:6B:13:A0:90:AC:27:30:D0:C8:84:87:40:89:A6:45:A3 X509v3 Authority Key Identifier: keyid:A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:25:bf:60:4c:d4:59:16:da:ba:e5:c4:34:30:be:ab:93:b2: 6d:24:f6:3b:70:21:a2:1b:dd:2f:fa:98:e1:88:1b:38:19:d5: c8:a6:b3:76:36:ba:c0:7a:92:b5:9b:e5:0b:0c:dc:6b:d1:3d: 04:85:5c:79:f2:b1:2b:80:ae:2f:16:2c:e1:be:2c:3a:fe:dd: 40:c9:c9:7c:e6:69:8f:a8:c7:92:47:e3:bd:71:99:25:79:c5: a5:a0:e7:bb:a1:58:0b:23:49:bb:59:70:39:85:82:bf:0e:cd: f7:26:c4:23:f7:b0:f9:4b:10:ab:bd:fc:84:65:3b:42:dc:dc: bd:ec:97:de:a8:f0:d8:e2:bc:2d:e5:ef:36:09:97:df:5d:80: 49:ca:69:f3:05:15:3f:2e:ae:89:09:b7:fe:49:27:9c:9e:ba: ea:a6:27:18:8c:2b:fe:d5:a6:98:af:6d:84:e2:f2:fa:50:10: cf:07:b0:44:be:b7:b5:92:11:8c:66:da:c3:cb:7c:0c:93:08: 27:c1:07:3b:28:d8:39:30:9d:16:ac:50:7d:4c:81:9a:e9:70: 4a:1e:67:33:28:82:a7:72:cb:bf:88:2a:41:9d:c8:96:86:25: f0:b2:b4:1c:8a:fb:c3:79:e4:5c:f8:1e:a1:e6:ef:96:2d:23: 14:75:a1:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NzExMTAvBgNVBAUTKEEzMjE1MzcxMjUzNzYwMEQ3MTM0MkVDMDY5QTU3RjNF RUQ2MEQ3MEMwHhcNMjUwODIyMjE0MjIyWhcNMjUwODI5MjE0MjIyWjAYMRYwFAYD VQQDEw02OGE4ZTQzZS1kZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDTQMD5QbYVTTusGhdVp2CDfpLzOjKuyoxxr7i8/YJCe7M6rY4uKbaaGFTqU 2c2SRbAsQrYxevk07ovkNqV43sfLD4p1uMDQq5pYxsRK5VIqviqslaev0ECL4b4i jC1q4lKbI1E8f9nUNwFSKx3rQfulnBUqQloHXGlvF5FZsf/kQnDU+aSbRUqFqlrB OwipCbHKF55Ms8AkCPsg+WExR+W8Kw+Y78CWB0WnAiCVl5zhaOUyunTC0OdVhcrt BnLW1+xP9USVD8W/gL9+EJvIWg4m04clbGSgOd6YGnJWbf/uQeRiD4OkFnxZgKvA 3X0tJlzc6ah99ZL+t+0UuWkfHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQgvcVr E6CQrCcw0MiEh0CJpkWjMB8GA1UdIwQYMBaAFKMhU3ElN2ANcTQuwGmlfz7tYNcM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc3MS81MEMwODA0RTI5 NEIxMUVCQTc4QzFCMkZDNEY5QUUwMi9veUZUY1NVM1lBMXhOQzdBYWFWX1B1MWcx d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL295RlRjU1UzWUExeE5DN0FhYVZfUHUxZzF3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc3MS81MEMwODA0RTI5NEIxMUVCQTc4QzFCMkZDNEY5QUUwMi9veUZUY1NVM1lB MXhOQzdBYWFWX1B1MWcxd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+Jb9gTNRZFtq65cQ0ML6rk7JtJPY7cCGiG90v+pjhiBs4GdXIprN2 NrrAepK1m+ULDNxr0T0EhVx58rErgK4vFizhviw6/t1Aycl85mmPqMeSR+O9cZkl ecWloOe7oVgLI0m7WXA5hYK/Ds33JsQj97D5SxCrvfyEZTtC3Ny97JfeqPDY4rwt 5e82CZffXYBJymnzBRU/Lq6JCbf+SSecnrrqpicYjCv+1aaYr22E4vL6UBDPB7BE vre1khGMZtrDy3wMkwgnwQc7KNg5MJ0WrFB9TIGa6XBKHmczKIKncsu/iCpBnciW hiXwsrQcivvDeeRc+B6h5u+WLSMUdaGZ -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:42 2025 by rpki-client