$ rpki-client -vvf rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft File: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft (raw, json) Hash identifier: O0Hz1fDD8imIutIR/xOD2wpZTtPW2gE9N5Ylyylpl3s= Subject key identifier: CF:2A:B1:C4:8A:A0:B0:24:41:3F:31:05:60:3A:0D:1A:91:B3:C0:ED Authority key identifier: A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C Certificate issuer: /CN=A918D771/serialNumber=A32153712537600D71342EC069A57F3EED60D70C Certificate serial: 075D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft Manifest number: 0749 Signing time: Wed 14 May 2025 21:46:46 +0000 Manifest this update: Wed 14 May 2025 21:46:46 +0000 Manifest next update: Wed 21 May 2025 21:46:46 +0000 Files and hashes: 1: oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl (hash: moafszp78QR0CL3f/3CuRQ7sy9iTF2sy1k567n12LTM=) 2: B10AE62CBC4711EFAB43324BC4F9AE02.roa (hash: Cg9ICYE9I7QHfG+L0DGU6D2Wt92m7BQcheqj3kGMwFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:46:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1885 (0x75d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D771, serialNumber=A32153712537600D71342EC069A57F3EED60D70C Validity Not Before: May 14 21:46:46 2025 GMT Not After : May 21 21:46:46 2025 GMT Subject: CN=68250f46-2ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:a0:76:6e:18:98:4c:2e:d0:ff:62:e0:ee: 3d:22:cc:d8:93:d8:4c:11:59:80:c1:e1:90:cd:1b: b7:dd:1d:3f:05:ca:ad:52:fe:ca:b9:52:24:31:ed: 08:66:94:a9:1e:9b:6e:21:88:98:90:43:49:df:8a: 3e:c3:a5:01:ec:39:7c:0c:d1:16:fa:d9:75:58:4a: 0a:4c:d6:0b:dc:2d:38:52:8b:30:7b:1d:18:0a:05: 9a:30:23:b8:03:2f:5e:02:a8:cc:c2:5d:ea:1f:cb: ba:12:cd:e3:50:7b:f1:46:ab:e5:24:a2:9f:05:4e: ff:41:3d:4f:d0:80:76:04:a6:90:f9:11:70:2e:04: 74:ac:38:2f:11:89:e0:15:08:d0:bc:52:99:3b:e5: 8c:bf:42:d9:f9:81:97:35:d2:05:48:d4:b7:94:b8: ac:11:0e:32:68:61:2f:21:1f:ce:b0:eb:1c:89:42: 7a:1d:48:d3:28:7c:ab:88:b2:e8:b5:a9:a0:53:d0: d8:e5:5e:0f:c9:ab:67:40:55:96:21:0c:50:4b:c3: 52:c3:e9:20:a4:d5:ec:ec:a5:a3:f3:6e:63:f3:91: e3:53:7e:1f:5c:8d:85:9b:5a:e6:5f:60:9b:c3:33: 68:a0:82:12:09:e0:59:71:07:40:53:bd:52:48:1e: a7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2A:B1:C4:8A:A0:B0:24:41:3F:31:05:60:3A:0D:1A:91:B3:C0:ED X509v3 Authority Key Identifier: keyid:A3:21:53:71:25:37:60:0D:71:34:2E:C0:69:A5:7F:3E:ED:60:D7:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D771/50C0804E294B11EBA78C1B2FC4F9AE02/oyFTcSU3YA1xNC7AaaV_Pu1g1ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ce:cd:30:58:61:c9:a8:8b:cc:33:b8:47:eb:37:d4:8b:dc: e3:d0:21:6b:49:39:e1:e0:8e:2c:18:67:0b:be:ed:33:54:88: ea:55:18:4d:5f:0f:73:c6:91:bb:79:e0:d0:f5:04:19:95:62: 04:63:54:9a:7e:53:cb:58:e5:27:94:00:5e:65:5a:2f:a5:8f: ec:aa:18:f9:d0:a1:f8:2f:50:97:70:df:f8:17:e0:85:f3:29: 06:f9:68:02:d1:33:0c:fb:49:fa:58:f9:c6:2a:14:3e:75:a5: 13:1a:b3:ae:70:0e:5d:58:06:2b:0e:84:2a:0b:42:d0:92:5d: d9:df:e6:f5:51:b8:91:ec:23:74:67:a0:e2:2b:b1:f4:3a:50: 93:63:7c:72:3a:0c:9d:9c:c3:c5:7c:ea:fe:f8:0e:b9:e3:17: 74:91:4b:79:df:c0:0f:c8:08:78:7b:2b:e8:b6:a8:62:b6:38: dd:94:38:20:86:50:d3:09:11:0d:2a:76:b6:29:f0:41:de:e3: 9b:c0:b6:2b:9b:ef:79:69:c9:6c:bb:b4:05:a2:72:f5:92:7c: 73:90:fb:89:2a:34:1d:f3:9b:aa:9a:09:6f:56:c5:65:46:bb: 0a:b7:d6:85:ec:dd:c3:4d:57:2d:30:68:de:65:91:0e:af:f3: e7:9d:1c:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NzExMTAvBgNVBAUTKEEzMjE1MzcxMjUzNzYwMEQ3MTM0MkVDMDY5QTU3RjNF RUQ2MEQ3MEMwHhcNMjUwNTE0MjE0NjQ2WhcNMjUwNTIxMjE0NjQ2WjAYMRYwFAYD VQQDEw02ODI1MGY0Ni0yY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO+gdm4YmEwu0P9i4O49IszYk9hMEVmAweGQzRu33R0/BcqtUv7KuVIkMe0I ZpSpHptuIYiYkENJ34o+w6UB7Dl8DNEW+tl1WEoKTNYL3C04Uoswex0YCgWaMCO4 Ay9eAqjMwl3qH8u6Es3jUHvxRqvlJKKfBU7/QT1P0IB2BKaQ+RFwLgR0rDgvEYng FQjQvFKZO+WMv0LZ+YGXNdIFSNS3lLisEQ4yaGEvIR/OsOsciUJ6HUjTKHyriLLo tamgU9DY5V4PyatnQFWWIQxQS8NSw+kgpNXs7KWj825j85HjU34fXI2Fm1rmX2Cb wzNooIISCeBZcQdAU71SSB6n/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8qscSK oLAkQT8xBWA6DRqRs8DtMB8GA1UdIwQYMBaAFKMhU3ElN2ANcTQuwGmlfz7tYNcM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc3MS81MEMwODA0RTI5 NEIxMUVCQTc4QzFCMkZDNEY5QUUwMi9veUZUY1NVM1lBMXhOQzdBYWFWX1B1MWcx d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL295RlRjU1UzWUExeE5DN0FhYVZfUHUxZzF3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc3MS81MEMwODA0RTI5NEIxMUVCQTc4QzFCMkZDNEY5QUUwMi9veUZUY1NVM1lB MXhOQzdBYWFWX1B1MWcxd3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0zs0wWGHJqIvMM7hH6zfUi9zj0CFrSTnh4I4sGGcLvu0zVIjqVRhN Xw9zxpG7eeDQ9QQZlWIEY1SaflPLWOUnlABeZVovpY/sqhj50KH4L1CXcN/4F+CF 8ykG+WgC0TMM+0n6WPnGKhQ+daUTGrOucA5dWAYrDoQqC0LQkl3Z3+b1UbiR7CN0 Z6DiK7H0OlCTY3xyOgydnMPFfOr++A654xd0kUt538APyAh4eyvotqhitjjdlDgg hlDTCRENKna2KfBB3uObwLYrm+95aclsu7QFonL1knxzkPuJKjQd85uqmglvVsVl RrsKt9aF7N3DTVctMGjeZZEOr/PnnRz5 -----END CERTIFICATE-----Generated at Fri May 16 11:50:38 2025 by rpki-client