$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: oNwH7V3NXyzSL+XuZ4PGb5cv89gnCy/+a0R73lKPIS8= Subject key identifier: 14:BC:26:2F:7F:92:3D:47:67:94:86:B9:19:DF:55:FD:9E:79:3B:D2 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0A15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0A45 Signing time: Mon 30 Jun 2025 20:03:24 +0000 Manifest this update: Mon 30 Jun 2025 20:03:23 +0000 Manifest next update: Mon 07 Jul 2025 20:03:23 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: ItlCYVsuchHZjAZ50tAXmAdNVTty7hlKMFIO3BcmKek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2581 (0xa15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Jun 30 20:03:23 2025 GMT Not After : Jul 7 20:03:23 2025 GMT Subject: CN=6862ed8b-baed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:79:b5:9a:65:9a:03:0b:0b:bc:c7:cb:b1:b9: 64:3f:7e:50:3c:96:9d:85:eb:be:89:a1:e5:c0:8c: 3f:5f:05:99:36:62:d0:9d:49:ab:20:e1:9b:2d:d8: 1d:98:69:73:85:ed:9a:5e:f2:34:7f:85:7f:3b:d8: da:a8:b9:1e:8a:f6:1f:5a:d2:e7:d4:a3:4d:c5:7b: 2c:87:51:fe:3d:f1:94:2a:03:32:4d:6d:15:63:5a: 98:d6:91:a0:6f:9b:81:89:bb:d5:33:06:37:5b:c2: e1:9a:09:97:af:68:aa:58:eb:dd:71:59:35:08:c1: a5:f2:34:b0:09:f0:10:cb:2f:12:63:0c:81:40:17: 16:fc:a9:91:d3:0a:5a:13:3b:65:ab:ad:a7:a8:32: 81:0b:57:83:c8:b4:e7:7c:c3:66:e4:62:8e:76:d6: 6f:3a:26:d7:60:ee:96:c4:53:ad:fe:2f:a6:f2:67: c6:d6:54:40:2f:65:28:50:f9:8c:f1:75:c7:2d:9b: 65:ed:33:cf:c5:0c:90:4a:91:c7:6d:aa:35:c2:8f: 4b:94:8d:6f:73:fe:48:65:c3:d9:3f:d2:eb:21:79: ad:dd:6a:0f:a0:0a:85:73:79:92:19:14:bd:3b:ea: d3:ba:31:fb:f5:7b:12:c6:d8:14:94:4c:fa:2a:11: c6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BC:26:2F:7F:92:3D:47:67:94:86:B9:19:DF:55:FD:9E:79:3B:D2 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:9c:2a:8a:33:c2:e1:13:2f:2c:e4:f3:58:d4:26:99:3f:c1: f6:a4:44:81:6a:ca:74:da:88:44:74:4c:45:66:92:cd:81:e4: b8:d3:a0:35:10:94:00:36:e1:8f:56:ca:da:8c:1b:37:48:8c: 11:34:ab:9d:a7:1f:95:ee:f0:e4:9d:da:ad:2a:09:b1:7e:b0: 4a:dd:66:de:97:f8:9e:c3:78:15:ed:f4:f0:c5:fb:ff:8f:d0: 59:3c:fa:c8:12:29:53:c5:37:63:88:76:41:a9:7c:64:19:d6: bc:56:c6:19:23:17:88:fc:3d:7d:90:6a:be:4f:9b:7e:77:4d: e4:32:be:d5:3f:61:d5:a0:27:ec:16:52:20:c3:96:af:bb:0b: e8:3b:5f:d5:27:a7:dc:38:af:ca:d2:29:38:76:d1:86:a0:06: 85:a7:e0:e3:fe:2a:96:34:64:bd:7a:b9:3f:72:3a:9f:04:ca: 6c:1d:a1:6c:0e:55:ec:29:48:b7:a7:52:62:7b:f5:67:90:ef: 01:a2:a3:e1:30:76:13:1a:ef:f7:b4:c1:25:8b:09:13:e8:1a: 57:8f:1e:64:e8:6d:71:07:3b:ab:14:10:ac:b2:bb:6d:c2:e9: 91:4f:81:4b:94:01:42:c4:ed:33:ae:1d:9a:2f:e7:1e:73:ef: b1:ce:25:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUwNjMwMjAwMzIzWhcNMjUwNzA3MjAwMzIzWjAYMRYwFAYD VQQDEw02ODYyZWQ4Yi1iYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynm1mmWaAwsLvMfLsblkP35QPJadheu+iaHlwIw/XwWZNmLQnUmrIOGbLdgd mGlzhe2aXvI0f4V/O9jaqLkeivYfWtLn1KNNxXssh1H+PfGUKgMyTW0VY1qY1pGg b5uBibvVMwY3W8LhmgmXr2iqWOvdcVk1CMGl8jSwCfAQyy8SYwyBQBcW/KmR0wpa Eztlq62nqDKBC1eDyLTnfMNm5GKOdtZvOibXYO6WxFOt/i+m8mfG1lRAL2UoUPmM 8XXHLZtl7TPPxQyQSpHHbao1wo9LlI1vc/5IZcPZP9LrIXmt3WoPoAqFc3mSGRS9 O+rTujH79XsSxtgUlEz6KhHGFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBS8Ji9/ kj1HZ5SGuRnfVf2eeTvSMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCnCqKM8LhEy8s5PNY1CaZP8H2pESBasp02ohEdExFZpLNgeS406A1 EJQANuGPVsrajBs3SIwRNKudpx+V7vDkndqtKgmxfrBK3Wbel/iew3gV7fTwxfv/ j9BZPPrIEilTxTdjiHZBqXxkGda8VsYZIxeI/D19kGq+T5t+d03kMr7VP2HVoCfs FlIgw5avuwvoO1/VJ6fcOK/K0ik4dtGGoAaFp+Dj/iqWNGS9erk/cjqfBMpsHaFs DlXsKUi3p1Jie/VnkO8BoqPhMHYTGu/3tMEliwkT6BpXjx5k6G1xBzurFBCssrtt wumRT4FLlAFCxO0zrh2aL+cec++xziXr -----END CERTIFICATE-----Generated at Wed Jul 2 05:31:49 2025 by rpki-client