$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: D4sydtr9tgxKR24EGKbGuebSpuaWnXwPFsQ4rsNL2DM= Subject key identifier: 11:54:0A:E9:3E:98:A9:6B:07:7C:AD:E5:CC:06:25:C4:96:13:97:85 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0A30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0A7B Signing time: Fri 22 Aug 2025 19:59:36 +0000 Manifest this update: Fri 22 Aug 2025 19:59:35 +0000 Manifest next update: Fri 29 Aug 2025 19:59:35 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: xUQuAxhpJ6x9pvggxtSOgA36q+Z7thoCFGLbWmU+n7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: Aug 22 19:59:35 2025 GMT Not After : Aug 29 19:59:35 2025 GMT Subject: CN=68a8cc27-6d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f5:41:32:eb:cb:95:31:9f:4c:44:da:b6:0f: c7:0d:d9:48:5f:73:f3:8a:79:3b:b4:eb:fc:a6:62: 40:57:3e:ae:66:87:cd:7e:c6:1b:a1:3d:19:75:34: 24:9d:4d:56:ae:45:2e:f3:b9:98:f0:d9:ec:25:81: 5f:a0:df:c0:ab:0d:6c:ef:f2:91:14:b9:cc:30:a8: eb:51:55:5a:c0:7b:7d:3f:af:d5:dd:d0:9c:22:d2: 3b:33:6b:1a:36:13:95:eb:47:48:4b:fd:4f:1f:48: 39:67:06:0a:de:9f:f8:8a:6c:eb:e9:d6:38:9c:e9: b7:8e:69:da:29:34:bb:34:af:30:88:e5:41:ca:3d: 8e:7b:af:73:4a:f0:53:cf:4c:89:de:85:0c:d7:25: f6:7a:ac:31:e2:b8:37:2e:45:dd:c2:82:5b:43:4e: 8a:24:e7:5f:b9:c7:7e:bf:b3:d2:bd:1c:c7:2d:29: 42:f6:db:e8:93:9a:61:94:a5:5f:1f:26:ca:98:4e: 3a:cd:47:e8:0a:2b:3d:77:28:dc:c3:66:3a:f6:f2: 0a:48:4f:44:8b:a5:80:4d:d0:5c:ee:88:e8:10:b2: 33:61:59:84:41:8f:02:64:db:be:03:7e:6b:25:1a: b1:8a:1b:cf:d0:2e:6f:da:0f:56:12:ee:eb:08:39: 51:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:54:0A:E9:3E:98:A9:6B:07:7C:AD:E5:CC:06:25:C4:96:13:97:85 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:fe:84:d3:d2:89:35:f5:c7:cb:3d:95:e1:46:e9:f0:94:15: bf:e1:2d:ca:72:c3:90:c4:53:24:c7:c4:38:35:1e:81:ab:b2: 0d:db:a0:8e:97:ea:4c:b5:d9:0b:68:f8:c1:50:0c:9a:31:df: b7:47:de:2f:36:b3:d8:40:1d:29:6d:74:ff:3f:f2:85:00:e2: f8:67:39:f2:54:33:6d:6b:8f:38:68:75:44:5f:17:56:1c:bb: cb:e0:14:f7:8f:4a:24:ab:aa:fb:ed:f9:9a:09:af:95:4a:ca: 5a:1c:5a:36:ff:4f:94:75:61:de:6a:17:19:c1:5e:4e:67:39: f1:3a:20:25:24:22:c8:b6:77:4f:40:36:6a:20:fe:c5:04:dd: d3:bf:26:38:5c:c7:51:6d:60:22:39:96:24:8c:a8:5c:f9:75: 11:35:cb:4d:71:2a:7b:8f:eb:4d:b9:bb:8e:e1:85:73:01:13: d5:bb:d6:40:f0:bb:80:5a:e9:e0:00:47:eb:5b:7a:70:dc:25: 4b:c3:8f:a5:bb:62:bc:04:4f:aa:3a:22:a1:b5:f0:38:8a:a2: 79:5a:1a:d8:81:96:84:13:a9:83:99:f4:69:d8:af:05:20:67: 79:60:c0:5f:4e:c7:74:61:46:73:5c:36:08:04:40:d5:55:4a: f7:5c:03:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUwODIyMTk1OTM1WhcNMjUwODI5MTk1OTM1WjAYMRYwFAYD VQQDEw02OGE4Y2MyNy02ZDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfVBMuvLlTGfTETatg/HDdlIX3Pzink7tOv8pmJAVz6uZofNfsYboT0ZdTQk nU1WrkUu87mY8NnsJYFfoN/Aqw1s7/KRFLnMMKjrUVVawHt9P6/V3dCcItI7M2sa NhOV60dIS/1PH0g5ZwYK3p/4imzr6dY4nOm3jmnaKTS7NK8wiOVByj2Oe69zSvBT z0yJ3oUM1yX2eqwx4rg3LkXdwoJbQ06KJOdfucd+v7PSvRzHLSlC9tvok5phlKVf HybKmE46zUfoCis9dyjcw2Y69vIKSE9Ei6WATdBc7ojoELIzYVmEQY8CZNu+A35r JRqxihvP0C5v2g9WEu7rCDlR1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFUCuk+ mKlrB3yt5cwGJcSWE5eFMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc/oTT0ok19cfLPZXhRunwlBW/4S3KcsOQxFMkx8Q4NR6Bq7IN26CO l+pMtdkLaPjBUAyaMd+3R94vNrPYQB0pbXT/P/KFAOL4ZznyVDNta484aHVEXxdW HLvL4BT3j0okq6r77fmaCa+VSspaHFo2/0+UdWHeahcZwV5OZznxOiAlJCLItndP QDZqIP7FBN3TvyY4XMdRbWAiOZYkjKhc+XURNctNcSp7j+tNubuO4YVzARPVu9ZA 8LuAWungAEfrW3pw3CVLw4+lu2K8BE+qOiKhtfA4iqJ5WhrYgZaEE6mDmfRp2K8F IGd5YMBfTsd0YUZzXDYIBEDVVUr3XAMw -----END CERTIFICATE-----Generated at Sun Aug 24 04:33:36 2025 by rpki-client