$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: MBXjs0OTmwSNLXrx2coL3u01w8+PnJNwJcScvD21j0A= Subject key identifier: 8D:D6:7F:A0:4A:FC:DB:1E:68:76:5D:AE:B1:FC:CA:1F:CF:C9:3F:5A Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 34D3 Signing time: Sat 10 May 2025 14:25:14 +0000 Manifest this update: Sat 10 May 2025 14:25:13 +0000 Manifest next update: Sat 17 May 2025 14:25:13 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: mz4Rww+/7SGISQCb44RrkseVPgtX9l5D4Pj/dJtnMTs=) 2: 92BBD4741F2F11F082D2AB82C4F9AE02.roa (hash: YV/B6jqKt8I2g2TebPLm9+0AgyH5G6psFP7Pfncdwmw=) 3: 8A7456C47CBE11EFB9BF7074C4F9AE02.roa (hash: HcKEOonzAu+z0GPSseUC7go/+PDERZEFfa5gQQU6r04=) 4: 203B2B7A1C9811EE995E057EC4F9AE02.roa (hash: 4zPuCRb6jQp/WONx/+B920AnQZg5YD/rNNquB0manEQ=) 5: E52789DCE39E11EAAAE0622CC4F9AE02.roa (hash: QHmNlvHkZ1UVpicdTwIncttCEG27hNKbZKwKjK3XZ7Y=) 6: 53594CBC1F2F11F09C3D4582C4F9AE02.roa (hash: 11c0RSip9HmRdb+yAiVYr0mJn+7VBpqYNBSW86dakQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13623 (0x3537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: May 10 14:25:13 2025 GMT Not After : May 17 14:25:13 2025 GMT Subject: CN=681f61c9-ab1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:20:94:d0:2e:39:93:0e:26:ad:2b:7e:42:16: 68:55:82:eb:6f:82:8e:86:44:5b:f0:44:73:ce:2f: 04:82:d1:4e:cf:d3:6a:87:2f:c3:31:e3:14:07:e8: 1d:a6:66:5a:f2:4f:e9:7c:ab:2f:01:6b:79:ce:eb: 0d:94:8b:42:f6:1e:17:4c:02:4c:c6:53:1d:74:20: 36:70:2d:db:94:26:2a:32:fc:e3:c5:3e:ca:1f:49: 7c:14:c0:07:3b:ca:84:99:2a:82:19:94:e2:ed:9a: 2c:d8:a8:19:64:4b:ba:9c:2d:ff:d1:a3:8d:04:04: ed:c3:6f:3c:e3:bf:3e:ce:4d:23:bf:cd:7f:34:4a: a7:46:06:4f:bb:6f:cf:aa:ca:72:db:a0:fb:fb:22: 92:ec:77:00:e8:e3:dd:18:c8:6f:2b:3d:58:a0:8e: c2:26:62:c6:de:fb:39:ee:a7:db:1e:ce:9f:89:85: 1f:f8:f7:cc:65:3b:9d:51:6f:4d:80:b7:bc:b1:e7: 51:0f:20:cf:e1:f1:10:50:b5:85:23:8b:9b:89:da: 2c:f3:b9:c7:dd:fa:af:77:f5:95:c4:ad:63:44:10: 39:5a:36:1f:0a:94:7d:38:2b:47:a9:33:cf:c8:ef: 7a:a3:d5:9d:73:73:cc:3c:e5:1a:37:a6:a6:39:0b: a4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D6:7F:A0:4A:FC:DB:1E:68:76:5D:AE:B1:FC:CA:1F:CF:C9:3F:5A X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:19:e7:4d:ff:88:53:02:0b:a5:fe:eb:b9:2c:38:e4:d2:92: bc:b6:3f:3a:91:8f:f4:6e:92:4f:e2:5e:d2:28:a1:28:4f:3a: 93:57:65:82:f1:e1:fc:bf:c6:b6:05:2c:bd:c6:78:5c:1d:de: 74:6a:72:f9:58:c0:24:57:c9:62:b2:a9:df:5b:40:21:17:d8: 42:44:b3:47:5e:69:33:ca:bf:9d:91:52:7c:41:e6:30:5a:4a: 39:66:fc:11:7e:f8:08:7c:c0:2d:77:a9:12:22:72:78:e1:83: 77:3b:50:ac:5e:89:b4:20:d4:ef:f9:ea:a9:1b:3a:cb:12:13: de:7f:ea:a2:a6:de:aa:ba:8e:47:0f:68:95:72:39:c6:bc:ce: 20:7c:4d:21:d0:e2:b6:be:63:1c:49:db:7b:91:92:c5:90:7d: 30:4c:6d:37:88:26:21:ee:25:6b:8c:ab:ed:e6:64:83:4c:fd: a4:69:26:d9:68:bd:bd:01:a4:1b:ff:92:89:d3:01:e0:46:05: 73:04:11:df:3e:8a:da:cf:ce:b5:37:ad:fb:7f:7c:4a:cf:b8: aa:19:69:a4:d8:12:31:76:79:94:aa:f1:b3:3c:a7:27:54:e8: 67:4c:42:3f:e6:3e:b2:43:1a:c2:09:29:f4:c4:75:b4:19:1a: 44:71:97:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwNTEwMTQyNTEzWhcNMjUwNTE3MTQyNTEzWjAYMRYwFAYD VQQDEw02ODFmNjFjOS1hYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CCU0C45kw4mrSt+QhZoVYLrb4KOhkRb8ERzzi8EgtFOz9Nqhy/DMeMUB+gd pmZa8k/pfKsvAWt5zusNlItC9h4XTAJMxlMddCA2cC3blCYqMvzjxT7KH0l8FMAH O8qEmSqCGZTi7Zos2KgZZEu6nC3/0aONBATtw288478+zk0jv81/NEqnRgZPu2/P qspy26D7+yKS7HcA6OPdGMhvKz1YoI7CJmLG3vs57qfbHs6fiYUf+PfMZTudUW9N gLe8sedRDyDP4fEQULWFI4ubidos87nH3fqvd/WVxK1jRBA5WjYfCpR9OCtHqTPP yO96o9Wdc3PMPOUaN6amOQukhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3Wf6BK /NseaHZdrrH8yh/PyT9aMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXGedN/4hTAgul/uu5LDjk0pK8tj86kY/0bpJP4l7SKKEoTzqTV2WC 8eH8v8a2BSy9xnhcHd50anL5WMAkV8lisqnfW0AhF9hCRLNHXmkzyr+dkVJ8QeYw Wko5ZvwRfvgIfMAtd6kSInJ44YN3O1CsXom0INTv+eqpGzrLEhPef+qipt6quo5H D2iVcjnGvM4gfE0h0OK2vmMcSdt7kZLFkH0wTG03iCYh7iVrjKvt5mSDTP2kaSbZ aL29AaQb/5KJ0wHgRgVzBBHfPoraz861N637f3xKz7iqGWmk2BIxdnmUqvGzPKcn VOhnTEI/5j6yQxrCCSn0xHW0GRpEcZc0 -----END CERTIFICATE-----Generated at Sun May 11 00:59:25 2025 by rpki-client