$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: UlvGWj2ECo8oT65TtgRf5Mfj03vTQo6/kA4UG47C6Y4= Subject key identifier: DD:23:76:EC:E3:58:ED:4B:E6:C2:92:52:FA:B2:61:1A:EC:4A:22:A5 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 34ED Signing time: Mon 30 Jun 2025 14:29:13 +0000 Manifest this update: Mon 30 Jun 2025 14:29:13 +0000 Manifest next update: Mon 07 Jul 2025 14:29:13 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: PPC7KQ6YVdUV2phWxiyACLbF4QW7eCUj9fHlEReGVf8=) 2: 92BBD4741F2F11F082D2AB82C4F9AE02.roa (hash: YV/B6jqKt8I2g2TebPLm9+0AgyH5G6psFP7Pfncdwmw=) 3: 8A7456C47CBE11EFB9BF7074C4F9AE02.roa (hash: HcKEOonzAu+z0GPSseUC7go/+PDERZEFfa5gQQU6r04=) 4: 203B2B7A1C9811EE995E057EC4F9AE02.roa (hash: 4zPuCRb6jQp/WONx/+B920AnQZg5YD/rNNquB0manEQ=) 5: E52789DCE39E11EAAAE0622CC4F9AE02.roa (hash: QHmNlvHkZ1UVpicdTwIncttCEG27hNKbZKwKjK3XZ7Y=) 6: 53594CBC1F2F11F09C3D4582C4F9AE02.roa (hash: 11c0RSip9HmRdb+yAiVYr0mJn+7VBpqYNBSW86dakQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 14:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13649 (0x3551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Jun 30 14:29:13 2025 GMT Not After : Jul 7 14:29:13 2025 GMT Subject: CN=68629f39-6a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:34:ce:77:18:3b:77:b5:22:28:9b:0f:34: 51:97:d6:fa:9c:55:49:0e:bc:99:90:7a:d6:24:db: 6a:33:2a:6c:d4:2a:8c:e0:63:ac:e9:7c:ce:1c:6d: 25:06:c8:a2:98:7c:b0:b1:56:9a:bd:a7:32:3d:d4: 79:7c:fa:20:a4:b4:d7:8d:3e:07:50:77:b4:e8:7b: 80:4a:95:3b:86:20:b3:be:e9:17:07:20:96:89:04: 6e:0f:c8:11:75:73:de:96:2e:0f:40:3f:c2:7e:4b: 6a:07:49:fb:af:3e:81:02:4d:b6:ab:48:fe:f9:6c: 29:a9:65:94:b1:a4:f4:e1:fa:80:2e:d7:a9:7d:89: 32:db:00:84:26:04:dd:d3:5c:2a:1a:e9:87:96:3e: 2d:e5:02:b7:ec:14:51:9f:e2:74:04:92:16:16:f7: 86:c5:40:12:8c:70:82:d4:d3:90:8e:ad:ab:a4:5f: 17:d6:a0:c3:57:14:24:bf:5e:ba:2e:e5:e2:b2:bd: ea:a7:2d:88:7e:ac:c7:39:1e:13:28:c5:84:ef:ca: e7:bb:ca:fc:ec:62:2f:e1:c1:6f:f1:3b:c8:26:db: 40:d6:03:31:2b:00:ea:d6:e4:59:68:3f:62:a9:22: 72:14:a4:e5:88:a0:41:a2:7b:8a:26:fc:51:9a:f4: 67:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:23:76:EC:E3:58:ED:4B:E6:C2:92:52:FA:B2:61:1A:EC:4A:22:A5 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:bb:53:96:11:4c:6a:70:5f:64:ac:8c:fc:e8:0c:63:d6:fa: 4c:ee:9e:62:39:b4:22:56:f3:e0:b5:02:45:07:36:db:41:6c: e5:92:96:b1:82:9e:cd:57:6d:4c:56:fe:95:2d:8c:57:c4:a9: 27:29:ba:16:50:54:d3:99:ab:67:91:44:0f:38:5b:26:36:4b: 02:b2:8e:1c:38:01:d5:dd:86:f9:36:f8:d3:5c:26:fd:60:cb: 79:9f:5c:5d:e2:97:09:8f:ce:33:dd:7a:c4:fb:f0:3b:36:86: 60:f8:ee:5c:35:3f:3a:66:cf:2a:a7:e9:c1:78:01:fb:c3:80: a4:83:49:67:e6:90:2d:67:80:c4:63:83:6d:d8:c8:65:b7:33: 10:b4:8a:dd:5f:3b:94:b7:da:20:3c:27:a6:26:44:0e:27:b8: 40:94:c4:96:d3:18:d4:88:84:4b:29:65:91:4d:4d:0f:8d:a5: 2f:4f:e0:36:f5:cb:3f:03:46:c5:22:be:89:44:88:65:3b:ab: cb:f1:65:55:70:bb:3a:02:63:a5:e2:46:93:2c:7a:01:ed:8e: 94:d2:40:5a:12:4d:41:81:d1:e8:72:d2:7c:89:d8:61:e9:fb: 42:88:ca:59:6e:87:49:17:1e:14:7a:fb:57:a4:20:ac:55:7d: 93:b2:fa:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwNjMwMTQyOTEzWhcNMjUwNzA3MTQyOTEzWjAYMRYwFAYD VQQDEw02ODYyOWYzOS02YThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1I0zncYO3e1IiibDzRRl9b6nFVJDryZkHrWJNtqMyps1CqM4GOs6XzOHG0l BsiimHywsVaavacyPdR5fPogpLTXjT4HUHe06HuASpU7hiCzvukXByCWiQRuD8gR dXPeli4PQD/CfktqB0n7rz6BAk22q0j++WwpqWWUsaT04fqALtepfYky2wCEJgTd 01wqGumHlj4t5QK37BRRn+J0BJIWFveGxUASjHCC1NOQjq2rpF8X1qDDVxQkv166 LuXisr3qpy2IfqzHOR4TKMWE78rnu8r87GIv4cFv8TvIJttA1gMxKwDq1uRZaD9i qSJyFKTliKBBonuKJvxRmvRnMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0jduzj WO1L5sKSUvqyYRrsSiKlMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpu1OWEUxqcF9krIz86Axj1vpM7p5iObQiVvPgtQJFBzbbQWzlkpax gp7NV21MVv6VLYxXxKknKboWUFTTmatnkUQPOFsmNksCso4cOAHV3Yb5NvjTXCb9 YMt5n1xd4pcJj84z3XrE+/A7NoZg+O5cNT86Zs8qp+nBeAH7w4Ckg0ln5pAtZ4DE Y4Nt2MhltzMQtIrdXzuUt9ogPCemJkQOJ7hAlMSW0xjUiIRLKWWRTU0PjaUvT+A2 9cs/A0bFIr6JRIhlO6vL8WVVcLs6AmOl4kaTLHoB7Y6U0kBaEk1BgdHoctJ8idhh 6ftCiMpZbodJFx4UevtXpCCsVX2Tsvq5 -----END CERTIFICATE-----Generated at Tue Jul 1 16:54:53 2025 by rpki-client