$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft File: oktqYgRLcAZfBQY4hGDkry8X8_8.mft (raw, json) Hash identifier: gZwV9iMWAFIGjo4jdBTw9ivMCRUg1VK18K+1gXyEll8= Subject key identifier: EC:41:08:FA:B3:1D:2E:A3:30:1E:86:12:5D:F7:5C:13:96:51:32:09 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft Manifest number: 350C Signing time: Fri 22 Aug 2025 14:25:50 +0000 Manifest this update: Fri 22 Aug 2025 14:25:50 +0000 Manifest next update: Fri 29 Aug 2025 14:25:50 +0000 Files and hashes: 1: oktqYgRLcAZfBQY4hGDkry8X8_8.crl (hash: LYTZURsNRXUtcp8Ef20V5U+7+IJik4YYV9WRNeZwEbg=) 2: 92BBD4741F2F11F082D2AB82C4F9AE02.roa (hash: 0fvzyPTLk4i8W8cllPxt/XEeTSMIYr83qzS/ByRhspc=) 3: 8A7456C47CBE11EFB9BF7074C4F9AE02.roa (hash: LJfUuUVRgUX70ra1tO0sOwws9DELyOzPbOL09Rc8QEE=) 4: 203B2B7A1C9811EE995E057EC4F9AE02.roa (hash: Hfoqu4I1rzkj+GgbHs+w6S5W47rIQMmLn4wuh51rR+4=) 5: E52789DCE39E11EAAAE0622CC4F9AE02.roa (hash: v93jb/bRSNr2Qe/1Fj0VaaM3RO4V5/dzcO4iXSsdfWI=) 6: 53594CBC1F2F11F09C3D4582C4F9AE02.roa (hash: Vpaet2uReWy07dHLmGo1CSsXN2l8QnhC6U+cuZH6fQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13687 (0x3577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Aug 22 14:25:50 2025 GMT Not After : Aug 29 14:25:50 2025 GMT Subject: CN=68a87dee-50aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:93:91:77:4b:6d:d8:0e:e5:bb:eb:2c:f1:09: 17:f6:78:8c:4e:4b:16:5b:e9:fa:7d:b1:a6:88:4b: 96:87:17:de:4f:c1:3a:61:8a:8f:9d:7f:85:9c:2d: 20:86:9b:1c:3d:9b:a6:e3:4d:84:95:75:1c:41:f2: 9a:a1:d8:22:b6:c9:03:97:9f:3a:60:db:d1:3e:38: ac:1e:cc:f4:9f:fc:32:22:f0:73:ba:e0:4e:83:a3: f1:88:eb:00:72:d1:5d:36:3a:cf:70:21:f1:a9:38: e5:0c:07:28:91:ad:ca:03:96:95:9e:a0:24:f9:80: 9b:b9:b7:15:a6:4a:57:39:5c:b9:5a:f9:cc:13:11: 3f:60:fd:3d:e5:cc:31:26:82:18:6d:21:f3:64:47: cf:b9:bf:7b:cb:86:ce:4c:80:48:e2:58:bd:52:3c: 4e:39:b3:4f:a4:95:2b:3a:bd:f0:c3:e6:84:8c:fb: d3:5d:bd:88:5a:28:30:89:41:95:56:ce:d2:d6:7f: 87:20:7f:cb:5b:64:a3:b7:fc:4b:bf:2b:d8:ec:1e: f0:04:66:b2:9c:fc:4a:d6:39:b7:c7:2c:42:39:1e: 49:f8:36:c6:f1:4a:92:0e:3f:45:ce:b6:99:fd:41: b4:ae:94:c5:b5:79:e8:fe:e8:81:31:02:16:7c:96: 80:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:41:08:FA:B3:1D:2E:A3:30:1E:86:12:5D:F7:5C:13:96:51:32:09 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:66:78:ca:42:5d:03:b0:4a:9d:1f:1e:8a:14:ed:98:81:b6: c6:e9:ad:cb:5d:ec:81:e6:fb:f4:90:f1:6c:62:33:53:4a:40: fc:a8:bb:ce:36:e2:b1:6d:b9:de:e8:e1:46:ed:84:88:f0:32: e4:e7:a9:cf:08:81:df:13:b6:2c:b6:09:3e:9b:16:de:99:3d: 79:a3:d3:bf:8c:95:16:11:6f:7f:b7:b7:a8:c5:89:25:8d:dc: d7:d0:63:19:c3:38:8b:d0:bf:c4:c4:6a:da:05:05:1a:24:07: c8:c2:99:ea:56:26:18:10:a6:45:e0:1f:09:88:84:32:cf:30: a9:19:be:44:b2:8c:0c:df:4a:e0:fd:8a:05:d2:c5:76:a0:94: 98:ad:b8:37:f7:c7:cc:ba:0e:d2:77:0c:b4:7e:a6:cd:4e:2c: 43:aa:da:7f:31:b7:dc:ae:67:22:26:9a:72:f9:79:8b:00:87: f3:99:12:73:53:13:58:d9:a9:22:c7:12:1e:61:2c:0f:e0:af: ed:12:bf:65:b7:91:dd:55:fb:f0:d5:a9:33:b7:ce:7a:50:b8: a5:e3:2a:51:d3:84:fe:74:1c:dd:5d:bb:83:0b:24:51:cc:cd: 55:99:65:a3:a8:9a:09:b1:f9:14:89:5d:b6:7b:f3:d0:26:5f: 90:22:33:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwODIyMTQyNTUwWhcNMjUwODI5MTQyNTUwWjAYMRYwFAYD VQQDEw02OGE4N2RlZS01MGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pORd0tt2A7lu+ss8QkX9niMTksWW+n6fbGmiEuWhxfeT8E6YYqPnX+FnC0g hpscPZum402ElXUcQfKaodgitskDl586YNvRPjisHsz0n/wyIvBzuuBOg6PxiOsA ctFdNjrPcCHxqTjlDAcoka3KA5aVnqAk+YCbubcVpkpXOVy5WvnMExE/YP095cwx JoIYbSHzZEfPub97y4bOTIBI4li9UjxOObNPpJUrOr3ww+aEjPvTXb2IWigwiUGV Vs7S1n+HIH/LW2Sjt/xLvyvY7B7wBGaynPxK1jm3xyxCOR5J+DbG8UqSDj9FzraZ /UG0rpTFtXno/uiBMQIWfJaAxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxBCPqz HS6jMB6GEl33XBOWUTIJMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjU1MC84QjlCRDIwMjFEODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNB WmZCUVk0aEdEa3J5OFg4XzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzZnjKQl0DsEqdHx6KFO2YgbbG6a3LXeyB5vv0kPFsYjNTSkD8qLvO NuKxbbne6OFG7YSI8DLk56nPCIHfE7Ystgk+mxbemT15o9O/jJUWEW9/t7eoxYkl jdzX0GMZwziL0L/ExGraBQUaJAfIwpnqViYYEKZF4B8JiIQyzzCpGb5EsowM30rg /YoF0sV2oJSYrbg398fMug7Sdwy0fqbNTixDqtp/MbfcrmciJppy+XmLAIfzmRJz UxNY2akixxIeYSwP4K/tEr9lt5HdVfvw1akzt856ULil4ypR04T+dBzdXbuDCyRR zM1VmWWjqJoJsfkUiV22e/PQJl+QIjMt -----END CERTIFICATE-----Generated at Sat Aug 23 21:03:06 2025 by rpki-client