$ rpki-client -vvf rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft File: oxnfTQtEZSzooFXCNSUBGLSUBYU.mft (raw, json) Hash identifier: 4kgOXFxbs/jDaE7gIy7GHGF9DvhuBdaYtX8dOoRY6NM= Subject key identifier: A2:20:D5:3C:8A:67:26:0E:96:B6:2B:33:2E:D7:B4:56:A4:4F:B7:F9 Authority key identifier: A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 Certificate issuer: /CN=A913E881/serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft Manifest number: 077A Signing time: Fri 18 Jul 2025 21:48:03 +0000 Manifest this update: Fri 18 Jul 2025 21:48:02 +0000 Manifest next update: Fri 25 Jul 2025 21:48:02 +0000 Files and hashes: 1: oxnfTQtEZSzooFXCNSUBGLSUBYU.crl (hash: hGX1mpqWwgBUz7LqDacSt9aaZQaFz96DeMq4OBVmLNY=) 2: 29F6C42C1FD311EBA5D83A1EC4F9AE02.roa (hash: epre9gPrGweKOSwkMZsEVYJd5/RVczknOfwPtxQUKwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E881, serialNumber=A319DF4D0B44652CE8A055C235250118B4940585 Validity Not Before: Jul 18 21:48:02 2025 GMT Not After : Jul 25 21:48:02 2025 GMT Subject: CN=687ac113-11dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:62:00:30:ac:28:2f:98:3c:44:5a:f8:3b: e4:b3:41:0d:2a:1c:ad:ca:e9:9b:42:a5:03:94:5c: b9:80:9d:15:2c:66:2e:be:a0:18:4c:1e:e7:df:5b: 7b:e3:2f:e0:07:25:57:17:05:e1:32:d9:92:e4:40: 69:ce:5d:8a:99:57:99:d7:10:e3:80:97:67:a2:9f: 7a:77:31:48:98:3b:f4:0c:a8:2d:3f:5a:1f:ce:18: 86:ca:96:33:e8:02:c8:ac:f1:bc:19:36:b3:9a:65: bb:e3:4b:b0:b1:1c:e3:db:ea:04:d4:ba:8d:49:ec: ba:67:d2:27:e9:06:2d:c8:56:59:c5:a8:a5:31:97: a3:69:56:7f:0a:02:56:f5:41:5c:ce:61:7a:bd:53: c5:5f:2d:fa:c2:8c:fd:07:1a:32:1a:af:d4:ae:76: e7:62:74:36:b6:de:81:c5:aa:69:11:17:ef:47:f5: 6f:bf:11:7f:77:4e:ce:bb:9a:15:b1:a8:89:34:6d: c2:98:09:58:7e:9d:c8:ad:e2:e0:d0:e3:2a:6f:aa: aa:2d:60:c7:0a:af:5d:24:64:56:d2:bf:86:02:42: 35:bf:97:61:2a:37:68:e0:d8:9a:2e:49:f3:64:cd: b0:79:b9:42:14:0d:2d:69:32:96:1d:5b:97:e8:36: 16:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:20:D5:3C:8A:67:26:0E:96:B6:2B:33:2E:D7:B4:56:A4:4F:B7:F9 X509v3 Authority Key Identifier: keyid:A3:19:DF:4D:0B:44:65:2C:E8:A0:55:C2:35:25:01:18:B4:94:05:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oxnfTQtEZSzooFXCNSUBGLSUBYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E881/1E642EE41FD111EBA57E741CC4F9AE02/oxnfTQtEZSzooFXCNSUBGLSUBYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:94:b4:76:59:9a:76:eb:7d:5e:c6:9f:1e:50:42:07:f9:f0: 46:32:f7:c3:0b:8a:f1:a6:f9:d5:c2:74:33:e3:49:6f:d1:da: e4:71:fb:da:f0:b5:5f:71:33:56:f5:5f:8b:93:4b:91:4d:66: 5c:11:a4:82:e7:38:a4:f4:4e:2b:92:09:55:9c:27:3b:b1:c8: 93:ce:13:68:13:0a:3d:de:7b:83:39:2f:bb:63:e6:91:40:bf: c7:12:9f:76:d7:ce:28:ba:bf:dd:77:62:cb:ce:6d:21:58:74: 3a:6e:f3:17:26:97:2b:bd:6f:cf:db:55:13:bf:08:33:92:ce: 8f:44:33:90:44:4b:1b:cd:e7:73:48:3f:e9:e4:1f:e5:16:29: c0:33:0e:8a:8f:c0:57:71:8d:15:fb:eb:17:f6:b3:9c:05:48: db:52:77:9b:9c:f6:10:4e:b5:3b:75:69:a3:79:d7:d9:85:c4: ef:d9:34:b6:91:40:f6:65:ae:52:24:db:9b:c4:54:54:f4:ab: b7:0f:b0:0a:fa:ab:22:c1:92:7a:f8:71:d1:4d:e5:33:7c:76: 7b:bf:25:ff:7a:c0:80:de:05:ff:15:1e:81:71:fe:60:8b:3f: cf:39:20:05:56:a5:b6:03:cb:52:d0:cb:69:f5:07:d5:cd:63: 90:b8:e6:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4ODExMTAvBgNVBAUTKEEzMTlERjREMEI0NDY1MkNFOEEwNTVDMjM1MjUwMTE4 QjQ5NDA1ODUwHhcNMjUwNzE4MjE0ODAyWhcNMjUwNzI1MjE0ODAyWjAYMRYwFAYD VQQDEw02ODdhYzExMy0xMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIxiADCsKC+YPERa+Dvks0ENKhytyumbQqUDlFy5gJ0VLGYuvqAYTB7n31t7 4y/gByVXFwXhMtmS5EBpzl2KmVeZ1xDjgJdnop96dzFImDv0DKgtP1ofzhiGypYz 6ALIrPG8GTazmmW740uwsRzj2+oE1LqNSey6Z9In6QYtyFZZxailMZejaVZ/CgJW 9UFczmF6vVPFXy36woz9BxoyGq/UrnbnYnQ2tt6BxappERfvR/VvvxF/d07Ou5oV saiJNG3CmAlYfp3IreLg0OMqb6qqLWDHCq9dJGRW0r+GAkI1v5dhKjdo4NiaLknz ZM2weblCFA0taTKWHVuX6DYWVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIg1TyK ZyYOlrYrMy7XtFakT7f5MB8GA1UdIwQYMBaAFKMZ300LRGUs6KBVwjUlARi0lAWF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTg4MS8xRTY0MkVFNDFG RDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpTem9vRlhDTlNVQkdMU1VC WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL294bmZUUXRFWlN6b29GWENOU1VCR0xTVUJZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTg4MS8xRTY0MkVFNDFGRDExMUVCQTU3RTc0MUNDNEY5QUUwMi9veG5mVFF0RVpT em9vRlhDTlNVQkdMU1VCWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANlLR2WZp2631exp8eUEIH+fBGMvfDC4rxpvnVwnQz40lv0drkcfva 8LVfcTNW9V+Lk0uRTWZcEaSC5zik9E4rkglVnCc7sciTzhNoEwo93nuDOS+7Y+aR QL/HEp92184our/dd2LLzm0hWHQ6bvMXJpcrvW/P21UTvwgzks6PRDOQREsbzedz SD/p5B/lFinAMw6Kj8BXcY0V++sX9rOcBUjbUnebnPYQTrU7dWmjedfZhcTv2TS2 kUD2Za5SJNubxFRU9Ku3D7AK+qsiwZJ6+HHRTeUzfHZ7vyX/esCA3gX/FR6Bcf5g iz/POSAFVqW2A8tS0Mtp9QfVzWOQuOYe -----END CERTIFICATE-----Generated at Sun Jul 20 06:11:19 2025 by rpki-client