$ rpki-client -vvf rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft File: ofrVQukeAX0lfVGxT_XDW4lCnvU.mft (raw, json) Hash identifier: Csh9oifCmFjNwUU3cV5WP5t8DSc1gQLXt/gZfykjozE= Subject key identifier: D5:60:1D:90:A6:6E:92:79:4E:F2:EE:58:F3:F2:0D:34:37:68:2C:33 Authority key identifier: A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 Certificate issuer: /CN=A918377D/serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Certificate serial: 0118 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft Manifest number: 0118 Signing time: Sat 19 Jul 2025 05:00:24 +0000 Manifest this update: Sat 19 Jul 2025 05:00:24 +0000 Manifest next update: Sat 26 Jul 2025 05:00:24 +0000 Files and hashes: 1: ofrVQukeAX0lfVGxT_XDW4lCnvU.crl (hash: RDzOhCZKfBskfyzfqFsuKpTko+GmyYzxB2t5d+TYZ+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918377D, serialNumber=A1FAD542E91E017D257D51B14FF5C35B89429EF5 Validity Not Before: Jul 19 05:00:24 2025 GMT Not After : Jul 26 05:00:24 2025 GMT Subject: CN=687b2668-bc35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0d:eb:b4:09:17:fa:b6:48:a6:81:c2:38:fc: 6f:63:65:0f:4c:57:9e:7d:0b:5b:4a:d0:07:56:f7: 3d:1c:96:c3:49:56:1e:9c:7c:ce:12:ac:8d:6b:4f: d5:00:02:23:67:62:41:86:31:7b:26:70:1c:78:5b: a6:8f:15:ba:4f:96:0d:68:de:78:56:1e:8d:a2:e3: dd:9f:e0:1a:b6:41:09:a1:ee:ff:ec:aa:6c:68:b8: 8f:f6:b5:7b:a7:95:e5:29:b4:7a:f7:0c:ac:ea:b7: 34:84:7f:93:b0:05:4d:2b:c8:03:84:de:d9:21:6c: b6:0a:a6:51:a1:86:69:6d:1c:34:0f:8c:d6:ef:88: 16:d2:92:5e:41:2e:89:ae:6b:a1:47:52:39:18:a1: a4:24:1c:ec:ff:0b:85:3b:c3:08:3e:be:3a:e1:28: dc:07:dc:dc:73:5a:f8:74:22:68:c9:71:54:2e:bd: 65:0f:32:18:40:e1:56:e7:65:3f:85:81:8d:14:b0: eb:eb:70:9e:58:ba:e8:81:c3:9f:7b:a4:91:10:90: f7:d5:73:16:e8:86:10:65:7f:f3:73:c6:37:9a:17: 50:89:ac:3c:40:65:d5:f0:45:05:65:c8:52:e5:9f: 12:69:08:a8:21:f1:e2:67:46:a4:1e:f7:64:82:ca: ca:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:60:1D:90:A6:6E:92:79:4E:F2:EE:58:F3:F2:0D:34:37:68:2C:33 X509v3 Authority Key Identifier: keyid:A1:FA:D5:42:E9:1E:01:7D:25:7D:51:B1:4F:F5:C3:5B:89:42:9E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ofrVQukeAX0lfVGxT_XDW4lCnvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918377D/9F7C8152B4B111EEB0ADE352C4F9AE02/ofrVQukeAX0lfVGxT_XDW4lCnvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:c6:d1:6e:d6:3c:c3:54:2b:17:a0:59:a4:50:73:db:34:c0: ff:af:58:c4:db:88:cd:6a:18:88:41:3e:66:4a:a1:2d:96:5d: a8:9a:6e:21:69:34:bf:ab:d5:1f:26:3f:23:18:37:8c:bc:ed: d7:5f:6f:24:37:6f:33:a0:e5:b6:c4:c9:5a:28:cb:7c:40:02: 7a:29:91:04:85:57:d0:d1:4c:03:ae:ae:f7:4f:73:66:a8:d2: 54:52:e0:23:42:7a:14:ea:72:90:ab:41:26:03:04:36:8b:22: dd:91:3d:c6:fd:d6:bf:43:50:64:cd:5a:15:ce:b9:ea:3f:5a: 0a:99:32:37:90:e5:55:12:b5:f6:9e:ef:5f:df:a0:2f:cb:54: 3e:c2:22:f1:7c:18:83:44:79:c1:6e:9d:de:ba:0d:46:a9:90: 52:51:b8:41:d2:52:13:79:3f:75:68:4f:c9:bf:9b:ba:a7:77: 64:30:d0:7f:bf:09:66:af:26:17:4d:2e:67:af:69:77:6e:65: 71:e0:5c:43:62:d8:de:72:ed:f3:68:64:02:fc:a7:41:3f:3e: fb:16:bc:7d:df:49:98:57:a3:af:d7:2a:31:e2:71:94:5a:5c: 22:ef:c7:e2:64:ee:98:9b:b6:b1:1a:08:3f:8b:7f:de:83:d6: 06:47:2b:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM3N0QxMTAvBgNVBAUTKEExRkFENTQyRTkxRTAxN0QyNTdENTFCMTRGRjVDMzVC ODk0MjlFRjUwHhcNMjUwNzE5MDUwMDI0WhcNMjUwNzI2MDUwMDI0WjAYMRYwFAYD VQQDEw02ODdiMjY2OC1iYzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3w3rtAkX+rZIpoHCOPxvY2UPTFeefQtbStAHVvc9HJbDSVYenHzOEqyNa0/V AAIjZ2JBhjF7JnAceFumjxW6T5YNaN54Vh6NouPdn+AatkEJoe7/7KpsaLiP9rV7 p5XlKbR69wys6rc0hH+TsAVNK8gDhN7ZIWy2CqZRoYZpbRw0D4zW74gW0pJeQS6J rmuhR1I5GKGkJBzs/wuFO8MIPr464SjcB9zcc1r4dCJoyXFULr1lDzIYQOFW52U/ hYGNFLDr63CeWLrogcOfe6SREJD31XMW6IYQZX/zc8Y3mhdQiaw8QGXV8EUFZchS 5Z8SaQioIfHiZ0akHvdkgsrKBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVgHZCm bpJ5TvLuWPPyDTQ3aCwzMB8GA1UdIwQYMBaAFKH61ULpHgF9JX1RsU/1w1uJQp71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mzc3RC85RjdDODE1MkI0 QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFYMGxmVkd4VF9YRFc0bENu dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29mclZRdWtlQVgwbGZWR3hUX1hEVzRsQ252VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mzc3RC85RjdDODE1MkI0QjExMUVFQjBBREUzNTJDNEY5QUUwMi9vZnJWUXVrZUFY MGxmVkd4VF9YRFc0bENudlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYxtFu1jzDVCsXoFmkUHPbNMD/r1jE24jNahiIQT5mSqEtll2omm4h aTS/q9UfJj8jGDeMvO3XX28kN28zoOW2xMlaKMt8QAJ6KZEEhVfQ0UwDrq73T3Nm qNJUUuAjQnoU6nKQq0EmAwQ2iyLdkT3G/da/Q1BkzVoVzrnqP1oKmTI3kOVVErX2 nu9f36Avy1Q+wiLxfBiDRHnBbp3eug1GqZBSUbhB0lITeT91aE/Jv5u6p3dkMNB/ vwlmryYXTS5nr2l3bmVx4FxDYtjecu3zaGQC/KdBPz77Frx930mYV6Ov1yox4nGU Wlwi78fiZO6Ym7axGgg/i3/eg9YGRyst -----END CERTIFICATE-----Generated at Sun Jul 20 06:17:23 2025 by rpki-client