$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: LBzbGzjY3UMuKdQypLwQDkq6QBcHF4FcXoPGM1mG9WM= Subject key identifier: 7F:30:B6:25:87:AB:41:99:0D:C2:E2:FC:3D:98:39:EE:FC:37:45:BA Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 011A Signing time: Thu 05 Jun 2025 04:13:19 +0000 Manifest this update: Thu 05 Jun 2025 04:13:19 +0000 Manifest next update: Thu 12 Jun 2025 04:13:19 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: YSHqm0AOKYIq4VjGpTFMfIw6fMOHlk2QScVkgSvMgSs=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: rOwD6kKfHs7j3niSOFa7ZxwcRgpXDjpa8bFCR+QwO/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Jun 5 04:13:19 2025 GMT Not After : Jun 12 04:13:19 2025 GMT Subject: CN=6841195f-5d77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2d:f2:72:21:f1:a7:84:9b:a4:7f:3f:ec:a8: 05:67:3a:6a:c6:ef:ce:2d:f4:08:82:c5:f1:0f:c6: 4d:02:13:bf:21:9e:d9:da:85:25:a3:0e:6e:fd:8d: 73:58:49:05:0f:d5:40:6e:4d:cb:1d:f2:b7:40:3d: a6:cc:cf:2f:3c:ea:0c:c3:2e:15:1a:6b:9a:c6:20: 1b:7d:73:a4:27:88:e2:f9:4f:92:a6:59:f2:1a:15: ff:05:c2:b8:1b:9e:ce:74:7d:ec:50:98:be:f3:ac: 03:c3:60:7d:d5:fa:f7:f8:cf:c0:4d:e5:a8:63:9f: 93:cd:31:ad:f6:3c:93:c5:92:bb:44:e3:20:01:93: e3:26:c8:d0:df:eb:88:5d:b0:d8:e7:9b:0c:35:6f: 0d:ac:c2:9d:02:84:2b:3f:63:16:8f:fa:68:54:6e: 23:3d:94:05:6d:36:6a:b7:c4:e2:20:7d:70:23:b1: 1c:b8:74:33:c1:e5:b0:46:10:8e:35:b3:7a:45:e3: 1e:e1:67:26:fb:22:54:c2:45:f5:60:8e:ef:79:9d: b1:76:16:1c:ad:f0:1f:21:00:9a:97:14:48:76:d3: 9f:91:9e:6a:6b:e5:a2:10:cb:ca:d6:8b:bf:bc:e4: c4:aa:e9:bd:8f:a9:55:21:dd:11:69:fc:50:8d:72: c3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:30:B6:25:87:AB:41:99:0D:C2:E2:FC:3D:98:39:EE:FC:37:45:BA X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:eb:7c:6e:29:95:6b:ca:20:6e:f0:ad:f4:04:ec:a5:29:55: 58:8c:a4:5f:23:90:0a:2f:c2:19:44:8c:4f:03:f5:24:fa:f6: d0:64:09:08:8a:3d:9a:4d:2f:2b:ed:26:08:aa:c4:20:20:d8: 37:a7:16:99:a0:45:70:e8:28:aa:9b:87:34:d8:23:b7:7d:52: 65:63:52:28:dd:de:33:d5:9f:ac:bb:83:15:67:16:32:69:3b: 88:ba:bc:96:81:e5:10:bb:5f:27:34:fb:3c:59:e6:6b:32:29: 7a:4e:ec:96:18:2a:e4:31:d3:5c:33:1c:9e:1e:26:c5:b9:80: 01:8a:5a:5c:23:9d:b2:01:1b:dd:94:8b:a1:0a:9e:a4:aa:68: 30:d4:5b:a5:0c:99:99:ab:4d:5d:f3:ea:ae:2c:b9:f4:f5:0a: 54:ea:f9:56:f7:c4:85:d4:1b:cd:37:b5:33:a2:c6:c9:eb:82: af:eb:d8:f9:f7:5f:42:39:48:30:d7:f3:d9:52:ce:aa:03:30: e4:38:5b:ae:04:a1:3d:74:e4:c0:d8:d3:fa:80:93:1e:ef:af: db:9f:8b:67:b9:9c:3e:c2:f1:cb:8c:12:b7:e0:34:9e:29:39: 8f:06:5c:31:bb:60:23:25:d6:87:46:8d:57:47:68:b9:65:8d: c0:ec:7b:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNjA1MDQxMzE5WhcNMjUwNjEyMDQxMzE5WjAYMRYwFAYD VQQDEw02ODQxMTk1Zi01ZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y3yciHxp4SbpH8/7KgFZzpqxu/OLfQIgsXxD8ZNAhO/IZ7Z2oUlow5u/Y1z WEkFD9VAbk3LHfK3QD2mzM8vPOoMwy4VGmuaxiAbfXOkJ4ji+U+SplnyGhX/BcK4 G57OdH3sUJi+86wDw2B91fr3+M/ATeWoY5+TzTGt9jyTxZK7ROMgAZPjJsjQ3+uI XbDY55sMNW8NrMKdAoQrP2MWj/poVG4jPZQFbTZqt8TiIH1wI7EcuHQzweWwRhCO NbN6ReMe4Wcm+yJUwkX1YI7veZ2xdhYcrfAfIQCalxRIdtOfkZ5qa+WiEMvK1ou/ vOTEqum9j6lVId0RafxQjXLDMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8wtiWH q0GZDcLi/D2YOe78N0W6MB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn63xuKZVryiBu8K30BOylKVVYjKRfI5AKL8IZRIxPA/Uk+vbQZAkI ij2aTS8r7SYIqsQgINg3pxaZoEVw6Ciqm4c02CO3fVJlY1Io3d4z1Z+su4MVZxYy aTuIuryWgeUQu18nNPs8WeZrMil6TuyWGCrkMdNcMxyeHibFuYABilpcI52yARvd lIuhCp6kqmgw1FulDJmZq01d8+quLLn09QpU6vlW98SF1BvNN7UzosbJ64Kv69j5 919COUgw1/PZUs6qAzDkOFuuBKE9dOTA2NP6gJMe76/bn4tnuZw+wvHLjBK34DSe KTmPBlwxu2AjJdaHRo1XR2i5ZY3A7HtW -----END CERTIFICATE-----Generated at Fri Jun 6 17:28:10 2025 by rpki-client