$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft File: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft (raw, json) Hash identifier: I3UFykeF2Z8LI5JakA0LTjVlaV0fkfUieWd3pPpSzUM= Subject key identifier: EC:3F:20:A0:C0:41:16:04:22:58:5C:B0:A0:FA:4F:CB:9F:61:89:C7 Authority key identifier: A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED Certificate issuer: /CN=A918EF94/serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft Manifest number: 0123 Signing time: Sun 08 Jun 2025 17:39:31 +0000 Manifest this update: Sun 08 Jun 2025 17:39:31 +0000 Manifest next update: Sun 15 Jun 2025 17:39:30 +0000 Files and hashes: 1: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl (hash: umAeFRCjwonxuFwDsIMaQ6vnqsmC1ZNYBwVB01ZCjaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 17:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Validity Not Before: Jun 8 17:39:31 2025 GMT Not After : Jun 15 17:39:30 2025 GMT Subject: CN=6845cad3-fd59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dc:4b:87:2d:8c:b4:ca:1a:e2:74:21:6a:af: cd:42:83:04:a0:e6:30:5f:96:10:49:2b:4d:53:2c: 73:3e:f9:aa:94:34:89:96:67:b5:93:46:0b:ba:73: 58:fd:fd:cd:12:98:74:6c:78:6d:4f:30:55:8c:90: 58:74:92:a9:92:cb:54:16:25:47:77:2a:61:d1:4f: 67:0f:13:27:b6:1d:db:61:19:36:5c:4d:7f:6e:39: c7:66:5f:8a:67:4d:69:15:bd:65:c6:92:00:5f:27: 9f:3f:61:61:57:41:a7:ab:fa:ff:20:68:36:f7:f0: 11:0b:e5:29:8c:14:ba:28:1a:c8:df:b4:75:f9:66: a4:dc:4d:e6:87:70:43:90:27:ce:6d:92:7e:6a:b4: de:b5:40:1f:01:67:6b:5a:87:00:57:9b:2f:54:00: 82:bf:fa:e5:7a:9f:11:21:9a:32:d3:0c:01:d6:2b: 26:d2:1b:81:76:62:59:1e:ee:d5:3f:e0:c9:7f:67: 7d:d9:c5:93:8a:ed:9a:0a:14:13:8b:b1:a8:15:c2: 0e:08:69:ad:b4:12:d5:bd:be:90:58:6a:4c:5c:54: e2:c3:2e:8d:bf:8a:3c:30:a1:be:4a:14:2a:cf:6d: ed:6d:9b:dd:48:3b:6b:3d:6f:e1:c3:95:66:b4:2a: 2d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:3F:20:A0:C0:41:16:04:22:58:5C:B0:A0:FA:4F:CB:9F:61:89:C7 X509v3 Authority Key Identifier: keyid:A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:7a:bc:c0:ee:6e:57:fb:48:a4:3a:98:b9:71:e1:f4:4a:29: 36:08:87:d7:57:c3:20:e3:79:fd:28:94:c9:85:04:20:94:a5: d5:06:ca:f5:ac:ec:6b:ae:43:5b:6a:5e:1a:f3:2b:bd:d7:82: 9d:0b:cb:39:82:6a:50:71:d9:71:8e:2c:f1:cf:4b:e9:46:4d: 32:5d:b0:29:55:d0:04:35:d2:39:8f:4e:9c:79:3f:fb:12:0d: f0:c5:26:f1:33:f3:70:c9:5b:6a:a1:48:e9:ad:d6:b6:82:d2: 64:1c:b6:a3:51:9f:df:b8:a3:da:08:37:35:8e:78:8e:c2:36: f8:65:2c:5a:62:b0:e1:25:f6:ac:30:74:82:a8:32:47:c5:9e: d4:14:6a:eb:6c:7f:99:83:66:b5:64:1a:4f:02:94:7a:54:13: 7f:ef:91:3c:aa:71:7a:25:d4:f5:d3:40:0e:46:34:1a:5f:0f: 7e:60:d7:20:e3:26:85:02:36:ce:47:77:fd:b1:81:02:f1:1c: 19:50:17:8f:dd:91:42:27:f8:cd:6c:e9:a7:33:c9:60:81:de: d9:0a:e6:d3:c4:d4:e1:ab:0e:c2:a0:75:f8:7a:84:10:a7:09: e5:be:a8:44:a4:52:55:1b:e3:ef:d8:93:1f:ad:3c:3a:7f:03: c3:49:54:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEExRTRGMDlEMkY0NzA3ODY3Q0ZBRTI3RThGMTMyMzY5 RkI5N0QwRUQwHhcNMjUwNjA4MTczOTMxWhcNMjUwNjE1MTczOTMwWjAYMRYwFAYD VQQDEw02ODQ1Y2FkMy1mZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNxLhy2MtMoa4nQhaq/NQoMEoOYwX5YQSStNUyxzPvmqlDSJlme1k0YLunNY /f3NEph0bHhtTzBVjJBYdJKpkstUFiVHdyph0U9nDxMnth3bYRk2XE1/bjnHZl+K Z01pFb1lxpIAXyefP2FhV0Gnq/r/IGg29/ARC+UpjBS6KBrI37R1+Wak3E3mh3BD kCfObZJ+arTetUAfAWdrWocAV5svVACCv/rlep8RIZoy0wwB1ism0huBdmJZHu7V P+DJf2d92cWTiu2aChQTi7GoFcIOCGmttBLVvb6QWGpMXFTiwy6Nv4o8MKG+ShQq z23tbZvdSDtrPW/hw5VmtCot2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOw/IKDA QRYEIlhcsKD6T8ufYYnHMB8GA1UdIwQYMBaAFKHk8J0vRweGfPrifo8TI2n7l9Dt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81MDI5NTU0QzhB NzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0WjgtdUotanhNamFmdVgw TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29lVHduUzlIQjRaOC11Si1qeE1qYWZ1WDBPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81MDI5NTU0QzhBNzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0 WjgtdUotanhNamFmdVgwTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuerzA7m5X+0ikOpi5ceH0Sik2CIfXV8Mg43n9KJTJhQQglKXVBsr1 rOxrrkNbal4a8yu914KdC8s5gmpQcdlxjizxz0vpRk0yXbApVdAENdI5j06ceT/7 Eg3wxSbxM/NwyVtqoUjprda2gtJkHLajUZ/fuKPaCDc1jniOwjb4ZSxaYrDhJfas MHSCqDJHxZ7UFGrrbH+Zg2a1ZBpPApR6VBN/75E8qnF6JdT100AORjQaXw9+YNcg 4yaFAjbOR3f9sYEC8RwZUBeP3ZFCJ/jNbOmnM8lggd7ZCubTxNThqw7CoHX4eoQQ pwnlvqhEpFJVG+Pv2JMfrTw6fwPDSVS8 -----END CERTIFICATE-----Generated at Mon Jun 9 22:19:07 2025 by rpki-client