$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft File: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft (raw, json) Hash identifier: l3pYMkOO7tHgYrnus8PU8fgtOg+scLA3QkmGzIpfJGs= Subject key identifier: A6:77:A7:C4:74:71:C0:CA:9F:FE:7E:D8:80:B1:B2:1B:04:03:FC:C5 Authority key identifier: A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED Certificate issuer: /CN=A918EF94/serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft Manifest number: 0151 Signing time: Sat 06 Sep 2025 17:52:43 +0000 Manifest this update: Sat 06 Sep 2025 17:52:42 +0000 Manifest next update: Sat 13 Sep 2025 17:52:42 +0000 Files and hashes: 1: oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl (hash: mlvoL4Oac+i8WfJhanf9Opkk+wDJqidRp97SLn3umTg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:52:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF94, serialNumber=A1E4F09D2F4707867CFAE27E8F132369FB97D0ED Validity Not Before: Sep 6 17:52:42 2025 GMT Not After : Sep 13 17:52:42 2025 GMT Subject: CN=68bc74ea-c8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:37:d9:39:ca:de:b2:e9:2d:23:09:0e:5f:29: ba:df:91:e4:7d:a7:23:93:2a:72:31:98:52:4d:2c: 64:1a:fc:b8:b8:67:37:ac:3e:42:1a:ff:50:a2:6f: 78:f9:b2:ee:e3:10:c2:b4:48:2c:8a:22:2a:f0:e1: 61:ed:9a:cd:ec:83:f3:e2:8f:72:66:23:8a:14:6c: 2d:2b:fe:91:83:69:17:f7:65:f8:35:c8:cb:78:93: d0:18:69:0f:66:ae:7a:4e:fa:1a:74:69:ac:6a:0a: 7c:e9:6a:6e:87:32:27:0a:33:31:2c:ee:bd:05:59: 03:85:57:37:2b:45:64:6c:eb:f7:9e:10:6c:92:8f: f4:ea:97:7e:8d:4d:c0:1f:6b:7f:cb:19:b0:06:d4: c1:f1:29:24:8f:b3:ed:6c:b9:3f:fa:d9:6c:71:6e: 40:75:46:9e:18:8c:84:87:ef:61:39:2b:15:7a:e5: f9:3d:da:fa:39:95:c1:eb:bb:9e:96:b4:b5:11:63: 4a:33:81:fe:35:eb:dc:6b:83:41:90:d4:bb:0b:f5: 5f:ff:74:d7:fe:69:f3:cb:64:ca:d3:5a:10:77:a4: a7:6d:32:59:ff:f6:33:3b:cc:00:cd:19:f0:ba:b1: fe:20:1c:34:90:32:e0:eb:bf:9d:f3:66:bc:b7:fe: c6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:77:A7:C4:74:71:C0:CA:9F:FE:7E:D8:80:B1:B2:1B:04:03:FC:C5 X509v3 Authority Key Identifier: keyid:A1:E4:F0:9D:2F:47:07:86:7C:FA:E2:7E:8F:13:23:69:FB:97:D0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF94/5029554C8A7911EE85441918C4F9AE02/oeTwnS9HB4Z8-uJ-jxMjafuX0O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:87:4a:d1:f8:d8:13:fe:37:bf:77:b5:37:cf:54:2c:eb:50: c0:73:ac:8d:7a:36:9a:55:9c:0b:53:b4:1a:a7:56:db:f2:43: dd:77:8e:4e:8b:fd:95:43:26:fe:dd:e7:7c:de:d0:40:3b:22: 6e:bb:68:49:aa:a6:23:ec:6c:08:f5:f4:61:b8:bd:81:b0:aa: b9:51:33:59:e2:7a:12:5e:56:ec:fd:0b:5a:7b:30:a8:b6:fd: d5:76:5e:4d:c1:af:21:a8:0e:77:19:54:91:1b:ac:57:b8:40: 69:ec:7c:18:a3:26:b7:90:94:e9:60:91:84:0a:3a:1b:2f:41: 84:e0:7c:bb:69:b0:18:a0:72:59:fc:79:05:5a:ed:b1:8e:8f: 84:59:2e:c4:bc:1a:d2:03:21:6c:e1:63:3b:31:1c:d5:1f:0b: 1a:e6:d4:ba:99:30:c7:25:a8:f7:62:a9:c8:b4:92:b2:3e:51: 93:2c:91:db:37:21:47:7d:d1:d2:1c:32:8f:22:e9:94:b3:29: 3a:14:b4:a1:28:87:51:4e:8e:c4:2e:97:d9:42:37:0c:67:15: 9b:4a:94:36:91:13:82:65:ac:87:8e:37:28:3c:e6:7b:de:93: e6:5a:49:5c:f2:ae:6b:b5:3d:02:7f:a4:08:29:b9:9d:b6:56: 47:bc:2f:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGOTQxMTAvBgNVBAUTKEExRTRGMDlEMkY0NzA3ODY3Q0ZBRTI3RThGMTMyMzY5 RkI5N0QwRUQwHhcNMjUwOTA2MTc1MjQyWhcNMjUwOTEzMTc1MjQyWjAYMRYwFAYD VQQDEw02OGJjNzRlYS1jOGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTfZOcresuktIwkOXym635HkfacjkypyMZhSTSxkGvy4uGc3rD5CGv9Qom94 +bLu4xDCtEgsiiIq8OFh7ZrN7IPz4o9yZiOKFGwtK/6Rg2kX92X4NcjLeJPQGGkP Zq56TvoadGmsagp86WpuhzInCjMxLO69BVkDhVc3K0VkbOv3nhBsko/06pd+jU3A H2t/yxmwBtTB8Skkj7PtbLk/+tlscW5AdUaeGIyEh+9hOSsVeuX5Pdr6OZXB67ue lrS1EWNKM4H+Nevca4NBkNS7C/Vf/3TX/mnzy2TK01oQd6SnbTJZ//YzO8wAzRnw urH+IBw0kDLg67+d82a8t/7GYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZ3p8R0 ccDKn/5+2ICxshsEA/zFMB8GA1UdIwQYMBaAFKHk8J0vRweGfPrifo8TI2n7l9Dt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY5NC81MDI5NTU0QzhB NzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0WjgtdUotanhNamFmdVgw TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29lVHduUzlIQjRaOC11Si1qeE1qYWZ1WDBPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RUY5NC81MDI5NTU0QzhBNzkxMUVFODU0NDE5MThDNEY5QUUwMi9vZVR3blM5SEI0 WjgtdUotanhNamFmdVgwTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKh0rR+NgT/je/d7U3z1Qs61DAc6yNejaaVZwLU7Qap1bb8kPdd45O i/2VQyb+3ed83tBAOyJuu2hJqqYj7GwI9fRhuL2BsKq5UTNZ4noSXlbs/QtaezCo tv3Vdl5Nwa8hqA53GVSRG6xXuEBp7HwYoya3kJTpYJGECjobL0GE4Hy7abAYoHJZ /HkFWu2xjo+EWS7EvBrSAyFs4WM7MRzVHwsa5tS6mTDHJaj3YqnItJKyPlGTLJHb NyFHfdHSHDKPIumUsyk6FLShKIdRTo7ELpfZQjcMZxWbSpQ2kROCZayHjjcoPOZ7 3pPmWklc8q5rtT0Cf6QIKbmdtlZHvC8b -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:10 2025 by rpki-client