$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft File: OYkRMAEE18WLMm5WZLPXmi1GRuA.mft (raw, json) Hash identifier: stp7c60ei48mTIOCzIOaMEyKgmsrPjQ+6A1oMkyMnSU= Subject key identifier: 05:08:11:C6:95:24:F6:BC:32:40:2A:B0:0D:1D:3F:C4:E3:8D:F5:43 Authority key identifier: 39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 Certificate issuer: /CN=A918F1C9/serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Certificate serial: 0A05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft Manifest number: 0A25 Signing time: Fri 30 May 2025 20:08:25 +0000 Manifest this update: Fri 30 May 2025 20:08:25 +0000 Manifest next update: Fri 06 Jun 2025 20:08:25 +0000 Files and hashes: 1: OYkRMAEE18WLMm5WZLPXmi1GRuA.crl (hash: WKxrG9BFN4qLbAq9ld/SRqZnXclFxLiS1RTX9hVw5M8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2565 (0xa05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1C9, serialNumber=398911300104D7C58B326E5664B3D79A2D4646E0 Validity Not Before: May 30 20:08:25 2025 GMT Not After : Jun 6 20:08:25 2025 GMT Subject: CN=683a1039-f676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4b:fb:a2:ff:e4:c6:23:5c:f5:62:80:7e:94: 2a:67:a2:d0:6d:8a:e3:6b:7f:10:40:17:5b:1b:1b: 32:98:d4:4d:05:ba:84:da:3f:1c:a8:b3:ef:fc:45: 98:a9:2e:85:11:ec:d3:08:9d:b2:ae:8d:01:15:4d: b4:0d:17:6d:6a:ce:47:b0:1f:29:60:7c:00:d9:70: f4:65:63:c9:e7:80:da:42:b8:37:28:a1:4b:f4:33: c5:bd:fe:dc:9c:b5:c6:a1:f4:00:be:f7:82:82:35: 63:24:11:1d:0a:40:10:1c:76:1b:d9:e2:7b:ac:89: 26:83:28:4e:90:ae:94:fd:bf:68:0c:96:09:73:ed: 20:79:54:dc:7b:9f:ad:86:45:e2:8a:6a:04:03:48: 07:e0:c7:f8:6e:fb:aa:bb:c5:1d:ca:7a:f6:a5:5b: 01:9a:24:57:59:64:e6:4e:39:f5:ce:e7:97:30:d3: 0c:d5:15:dc:57:99:6e:77:17:f0:76:08:ab:30:2d: 5b:1a:e2:e1:6a:8a:5e:e2:80:29:4b:06:e2:ad:30: d7:c2:88:b3:41:e0:d9:b2:c4:9f:bc:ba:70:f6:ff: f6:ca:28:eb:dd:c7:1b:7e:95:71:d4:e6:15:54:c4: 51:ba:43:24:5c:d4:97:88:d0:58:03:9d:0b:16:10: 08:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:08:11:C6:95:24:F6:BC:32:40:2A:B0:0D:1D:3F:C4:E3:8D:F5:43 X509v3 Authority Key Identifier: keyid:39:89:11:30:01:04:D7:C5:8B:32:6E:56:64:B3:D7:9A:2D:46:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYkRMAEE18WLMm5WZLPXmi1GRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1C9/6A57AB8C7F9511EAB0ED8537C4F9AE02/OYkRMAEE18WLMm5WZLPXmi1GRuA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:10:ab:8b:dd:d7:d8:e0:cf:b4:51:a5:28:93:2c:b2:f7:26: 87:13:1c:f4:e0:17:f9:a0:db:45:4f:a3:99:65:3a:0f:ca:6f: aa:9f:72:cd:a4:f6:37:15:57:da:6e:df:d5:0c:30:26:9f:4a: 40:2d:77:61:62:0e:6f:6d:ee:8b:f3:39:93:9a:3b:50:01:77: f5:56:11:17:49:4a:f9:21:33:46:c1:a0:f6:29:f4:d8:44:e6: da:2f:b3:5b:11:7d:57:75:23:e2:df:29:89:d5:ee:39:a8:10: 5a:9d:d5:fa:9f:26:19:51:a3:6c:71:e9:8f:d7:42:2b:44:67: 42:46:e4:d5:f6:8f:df:cf:a4:d4:44:2e:27:2d:2e:d8:5c:9b: 44:39:ec:d3:78:54:68:c5:86:c9:5f:51:ad:72:1c:09:18:70: 1e:be:e5:a3:e4:fa:15:c3:f7:87:ed:fa:ac:10:38:85:b7:ef: fc:18:b0:d3:22:0f:86:c7:29:fd:6a:bc:a7:ab:94:aa:b1:37: 6a:71:e6:dc:38:6a:1d:07:d8:ea:1b:d5:cd:5c:e2:ef:b8:e4: b7:3b:39:e3:56:88:36:14:4e:b0:2e:01:96:07:4a:41:f1:d8: 63:ba:f3:70:09:7f:0f:62:31:4b:68:28:da:09:d2:28:80:99: 78:cc:60:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYxQzkxMTAvBgNVBAUTKDM5ODkxMTMwMDEwNEQ3QzU4QjMyNkU1NjY0QjNENzlB MkQ0NjQ2RTAwHhcNMjUwNTMwMjAwODI1WhcNMjUwNjA2MjAwODI1WjAYMRYwFAYD VQQDEw02ODNhMTAzOS1mNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkv7ov/kxiNc9WKAfpQqZ6LQbYrja38QQBdbGxsymNRNBbqE2j8cqLPv/EWY qS6FEezTCJ2yro0BFU20DRdtas5HsB8pYHwA2XD0ZWPJ54DaQrg3KKFL9DPFvf7c nLXGofQAvveCgjVjJBEdCkAQHHYb2eJ7rIkmgyhOkK6U/b9oDJYJc+0geVTce5+t hkXiimoEA0gH4Mf4bvuqu8Udynr2pVsBmiRXWWTmTjn1zueXMNMM1RXcV5ludxfw dgirMC1bGuLhaope4oApSwbirTDXwoizQeDZssSfvLpw9v/2yijr3ccbfpVx1OYV VMRRukMkXNSXiNBYA50LFhAINwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUIEcaV JPa8MkAqsA0dP8TjjfVDMB8GA1UdIwQYMBaAFDmJETABBNfFizJuVmSz15otRkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjFDOS82QTU3QUI4QzdG OTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4V0xNbTVXWkxQWG1pMUdS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Za1JNQUVFMThXTE1tNVdaTFBYbWkxR1J1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjFDOS82QTU3QUI4QzdGOTUxMUVBQjBFRDg1MzdDNEY5QUUwMi9PWWtSTUFFRTE4 V0xNbTVXWkxQWG1pMUdSdUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLEKuL3dfY4M+0UaUokyyy9yaHExz04Bf5oNtFT6OZZToPym+qn3LN pPY3FVfabt/VDDAmn0pALXdhYg5vbe6L8zmTmjtQAXf1VhEXSUr5ITNGwaD2KfTY RObaL7NbEX1XdSPi3ymJ1e45qBBandX6nyYZUaNscemP10IrRGdCRuTV9o/fz6TU RC4nLS7YXJtEOezTeFRoxYbJX1GtchwJGHAevuWj5PoVw/eH7fqsEDiFt+/8GLDT Ig+Gxyn9arynq5SqsTdqcebcOGodB9jqG9XNXOLvuOS3OznjVog2FE6wLgGWB0pB 8dhjuvNwCX8PYjFLaCjaCdIogJl4zGAU -----END CERTIFICATE-----Generated at Sat May 31 16:42:09 2025 by rpki-client