$ rpki-client -vvf rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft File: bOklSpy_oHBCJDc13OT79-VGEWY.mft (raw, json) Hash identifier: oHReV+EoaQ6q1Z8hAws4XQdSIcngxZ59lnGdtmZ2lJY= Subject key identifier: CF:B3:D2:51:26:E6:DE:3C:17:AD:B2:92:C1:3C:D5:6C:EF:CC:D8:51 Authority key identifier: 6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 Certificate issuer: /CN=A91454F3/serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Certificate serial: 0C66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft Manifest number: 0C60 Signing time: Fri 08 Aug 2025 18:38:34 +0000 Manifest this update: Fri 08 Aug 2025 18:38:33 +0000 Manifest next update: Fri 15 Aug 2025 18:38:33 +0000 Files and hashes: 1: bOklSpy_oHBCJDc13OT79-VGEWY.crl (hash: aZC/IlzzyS+529Yav2qweH09Ifw0pyEUNhCl3b775U4=) 2: 9DDA09EC05DC11EA9B6B0560C4F9AE02.roa (hash: tBcP96oatlX28aHZ2XCL2w+PP5ZPCSpD4OOUZWfI8Ds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3174 (0xc66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454F3, serialNumber=6CE9254A9CBFA07042243735DCE4FBF7E5461166 Validity Not Before: Aug 8 18:38:33 2025 GMT Not After : Aug 15 18:38:33 2025 GMT Subject: CN=6896442a-cf5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ee:1d:05:a5:d2:96:6f:2d:4c:5e:fd:68:c4: 98:99:51:1b:65:32:61:f0:92:54:6d:df:06:09:c6: e1:9e:a5:cb:23:b1:fe:5a:3a:7f:e3:a4:d3:d3:14: fb:24:a6:16:21:f6:f1:1e:f9:3b:d3:0d:c0:45:47: 5b:81:7f:b7:ff:cf:d0:6d:72:a9:45:52:59:18:b1: 9b:15:42:bc:22:b1:24:b1:c4:38:e9:a4:4c:16:fb: a8:49:86:ef:81:bc:c3:c8:fd:35:7b:5e:f4:c4:e6: 80:5a:5c:4b:ea:a9:19:11:96:a6:1f:7f:88:2f:af: 69:fd:71:20:bc:51:f6:cf:56:74:f7:07:99:94:f5: d9:b4:44:57:dc:5a:cb:69:a0:f3:3e:81:28:9c:bf: d9:73:16:89:7f:20:77:45:d7:48:fd:05:03:8c:55: 40:d1:9a:99:4e:19:fb:0b:24:7d:f6:f0:92:a5:e8: 45:ed:6c:af:12:50:7c:b3:57:78:70:93:5d:0b:94: f5:c4:f0:7d:0d:b0:bc:dc:25:28:eb:5f:05:a1:ce: 69:7a:d9:f3:a4:50:76:eb:aa:bb:d6:59:1b:9b:52: 64:76:4e:7b:ad:a5:ff:7f:26:52:a8:18:69:14:fd: a4:bc:10:b4:ee:0b:87:dd:99:be:c5:93:a3:0c:42: 0d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B3:D2:51:26:E6:DE:3C:17:AD:B2:92:C1:3C:D5:6C:EF:CC:D8:51 X509v3 Authority Key Identifier: keyid:6C:E9:25:4A:9C:BF:A0:70:42:24:37:35:DC:E4:FB:F7:E5:46:11:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOklSpy_oHBCJDc13OT79-VGEWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454F3/1EF7866805DC11EA9743BA5FC4F9AE02/bOklSpy_oHBCJDc13OT79-VGEWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:7c:3e:fb:8a:84:a1:f1:b1:82:21:02:d5:f6:28:18:47:e2: 9b:32:4a:9e:80:d5:f3:61:e0:37:ef:32:3c:2a:aa:e8:ef:71: 07:47:20:21:34:3c:01:b1:ff:be:27:ff:c7:7a:65:ae:73:3f: d3:99:0e:60:19:fd:26:0b:23:eb:72:5a:d7:f4:4b:50:73:59: 86:67:8e:7b:db:a1:81:25:0a:b0:10:8e:65:25:74:b1:ec:db: 7f:e2:d5:a3:3d:6e:f3:e6:3d:99:17:41:b7:80:b8:ab:17:f8: 45:2d:82:78:92:08:99:3f:32:c7:21:49:b8:d9:40:10:af:93: cf:c8:37:7f:39:2f:d3:46:0f:75:f3:45:78:1b:19:d5:c9:c9: a6:93:28:f1:a7:fd:d8:1f:64:c5:68:8b:90:4f:4d:42:99:3a: bb:fd:9b:b6:75:e0:9b:2d:77:67:d3:01:e5:71:ca:48:aa:5d: 5c:42:c5:0e:4c:8a:a0:7d:99:ad:ce:2b:7f:fc:e9:ec:b4:b4: e2:37:b1:5c:c4:cf:3e:26:11:be:0b:fe:a8:22:bb:87:5f:c1: 3c:89:d5:b0:bd:a8:77:24:65:0c:d4:cb:88:cf:4b:61:e5:1a: 5e:da:c0:8f:ff:7e:71:af:12:c3:15:f7:cd:f5:ea:df:47:5b: 30:9e:db:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0RjMxMTAvBgNVBAUTKDZDRTkyNTRBOUNCRkEwNzA0MjI0MzczNURDRTRGQkY3 RTU0NjExNjYwHhcNMjUwODA4MTgzODMzWhcNMjUwODE1MTgzODMzWjAYMRYwFAYD VQQDEw02ODk2NDQyYS1jZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+4dBaXSlm8tTF79aMSYmVEbZTJh8JJUbd8GCcbhnqXLI7H+Wjp/46TT0xT7 JKYWIfbxHvk70w3ARUdbgX+3/8/QbXKpRVJZGLGbFUK8IrEkscQ46aRMFvuoSYbv gbzDyP01e170xOaAWlxL6qkZEZamH3+IL69p/XEgvFH2z1Z09weZlPXZtERX3FrL aaDzPoEonL/ZcxaJfyB3RddI/QUDjFVA0ZqZThn7CyR99vCSpehF7WyvElB8s1d4 cJNdC5T1xPB9DbC83CUo618Foc5petnzpFB266q71lkbm1Jkdk57raX/fyZSqBhp FP2kvBC07guH3Zm+xZOjDEINiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+z0lEm 5t48F62yksE81WzvzNhRMB8GA1UdIwQYMBaAFGzpJUqcv6BwQiQ3Ndzk+/flRhFm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRGMy8xRUY3ODY2ODA1 REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29IQkNKRGMxM09UNzktVkdF V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPa2xTcHlfb0hCQ0pEYzEzT1Q3OS1WR0VXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRGMy8xRUY3ODY2ODA1REMxMUVBOTc0M0JBNUZDNEY5QUUwMi9iT2tsU3B5X29I QkNKRGMxM09UNzktVkdFV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0fD77ioSh8bGCIQLV9igYR+KbMkqegNXzYeA37zI8Kqro73EHRyAh NDwBsf++J//HemWucz/TmQ5gGf0mCyPrclrX9EtQc1mGZ45726GBJQqwEI5lJXSx 7Nt/4tWjPW7z5j2ZF0G3gLirF/hFLYJ4kgiZPzLHIUm42UAQr5PPyDd/OS/TRg91 80V4GxnVycmmkyjxp/3YH2TFaIuQT01CmTq7/Zu2deCbLXdn0wHlccpIql1cQsUO TIqgfZmtzit//OnstLTiN7FcxM8+JhG+C/6oIruHX8E8idWwvah3JGUM1MuIz0th 5Rpe2sCP/35xrxLDFffN9erfR1swntvf -----END CERTIFICATE-----Generated at Sat Aug 9 01:02:05 2025 by rpki-client