$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft File: OxaIpfe3JKr754IKLGPZey6o5SI.mft (raw, json) Hash identifier: NVS9Xv2pVoWtEe532HgMExm+3qSjzywPPUdL5gZr0gw= Subject key identifier: BD:44:D8:18:5A:A2:CE:01:E3:2E:01:E0:16:B9:76:99:95:8E:74:58 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0347 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft Manifest number: 033F Signing time: Sat 09 Aug 2025 01:35:37 +0000 Manifest this update: Sat 09 Aug 2025 01:35:36 +0000 Manifest next update: Sat 16 Aug 2025 01:35:36 +0000 Files and hashes: 1: OxaIpfe3JKr754IKLGPZey6o5SI.crl (hash: fktxC3Ja2ab/In2u0TuL99mXxAZy//H0bDs4Ub+4y38=) 2: 2D613294CD7611EC83259862C4F9AE02.roa (hash: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY=) 3: EF8CB49CD78F11EC91680D49C4F9AE02.roa (hash: m1T9GaVF/kOA3y3lDclBiCBdGMqPbCm1SzZbjGctr8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 839 (0x347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: Aug 9 01:35:36 2025 GMT Not After : Aug 16 01:35:36 2025 GMT Subject: CN=6896a5e9-6d07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:9e:67:a4:3c:7e:87:b6:d6:7c:c6:a2:e5: 05:8a:e5:5b:c0:f8:e5:ef:c8:48:53:b1:77:1d:3c: 4c:aa:f6:ee:14:ce:d4:11:38:f3:f5:da:9b:27:4a: da:e9:a3:36:81:b6:cb:3c:22:8a:ff:8e:0d:ad:8d: 89:f0:b5:31:e9:8e:a6:fe:80:e6:0d:44:38:f2:46: 83:76:9c:f5:99:45:9c:0b:ce:de:c3:37:f5:18:54: b1:ce:53:37:b0:b4:10:b2:28:c3:f2:50:25:89:0f: 55:d9:c9:4d:34:4c:b7:30:a7:d9:b1:eb:cc:86:cd: 61:15:9f:68:15:15:53:42:57:a4:a3:8b:09:a6:55: 43:27:1b:9d:5b:ae:e5:e9:4e:15:07:be:72:ef:e5: c2:75:91:9d:c9:67:d1:d4:de:59:d2:d3:9f:9a:ed: 9a:a8:f4:ba:05:a6:ac:65:70:b5:02:d9:57:ef:8d: 81:61:90:fb:67:a7:72:a7:e5:cc:5a:9d:4a:08:d5: cc:ff:15:ba:f8:8b:07:99:0d:02:78:6c:e5:bf:a7: 3d:6e:51:d6:f7:e5:00:b3:ef:19:6f:23:10:b3:aa: 20:57:53:e4:e8:ae:7b:e7:1f:ae:7f:ad:2b:5a:6c: 6f:b9:1f:43:a8:b7:ff:cf:49:f8:9e:cf:07:73:7c: b6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:44:D8:18:5A:A2:CE:01:E3:2E:01:E0:16:B9:76:99:95:8E:74:58 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:1b:f6:b6:59:33:a8:2c:7c:4b:bd:df:7a:2d:5b:f4:f5:e6: f4:00:af:e5:16:73:b1:a5:c1:26:0b:5c:3e:3f:ec:58:58:66: 76:c6:5d:c8:b8:16:32:5b:34:10:7d:28:b7:6d:d6:d4:27:5f: a7:e2:22:31:bc:c3:43:c1:8c:89:3c:c5:f6:2a:1f:bd:12:80: b8:42:57:91:5e:30:8b:61:4d:32:a4:cd:3a:57:27:d6:f0:a5: 2c:a6:5f:07:e5:d3:72:f9:75:c0:5f:6f:2b:22:c7:72:41:9d: cf:d4:72:e2:ac:e4:6f:0f:67:8f:73:3c:5b:1a:8a:81:23:88: 80:54:30:df:91:a9:29:d5:df:94:3b:6a:d5:fb:3a:89:81:0c: 6e:76:64:6b:20:4f:77:59:cd:48:30:71:c4:d2:87:b1:d4:10: 66:a4:b5:36:5b:b5:d7:13:3f:8f:bf:61:e4:22:c8:d2:6e:54: ae:e7:8b:74:33:35:17:69:b5:e2:8a:2e:46:d7:71:43:74:fb: 35:31:bc:54:d9:9a:b4:de:3f:c2:de:0e:40:bf:1a:06:9f:01: 6e:d3:28:10:a8:ab:e0:76:6a:b5:0a:e8:73:b5:07:1e:ab:72: 11:c0:5e:3d:22:23:e8:da:1a:c1:d6:12:ee:8b:87:28:f9:e9: bb:8a:92:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUwODA5MDEzNTM2WhcNMjUwODE2MDEzNTM2WjAYMRYwFAYD VQQDEw02ODk2YTVlOS02ZDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8SeZ6Q8foe21nzGouUFiuVbwPjl78hIU7F3HTxMqvbuFM7UETjz9dqbJ0ra 6aM2gbbLPCKK/44NrY2J8LUx6Y6m/oDmDUQ48kaDdpz1mUWcC87ewzf1GFSxzlM3 sLQQsijD8lAliQ9V2clNNEy3MKfZsevMhs1hFZ9oFRVTQleko4sJplVDJxudW67l 6U4VB75y7+XCdZGdyWfR1N5Z0tOfmu2aqPS6BaasZXC1AtlX742BYZD7Z6dyp+XM Wp1KCNXM/xW6+IsHmQ0CeGzlv6c9blHW9+UAs+8ZbyMQs6ogV1Pk6K575x+uf60r WmxvuR9DqLf/z0n4ns8Hc3y2BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1E2Bha os4B4y4B4Ba5dpmVjnRYMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzJGQS9ENzI0NDU2MkNENzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pL cjc1NElLTEdQWmV5Nm81U0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALG/a2WTOoLHxLvd96LVv09eb0AK/lFnOxpcEmC1w+P+xYWGZ2xl3I uBYyWzQQfSi3bdbUJ1+n4iIxvMNDwYyJPMX2Kh+9EoC4QleRXjCLYU0ypM06VyfW 8KUspl8H5dNy+XXAX28rIsdyQZ3P1HLirORvD2ePczxbGoqBI4iAVDDfkakp1d+U O2rV+zqJgQxudmRrIE93Wc1IMHHE0oex1BBmpLU2W7XXEz+Pv2HkIsjSblSu54t0 MzUXabXiii5G13FDdPs1MbxU2Zq03j/C3g5AvxoGnwFu0ygQqKvgdmq1CuhztQce q3IRwF49IiPo2hrB1hLui4co+em7ipK6 -----END CERTIFICATE-----Generated at Sun Aug 10 21:01:28 2025 by rpki-client