$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft File: OYN8tL7K9qYmyRaulgJBtgnmsgo.mft (raw, json) Hash identifier: cNeKkqF/Wubvd9BmK88XGW86+323FYpi5g4cmK9r1VI= Subject key identifier: B2:67:90:D5:5D:9B:06:A0:C6:E1:13:D7:90:43:4E:DA:14:F6:F0:64 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft Manifest number: 013B Signing time: Sat 09 Aug 2025 04:49:45 +0000 Manifest this update: Sat 09 Aug 2025 04:49:44 +0000 Manifest next update: Sat 16 Aug 2025 04:49:44 +0000 Files and hashes: 1: OYN8tL7K9qYmyRaulgJBtgnmsgo.crl (hash: YEk/MuPx84tRUxKQfw27nvt+D5iW7wL6srEiuexaE3o=) 2: C635D41E611411EF9B00D029C4F9AE02.roa (hash: rOwD6kKfHs7j3niSOFa7ZxwcRgpXDjpa8bFCR+QwO/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: Aug 9 04:49:44 2025 GMT Not After : Aug 16 04:49:44 2025 GMT Subject: CN=6896d368-eb89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:aa:46:02:c3:49:eb:22:25:de:45:4e:b8:f3: 78:7f:54:2f:59:37:23:93:d8:be:43:bd:9f:f7:a9: 9f:f9:13:e8:ec:ed:8f:d8:2a:d1:56:5c:b7:25:91: 53:15:0b:0e:de:f8:2c:39:42:bf:27:3a:de:23:24: 6f:40:04:d9:e3:02:42:12:01:bf:9f:c0:bf:df:a8: b9:83:b5:5c:1e:e6:35:95:1a:38:fc:2e:d3:be:f9: 95:8f:3b:23:02:ac:00:5f:10:0a:7b:9e:b9:e0:94: be:a6:f9:85:f4:51:cc:e1:bf:75:84:0d:75:42:53: 9c:ad:02:b7:83:d8:e4:0b:37:05:a8:1c:c9:92:02: 3a:51:51:b8:1c:48:71:0f:ad:7f:a2:91:76:c0:ab: ef:45:0a:4e:5d:e5:9a:be:70:03:ae:be:02:80:32: 5b:58:a4:cb:ca:e1:b2:6e:e5:8b:7b:34:74:a7:da: df:84:2a:03:00:67:3f:6e:07:3b:64:99:ee:5d:b9: 10:b0:4c:11:6d:53:52:78:6b:ce:bd:90:66:44:4b: 6d:27:34:e6:87:22:ef:9d:b9:7b:5a:e6:de:1e:1a: b2:90:2f:60:16:34:ed:38:45:b0:ca:13:06:57:4d: 7f:99:3d:72:0a:a7:5a:f1:1c:be:5c:ea:df:6e:86: 76:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:67:90:D5:5D:9B:06:A0:C6:E1:13:D7:90:43:4E:DA:14:F6:F0:64 X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:7f:3b:5a:38:ca:32:a3:f0:3d:4a:04:e8:3c:cc:f3:25:c4: b0:9e:32:f8:4b:6a:45:0e:5e:f8:e6:e2:3c:1c:c1:98:70:e6: 74:06:ab:13:b6:35:e3:25:d5:ea:9a:0d:25:99:b2:e7:fc:9b: 13:ff:46:73:6b:dd:b3:ef:ff:93:f5:73:fd:7a:1a:55:27:05: dc:b2:5c:85:09:ec:b4:3e:9b:e1:51:3c:6d:9f:a9:b2:65:7f: 80:1a:ae:98:a1:37:d7:46:51:75:7b:fa:69:83:67:ee:df:c3: 30:0f:06:ed:d0:08:f7:34:79:87:f4:44:64:39:c4:67:d1:aa: 61:07:a3:65:8f:4f:d2:a6:43:58:2c:d4:84:84:2e:b6:54:70: a6:ed:f3:a7:49:a1:e9:59:0d:72:55:fc:36:2d:47:85:ae:49: 36:2f:97:59:a3:1b:6c:ca:ef:88:a4:0f:6e:38:e1:4f:57:9f: 9a:4e:14:83:19:59:59:64:e7:fc:26:e3:cb:7c:80:59:e7:f3: dc:c0:3b:ea:f6:be:ae:8e:ab:eb:90:f4:72:5f:66:ab:24:f2: fe:64:40:4e:32:46:d9:f3:e5:fb:7b:5e:7c:3a:55:ad:1e:32: d0:de:66:2d:d8:4e:aa:74:cc:f0:81:ac:a1:10:3a:e3:55:d7: a4:ce:2c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwODA5MDQ0OTQ0WhcNMjUwODE2MDQ0OTQ0WjAYMRYwFAYD VQQDEw02ODk2ZDM2OC1lYjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KpGAsNJ6yIl3kVOuPN4f1QvWTcjk9i+Q72f96mf+RPo7O2P2CrRVly3JZFT FQsO3vgsOUK/JzreIyRvQATZ4wJCEgG/n8C/36i5g7VcHuY1lRo4/C7TvvmVjzsj AqwAXxAKe5654JS+pvmF9FHM4b91hA11QlOcrQK3g9jkCzcFqBzJkgI6UVG4HEhx D61/opF2wKvvRQpOXeWavnADrr4CgDJbWKTLyuGybuWLezR0p9rfhCoDAGc/bgc7 ZJnuXbkQsEwRbVNSeGvOvZBmREttJzTmhyLvnbl7WubeHhqykC9gFjTtOEWwyhMG V01/mT1yCqda8Ry+XOrfboZ2lwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLJnkNVd mwagxuET15BDTtoU9vBkMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzNCNy8xNTlBNEFEMDkzMjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3Szlx WW15UmF1bGdKQnRnbm1zZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADfztaOMoyo/A9SgToPMzzJcSwnjL4S2pFDl745uI8HMGYcOZ0BqsT tjXjJdXqmg0lmbLn/JsT/0Zza92z7/+T9XP9ehpVJwXcslyFCey0PpvhUTxtn6my ZX+AGq6YoTfXRlF1e/ppg2fu38MwDwbt0Aj3NHmH9ERkOcRn0aphB6Nlj0/SpkNY LNSEhC62VHCm7fOnSaHpWQ1yVfw2LUeFrkk2L5dZoxtsyu+IpA9uOOFPV5+aThSD GVlZZOf8JuPLfIBZ5/PcwDvq9r6ujqvrkPRyX2arJPL+ZEBOMkbZ8+X7e158OlWt HjLQ3mYt2E6qdMzwgayhEDrjVdekzizY -----END CERTIFICATE-----Generated at Sun Aug 10 19:52:15 2025 by rpki-client