$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft File: OYVAYLL1jUyRnGTapLfrHwzfaDA.mft (raw, json) Hash identifier: H25q8DCPMmEty/O90DFeFPt9/82B8JxNstFU05C8MEU= Subject key identifier: 7B:CD:BF:8E:6D:84:0E:DB:64:D1:D1:F8:EE:C7:E0:63:2A:D8:DF:1D Authority key identifier: 39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 Certificate issuer: /CN=A91A1A51/serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Certificate serial: 036B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft Manifest number: 036B Signing time: Tue 05 Aug 2025 01:27:33 +0000 Manifest this update: Tue 05 Aug 2025 01:27:32 +0000 Manifest next update: Tue 12 Aug 2025 01:27:32 +0000 Files and hashes: 1: OYVAYLL1jUyRnGTapLfrHwzfaDA.crl (hash: b76rq3qShZ8qMeKoA4JGPWanc8p5Q+95YmSVkOErBS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 01:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1A51, serialNumber=39854060B2F58D4C919C64DAA4B7EB1F0CDF6830 Validity Not Before: Aug 5 01:27:32 2025 GMT Not After : Aug 12 01:27:32 2025 GMT Subject: CN=68915e04-d1c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:23:d1:b6:58:a9:7c:33:aa:c0:eb:29:cc:d0: ce:90:66:b2:dd:aa:e3:bf:b8:03:f6:4b:58:e3:5f: 3c:8c:39:81:28:b4:28:81:e9:4e:a7:8e:4c:57:da: 95:b2:a0:5f:ed:5c:bb:f9:3a:d4:59:43:29:a6:a8: b9:a2:37:d5:f7:69:93:53:96:f7:81:e2:77:70:c3: eb:fc:bf:41:72:f7:88:7a:5a:33:f8:39:29:13:f0: 4f:49:53:1a:7c:dd:37:98:e7:7d:68:1e:83:65:49: 9e:4b:04:df:30:8b:46:85:f7:b9:71:14:31:6e:be: 68:ad:bb:d0:62:57:bc:9b:6b:4c:87:e0:24:0c:dc: 7e:fe:b4:ef:89:57:d3:42:13:28:39:b4:0b:2e:7b: 18:3f:46:34:cb:60:90:27:50:55:a8:be:ab:a2:dd: a0:80:e1:54:83:b2:87:b6:cd:1e:07:40:de:3e:c7: 02:9b:3a:1b:60:89:9e:95:92:2b:57:da:a0:0a:27: 1a:ff:57:23:36:8a:e5:28:eb:7a:46:de:de:a1:2b: 40:19:b5:10:6c:de:c9:21:62:2a:38:4b:70:4c:c1: 67:e6:2e:54:0c:a2:a3:5f:98:a5:70:01:67:fd:7c: 34:0b:12:9b:78:b4:6a:be:79:a1:25:63:23:24:f7: 22:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:CD:BF:8E:6D:84:0E:DB:64:D1:D1:F8:EE:C7:E0:63:2A:D8:DF:1D X509v3 Authority Key Identifier: keyid:39:85:40:60:B2:F5:8D:4C:91:9C:64:DA:A4:B7:EB:1F:0C:DF:68:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OYVAYLL1jUyRnGTapLfrHwzfaDA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1A51/AF690F60B92011EC9915674FC4F9AE02/OYVAYLL1jUyRnGTapLfrHwzfaDA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:4a:8a:df:21:23:a9:03:36:bc:bb:a6:51:5a:ad:18:63:71: 72:61:7a:67:a1:73:dc:da:9b:53:16:df:3e:b6:23:f5:d9:dd: d2:75:45:2a:6f:d9:0d:ea:ac:9f:ce:db:4f:fc:bc:fd:01:15: 28:84:d1:9c:c9:8b:ae:88:ce:4a:b4:6a:28:58:67:16:cc:5e: 40:72:39:19:83:67:27:a1:f8:df:68:50:ba:04:b9:47:97:6c: 23:81:79:cb:2f:15:af:37:e6:19:ec:6a:b2:f8:86:22:dd:8e: 69:c3:f2:53:6a:8a:27:29:ba:65:bd:56:dc:76:c7:68:e6:ea: 9b:84:fd:b3:6c:5c:fe:8a:ad:6e:54:62:90:38:b8:a1:12:ec: 53:af:28:a0:e6:43:72:f3:78:b8:09:f2:bf:18:be:89:5c:de: b3:bc:e2:cd:62:13:de:f8:f4:65:0e:28:08:b2:83:e9:f9:5a: 65:fc:f8:32:75:00:4c:7c:97:6c:59:0e:01:88:bb:42:e1:b5: 4a:61:3b:da:82:dd:fb:1b:34:14:80:4c:37:22:12:2c:58:79: a9:47:1e:1d:f3:5f:86:b1:87:99:7a:0d:ba:3e:67:f1:c1:23: 30:29:b0:89:e4:ef:8b:89:fd:b1:59:81:4b:b6:9a:bd:9f:9f: 17:b8:79:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFBNTExMTAvBgNVBAUTKDM5ODU0MDYwQjJGNThENEM5MTlDNjREQUE0QjdFQjFG MENERjY4MzAwHhcNMjUwODA1MDEyNzMyWhcNMjUwODEyMDEyNzMyWjAYMRYwFAYD VQQDEw02ODkxNWUwNC1kMWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yPRtlipfDOqwOspzNDOkGay3arjv7gD9ktY4188jDmBKLQogelOp45MV9qV sqBf7Vy7+TrUWUMppqi5ojfV92mTU5b3geJ3cMPr/L9BcveIeloz+DkpE/BPSVMa fN03mOd9aB6DZUmeSwTfMItGhfe5cRQxbr5orbvQYle8m2tMh+AkDNx+/rTviVfT QhMoObQLLnsYP0Y0y2CQJ1BVqL6rot2ggOFUg7KHts0eB0DePscCmzobYImelZIr V9qgCica/1cjNorlKOt6Rt7eoStAGbUQbN7JIWIqOEtwTMFn5i5UDKKjX5ilcAFn /Xw0CxKbeLRqvnmhJWMjJPciMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvNv45t hA7bZNHR+O7H4GMq2N8dMB8GA1UdIwQYMBaAFDmFQGCy9Y1MkZxk2qS36x8M32gw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUE1MS9BRjY5MEY2MEI5 MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpVeVJuR1RhcExmckh3emZh REEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ZVkFZTEwxalV5Um5HVGFwTGZySHd6ZmFEQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUE1MS9BRjY5MEY2MEI5MjAxMUVDOTkxNTY3NEZDNEY5QUUwMi9PWVZBWUxMMWpV eVJuR1RhcExmckh3emZhREEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYSorfISOpAza8u6ZRWq0YY3FyYXpnoXPc2ptTFt8+tiP12d3SdUUq b9kN6qyfzttP/Lz9ARUohNGcyYuuiM5KtGooWGcWzF5AcjkZg2cnofjfaFC6BLlH l2wjgXnLLxWvN+YZ7Gqy+IYi3Y5pw/JTaoonKbplvVbcdsdo5uqbhP2zbFz+iq1u VGKQOLihEuxTryig5kNy83i4CfK/GL6JXN6zvOLNYhPe+PRlDigIsoPp+Vpl/Pgy dQBMfJdsWQ4BiLtC4bVKYTvagt37GzQUgEw3IhIsWHmpRx4d81+GsYeZeg26Pmfx wSMwKbCJ5O+Lif2xWYFLtpq9n58XuHmn -----END CERTIFICATE-----Generated at Thu Aug 7 02:06:01 2025 by rpki-client