$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: 9F8ZC6o6xiKkSxb8F0fZEzz7wakniHRrfDcUo+PG43A= Subject key identifier: EF:DF:E6:07:AF:1D:D5:F0:6A:05:89:F6:D2:6C:51:D9:3C:03:F0:0A Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06B0 Signing time: Wed 02 Apr 2025 22:11:45 +0000 Manifest this update: Wed 02 Apr 2025 22:11:44 +0000 Manifest next update: Wed 09 Apr 2025 22:11:44 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: Jc8RsHuzDxVMiEg9g8rv/xZTmrkBD0L1QawT8YkaYBg=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 22:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C Validity Not Before: Apr 2 22:11:44 2025 GMT Not After : Apr 9 22:11:44 2025 GMT Subject: CN=67edb620-3877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:e6:88:dc:95:d9:23:1b:e2:86:cd:65:b2: b5:16:3f:3f:99:ae:09:21:39:cd:e9:88:8e:d6:ea: 15:64:46:ff:44:b6:6d:3f:96:33:91:29:6b:b9:c9: f8:b9:cd:17:7f:56:da:ba:33:8c:72:9c:d4:c8:ec: 51:49:91:7a:cd:d5:81:90:04:59:40:2a:37:10:60: 34:4b:94:24:37:05:32:d0:e0:4c:44:a2:87:9a:88: 1c:c8:99:a6:d2:55:38:46:53:30:5c:99:48:c8:55: 71:1f:f2:c1:fd:77:62:f6:58:84:f2:19:ca:67:80: b1:fd:1d:61:ea:b6:ae:0c:0f:25:e3:d4:1d:d2:97: 9a:9c:87:20:b7:5a:2d:fb:4b:3a:9a:22:35:c9:56: 72:22:5e:2f:bb:91:78:4f:2a:80:54:9a:3e:54:78: 93:a4:6e:59:d9:f5:19:db:75:1b:8d:41:15:00:a7: bb:ce:5f:10:ba:e0:d1:f3:34:0c:99:06:9c:f9:b1: d8:c8:77:89:d6:9e:c9:12:cb:b5:76:e3:f7:86:9b: 36:4a:88:88:b0:86:59:ce:41:fa:0e:bc:fe:d1:83: 4f:55:92:df:6a:82:e3:0a:57:91:63:e0:80:11:0f: 61:1c:aa:2e:d1:13:74:f0:c5:75:b8:f3:db:05:e7: 8f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DF:E6:07:AF:1D:D5:F0:6A:05:89:F6:D2:6C:51:D9:3C:03:F0:0A X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:ff:b5:37:81:7c:99:27:09:54:23:a7:27:90:b7:04:ef:26: 82:78:0e:d5:2c:28:05:08:e8:c5:14:0c:57:29:86:4e:bd:51: ef:0a:1b:45:f1:f2:66:d6:b2:6e:f5:cf:fd:23:91:6c:8e:50: 5c:73:f4:37:b6:b2:88:d3:1a:23:b4:c8:40:fc:d7:cb:40:30: c9:9d:f1:a9:8f:b5:47:ae:73:36:a2:a5:33:93:2e:35:92:3e: 19:37:74:e9:96:bf:70:d1:66:7e:0e:97:00:b5:78:0f:5f:96: e9:c0:0a:31:05:4c:aa:bf:73:bc:7a:02:53:2a:fc:69:69:50: 95:57:5d:29:63:83:37:fe:3a:c7:0f:2b:29:9f:e9:a0:2a:5b: c7:b6:26:fc:ed:14:47:d9:fa:6a:94:32:2b:be:82:2f:aa:a1: 08:95:56:ea:2d:a1:7e:7d:73:bc:46:78:a0:11:05:78:45:96: a3:3e:d5:f5:1b:e1:be:0c:b0:84:b4:2c:b5:ad:65:1a:2b:44: f6:77:ea:46:6d:40:f7:80:5c:b8:68:47:d3:e1:34:b6:7a:95: fb:42:24:80:4d:e6:f0:f9:53:cb:5f:7c:38:23:76:71:c5:eb: 7b:53:88:64:3b:14:8f:89:cd:73:19:71:4a:56:82:0d:83:41: dd:0a:67:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwNDAyMjIxMTQ0WhcNMjUwNDA5MjIxMTQ0WjAYMRYwFAYD VQQDEw02N2VkYjYyMC0zODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2/miNyV2SMb4obNZbK1Fj8/ma4JITnN6YiO1uoVZEb/RLZtP5YzkSlrucn4 uc0Xf1baujOMcpzUyOxRSZF6zdWBkARZQCo3EGA0S5QkNwUy0OBMRKKHmogcyJmm 0lU4RlMwXJlIyFVxH/LB/Xdi9liE8hnKZ4Cx/R1h6rauDA8l49Qd0peanIcgt1ot +0s6miI1yVZyIl4vu5F4TyqAVJo+VHiTpG5Z2fUZ23UbjUEVAKe7zl8QuuDR8zQM mQac+bHYyHeJ1p7JEsu1duP3hps2SoiIsIZZzkH6Drz+0YNPVZLfaoLjCleRY+CA EQ9hHKou0RN08MV1uPPbBeePoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/f5gev HdXwagWJ9tJsUdk8A/AKMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX/7U3gXyZJwlUI6cnkLcE7yaCeA7VLCgFCOjFFAxXKYZOvVHvChtF 8fJm1rJu9c/9I5FsjlBcc/Q3trKI0xojtMhA/NfLQDDJnfGpj7VHrnM2oqUzky41 kj4ZN3Tplr9w0WZ+DpcAtXgPX5bpwAoxBUyqv3O8egJTKvxpaVCVV10pY4M3/jrH Dyspn+mgKlvHtib87RRH2fpqlDIrvoIvqqEIlVbqLaF+fXO8RnigEQV4RZajPtX1 G+G+DLCEtCy1rWUaK0T2d+pGbUD3gFy4aEfT4TS2epX7QiSATebw+VPLX3w4I3Zx xet7U4hkOxSPic1zGXFKVoINg0HdCmfo -----END CERTIFICATE-----Generated at Fri Apr 4 21:32:16 2025 by rpki-client