$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: 4iXkI6MyOXvx+7mpB8xpAYhtBwgMq6ldmu5C5Uw8ocQ= Subject key identifier: 02:CE:D6:98:CB:44:32:2C:74:4A:1D:BB:46:68:FD:F3:90:67:33:17 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 57 Signing time: Sat 19 Jul 2025 07:26:34 +0000 Manifest this update: Sat 19 Jul 2025 07:26:33 +0000 Manifest next update: Sat 26 Jul 2025 07:26:33 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: D16PqsaXgEaHKoT1jAI7k6sHeSaKvT/2rKWrXaCxL+E=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) 3: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Jul 19 07:26:33 2025 GMT Not After : Jul 26 07:26:33 2025 GMT Subject: CN=687b48a9-b989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ba:d2:af:d9:71:e5:50:45:8c:54:f7:cf:ee: c6:77:46:6a:fd:81:0a:66:c1:4b:c6:24:56:8b:f2: 60:e6:b8:38:f8:6a:0c:55:dd:1c:13:e1:57:37:af: f4:24:97:b6:12:fe:9d:58:12:16:69:e7:72:bf:67: 62:81:6c:b3:ad:fe:7f:07:d2:05:62:c3:85:fa:f2: f7:09:79:a5:c7:11:01:01:22:a5:a6:be:d6:56:19: 44:6e:69:e5:fc:8f:f6:b9:d2:e2:4b:28:51:bc:70: 00:ab:7f:93:96:f8:c8:33:f6:f5:95:d8:cb:ce:39: 6d:b6:31:4f:a2:31:cb:a0:67:1e:2f:05:91:66:8e: 64:93:c0:5a:b6:d2:35:f4:9b:f3:ab:a1:04:e4:48: 93:ba:9f:cc:d8:9e:35:ea:05:b1:14:9f:e8:ab:84: 2b:07:0f:72:87:3b:85:64:09:93:e4:3c:03:3b:0c: fd:72:19:7f:1b:60:41:e0:d0:e4:8e:93:bb:a1:ad: 08:93:41:c9:5b:e2:a8:09:b7:20:e8:a4:5c:ee:be: 29:b0:54:09:4e:32:af:78:59:a0:ac:bf:e2:8d:12: c3:96:2b:fb:73:be:f4:5e:13:26:24:68:5b:7b:69: 18:1c:6a:68:ce:42:c3:f6:7b:ac:d1:63:0b:48:82: 5b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CE:D6:98:CB:44:32:2C:74:4A:1D:BB:46:68:FD:F3:90:67:33:17 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:4f:56:5e:8d:1e:da:f5:9a:47:99:56:8e:eb:3a:01:7c:19: 26:41:e6:66:d7:cc:66:4b:cc:36:70:e4:25:6c:a4:83:b7:a5: cf:05:86:e3:b0:fe:08:bc:7e:9e:2b:2a:95:56:c0:5c:94:15: 0f:29:2a:d8:11:eb:2a:18:b5:48:b0:e3:96:ff:4d:d1:b3:ba: 91:1a:17:8c:88:53:b4:5f:c1:1d:bd:ba:43:92:e5:be:f3:12: 4f:6d:5a:a2:82:f7:9b:55:6d:4f:cc:ed:9b:8d:31:15:ad:42: d8:cb:73:ed:c0:db:f3:53:26:83:ec:c2:26:c7:c3:fd:57:60: a9:27:ed:20:8f:76:4d:8b:8b:36:48:5e:57:82:a2:0f:24:c7: e9:0d:87:d9:b2:17:85:e6:14:b1:be:78:ae:b7:72:d1:02:f1: 3a:70:e3:72:e3:35:db:08:71:cf:6d:97:cf:e8:a0:17:cb:81: 1c:65:14:d3:5e:6e:5d:3f:f1:54:c3:f7:06:ab:db:30:a5:23: 4f:9e:fd:ac:88:65:0d:1e:22:bc:df:de:0d:90:6a:25:af:b8: a7:9d:82:d6:de:e4:30:69:6d:a7:3e:53:bb:8d:a0:1d:d0:1c: 18:8a:0b:18:8e:11:14:55:7a:98:9d:3d:39:ca:fd:f6:f0:35: f6:ff:0a:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NENCNzExMC8GA1UEBRMoQTI5ODA1OUYwNjUzN0RGOEMwOEI4OTI1NUY3OTU5NDFB MzFDMTgwMDAeFw0yNTA3MTkwNzI2MzNaFw0yNTA3MjYwNzI2MzNaMBgxFjAUBgNV BAMTDTY4N2I0OGE5LWI5ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1utKv2XHlUEWMVPfP7sZ3Rmr9gQpmwUvGJFaL8mDmuDj4agxV3RwT4Vc3r/Qk l7YS/p1YEhZp53K/Z2KBbLOt/n8H0gViw4X68vcJeaXHEQEBIqWmvtZWGURuaeX8 j/a50uJLKFG8cACrf5OW+Mgz9vWV2MvOOW22MU+iMcugZx4vBZFmjmSTwFq20jX0 m/OroQTkSJO6n8zYnjXqBbEUn+irhCsHD3KHO4VkCZPkPAM7DP1yGX8bYEHg0OSO k7uhrQiTQclb4qgJtyDopFzuvimwVAlOMq94WaCsv+KNEsOWK/tzvvReEyYkaFt7 aRgcamjOQsP2e6zRYwtIglshAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAs7WmMtE Mix0Sh27Rmj985BnMxcwHwYDVR0jBBgwFoAUopgFnwZTffjAi4klX3lZQaMcGAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0Q0I3LzhDOTNGNzZDRTE3 NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BnRm53WlRmZmpBaTRrbFgzbFpRYU1jR0FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 Q0I3LzhDOTNGNzZDRTE3NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZq QWk0a2xYM2xaUWFNY0dBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANBPVl6NHtr1mkeZVo7rOgF8GSZB5mbXzGZLzDZw5CVspIO3pc8FhuOw /gi8fp4rKpVWwFyUFQ8pKtgR6yoYtUiw45b/TdGzupEaF4yIU7RfwR29ukOS5b7z Ek9tWqKC95tVbU/M7ZuNMRWtQtjLc+3A2/NTJoPswibHw/1XYKkn7SCPdk2LizZI XleCog8kx+kNh9myF4XmFLG+eK63ctEC8Tpw43LjNdsIcc9tl8/ooBfLgRxlFNNe bl0/8VTD9war2zClI0+e/ayIZQ0eIrzf3g2QaiWvuKedgtbe5DBpbac+U7uNoB3Q HBiKCxiOERRVepidPTnK/fbwNfb/Cs8= -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:06 2025 by rpki-client