$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: pW4ZrYU70ExULsjXLTUn6TQ5hWquA/UE9s3uqweg5SA= Subject key identifier: F5:0D:13:C1:F4:35:B2:D1:C9:A5:09:9D:50:56:29:8F:C6:50:93:5C Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 1E Signing time: Sat 29 Mar 2025 07:12:20 +0000 Manifest this update: Sat 29 Mar 2025 07:12:19 +0000 Manifest next update: Sat 05 Apr 2025 07:12:19 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: iJTd1/NeTzj34qqSNyhfq8e+5QsDHYeI5xNzv5wnXlc=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7 Validity Not Before: Mar 29 07:12:19 2025 GMT Not After : Apr 5 07:12:19 2025 GMT Subject: CN=67e79d53-d612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f0:8e:5f:f2:13:6a:49:45:71:85:71:be:d9: b9:fd:fa:aa:fa:9f:a3:b8:8f:89:9c:57:9b:c3:24: 22:91:54:42:38:7b:73:85:65:05:2a:a3:c4:77:e9: 79:b6:cb:4b:6a:8c:3d:65:f9:f5:6b:ca:5d:c8:8e: 44:d5:52:17:09:3e:65:1e:7b:ea:00:1c:62:58:a2: d3:94:59:c6:91:16:19:51:d7:3a:9a:0f:c6:4c:f2: a3:e4:9d:36:26:04:66:63:f5:95:04:37:ea:6f:4c: 14:1c:73:68:c9:ef:4a:c5:89:48:84:04:c4:62:d2: 90:cc:f8:0f:23:34:3e:3c:bc:0f:1e:c6:fc:30:08: ab:d2:33:b0:77:44:7e:e4:52:55:f0:a1:af:b8:76: d3:9d:1e:78:01:8a:15:86:ce:e1:0f:0b:d5:1c:e2: f2:52:1e:44:bd:d2:eb:60:c0:69:b7:86:bf:35:67: 3e:0a:a6:5d:fd:96:c9:9c:ff:c0:bc:58:ae:dd:02: 0d:0f:12:15:4d:90:1a:84:1d:d0:0d:99:16:1b:6a: f9:c8:15:e9:85:cb:7b:ea:6a:6c:9c:eb:76:1a:84: ef:46:aa:4a:93:73:ee:fd:34:78:0c:e6:d7:89:cc: aa:c8:57:76:62:9f:88:ec:c2:f7:e4:14:ee:74:42: ae:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0D:13:C1:F4:35:B2:D1:C9:A5:09:9D:50:56:29:8F:C6:50:93:5C X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:cd:fa:b1:12:5c:c5:90:71:6d:f0:d3:0e:87:f8:1a:22:b9: de:f9:21:4e:24:d0:c5:47:c8:09:5c:1f:56:6b:8f:ec:1c:7d: 1c:21:ab:d7:97:6b:c5:c4:5f:f5:f5:36:10:ee:69:e6:c6:9e: 0f:06:ec:a0:af:c4:aa:99:4c:b5:a6:ac:b9:33:db:8e:69:50: 08:de:b2:76:39:2d:b9:de:f1:de:b8:24:0c:3a:22:e2:31:8d: f3:b5:34:5d:7c:24:64:e8:a1:65:07:77:21:7c:2b:ad:5c:23: 43:f1:ff:c4:25:63:a0:82:87:9d:df:f0:a0:7a:30:5e:6f:f3: 2c:81:02:e3:8a:0d:d8:a5:bd:83:5d:d8:ee:32:4d:07:16:1b: f1:4f:e3:ec:87:41:e2:18:02:57:24:53:6e:41:ac:6f:67:08: 40:ca:11:95:99:e5:1d:cc:75:f3:47:3e:b5:bb:9f:66:c5:4e: d7:fd:6f:a6:17:ce:bb:03:b3:d5:9c:c1:df:37:de:0b:6e:75: 1d:76:c2:62:bf:71:a3:28:e0:94:15:4a:eb:24:ae:87:cf:48: f8:09:1a:18:27:a5:57:6d:7a:58:34:f0:68:48:d8:90:6f:a0: 1f:95:17:ea:fb:d0:bc:ed:ce:76:65:da:0c:22:5d:5a:8f:f3: 48:35:7e:3e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NENCNzExMC8GA1UEBRMoQTI5ODA1OUYwNjUzN0RGOEMwOEI4OTI1NUY3OTU5NDFB MzFDMTgwMDAeFw0yNTAzMjkwNzEyMTlaFw0yNTA0MDUwNzEyMTlaMBgxFjAUBgNV BAMTDTY3ZTc5ZDUzLWQ2MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDq8I5f8hNqSUVxhXG+2bn9+qr6n6O4j4mcV5vDJCKRVEI4e3OFZQUqo8R36Xm2 y0tqjD1l+fVryl3IjkTVUhcJPmUee+oAHGJYotOUWcaRFhlR1zqaD8ZM8qPknTYm BGZj9ZUEN+pvTBQcc2jJ70rFiUiEBMRi0pDM+A8jND48vA8exvwwCKvSM7B3RH7k UlXwoa+4dtOdHngBihWGzuEPC9Uc4vJSHkS90utgwGm3hr81Zz4Kpl39lsmc/8C8 WK7dAg0PEhVNkBqEHdANmRYbavnIFemFy3vqamyc63YahO9GqkqTc+79NHgM5teJ zKrIV3Zin4jswvfkFO50Qq4ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9Q0TwfQ1 stHJpQmdUFYpj8ZQk1wwHwYDVR0jBBgwFoAUopgFnwZTffjAi4klX3lZQaMcGAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0Q0I3LzhDOTNGNzZDRTE3 NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BnRm53WlRmZmpBaTRrbFgzbFpRYU1jR0FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 Q0I3LzhDOTNGNzZDRTE3NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZq QWk0a2xYM2xaUWFNY0dBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI7N+rESXMWQcW3w0w6H+Boiud75IU4k0MVHyAlcH1Zrj+wcfRwhq9eX a8XEX/X1NhDuaebGng8G7KCvxKqZTLWmrLkz245pUAjesnY5Lbne8d64JAw6IuIx jfO1NF18JGTooWUHdyF8K61cI0Px/8QlY6CCh53f8KB6MF5v8yyBAuOKDdilvYNd 2O4yTQcWG/FP4+yHQeIYAlckU25BrG9nCEDKEZWZ5R3MdfNHPrW7n2bFTtf9b6YX zrsDs9Wcwd833gtudR12wmK/caMo4JQVSuskrofPSPgJGhgnpVdtelg08GhI2JBv oB+VF+r70LztznZl2gwiXVqP80g1fj4= -----END CERTIFICATE-----Generated at Fri Apr 4 22:34:49 2025 by rpki-client