$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft File: RiOppNLqhemPtaEaDSywgDiHjw8.mft (raw, json) Hash identifier: z7gwFqijn4jF8I8AsCWPETzcVirhdj181KabzwJuclE= Subject key identifier: B9:4A:73:42:AB:EA:F4:1E:61:2E:01:7A:33:E5:42:14:0A:FF:BC:C1 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0C07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft Manifest number: 0C00 Signing time: Thu 04 Sep 2025 18:57:52 +0000 Manifest this update: Thu 04 Sep 2025 18:57:51 +0000 Manifest next update: Thu 11 Sep 2025 18:57:51 +0000 Files and hashes: 1: RiOppNLqhemPtaEaDSywgDiHjw8.crl (hash: JH6G3ACv4wH0F+5kGZELF/vAmEgSdAnJG1/x654ky/o=) 2: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (hash: CqtlIV8oyS/ltG/c7wrvUbZ8dS3VADjXiEg/AjA1Uu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 18:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Sep 4 18:57:51 2025 GMT Not After : Sep 11 18:57:51 2025 GMT Subject: CN=68b9e12f-3df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1d:46:52:03:83:78:2b:76:83:ac:8f:31:cf: 6c:88:c9:a7:2c:0b:bb:43:81:44:36:9c:c0:1c:e5: 0f:9a:93:7e:73:b7:65:80:18:84:9b:68:1d:bf:88: 60:27:e9:13:53:b7:d9:2c:ec:fc:19:33:a9:b0:46: 55:df:1a:28:90:46:86:5e:e3:32:41:1b:35:eb:60: ea:f2:79:9a:d9:24:f5:51:c7:88:75:ae:24:7d:dc: 84:bd:89:05:39:2f:28:1f:8d:8e:65:bb:11:63:48: 7e:40:2f:fc:4e:7f:28:1d:de:70:12:62:ef:12:93: 9b:28:cf:0d:67:b5:ef:df:03:fb:1d:85:de:0a:e7: 95:90:24:4d:73:fb:f9:38:d8:42:94:6b:72:51:87: ae:9b:6f:11:0d:3d:15:1a:eb:e0:5a:00:eb:f9:05: d7:c4:db:71:9b:bb:f0:a0:a0:ac:b6:19:de:c5:ad: c7:b0:d2:f5:06:0f:ef:88:14:81:be:c4:cd:3b:dd: ed:07:d7:13:13:bc:32:51:23:a4:84:b9:cd:35:9b: 6a:55:b4:ab:fc:28:c8:3e:f5:9b:2e:76:ef:e3:b0: 41:b2:86:56:a1:34:98:82:db:d7:83:0a:a5:5e:67: f4:e7:3e:8f:8c:f5:3f:52:da:67:ed:69:41:81:0b: 4e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4A:73:42:AB:EA:F4:1E:61:2E:01:7A:33:E5:42:14:0A:FF:BC:C1 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:82:53:f6:94:7a:bf:8b:97:0d:e1:33:11:35:b1:ae:b1:68: 17:21:95:0a:34:4d:7e:69:fd:dc:1c:13:d2:db:9d:67:d3:ec: 90:52:b4:71:15:b6:72:14:8b:79:8e:23:86:13:a9:35:fd:99: 42:a2:56:60:59:14:56:81:1e:0d:30:a9:e9:6f:e0:b7:ec:a6: 5b:3e:46:b3:3a:83:b7:db:40:f6:2a:0b:72:81:ce:ba:fb:e0: 2b:16:d1:c1:0b:a6:f2:10:36:5d:87:3c:ff:cc:65:ac:f9:03: 9a:60:36:45:c4:b9:ce:dd:e1:83:5c:4a:71:7b:d8:96:f8:8a: 16:08:4e:20:26:a9:1d:a9:89:06:d7:d0:a4:4d:64:48:0a:47: 46:72:dc:11:9e:c7:0f:e3:f3:99:1b:ff:ed:26:8f:14:e3:93: 5b:a9:98:0e:c4:88:59:fe:10:01:4e:99:f9:1d:ba:47:40:a8: fd:2f:66:f3:56:e2:6b:31:1c:0b:4c:25:3c:75:e4:ed:7d:ad: f3:a8:a8:3c:5e:87:2e:dc:c5:bc:57:73:83:2a:59:80:b4:66: 29:16:5b:d3:dd:98:4c:52:20:d6:8c:f6:86:62:2a:4c:10:c6: d5:df:b1:07:2a:cb:57:2d:6e:ec:ed:80:e0:83:49:f9:63:c8: 07:6e:d1:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjUwOTA0MTg1NzUxWhcNMjUwOTExMTg1NzUxWjAYMRYwFAYD VQQDEw02OGI5ZTEyZi0zZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAph1GUgODeCt2g6yPMc9siMmnLAu7Q4FENpzAHOUPmpN+c7dlgBiEm2gdv4hg J+kTU7fZLOz8GTOpsEZV3xookEaGXuMyQRs162Dq8nma2ST1UceIda4kfdyEvYkF OS8oH42OZbsRY0h+QC/8Tn8oHd5wEmLvEpObKM8NZ7Xv3wP7HYXeCueVkCRNc/v5 ONhClGtyUYeum28RDT0VGuvgWgDr+QXXxNtxm7vwoKCsthnexa3HsNL1Bg/viBSB vsTNO93tB9cTE7wyUSOkhLnNNZtqVbSr/CjIPvWbLnbv47BBsoZWoTSYgtvXgwql Xmf05z6PjPU/Utpn7WlBgQtOxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlKc0Kr 6vQeYS4BejPlQhQK/7zBMB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OERFOS9EMDA0OUY4NjFCRDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhl bVB0YUVhRFN5d2dEaUhqdzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtglP2lHq/i5cN4TMRNbGusWgXIZUKNE1+af3cHBPS251n0+yQUrRx FbZyFIt5jiOGE6k1/ZlColZgWRRWgR4NMKnpb+C37KZbPkazOoO320D2Kgtygc66 ++ArFtHBC6byEDZdhzz/zGWs+QOaYDZFxLnO3eGDXEpxe9iW+IoWCE4gJqkdqYkG 19CkTWRICkdGctwRnscP4/OZG//tJo8U45NbqZgOxIhZ/hABTpn5HbpHQKj9L2bz VuJrMRwLTCU8deTtfa3zqKg8Xocu3MW8V3ODKlmAtGYpFlvT3ZhMUiDWjPaGYipM EMbV37EHKstXLW7s7YDgg0n5Y8gHbtEd -----END CERTIFICATE-----Generated at Sat Sep 6 15:17:32 2025 by rpki-client