$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: MM8MV8cLXGvu+P18yK7zWwGAm/7acL9OwFVt0/KhhLs= Subject key identifier: 94:C4:42:52:87:49:41:39:40:33:3F:66:89:8E:45:7E:78:D2:ED:60 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 70 Signing time: Fri 05 Sep 2025 07:22:35 +0000 Manifest this update: Fri 05 Sep 2025 07:22:34 +0000 Manifest next update: Fri 12 Sep 2025 07:22:34 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: jbXdEO248zELI81Cj4Z7XDyi1iqw+Zyw6wthtEDMkTw=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) 3: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:22:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Sep 5 07:22:34 2025 GMT Not After : Sep 12 07:22:34 2025 GMT Subject: CN=68ba8fbb-ea95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:0b:a8:5f:5c:b0:97:06:e7:ed:d1:22:45:45: 81:f8:7b:e0:85:a9:f6:88:9f:94:79:ee:18:de:ad: c5:9c:41:4d:f7:35:d7:dc:51:c3:4e:9b:5f:6f:1a: 4d:d9:92:b4:d6:b4:aa:e2:1e:1b:e7:a1:25:a3:49: 76:49:8b:e5:85:9d:07:25:86:ee:bd:7e:95:5a:bb: 95:93:02:4f:ef:5d:45:ca:c8:9d:33:cb:44:be:da: d6:04:e8:81:12:20:8e:61:04:6c:d4:71:9f:cf:e4: 61:af:bd:a1:63:42:b8:f3:c5:87:61:2b:c6:9b:05: b2:4c:ff:26:9d:b5:2c:f6:5d:94:1f:4a:02:97:c8: 62:bd:74:e8:c7:48:de:0e:e4:45:cf:6b:b2:3e:8d: 08:44:93:ab:35:e3:cc:8a:ac:41:2b:10:bd:65:62: 46:f2:4e:96:2a:01:3a:2d:95:8f:d1:55:b4:27:95: 30:f5:ab:cb:d5:b4:17:b6:e8:73:04:04:34:05:4b: fc:0f:91:f1:2f:6e:7a:a2:e2:fb:83:b9:40:7b:ec: fb:20:29:bc:f1:31:ec:5a:48:86:94:91:45:2a:59: ed:65:b0:61:51:77:01:72:2a:73:32:a7:31:38:a7: 14:31:16:6d:67:5f:47:a1:ac:bc:c9:ed:2c:bd:c4: 38:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C4:42:52:87:49:41:39:40:33:3F:66:89:8E:45:7E:78:D2:ED:60 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:43:2f:7c:b1:2a:76:6f:61:56:8c:52:77:d9:6a:3d:62:a1: 0b:96:56:b4:5e:71:e5:2a:d8:e9:20:3f:1f:cf:f5:02:d0:ca: 79:8b:15:75:e1:66:f7:37:88:c7:a3:19:d8:1d:f1:9a:12:f6: d9:fa:f3:44:48:34:5e:69:32:3d:6c:04:24:23:93:a2:9b:be: 1b:05:dd:27:96:d0:1d:50:64:fe:cb:fc:06:18:50:2f:d1:46: 8a:45:cb:28:58:57:39:88:ed:5e:02:9c:7a:b3:d4:be:ff:19: 4a:4c:9a:04:bb:12:18:c4:69:0c:d8:59:f6:04:5b:91:3f:ff: 7d:4e:da:bf:62:6a:b6:3c:cd:9f:8c:15:8f:be:79:f3:6e:26: b4:c8:9d:ee:f4:0b:30:a6:7f:ad:35:8b:b3:fa:58:97:86:8e: cd:23:7a:1e:df:3b:0f:fc:4f:25:c7:55:20:eb:a1:9e:04:50: 11:d4:75:c4:0c:06:3f:c8:cb:48:1f:74:73:b6:9c:fa:b0:9d: 38:b9:ce:5c:a2:8b:c1:1f:83:73:8f:93:00:ee:a1:e8:d8:75: 5f:7f:ed:60:c0:e1:a7:99:f9:2a:56:20:8f:1c:56:c2:f0:0a: 5c:b5:e8:76:30:f3:0d:c2:be:54:06:36:80:c1:04:fc:26:c5: e4:88:d2:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NENCNzExMC8GA1UEBRMoQTI5ODA1OUYwNjUzN0RGOEMwOEI4OTI1NUY3OTU5NDFB MzFDMTgwMDAeFw0yNTA5MDUwNzIyMzRaFw0yNTA5MTIwNzIyMzRaMBgxFjAUBgNV BAMTDTY4YmE4ZmJiLWVhOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuC6hfXLCXBuft0SJFRYH4e+CFqfaIn5R57hjercWcQU33NdfcUcNOm19vGk3Z krTWtKriHhvnoSWjSXZJi+WFnQclhu69fpVau5WTAk/vXUXKyJ0zy0S+2tYE6IES II5hBGzUcZ/P5GGvvaFjQrjzxYdhK8abBbJM/yadtSz2XZQfSgKXyGK9dOjHSN4O 5EXPa7I+jQhEk6s148yKrEErEL1lYkbyTpYqATotlY/RVbQnlTD1q8vVtBe26HME BDQFS/wPkfEvbnqi4vuDuUB77PsgKbzxMexaSIaUkUUqWe1lsGFRdwFyKnMypzE4 pxQxFm1nX0ehrLzJ7Sy9xDjBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlMRCUodJ QTlAMz9miY5FfnjS7WAwHwYDVR0jBBgwFoAUopgFnwZTffjAi4klX3lZQaMcGAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0Q0I3LzhDOTNGNzZDRTE3 NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BnRm53WlRmZmpBaTRrbFgzbFpRYU1jR0FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 Q0I3LzhDOTNGNzZDRTE3NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZq QWk0a2xYM2xaUWFNY0dBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIxDL3yxKnZvYVaMUnfZaj1ioQuWVrReceUq2OkgPx/P9QLQynmLFXXh Zvc3iMejGdgd8ZoS9tn680RINF5pMj1sBCQjk6KbvhsF3SeW0B1QZP7L/AYYUC/R RopFyyhYVzmI7V4CnHqz1L7/GUpMmgS7EhjEaQzYWfYEW5E//31O2r9iarY8zZ+M FY++efNuJrTIne70CzCmf601i7P6WJeGjs0jeh7fOw/8TyXHVSDroZ4EUBHUdcQM Bj/Iy0gfdHO2nPqwnTi5zlyii8Efg3OPkwDuoejYdV9/7WDA4aeZ+SpWII8cVsLw Cly16HYw8w3CvlQGNoDBBPwmxeSI0kY= -----END CERTIFICATE-----Generated at Sat Sep 6 17:21:52 2025 by rpki-client