$ rpki-client -vvf rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft File: opsbaAnOwakkcMWcbDa_pc84cYY.mft (raw, json) Hash identifier: kOV9SY1IPoQo9obB5+F6lzOKHaHSIR52NpKSZZBjhi4= Subject key identifier: 27:F6:F9:7E:7E:09:79:E4:69:62:65:CA:A7:3D:51:1A:2C:C1:40:8B Authority key identifier: A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 Certificate issuer: /CN=A9187BAC/serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft Manifest number: 83 Signing time: Sat 13 Sep 2025 06:50:08 +0000 Manifest this update: Sat 13 Sep 2025 06:50:08 +0000 Manifest next update: Sat 20 Sep 2025 06:50:08 +0000 Files and hashes: 1: opsbaAnOwakkcMWcbDa_pc84cYY.crl (hash: 19yE4D8L/Yn6Q5rgcMtfeHKVO9oS56Bprso7kGZMnMQ=) 2: 7404496836E411F0A95FB239C4F9AE02.roa (hash: WHGMZh9P2RExWIeMMaDkbGi0VRoxW1Iai0A3Zb9yWT4=) 3: 7375238236E411F0A95FB239C4F9AE02.roa (hash: 6GqewoLZaVKTqsSzxgnIGXRwmj2ShKpEerZMfS7j+UE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 22:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187BAC, serialNumber=A29B1B6809CEC1A92470C59C6C36BFA5CF387186 Validity Not Before: Sep 13 06:50:08 2025 GMT Not After : Sep 20 06:50:08 2025 GMT Subject: CN=68c51420-6d31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6f:01:d0:65:d7:1b:7a:d6:00:06:36:7c:35: 03:23:cf:07:27:12:3b:16:b8:22:00:0f:a7:e9:16: de:7c:59:25:7a:3d:18:b4:30:ea:ee:65:c8:53:69: 34:c1:2c:4e:c8:aa:81:19:84:3c:67:b8:87:b4:d7: 3b:b3:44:22:99:16:2f:b0:25:3d:db:26:a7:fc:f3: de:c7:72:59:34:c5:f7:79:d1:8b:9a:0d:c7:07:b0: b2:a0:56:5c:fb:5c:0f:eb:96:ab:5b:0e:8e:b8:0a: c3:8d:01:c1:ad:6f:5e:54:28:10:f2:5c:d6:1b:96: 81:00:7f:21:d9:fe:34:06:32:c7:73:b1:2f:ee:6c: 26:cf:92:c9:18:dc:4e:4b:e7:fe:c0:18:fe:81:b6: c5:53:17:85:0a:b0:f3:29:7c:8e:61:7c:9f:13:04: 70:41:e5:3c:d7:ea:2b:4b:bb:bb:07:88:42:e0:2d: d1:bd:4e:66:e6:d1:45:f8:15:62:b5:06:c6:f9:2b: ce:bb:bd:05:43:a4:01:af:e9:f5:ca:df:40:62:cf: d7:77:b3:84:a0:64:7f:cf:0a:33:90:6a:8f:cf:ab: ba:54:dc:e9:5b:1f:55:a6:9d:17:ac:7e:26:47:5e: 1a:69:7d:e6:4d:59:92:44:db:42:79:b7:aa:9f:ee: ad:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F6:F9:7E:7E:09:79:E4:69:62:65:CA:A7:3D:51:1A:2C:C1:40:8B X509v3 Authority Key Identifier: keyid:A2:9B:1B:68:09:CE:C1:A9:24:70:C5:9C:6C:36:BF:A5:CF:38:71:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opsbaAnOwakkcMWcbDa_pc84cYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187BAC/C6AD3E0AD02C11EFB5584915C4F9AE02/opsbaAnOwakkcMWcbDa_pc84cYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b5:97:59:ea:05:4e:8e:a8:e4:a5:96:29:f3:f4:59:95:50: a4:c4:8f:c2:86:c5:61:13:a8:a9:ea:be:07:9d:c8:97:5d:78: d9:b2:5a:8a:ee:0b:84:e0:8f:47:bb:25:e1:02:ec:c7:30:7c: 66:f4:c7:32:20:70:d8:24:0e:25:a4:d9:3c:b6:e3:f0:6a:87: 56:80:62:47:14:4c:0f:29:06:78:6c:19:36:27:d9:2f:3d:f8: f3:57:97:43:c7:b1:f1:f2:e3:e9:15:60:9d:19:57:5a:a6:ed: ed:b6:76:fb:83:1a:10:29:ec:e4:b1:2d:db:fa:11:65:5f:d1: 84:3b:c6:9f:47:fe:83:81:1a:5e:f6:f7:39:11:d4:2f:d9:01: af:39:4b:1e:12:55:83:f2:9e:ff:5c:48:6e:79:b5:52:4e:d9: 3d:62:f7:f1:80:ec:6e:df:1b:3f:73:e6:36:e7:5d:ad:86:e3: 5e:9d:ab:ff:71:5f:f7:99:68:ea:70:36:75:12:bb:5a:75:24: 55:44:69:51:34:8f:02:ed:64:d4:b0:73:b9:76:2a:6e:b8:b1: cf:5e:1e:66:2b:45:5f:72:a0:53:2c:6c:e8:ec:e7:e2:55:08: ce:cd:70:39:4a:66:99:02:0a:75:35:f5:76:06:6b:55:18:bd: ae:29:53:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdCQUMxMTAvBgNVBAUTKEEyOUIxQjY4MDlDRUMxQTkyNDcwQzU5QzZDMzZCRkE1 Q0YzODcxODYwHhcNMjUwOTEzMDY1MDA4WhcNMjUwOTIwMDY1MDA4WjAYMRYwFAYD VQQDEw02OGM1MTQyMC02ZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5W8B0GXXG3rWAAY2fDUDI88HJxI7FrgiAA+n6RbefFklej0YtDDq7mXIU2k0 wSxOyKqBGYQ8Z7iHtNc7s0QimRYvsCU92yan/PPex3JZNMX3edGLmg3HB7CyoFZc +1wP65arWw6OuArDjQHBrW9eVCgQ8lzWG5aBAH8h2f40BjLHc7Ev7mwmz5LJGNxO S+f+wBj+gbbFUxeFCrDzKXyOYXyfEwRwQeU81+orS7u7B4hC4C3RvU5m5tFF+BVi tQbG+SvOu70FQ6QBr+n1yt9AYs/Xd7OEoGR/zwozkGqPz6u6VNzpWx9Vpp0XrH4m R14aaX3mTVmSRNtCebeqn+6tawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf2+X5+ CXnkaWJlyqc9URoswUCLMB8GA1UdIwQYMBaAFKKbG2gJzsGpJHDFnGw2v6XPOHGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0JBQy9DNkFEM0UwQUQw MkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dha2tjTVdjYkRhX3BjODRj WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wc2JhQW5Pd2Fra2NNV2NiRGFfcGM4NGNZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0JBQy9DNkFEM0UwQUQwMkMxMUVGQjU1ODQ5MTVDNEY5QUUwMi9vcHNiYUFuT3dh a2tjTVdjYkRhX3BjODRjWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7tZdZ6gVOjqjkpZYp8/RZlVCkxI/ChsVhE6ip6r4HnciXXXjZslqK 7guE4I9HuyXhAuzHMHxm9McyIHDYJA4lpNk8tuPwaodWgGJHFEwPKQZ4bBk2J9kv PfjzV5dDx7Hx8uPpFWCdGVdapu3ttnb7gxoQKezksS3b+hFlX9GEO8afR/6DgRpe 9vc5EdQv2QGvOUseElWD8p7/XEhuebVSTtk9YvfxgOxu3xs/c+Y2512thuNenav/ cV/3mWjqcDZ1ErtadSRVRGlRNI8C7WTUsHO5dipuuLHPXh5mK0VfcqBTLGzo7Ofi VQjOzXA5SmaZAgp1NfV2BmtVGL2uKVPP -----END CERTIFICATE-----Generated at Sun Sep 14 17:28:52 2025 by rpki-client