$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: uzVrQwubR4Iinwn+zXhIpYYgWVOVbnoz30sQTw8mTgs= Subject key identifier: 00:D4:20:42:D9:87:E4:C6:1A:D5:C7:DA:8A:0C:9F:8D:F3:49:45:F0 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 09F9 Signing time: Fri 30 May 2025 20:03:55 +0000 Manifest this update: Fri 30 May 2025 20:03:55 +0000 Manifest next update: Fri 06 Jun 2025 20:03:55 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: 0oO8INYo1QT9Qle3hqOODgWE0yviUNCQPIk4r0XRqOo=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: vryPQgJZ9HPQvb4c/vnzkdnAafqVRFouOd+j23S6sMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2568 (0xa08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: May 30 20:03:55 2025 GMT Not After : Jun 6 20:03:55 2025 GMT Subject: CN=683a0f2b-84db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ba:35:11:cf:a7:b8:6d:01:6b:46:4d:e0:64: 67:13:3a:d8:6b:da:d9:1a:1d:e1:23:5d:61:cc:01: 8d:e6:ce:5c:1d:d4:68:85:49:da:37:e3:51:66:a9: 27:9e:8d:72:5d:0d:c3:9e:88:89:ba:25:c4:3d:05: ee:6b:2d:f6:ab:e9:83:8d:fc:27:8c:04:87:fc:6b: b6:93:53:c9:02:76:59:ac:0d:a3:15:3f:c3:d0:a8: c2:dc:ab:90:78:aa:f1:1f:63:cd:ee:0c:49:b5:f2: c3:7d:1f:2c:fc:12:ac:93:b9:12:cc:34:32:1a:b2: 84:8a:a3:5b:7f:41:63:72:37:07:ab:a0:b3:fa:4b: 7f:2d:aa:c7:ab:dd:a3:c0:34:45:44:b4:80:2b:d6: 9a:9c:54:a6:a5:21:a9:dc:18:3c:1e:d7:c7:88:f9: c0:40:a6:82:ec:88:23:a0:f9:7f:62:8b:85:74:f1: c2:91:40:52:d8:49:80:1e:35:ed:7f:18:c8:b7:40: ab:b1:af:39:f2:a6:02:16:f0:bd:4a:11:24:2e:b6: 8c:1e:83:e1:ed:d8:55:32:23:6e:64:f2:d8:2a:07: 29:2b:3a:90:bb:e2:c5:6e:cb:71:55:89:1c:bf:94: e7:0e:29:3b:05:32:16:fb:f3:3a:11:6b:0c:3f:db: 15:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:D4:20:42:D9:87:E4:C6:1A:D5:C7:DA:8A:0C:9F:8D:F3:49:45:F0 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:be:a3:93:0d:4c:7e:fb:49:cf:93:23:97:3e:b0:52:d2:be: 4a:ae:d9:12:85:32:7f:85:af:92:8b:4d:50:75:92:84:a7:44: 3e:45:2e:a0:c7:66:85:c3:25:d1:c0:9b:9a:b8:3a:ea:18:43: e0:51:79:1e:88:26:2c:6a:ba:b4:f8:d0:c6:9a:0f:24:1c:8a: 4b:cf:b8:7e:d2:d5:a0:9d:06:b0:1d:38:52:8b:75:3d:cb:7d: cc:3f:b3:7b:b0:5b:0c:a0:00:21:cc:2b:13:5b:22:0b:1b:16: 83:02:4b:df:99:b4:59:c1:66:80:d4:71:23:1e:ea:38:95:75: b9:8c:50:38:ee:87:40:3d:ff:89:03:2e:2d:c2:60:bd:8a:de: e3:2e:8e:cb:ad:48:61:92:d3:e4:8c:5c:df:36:76:ab:f2:2f: 9c:12:85:ea:9c:fe:7a:3a:7d:a8:8f:a7:d8:18:cd:fc:49:11: 89:52:80:c3:e4:bd:a6:a1:5c:70:5b:4d:f5:34:ec:f7:64:10: f4:85:85:cd:6b:cf:3f:a0:b5:e2:50:13:70:57:05:64:9a:07: a7:56:72:17:6c:b0:ff:d7:4f:c2:77:94:a2:de:29:11:b8:ad: fd:1d:9a:3a:84:c1:24:7f:d8:c2:7c:22:27:b6:29:c9:ea:5c: 8c:e0:c8:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjUwNTMwMjAwMzU1WhcNMjUwNjA2MjAwMzU1WjAYMRYwFAYD VQQDEw02ODNhMGYyYi04NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbo1Ec+nuG0Ba0ZN4GRnEzrYa9rZGh3hI11hzAGN5s5cHdRohUnaN+NRZqkn no1yXQ3DnoiJuiXEPQXuay32q+mDjfwnjASH/Gu2k1PJAnZZrA2jFT/D0KjC3KuQ eKrxH2PN7gxJtfLDfR8s/BKsk7kSzDQyGrKEiqNbf0FjcjcHq6Cz+kt/LarHq92j wDRFRLSAK9aanFSmpSGp3Bg8HtfHiPnAQKaC7IgjoPl/YouFdPHCkUBS2EmAHjXt fxjIt0Crsa858qYCFvC9ShEkLraMHoPh7dhVMiNuZPLYKgcpKzqQu+LFbstxVYkc v5TnDik7BTIW+/M6EWsMP9sVbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADUIELZ h+TGGtXH2ooMn43zSUXwMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXvqOTDUx++0nPkyOXPrBS0r5KrtkShTJ/ha+Si01QdZKEp0Q+RS6g x2aFwyXRwJuauDrqGEPgUXkeiCYsarq0+NDGmg8kHIpLz7h+0tWgnQawHThSi3U9 y33MP7N7sFsMoAAhzCsTWyILGxaDAkvfmbRZwWaA1HEjHuo4lXW5jFA47odAPf+J Ay4twmC9it7jLo7LrUhhktPkjFzfNnar8i+cEoXqnP56On2oj6fYGM38SRGJUoDD 5L2moVxwW031NOz3ZBD0hYXNa88/oLXiUBNwVwVkmgenVnIXbLD/10/Cd5Si3ikR uK39HZo6hMEkf9jCfCIntinJ6lyM4MhZ -----END CERTIFICATE-----Generated at Sat May 31 17:49:38 2025 by rpki-client