$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: A42RES4x49SFsbqJCKsdqkJrWO55arHRBzYy/R17ylA= Subject key identifier: 4A:C5:53:D3:76:C7:BB:D5:2F:79:C0:70:17:9D:F4:84:B6:42:4B:99 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 0714 Signing time: Fri 06 Jun 2025 21:56:05 +0000 Manifest this update: Fri 06 Jun 2025 21:56:05 +0000 Manifest next update: Fri 13 Jun 2025 21:56:04 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: +WRStRpvs5zl7b/v2KGb9d7s854wd7sRsEARV4DIxtM=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 21:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Jun 6 21:56:05 2025 GMT Not After : Jun 13 21:56:04 2025 GMT Subject: CN=684363f5-0594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2c:b7:db:08:f8:cb:68:7a:e2:73:d4:19:8e: 7e:49:62:01:7b:48:27:a0:ed:00:1a:2e:7c:21:a7: df:8d:59:26:89:4c:d0:05:a6:ad:f2:9a:c9:97:b8: 93:c7:51:eb:d8:bf:9e:5b:90:60:78:b7:c3:41:bf: 8d:fa:a9:18:2d:5a:07:8b:7e:c5:e5:8b:f7:d1:62: 3f:b1:ed:5d:2b:1a:91:1e:ef:cb:99:3e:9e:de:2d: 8a:d6:2e:d3:65:d0:22:c3:04:9d:ed:fa:7b:ef:1d: 92:86:28:d8:fe:4b:d3:7b:68:0b:fd:f7:11:b7:52: 0a:90:39:7f:51:9b:0d:9a:cf:76:de:53:ed:f2:d7: 80:37:66:d6:b2:f4:ff:96:d1:0d:ef:45:85:5a:6f: 71:4f:3c:da:a9:81:f9:d9:45:21:47:45:bf:31:89: c0:e7:ee:81:bf:00:d0:e5:1b:7e:8b:2b:fd:b8:92: 4f:f8:09:70:37:d3:a4:1f:b4:4d:bc:3a:53:83:93: 2a:b0:2d:4f:be:84:4a:81:bc:fc:3d:37:fd:e1:96: d8:f6:ec:ab:1b:84:73:ec:67:ba:93:04:29:cf:f9: 5f:79:59:70:1b:25:62:eb:a5:b3:0d:28:6e:d7:84: 92:f3:79:ed:95:52:ff:2b:72:84:8a:68:9c:2a:0e: 3c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C5:53:D3:76:C7:BB:D5:2F:79:C0:70:17:9D:F4:84:B6:42:4B:99 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:c4:2f:96:f9:ee:c3:90:35:61:3f:d0:ec:7e:ee:92:f0:a5: 92:b5:3a:b9:e0:4c:d3:2c:2a:45:f6:7f:53:d8:d1:fd:b6:aa: 00:0d:c0:96:5c:e0:ac:51:59:a3:63:3e:52:9c:b8:31:d0:fb: 22:e2:f8:87:b1:0a:53:e6:a6:b7:cf:c6:8b:50:95:b7:94:3b: 49:7f:ec:c4:c6:d3:c0:58:30:28:59:ee:24:01:03:8b:39:b6: 83:5d:ab:7b:c4:aa:5e:44:01:71:4c:7b:35:2f:15:68:f1:f1: 5b:82:86:a7:ff:12:72:08:3a:4f:65:b8:7c:58:32:27:6b:4f: 8b:d4:b3:7c:b2:99:a1:d1:a0:ca:e4:be:2a:50:6e:b8:b1:8e: b3:fc:40:bf:ab:3b:11:2e:2a:f0:9a:bc:e5:e8:71:6d:f9:d2: 54:88:d6:fd:fb:93:c2:55:9b:7e:18:bd:3c:91:37:67:bc:96: d2:ce:33:f7:6d:a7:cd:84:c4:ed:ed:8b:8f:43:de:a9:3d:d4: a2:bd:df:a3:ca:cc:17:9b:1d:7c:28:3b:6b:fe:d6:84:ef:a0: d7:15:53:56:73:f1:69:7e:8a:45:ec:71:e7:ac:60:be:13:44: 8a:8b:8e:e4:8e:95:6d:1f:eb:b9:27:dc:09:be:ac:98:a2:2f: d0:23:06:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUwNjA2MjE1NjA1WhcNMjUwNjEzMjE1NjA0WjAYMRYwFAYD VQQDEw02ODQzNjNmNS0wNTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSy32wj4y2h64nPUGY5+SWIBe0gnoO0AGi58IaffjVkmiUzQBaat8prJl7iT x1Hr2L+eW5BgeLfDQb+N+qkYLVoHi37F5Yv30WI/se1dKxqRHu/LmT6e3i2K1i7T ZdAiwwSd7fp77x2ShijY/kvTe2gL/fcRt1IKkDl/UZsNms923lPt8teAN2bWsvT/ ltEN70WFWm9xTzzaqYH52UUhR0W/MYnA5+6BvwDQ5Rt+iyv9uJJP+AlwN9OkH7RN vDpTg5MqsC1PvoRKgbz8PTf94ZbY9uyrG4Rz7Ge6kwQpz/lfeVlwGyVi66WzDShu 14SS83ntlVL/K3KEimicKg48mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErFU9N2 x7vVL3nAcBed9IS2QkuZMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhxC+W+e7DkDVhP9Dsfu6S8KWStTq54EzTLCpF9n9T2NH9tqoADcCW XOCsUVmjYz5SnLgx0Psi4viHsQpT5qa3z8aLUJW3lDtJf+zExtPAWDAoWe4kAQOL ObaDXat7xKpeRAFxTHs1LxVo8fFbgoan/xJyCDpPZbh8WDIna0+L1LN8spmh0aDK 5L4qUG64sY6z/EC/qzsRLirwmrzl6HFt+dJUiNb9+5PCVZt+GL08kTdnvJbSzjP3 bafNhMTt7YuPQ96pPdSivd+jyswXmx18KDtr/taE76DXFVNWc/FpfopF7HHnrGC+ E0SKi47kjpVtH+u5J9wJvqyYoi/QIwZd -----END CERTIFICATE-----Generated at Sat Jun 7 15:49:15 2025 by rpki-client