$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: oBFsb5Lu0xs5GxDVC8g/4XUUbWVJzwo5RR+aWl47UrY= Subject key identifier: CB:66:FE:A9:23:99:68:05:71:E2:20:47:E5:07:9F:41:02:F6:1E:A6 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0741 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 073A Signing time: Wed 20 Aug 2025 21:49:27 +0000 Manifest this update: Wed 20 Aug 2025 21:49:27 +0000 Manifest next update: Wed 27 Aug 2025 21:49:27 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: CE2/41ROyOQ9sZzHR9RP4csxiQocj7fVV1A5/jXQb5I=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:49:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1857 (0x741) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Aug 20 21:49:27 2025 GMT Not After : Aug 27 21:49:27 2025 GMT Subject: CN=68a642e7-54da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0f:a5:1c:8e:d8:0e:8b:85:aa:a7:f8:ca:ac: 93:c0:17:b5:4a:ad:d0:80:17:36:82:34:b0:27:10: f7:08:7d:59:45:f1:50:ce:8b:2a:10:e5:26:88:31: 74:eb:bc:ff:c1:0b:16:47:06:fc:13:1e:f1:20:d5: 42:92:03:a8:de:b5:2c:d1:14:8a:cb:99:f1:c1:75: 57:f6:60:c2:5f:b3:76:fc:49:a9:04:77:32:e8:13: 2f:ae:8e:b8:f5:23:f9:c9:d4:f1:4e:2e:66:30:a9: 37:a6:77:a8:1d:e6:9e:0d:45:57:a7:f4:ea:70:b7: b9:ce:50:97:ec:c6:a2:cb:96:af:b4:df:a5:a4:ef: 68:8a:3a:40:67:61:1d:69:7f:9f:a3:06:f9:fe:15: 0a:ad:a7:e3:4e:41:9e:64:d4:c6:b2:cc:9b:75:66: 37:4a:f0:bb:94:7d:87:67:ab:2a:b3:76:20:19:ee: 21:43:0b:d3:87:4b:ce:b2:1a:39:20:2e:a4:6c:e3: 05:c7:79:4c:cf:b4:57:8c:38:5a:f3:94:87:fd:f5: 40:3a:47:ce:93:ec:db:e7:8b:85:46:a1:d0:64:ae: e6:92:bf:a2:23:76:ce:37:ae:57:72:e3:51:7e:e2: 09:da:45:d9:80:7c:77:db:ba:ce:50:0d:c7:61:c1: 26:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:66:FE:A9:23:99:68:05:71:E2:20:47:E5:07:9F:41:02:F6:1E:A6 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:b2:c2:12:8d:33:1b:11:1a:65:98:0a:de:11:b6:99:5d:cc: d2:1e:56:a7:29:4b:cb:e1:26:f8:cd:dc:95:ba:80:82:5b:cf: b2:fe:10:7e:72:e6:c9:8a:59:fa:d4:01:b0:0a:e9:b8:ea:8b: 3a:72:5e:b1:a6:1e:4d:10:e9:2c:30:d3:1a:ad:d0:2c:c8:d5: 1c:6f:ab:e5:69:be:a3:1d:30:75:40:cb:22:a0:40:a9:7b:30: 55:82:33:6a:12:17:4e:e8:a4:6c:a5:69:d7:4b:f2:ed:73:08: 39:a4:53:0e:d9:89:c8:fd:cd:d3:51:ff:9f:3a:56:a8:97:df: f0:ae:0c:29:a4:05:9b:6f:17:25:b3:25:26:b3:33:3a:d0:4b: 7e:c6:32:78:b2:2c:3b:91:f5:0d:d9:4c:31:b7:39:39:49:b4: c5:d9:0e:cc:fb:12:61:c6:b3:30:32:03:58:ad:2c:9d:7e:6c: 51:bd:89:2b:a9:58:e2:ce:20:6a:9b:cb:9f:01:66:1b:07:a5: f8:41:92:68:5e:6f:c9:4e:3f:cd:4b:c9:a3:b7:20:b7:0a:83: bc:c2:d7:07:e7:6c:47:71:c8:f8:a7:a1:31:68:06:37:20:20: 79:ba:b6:a2:06:c4:d7:08:a4:ba:ae:d3:92:cc:3d:ad:c5:75: 4b:ea:3f:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUwODIwMjE0OTI3WhcNMjUwODI3MjE0OTI3WjAYMRYwFAYD VQQDEw02OGE2NDJlNy01NGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA+lHI7YDouFqqf4yqyTwBe1Sq3QgBc2gjSwJxD3CH1ZRfFQzosqEOUmiDF0 67z/wQsWRwb8Ex7xINVCkgOo3rUs0RSKy5nxwXVX9mDCX7N2/EmpBHcy6BMvro64 9SP5ydTxTi5mMKk3pneoHeaeDUVXp/TqcLe5zlCX7Maiy5avtN+lpO9oijpAZ2Ed aX+fowb5/hUKrafjTkGeZNTGssybdWY3SvC7lH2HZ6sqs3YgGe4hQwvTh0vOsho5 IC6kbOMFx3lMz7RXjDha85SH/fVAOkfOk+zb54uFRqHQZK7mkr+iI3bON65XcuNR fuIJ2kXZgHx327rOUA3HYcEmwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtm/qkj mWgFceIgR+UHn0EC9h6mMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqssISjTMbERplmAreEbaZXczSHlanKUvL4Sb4zdyVuoCCW8+y/hB+ cubJiln61AGwCum46os6cl6xph5NEOksMNMardAsyNUcb6vlab6jHTB1QMsioECp ezBVgjNqEhdO6KRspWnXS/Ltcwg5pFMO2YnI/c3TUf+fOlaol9/wrgwppAWbbxcl syUmszM60Et+xjJ4siw7kfUN2Uwxtzk5SbTF2Q7M+xJhxrMwMgNYrSydfmxRvYkr qVjiziBqm8ufAWYbB6X4QZJoXm/JTj/NS8mjtyC3CoO8wtcH52xHccj4p6ExaAY3 ICB5uraiBsTXCKS6rtOSzD2txXVL6j96 -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:16 2025 by rpki-client