$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: IdCNhw8/Kh9NW8TrJUNGs5UFQ3MxeQaWqnL5/ijtyZ4= Subject key identifier: BB:73:28:77:3B:5E:B4:BC:FA:91:83:F8:31:A4:68:57:85:44:5E:FE Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 06C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06BB Signing time: Thu 24 Apr 2025 21:57:55 +0000 Manifest this update: Thu 24 Apr 2025 21:57:55 +0000 Manifest next update: Thu 01 May 2025 21:57:55 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: r7DFTSWRGfLgfLWe4Hb749i9XvetUbfp9Yp0YUA7RUk=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Apr 24 21:57:55 2025 GMT Not After : May 1 21:57:55 2025 GMT Subject: CN=680ab3e3-538f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:00:5b:18:13:04:20:dc:50:8a:3d:f8:e0:d5: 2b:61:1a:b9:00:a9:20:b5:5c:8d:cd:81:cb:91:ae: bc:9e:05:e4:9d:f9:40:b2:73:ca:9b:9b:74:b8:f2: c1:74:d9:84:3b:3d:6c:e0:3d:f8:59:6a:38:6b:cb: a1:7f:f5:df:07:b7:dd:92:e0:30:d5:1a:7c:71:28: d7:19:30:1f:cf:22:06:5d:3f:1a:bb:80:56:7b:6f: 9a:4e:1c:9c:03:39:ce:36:fe:8b:d3:10:62:94:5d: c5:10:b6:07:26:9d:24:44:d7:da:40:a6:95:d7:4b: 59:9b:07:2b:3e:65:c3:59:9e:b9:cf:6c:81:83:2f: 47:cf:68:10:72:1c:dd:1d:be:fa:8f:7a:0a:6e:0f: a5:5c:54:a1:2e:71:dc:1d:4c:24:45:f7:29:7e:8c: 3b:98:c1:43:fa:de:26:ac:c3:6f:d3:6e:78:15:4b: ac:ec:a4:6b:99:14:0c:f1:26:ef:28:0b:66:3d:3f: 7e:a3:68:8e:da:e7:94:30:1a:d0:cd:f5:fd:96:fb: d0:0c:1b:4b:1b:ee:98:bb:be:0f:e2:66:ab:4c:73: 06:11:ce:34:e7:fe:12:20:c6:6d:45:a6:1b:43:ce: 33:7d:b4:98:c7:ea:39:67:c0:db:5e:04:13:26:d6: 92:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:73:28:77:3B:5E:B4:BC:FA:91:83:F8:31:A4:68:57:85:44:5E:FE X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:be:14:92:42:6d:26:4d:8f:13:d2:e2:1b:c3:2e:02:2c:b4: de:17:86:ad:e5:ad:54:47:8d:35:df:8d:1b:99:18:e8:96:61: 9f:e6:67:1a:4b:af:2d:92:7d:04:c4:0b:25:c4:76:71:a5:6b: a6:43:83:36:82:86:47:0d:48:7d:bc:5b:1d:8c:82:f4:39:7b: 69:7e:d2:5d:7f:d4:a7:f5:2c:a7:92:59:aa:be:48:2b:ad:68: 8c:89:56:4b:dd:73:33:0b:57:24:92:c0:1d:43:c1:36:ce:14: 90:fc:78:06:2a:ec:dd:94:59:e8:e6:12:04:00:94:e7:4f:e0: 60:d8:1e:e5:c4:47:20:dc:23:fd:8c:84:27:cd:2e:e6:d0:63: ef:41:6b:9d:98:03:e8:a3:17:25:70:c5:f8:5d:a4:f5:67:a7: 54:c8:8f:2e:b0:1f:33:7a:74:16:a6:fc:2d:c0:7e:ba:0f:63: a7:3f:91:ee:bd:92:c2:20:ef:1f:73:59:34:24:66:c0:28:97: 95:c2:df:5b:5d:71:16:ca:d9:af:ec:47:3d:7f:9e:b0:69:e9: de:26:8c:99:b9:8a:9b:64:42:af:69:07:db:8e:d1:8e:a1:70: d8:f8:67:0a:21:0e:e7:60:37:2c:3e:1c:77:14:ce:88:1a:64: 75:31:30:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwNDI0MjE1NzU1WhcNMjUwNTAxMjE1NzU1WjAYMRYwFAYD VQQDEw02ODBhYjNlMy01MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQBbGBMEINxQij344NUrYRq5AKkgtVyNzYHLka68ngXknflAsnPKm5t0uPLB dNmEOz1s4D34WWo4a8uhf/XfB7fdkuAw1Rp8cSjXGTAfzyIGXT8au4BWe2+aThyc AznONv6L0xBilF3FELYHJp0kRNfaQKaV10tZmwcrPmXDWZ65z2yBgy9Hz2gQchzd Hb76j3oKbg+lXFShLnHcHUwkRfcpfow7mMFD+t4mrMNv0254FUus7KRrmRQM8Sbv KAtmPT9+o2iO2ueUMBrQzfX9lvvQDBtLG+6Yu74P4marTHMGEc405/4SIMZtRaYb Q84zfbSYx+o5Z8DbXgQTJtaSHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtzKHc7 XrS8+pGD+DGkaFeFRF7+MB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsvhSSQm0mTY8T0uIbwy4CLLTeF4at5a1UR401340bmRjolmGf5mca S68tkn0ExAslxHZxpWumQ4M2goZHDUh9vFsdjIL0OXtpftJdf9Sn9Synklmqvkgr rWiMiVZL3XMzC1ckksAdQ8E2zhSQ/HgGKuzdlFno5hIEAJTnT+Bg2B7lxEcg3CP9 jIQnzS7m0GPvQWudmAPooxclcMX4XaT1Z6dUyI8usB8zenQWpvwtwH66D2OnP5Hu vZLCIO8fc1k0JGbAKJeVwt9bXXEWytmv7Ec9f56waeneJoyZuYqbZEKvaQfbjtGO oXDY+GcKIQ7nYDcsPhx3FM6IGmR1MTCz -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:00 2025 by rpki-client