$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: ne6vQWkhOZpvKwU7g4Hgea825mev4tDk5SJwck24afg= Subject key identifier: 23:70:BF:B2:4B:1B:30:E7:80:05:00:05:42:49:9E:49:25:A8:B4:AF Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 06E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06D4 Signing time: Thu 12 Jun 2025 21:45:15 +0000 Manifest this update: Thu 12 Jun 2025 21:45:14 +0000 Manifest next update: Thu 19 Jun 2025 21:45:14 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: gh3SM7uMqg2beoiK1SCYtXDhb7mYe9f4rSkNXtemnQM=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1762 (0x6e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Jun 12 21:45:14 2025 GMT Not After : Jun 19 21:45:14 2025 GMT Subject: CN=684b4a6a-9389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7a:2a:c6:8c:04:b3:bd:20:d0:85:6c:1e:4a: db:52:c8:d9:0c:11:d3:4b:da:4b:20:c0:96:b8:42: 1a:eb:11:a4:71:ef:77:bc:c0:a8:c7:7d:bb:45:3e: 73:70:29:f0:a8:bb:9a:6e:f2:02:10:0f:c5:65:05: ca:e1:92:b2:49:a7:6c:ca:2e:54:30:13:a2:ac:f2: dc:f1:b3:e6:ee:3b:26:59:d1:4e:e4:31:b6:38:d8: da:0d:5d:ae:04:be:8f:f8:0e:09:64:08:9a:99:07: 1e:24:45:7b:6b:41:41:74:d3:ac:59:f3:96:21:d1: 89:2a:a9:b8:54:96:6a:b5:bc:b7:62:4e:36:9e:9f: 6f:e7:ba:97:5c:60:0d:59:57:a5:84:4f:69:45:5a: b0:5b:5a:2c:06:01:8d:de:b5:16:b6:6a:ab:e4:06: ef:a8:24:be:69:31:dc:41:0f:aa:f1:0a:ab:39:a9: 93:fd:11:ac:f3:54:1e:9c:13:a8:a3:d8:2a:83:ee: 1e:cc:53:64:3c:20:47:c9:82:06:2e:1a:bf:eb:87: 54:6e:e9:43:67:5a:2a:d9:db:bd:7b:f7:d3:b9:3a: f2:7c:e2:c9:ca:7e:07:0f:ad:1e:98:eb:d8:f6:f3: d7:f7:53:da:02:7c:b4:35:d4:1a:97:d8:01:52:60: aa:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:70:BF:B2:4B:1B:30:E7:80:05:00:05:42:49:9E:49:25:A8:B4:AF X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:30:45:80:6e:8f:c5:e8:2c:c9:44:2b:bf:11:81:3f:12:c0: f4:7d:94:8a:4e:47:ad:5c:61:fe:a4:b4:d5:13:34:93:11:b4: 5a:29:27:5e:2c:90:42:e2:f8:24:8c:d2:4e:12:2d:1c:ee:2e: fe:ef:93:b6:cb:08:29:d8:e0:76:1c:6d:76:56:00:15:16:37: ad:4d:5c:12:c9:3b:15:99:3a:34:5a:08:20:91:e1:0c:3e:fb: 77:22:4b:3f:b5:f9:a0:89:a6:85:e3:d7:b9:3e:69:0c:e5:ab: e5:8a:c6:d7:e2:60:ae:70:2d:2d:4e:89:de:25:f6:c2:62:26: 75:01:e1:96:65:82:46:75:10:ae:94:ed:5e:d7:72:a7:29:40: 54:6a:d7:b1:d9:8a:63:d2:e5:c8:e1:4b:33:9f:af:09:c9:75: e1:19:77:54:44:8d:6f:44:b3:04:3d:1a:b8:42:a4:82:c5:94: f1:42:03:0b:97:f9:53:7f:0c:0f:86:75:96:48:2c:d4:9b:fe: 94:52:2d:75:2c:a7:5d:58:cc:c6:c5:5e:61:3f:ad:a0:7d:a0: dc:88:9c:30:69:40:f8:80:66:25:ea:d9:5d:25:cc:b2:9a:a7: 88:d4:c8:eb:ab:a6:91:7f:43:d5:8e:f9:60:52:f6:2b:c8:60: 06:01:bf:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwNjEyMjE0NTE0WhcNMjUwNjE5MjE0NTE0WjAYMRYwFAYD VQQDEw02ODRiNGE2YS05Mzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3oqxowEs70g0IVsHkrbUsjZDBHTS9pLIMCWuEIa6xGkce93vMCox327RT5z cCnwqLuabvICEA/FZQXK4ZKySadsyi5UMBOirPLc8bPm7jsmWdFO5DG2ONjaDV2u BL6P+A4JZAiamQceJEV7a0FBdNOsWfOWIdGJKqm4VJZqtby3Yk42np9v57qXXGAN WVelhE9pRVqwW1osBgGN3rUWtmqr5AbvqCS+aTHcQQ+q8QqrOamT/RGs81QenBOo o9gqg+4ezFNkPCBHyYIGLhq/64dUbulDZ1oq2du9e/fTuTryfOLJyn4HD60emOvY 9vPX91PaAny0NdQal9gBUmCq1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNwv7JL GzDngAUABUJJnkklqLSvMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDMEWAbo/F6CzJRCu/EYE/EsD0fZSKTketXGH+pLTVEzSTEbRaKSde LJBC4vgkjNJOEi0c7i7+75O2ywgp2OB2HG12VgAVFjetTVwSyTsVmTo0WgggkeEM Pvt3Iks/tfmgiaaF49e5PmkM5avlisbX4mCucC0tToneJfbCYiZ1AeGWZYJGdRCu lO1e13KnKUBUatex2Ypj0uXI4Uszn68JyXXhGXdURI1vRLMEPRq4QqSCxZTxQgML l/lTfwwPhnWWSCzUm/6UUi11LKddWMzGxV5hP62gfaDciJwwaUD4gGYl6tldJcyy mqeI1Mjrq6aRf0PVjvlgUvYryGAGAb8K -----END CERTIFICATE-----Generated at Sat Jun 14 18:54:05 2025 by rpki-client