$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: aO6JlQgpOQoBxgYJj8QcDe9dlsfphXKyA7MCL3OxX1Q= Subject key identifier: 32:53:29:F4:51:84:A1:A5:F8:43:5F:4A:96:F4:72:6F:8B:35:EF:78 Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 06FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06F0 Signing time: Wed 06 Aug 2025 22:22:22 +0000 Manifest this update: Wed 06 Aug 2025 22:22:21 +0000 Manifest next update: Wed 13 Aug 2025 22:22:21 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: VJG6YQ2j20xwE1MhG7pZt9hKkrlcgvYi66pDoZiXCY8=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:22:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Aug 6 22:22:21 2025 GMT Not After : Aug 13 22:22:21 2025 GMT Subject: CN=6893d59e-eee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cf:d6:7f:63:f5:7e:40:41:bd:4c:87:3f:80: 84:b6:aa:44:8b:ee:ac:b0:63:94:f2:b5:76:03:1e: ec:ca:ae:66:b2:19:c7:09:d3:2e:0d:10:53:3f:dd: cc:2a:cd:0f:56:71:82:10:8c:7f:f9:97:0b:7f:f4: b1:25:a3:e2:27:21:bf:42:e1:ef:88:5a:a4:cb:7c: a2:68:ca:82:12:0a:67:82:aa:2d:e1:59:ba:fb:17: 64:a1:fa:d3:ff:2d:47:c6:ef:82:e1:15:4d:b5:04: ff:b7:37:78:07:7e:18:12:c7:dd:58:fc:54:f1:bd: 44:b1:7d:fd:de:8b:6a:ac:2c:3a:48:1e:7d:97:bc: 39:c5:15:d1:d3:76:46:eb:e5:be:41:85:ef:46:cd: 56:e9:eb:51:e5:52:1a:fe:62:9e:7f:93:ab:fc:4b: 18:19:46:89:5c:b0:34:67:87:14:d4:58:b8:41:2b: c2:c9:3f:70:43:50:02:5d:85:a1:e5:2a:94:4f:9b: 42:0e:29:ed:30:bb:52:f2:dd:6c:29:13:4e:93:b8: 6d:ce:30:3c:2e:dc:87:41:4a:ac:91:3f:e1:51:e8: 6f:74:42:8b:65:8d:ae:b7:5d:fd:64:43:82:81:b7: 44:cd:09:15:44:79:5c:7c:20:a1:85:e3:d4:ce:83: 1f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:53:29:F4:51:84:A1:A5:F8:43:5F:4A:96:F4:72:6F:8B:35:EF:78 X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:ec:b1:d0:0e:01:6b:0d:6d:14:f9:7d:d3:97:5d:9b:6b:2d: cc:11:2c:da:2d:e4:36:d1:7e:8e:6e:85:69:a0:41:1a:69:40: dc:23:1b:4a:20:cb:ce:f4:9c:13:fd:c8:9a:6f:bc:78:a5:dc: 74:4e:16:c7:bc:3f:c4:3e:20:3e:df:df:73:c3:4b:3f:af:19: 33:e3:e7:8d:77:e8:a7:07:8c:e8:12:6f:c9:53:25:5e:12:7b: 7a:fa:93:a6:ed:4b:89:b1:ce:1f:aa:b1:37:b5:5f:0d:f8:3a: f1:f7:f8:30:2a:7a:ea:81:ba:93:1a:39:ab:55:45:b3:10:56: 9e:05:4a:b6:a7:ac:67:0b:e0:8c:f0:c4:a1:39:e3:0d:f8:f1: 14:db:b2:44:0d:77:d8:5f:2f:ff:87:b7:95:0d:3a:a1:ed:18: 0a:55:60:60:b4:80:c8:7d:1d:d1:25:ae:f9:24:d3:29:c4:09: 78:f9:c6:47:ff:98:bd:d3:cf:3a:67:fa:65:f2:51:f2:10:b3: 5a:96:5d:5a:5c:99:c3:15:6d:56:d6:5e:30:bf:ca:6a:cd:9b: 8a:bc:33:6d:8b:a5:fa:0c:22:a5:7d:fd:74:4e:db:26:0e:a6: 02:4c:67:96:5f:99:5e:c4:cd:54:20:3a:bc:b3:e5:a3:8c:1b: a8:29:cc:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwODA2MjIyMjIxWhcNMjUwODEzMjIyMjIxWjAYMRYwFAYD VQQDEw02ODkzZDU5ZS1lZWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoc/Wf2P1fkBBvUyHP4CEtqpEi+6ssGOU8rV2Ax7syq5mshnHCdMuDRBTP93M Ks0PVnGCEIx/+ZcLf/SxJaPiJyG/QuHviFqky3yiaMqCEgpngqot4Vm6+xdkofrT /y1Hxu+C4RVNtQT/tzd4B34YEsfdWPxU8b1EsX393otqrCw6SB59l7w5xRXR03ZG 6+W+QYXvRs1W6etR5VIa/mKef5Or/EsYGUaJXLA0Z4cU1Fi4QSvCyT9wQ1ACXYWh 5SqUT5tCDintMLtS8t1sKRNOk7htzjA8LtyHQUqskT/hUehvdEKLZY2ut139ZEOC gbdEzQkVRHlcfCChhePUzoMflQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJTKfRR hKGl+ENfSpb0cm+LNe94MB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ7LHQDgFrDW0U+X3Tl12bay3MESzaLeQ20X6OboVpoEEaaUDcIxtK IMvO9JwT/ciab7x4pdx0ThbHvD/EPiA+399zw0s/rxkz4+eNd+inB4zoEm/JUyVe Ent6+pOm7UuJsc4fqrE3tV8N+Drx9/gwKnrqgbqTGjmrVUWzEFaeBUq2p6xnC+CM 8MShOeMN+PEU27JEDXfYXy//h7eVDTqh7RgKVWBgtIDIfR3RJa75JNMpxAl4+cZH /5i90886Z/pl8lHyELNall1aXJnDFW1W1l4wv8pqzZuKvDNti6X6DCKlff10Ttsm DqYCTGeWX5lexM1UIDq8s+WjjBuoKcxX -----END CERTIFICATE-----Generated at Fri Aug 8 00:48:20 2025 by rpki-client