$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: 1cKZFmrhNBM6qKQCC4k0J1D4MKxsNgUBH8IjRVe8XjM= Subject key identifier: 7C:D7:8A:F4:4C:74:45:24:B3:06:BC:88:89:B6:5D:08:A5:23:B0:76 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 8D Signing time: Mon 03 Nov 2025 06:32:54 +0000 Manifest this update: Mon 03 Nov 2025 06:32:54 +0000 Manifest next update: Mon 10 Nov 2025 06:32:54 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: baqg3r2tc1qBzUZpiVP/h7bnxL27C2p6WD7HcHwtYKg=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) 3: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Nov 3 06:32:54 2025 GMT Not After : Nov 10 06:32:54 2025 GMT Subject: CN=69084c96-66a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:44:53:06:d1:98:cc:f0:34:90:a7:7a:48:dd: 25:ca:19:66:ee:9b:d2:88:f4:56:ab:e2:82:18:99: 3c:68:46:cb:56:18:30:c9:66:6a:d6:63:21:0a:ab: 9f:14:10:e4:f2:7a:75:12:62:53:8b:ee:ed:71:b6: e5:80:35:a2:34:c7:67:38:3c:d8:50:34:78:c9:2d: 8f:f8:4f:2e:5b:3a:56:c0:db:5e:95:d3:d4:2a:ea: d2:83:83:ad:1c:9a:f9:42:8e:41:9e:e0:09:79:73: bf:ee:35:8f:c2:c3:a7:01:57:35:ce:9b:0f:63:d1: f5:a6:cf:d6:d5:15:d3:9f:9b:4c:ff:c9:4a:4e:0c: b1:44:ef:65:0e:6b:32:bf:85:7a:f4:fc:9e:32:e1: a1:ba:3d:2e:dc:d9:ea:8a:6b:e5:66:40:62:22:63: 01:e5:0f:85:5c:4a:bc:fc:f2:67:bd:97:6b:97:5c: 86:bb:1d:bb:de:b3:70:66:3c:7a:a4:b0:61:23:d3: cb:e0:27:ee:af:7d:ad:d2:0e:d2:79:b2:f3:f5:10: 86:a6:86:aa:5d:64:33:70:23:e7:bd:95:0d:d7:5a: 47:32:38:5e:ef:c8:de:30:be:80:59:cb:12:bf:0d: b0:02:90:cf:ed:ef:54:4d:3f:79:5d:8a:55:b4:ed: 64:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:D7:8A:F4:4C:74:45:24:B3:06:BC:88:89:B6:5D:08:A5:23:B0:76 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:9a:30:56:cc:ec:ea:5a:c2:12:e4:e0:83:f5:bb:ca:35:3b: de:aa:dd:22:9e:68:00:85:5b:b4:5a:eb:16:3f:03:da:d7:24: c4:21:74:dc:f3:42:e5:c1:16:76:4a:74:be:a0:27:51:65:39: 35:fc:97:e2:23:20:d9:80:01:d9:43:c8:93:9f:db:2e:0f:0a: f3:ae:17:f6:b9:b9:32:bd:75:66:41:3f:56:7a:42:dc:ca:0c: 37:a1:8c:7d:fd:e8:bd:90:71:b8:32:7e:5b:e1:bb:ac:2c:dd: 95:a6:66:20:2a:b0:94:cf:67:71:b2:74:af:23:3f:3c:2b:d0: 78:b3:93:65:61:6b:83:0b:4e:3d:5b:e1:0a:3b:e0:72:06:01: d8:c6:fd:c8:c0:86:d8:cf:cc:b5:19:aa:7e:30:9a:6a:aa:81: a7:41:7f:c3:b0:dc:d6:d1:f7:d7:a8:68:39:82:15:11:4a:fe: 38:ea:69:74:08:6b:42:cd:1c:9a:fe:16:34:2b:96:d0:aa:fd: 21:27:43:87:0b:c3:21:10:78:88:66:7f:b9:32:76:a8:db:79: fd:8d:b4:12:ec:0e:90:6e:d5:63:6a:e7:00:39:50:4b:e2:99: 23:82:ff:f3:6b:16:cb:05:6a:ed:e4:d9:b8:16:b4:bf:2d:b5: 90:d2:b7:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRDQjcxMTAvBgNVBAUTKEEyOTgwNTlGMDY1MzdERjhDMDhCODkyNTVGNzk1OTQx QTMxQzE4MDAwHhcNMjUxMTAzMDYzMjU0WhcNMjUxMTEwMDYzMjU0WjAYMRYwFAYD VQQDEw02OTA4NGM5Ni02NmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kRTBtGYzPA0kKd6SN0lyhlm7pvSiPRWq+KCGJk8aEbLVhgwyWZq1mMhCquf FBDk8np1EmJTi+7tcbblgDWiNMdnODzYUDR4yS2P+E8uWzpWwNteldPUKurSg4Ot HJr5Qo5BnuAJeXO/7jWPwsOnAVc1zpsPY9H1ps/W1RXTn5tM/8lKTgyxRO9lDmsy v4V69PyeMuGhuj0u3NnqimvlZkBiImMB5Q+FXEq8/PJnvZdrl1yGux273rNwZjx6 pLBhI9PL4Cfur32t0g7SebLz9RCGpoaqXWQzcCPnvZUN11pHMjhe78jeML6AWcsS vw2wApDP7e9UTT95XYpVtO1kxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzXivRM dEUkswa8iIm2XQilI7B2MB8GA1UdIwQYMBaAFKKYBZ8GU334wIuJJV95WUGjHBgA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NENCNy84QzkzRjc2Q0Ux NzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZmakFpNGtsWDNsWlFhTWNH QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENCNy84QzkzRjc2Q0UxNzYxMUVGQjc5ODFCMTlDNEY5QUUwMi9vcGdGbndaVGZm akFpNGtsWDNsWlFhTWNHQUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKmjBWzOzqWsIS5OCD9bvKNTveqt0inmgAhVu0WusWPwPa1yTEIXTc 80LlwRZ2SnS+oCdRZTk1/JfiIyDZgAHZQ8iTn9suDwrzrhf2ubkyvXVmQT9WekLc ygw3oYx9/ei9kHG4Mn5b4busLN2VpmYgKrCUz2dxsnSvIz88K9B4s5NlYWuDC049 W+EKO+ByBgHYxv3IwIbYz8y1Gap+MJpqqoGnQX/DsNzW0ffXqGg5ghURSv446ml0 CGtCzRya/hY0K5bQqv0hJ0OHC8MhEHiIZn+5Mnao23n9jbQS7A6QbtVjaucAOVBL 4pkjgv/zaxbLBWrt5Nm4FrS/LbWQ0rdh -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:59 2025 by rpki-client