$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: fLx7udFBRf1xBgWUc5Gzd3ij6DoXh1mPQDs3LNPwX04= Subject key identifier: E1:16:9B:E1:19:A9:C8:57:70:4D:8C:F8:F8:09:72:0A:C8:B3:28:8C Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 62 Signing time: Sat 09 Aug 2025 07:33:16 +0000 Manifest this update: Sat 09 Aug 2025 07:33:15 +0000 Manifest next update: Sat 16 Aug 2025 07:33:15 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: 4ov6x56+l2P+FYrNIp8UMDi8Lplgz+I7tcmCA++TmFQ=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) 3: 903E0F1652BD11F0A9261F57C4F9AE02.roa (hash: wehugKaizIxEhZtf3yJWa3v9WBxQforOS0s0qf27ViE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Aug 9 07:33:15 2025 GMT Not After : Aug 16 07:33:15 2025 GMT Subject: CN=6896f9bb-7471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:87:7d:24:20:b1:a4:bc:50:e3:a6:28:eb:f1: 19:ac:59:a8:4c:9a:7d:fe:99:57:3d:3a:8c:8a:62: 3d:1a:d3:da:d4:b3:8a:b6:71:4d:19:5e:ef:41:10: 2e:28:be:5c:aa:a8:31:49:bf:34:3e:15:39:56:ca: 2c:a0:0b:c7:b8:46:8b:43:35:db:9c:41:bb:f2:b8: e7:09:6f:89:20:39:7f:ab:96:56:c8:57:9d:30:36: fa:32:7c:bf:59:87:2a:da:08:4b:83:33:05:00:2a: 0e:3e:4c:b7:19:fb:ba:4e:16:00:0b:7f:e3:ca:99: dc:73:8d:22:98:bc:7b:81:aa:4d:4e:79:f8:7f:c2: 8f:a1:5b:b6:da:bf:27:1e:a1:87:bc:55:72:57:8d: c1:1e:62:b7:f0:61:99:ee:c5:57:e8:d0:e8:0c:c8: 47:d4:40:42:a5:ac:7b:28:c6:36:8e:3d:ba:ca:de: 75:d4:8e:50:f1:7a:59:34:aa:43:61:d6:c1:3a:30: 0a:e2:15:6b:6a:8c:29:01:76:2e:98:f3:11:20:66: 1a:25:18:ae:61:f1:7e:ed:bf:47:95:7a:10:6f:21: 47:ee:f5:80:10:45:97:26:aa:61:4a:11:ca:22:67: b7:51:fb:2d:f3:f9:e9:bb:50:ec:71:2b:db:77:af: bf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:16:9B:E1:19:A9:C8:57:70:4D:8C:F8:F8:09:72:0A:C8:B3:28:8C X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:06:45:c1:5d:ed:64:a3:8c:6b:39:32:cd:c0:6d:a3:15:b4: 35:32:fc:f2:c2:fd:bd:d6:f2:6d:1e:06:bb:d1:be:8d:6a:4a: 6e:c1:2a:b3:59:82:d4:f1:82:32:ed:de:5f:2f:fc:0a:78:ea: ce:42:80:6c:6b:d2:11:31:15:fa:26:e6:19:c3:1b:41:ef:f9: f0:82:ae:ca:18:c0:3b:03:da:af:aa:44:36:70:b8:f5:66:7e: 61:03:b0:f2:5d:e6:57:e3:cc:66:0e:1c:1b:9a:04:93:ef:86: 06:36:e9:c6:63:5e:a7:c2:ed:14:a7:11:ef:c5:13:8a:3c:2b: 20:45:d1:2b:e6:42:47:96:d1:53:b6:1c:0a:e6:1e:02:4f:c0: 3f:34:bf:49:fd:8b:a8:99:63:6c:0a:f2:d3:bd:fc:a8:6d:73: a7:ed:35:b5:2a:5a:f6:43:7b:ab:df:a7:3a:c0:74:09:5e:32: ba:d9:90:de:96:96:78:f3:6c:17:9f:ed:cf:e6:76:43:6d:8a: 75:60:e1:52:79:d0:af:15:0d:d0:74:5c:3c:f9:e4:77:f2:78: 81:65:1a:c3:37:bc:b2:23:8d:77:d9:f0:61:64:b4:75:4e:2c: 59:e4:98:e1:e4:33:5f:73:ce:6e:97:c8:8b:30:fa:f5:e7:b8: ce:09:f0:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NENCNzExMC8GA1UEBRMoQTI5ODA1OUYwNjUzN0RGOEMwOEI4OTI1NUY3OTU5NDFB MzFDMTgwMDAeFw0yNTA4MDkwNzMzMTVaFw0yNTA4MTYwNzMzMTVaMBgxFjAUBgNV BAMTDTY4OTZmOWJiLTc0NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2h30kILGkvFDjpijr8RmsWahMmn3+mVc9OoyKYj0a09rUs4q2cU0ZXu9BEC4o vlyqqDFJvzQ+FTlWyiygC8e4RotDNducQbvyuOcJb4kgOX+rllbIV50wNvoyfL9Z hyraCEuDMwUAKg4+TLcZ+7pOFgALf+PKmdxzjSKYvHuBqk1Oefh/wo+hW7bavyce oYe8VXJXjcEeYrfwYZnuxVfo0OgMyEfUQEKlrHsoxjaOPbrK3nXUjlDxelk0qkNh 1sE6MAriFWtqjCkBdi6Y8xEgZholGK5h8X7tv0eVehBvIUfu9YAQRZcmqmFKEcoi Z7dR+y3z+em7UOxxK9t3r78HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4Rab4Rmp yFdwTYz4+AlyCsizKIwwHwYDVR0jBBgwFoAUopgFnwZTffjAi4klX3lZQaMcGAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0Q0I3LzhDOTNGNzZDRTE3 NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BnRm53WlRmZmpBaTRrbFgzbFpRYU1jR0FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 Q0I3LzhDOTNGNzZDRTE3NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZq QWk0a2xYM2xaUWFNY0dBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGQGRcFd7WSjjGs5Ms3AbaMVtDUy/PLC/b3W8m0eBrvRvo1qSm7BKrNZ gtTxgjLt3l8v/Ap46s5CgGxr0hExFfom5hnDG0Hv+fCCrsoYwDsD2q+qRDZwuPVm fmEDsPJd5lfjzGYOHBuaBJPvhgY26cZjXqfC7RSnEe/FE4o8KyBF0SvmQkeW0VO2 HArmHgJPwD80v0n9i6iZY2wK8tO9/Khtc6ftNbUqWvZDe6vfpzrAdAleMrrZkN6W lnjzbBef7c/mdkNtinVg4VJ50K8VDdB0XDz55HfyeIFlGsM3vLIjjXfZ8GFktHVO LFnkmOHkM19zzm6XyIsw+vXnuM4J8BE= -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:04 2025 by rpki-client