$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft File: opgFnwZTffjAi4klX3lZQaMcGAA.mft (raw, json) Hash identifier: hqTlD9MhwGNoN46hbdrw9oP2Y3mhOsyVO27sd17FBTw= Subject key identifier: ED:FE:8B:96:29:A7:23:2B:53:AD:C9:87:2E:DE:36:CB:2B:EF:8F:C5 Authority key identifier: A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 Certificate issuer: /CN=A9144CB7/serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft Manifest number: 44 Signing time: Fri 13 Jun 2025 06:18:45 +0000 Manifest this update: Fri 13 Jun 2025 06:18:45 +0000 Manifest next update: Fri 20 Jun 2025 06:18:45 +0000 Files and hashes: 1: opgFnwZTffjAi4klX3lZQaMcGAA.crl (hash: drzuRByVdc4IpMgKednEy8pynMhf+6C23vNx/vtxMEY=) 2: E8716FD4EA3511EF89116C52C4F9AE02.roa (hash: /ib2O66BEz/+EIpjbYLfsm9ZEc6Tr2GDRN2PvAJwp9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CB7, serialNumber=A298059F06537DF8C08B89255F795941A31C1800 Validity Not Before: Jun 13 06:18:45 2025 GMT Not After : Jun 20 06:18:45 2025 GMT Subject: CN=684bc2c5-6aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:55:8e:17:c8:e5:2e:09:75:62:6d:fd:44:62: 74:f6:15:7d:d5:85:d2:13:54:e5:53:4c:05:b0:be: d9:97:d5:b9:09:9f:06:24:f1:80:b4:01:12:5e:3c: a7:90:be:31:4d:5b:90:b0:f6:2e:c8:1b:92:c6:9a: 47:e7:3b:01:cd:41:73:c2:7d:cf:9e:80:eb:20:22: 9b:aa:19:5c:01:83:d0:40:85:2a:25:c2:21:14:27: 73:bc:1c:1b:cc:61:5f:30:35:f6:1f:1e:0f:5d:f5: 2e:0f:49:92:06:e7:7f:ce:2c:b8:30:09:60:90:04: f9:60:39:ae:7b:b9:c2:2c:1f:fe:82:6d:ac:21:b7: be:eb:6e:99:0d:8d:3e:3f:40:55:c3:bb:43:3d:95: 84:99:b7:ac:65:d1:82:f0:fa:cb:1b:da:52:54:6f: 08:ee:af:e0:8d:4b:cd:5d:fe:5a:b6:7e:a2:c3:6b: 7d:54:2b:db:cc:dc:f9:67:ce:4c:44:21:55:6b:1f: 3c:b9:30:86:6d:a6:4d:2e:1f:84:be:e2:11:3b:fc: 4e:45:a9:70:7d:af:5b:e9:ce:e1:1c:18:48:3b:70: 66:1d:15:e9:14:34:db:34:8d:f5:ff:80:17:cf:ca: ab:4a:49:41:cb:59:7c:34:61:f6:91:56:99:46:f8: b8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:FE:8B:96:29:A7:23:2B:53:AD:C9:87:2E:DE:36:CB:2B:EF:8F:C5 X509v3 Authority Key Identifier: keyid:A2:98:05:9F:06:53:7D:F8:C0:8B:89:25:5F:79:59:41:A3:1C:18:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opgFnwZTffjAi4klX3lZQaMcGAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CB7/8C93F76CE17611EFB7981B19C4F9AE02/opgFnwZTffjAi4klX3lZQaMcGAA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:eb:20:43:b5:54:83:b9:08:4e:78:c7:aa:fd:1d:e4:e2:79: 97:0f:8e:24:5c:61:cd:5e:e3:1e:96:0e:da:dd:a4:0e:0a:e2: b9:a4:9e:10:98:40:5b:fd:9c:76:38:e8:6e:83:7d:ba:d0:4d: 7b:d3:31:ad:3a:06:d2:e4:0c:1e:72:01:23:c4:1e:38:6a:f9: ae:8b:fd:5a:11:44:bc:9f:3a:67:4e:2a:a6:be:8e:c5:e1:6b: 08:da:b4:91:8e:4d:c1:86:02:e9:4d:ba:1c:1c:7b:7f:89:e5: 2e:d5:68:73:13:30:b7:ea:8f:71:af:da:fa:1d:67:a5:31:79: 6a:4b:b9:33:00:c8:c5:d5:07:84:82:5b:37:7e:a8:96:0a:da: ef:cf:9d:65:85:37:21:4d:c1:6f:51:c9:e3:b3:60:17:04:0d: a6:dd:40:94:70:be:c2:16:d5:67:8b:b9:ed:28:9f:6a:b5:76: 91:0a:f0:32:d6:c4:cf:88:94:65:75:4f:83:8d:05:8b:80:cb: 65:24:96:92:89:0f:4c:77:fd:eb:38:66:da:c7:5f:9e:bd:64: 1b:71:ee:f2:a4:aa:47:28:2b:d3:ef:a5:3f:c1:f0:e6:ec:f5: b0:9e:aa:4a:80:6e:be:e9:70:3f:1d:eb:32:38:4c:6a:2d:c0: 7c:07:39:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NENCNzExMC8GA1UEBRMoQTI5ODA1OUYwNjUzN0RGOEMwOEI4OTI1NUY3OTU5NDFB MzFDMTgwMDAeFw0yNTA2MTMwNjE4NDVaFw0yNTA2MjAwNjE4NDVaMBgxFjAUBgNV BAMTDTY4NGJjMmM1LTZhYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxVY4XyOUuCXVibf1EYnT2FX3VhdITVOVTTAWwvtmX1bkJnwYk8YC0ARJePKeQ vjFNW5Cw9i7IG5LGmkfnOwHNQXPCfc+egOsgIpuqGVwBg9BAhSolwiEUJ3O8HBvM YV8wNfYfHg9d9S4PSZIG53/OLLgwCWCQBPlgOa57ucIsH/6Cbawht77rbpkNjT4/ QFXDu0M9lYSZt6xl0YLw+ssb2lJUbwjur+CNS81d/lq2fqLDa31UK9vM3PlnzkxE IVVrHzy5MIZtpk0uH4S+4hE7/E5FqXB9r1vpzuEcGEg7cGYdFekUNNs0jfX/gBfP yqtKSUHLWXw0YfaRVplG+LiXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7f6Llimn IytTrcmHLt42yyvvj8UwHwYDVR0jBBgwFoAUopgFnwZTffjAi4klX3lZQaMcGAAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0Q0I3LzhDOTNGNzZDRTE3 NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZqQWk0a2xYM2xaUWFNY0dB QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb3BnRm53WlRmZmpBaTRrbFgzbFpRYU1jR0FBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 Q0I3LzhDOTNGNzZDRTE3NjExRUZCNzk4MUIxOUM0RjlBRTAyL29wZ0Zud1pUZmZq QWk0a2xYM2xaUWFNY0dBQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALrrIEO1VIO5CE54x6r9HeTieZcPjiRcYc1e4x6WDtrdpA4K4rmknhCY QFv9nHY46G6DfbrQTXvTMa06BtLkDB5yASPEHjhq+a6L/VoRRLyfOmdOKqa+jsXh awjatJGOTcGGAulNuhwce3+J5S7VaHMTMLfqj3Gv2vodZ6UxeWpLuTMAyMXVB4SC Wzd+qJYK2u/PnWWFNyFNwW9RyeOzYBcEDabdQJRwvsIW1WeLue0on2q1dpEK8DLW xM+IlGV1T4ONBYuAy2UklpKJD0x3/es4ZtrHX569ZBtx7vKkqkcoK9PvpT/B8Obs 9bCeqkqAbr7pcD8d6zI4TGotwHwHOa8= -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:16 2025 by rpki-client