$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft File: Op4IQWhX5XRXw49Tbg1usjbf-2E.mft (raw, json) Hash identifier: mvJRWpSjQgU6YpoeleEqyIWbakHBKfVHcfhM3HdEbyU= Subject key identifier: 7D:B8:69:06:87:BC:BB:BF:6C:9F:3C:7B:CF:42:F6:B5:D8:5F:E6:A7 Authority key identifier: 3A:9E:08:41:68:57:E5:74:57:C3:8F:53:6E:0D:6E:B2:36:DF:FB:61 Certificate issuer: /CN=A9197CED/serialNumber=3A9E08416857E57457C38F536E0D6EB236DFFB61 Certificate serial: 3603 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Op4IQWhX5XRXw49Tbg1usjbf-2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft Manifest number: 3559 Signing time: Sat 14 Jun 2025 14:23:56 +0000 Manifest this update: Sat 14 Jun 2025 14:23:56 +0000 Manifest next update: Sat 21 Jun 2025 14:23:56 +0000 Files and hashes: 1: Op4IQWhX5XRXw49Tbg1usjbf-2E.crl (hash: /jZqf0cdJYFrZGhFWD9zEzCzSPxNnFdUv6fWFJ/xhQ4=) 2: 608B0526308511F0AD5E7760C4F9AE02.roa (hash: vLE1ive57Bl66BXPQleXFbzJWKlXtTM6jQsjzKxDkyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.crl rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Op4IQWhX5XRXw49Tbg1usjbf-2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:23:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13827 (0x3603) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CED, serialNumber=3A9E08416857E57457C38F536E0D6EB236DFFB61 Validity Not Before: Jun 14 14:23:56 2025 GMT Not After : Jun 21 14:23:56 2025 GMT Subject: CN=684d85fc-8263 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:90:25:27:c7:00:fe:53:ba:fa:09:82:23:97: db:f0:e0:a1:59:31:de:35:c0:24:9c:f3:fc:92:b2: 53:b4:da:16:92:12:c0:e7:9b:26:76:b8:4e:2d:0a: 85:dc:0a:9e:b1:fe:33:f4:80:93:20:51:69:55:07: 38:83:d3:92:56:61:3d:d7:01:b7:cf:95:26:e6:8a: 38:11:5f:e5:3f:5c:b2:8c:1a:e8:69:19:4a:7e:fb: 70:84:c5:d9:31:c5:5c:da:31:a8:e3:ed:99:27:60: eb:be:a4:2e:e5:9b:5a:6a:ab:32:5c:fa:bd:05:48: 71:b1:f3:57:a4:4e:a4:5a:e9:17:0e:b2:e0:ac:59: 5d:1d:a2:31:8f:3d:2f:55:b6:be:04:dd:e8:7e:4f: 8f:06:a3:85:87:d7:71:7f:af:e8:03:16:4a:35:7e: 5a:1e:16:40:2f:4d:d3:06:d6:bd:8c:c5:7a:a3:16: a5:1f:e6:9e:22:bf:81:b3:f1:a2:cd:ff:9d:6d:1a: 1e:44:81:58:d4:46:c0:73:bb:a3:d4:e2:f3:74:de: 0e:b9:2a:6d:9b:7d:2e:5f:76:04:71:32:2a:4e:ab: cf:db:1f:dd:e1:ce:13:fc:67:63:fd:45:c5:90:07: a5:18:33:12:08:ad:38:7d:ed:0d:ee:e8:67:7d:6c: 9b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B8:69:06:87:BC:BB:BF:6C:9F:3C:7B:CF:42:F6:B5:D8:5F:E6:A7 X509v3 Authority Key Identifier: keyid:3A:9E:08:41:68:57:E5:74:57:C3:8F:53:6E:0D:6E:B2:36:DF:FB:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Op4IQWhX5XRXw49Tbg1usjbf-2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CED/83F56DAC1D8411E2910689DA08B02CD2/Op4IQWhX5XRXw49Tbg1usjbf-2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a1:b1:9e:73:24:0d:c5:ce:db:00:15:60:9f:14:36:33:51: 01:bc:b4:45:6c:af:42:db:2b:ac:3d:89:9f:4b:f4:22:e2:92: 91:d1:f5:66:2e:da:80:33:26:73:0c:c1:41:d6:78:ba:40:66: f1:56:09:84:05:20:86:70:80:00:b1:07:5a:21:61:22:08:05: d7:a1:4b:7c:ed:c1:62:29:38:dc:31:51:e6:bc:c3:a3:71:22: aa:98:1a:0c:b6:71:45:44:87:11:71:b8:56:f8:61:d4:e9:a3: 4b:09:44:3a:c5:ff:66:42:92:43:39:f8:f7:27:0d:ac:8b:28: b6:74:be:b7:5d:db:7f:1d:0a:e5:d4:a5:ee:29:0e:ef:66:ad: 89:a6:80:3c:34:25:a7:ba:bf:32:db:7b:35:2b:97:aa:34:25: 54:eb:8d:8b:34:63:ae:27:76:bf:4c:79:d7:b6:23:c9:f5:12: f8:27:ef:11:ec:a3:97:28:5f:df:cd:90:2d:51:b5:59:44:f9: 63:6f:1e:f7:1f:89:65:85:2b:ae:25:cd:37:a0:bd:f8:31:4f: 11:cd:2a:80:26:f9:81:f2:87:10:3b:a1:e0:d4:0a:d9:9e:46: 53:0e:00:5d:a1:8d:7d:31:d5:f6:4f:74:97:7f:e4:1a:34:26: 6b:06:1e:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDRUQxMTAvBgNVBAUTKDNBOUUwODQxNjg1N0U1NzQ1N0MzOEY1MzZFMEQ2RUIy MzZERkZCNjEwHhcNMjUwNjE0MTQyMzU2WhcNMjUwNjIxMTQyMzU2WjAYMRYwFAYD VQQDEw02ODRkODVmYy04MjYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJAlJ8cA/lO6+gmCI5fb8OChWTHeNcAknPP8krJTtNoWkhLA55smdrhOLQqF 3Aqesf4z9ICTIFFpVQc4g9OSVmE91wG3z5Um5oo4EV/lP1yyjBroaRlKfvtwhMXZ McVc2jGo4+2ZJ2DrvqQu5ZtaaqsyXPq9BUhxsfNXpE6kWukXDrLgrFldHaIxjz0v Vba+BN3ofk+PBqOFh9dxf6/oAxZKNX5aHhZAL03TBta9jMV6oxalH+aeIr+Bs/Gi zf+dbRoeRIFY1EbAc7uj1OLzdN4OuSptm30uX3YEcTIqTqvP2x/d4c4T/Gdj/UXF kAelGDMSCK04fe0N7uhnfWyb7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH24aQaH vLu/bJ88e89C9rXYX+anMB8GA1UdIwQYMBaAFDqeCEFoV+V0V8OPU24NbrI23/th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NFRC84M0Y1NkRBQzFE ODQxMUUyOTEwNjg5REEwOEIwMkNEMi9PcDRJUVdoWDVYUlh3NDlUYmcxdXNqYmYt MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09wNElRV2hYNVhSWHc0OVRiZzF1c2piZi0yRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NFRC84M0Y1NkRBQzFEODQxMUUyOTEwNjg5REEwOEIwMkNEMi9PcDRJUVdoWDVY Ulh3NDlUYmcxdXNqYmYtMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLobGecyQNxc7bABVgnxQ2M1EBvLRFbK9C2yusPYmfS/Qi4pKR0fVm LtqAMyZzDMFB1ni6QGbxVgmEBSCGcIAAsQdaIWEiCAXXoUt87cFiKTjcMVHmvMOj cSKqmBoMtnFFRIcRcbhW+GHU6aNLCUQ6xf9mQpJDOfj3Jw2siyi2dL63Xdt/HQrl 1KXuKQ7vZq2JpoA8NCWnur8y23s1K5eqNCVU642LNGOuJ3a/THnXtiPJ9RL4J+8R 7KOXKF/fzZAtUbVZRPljbx73H4llhSuuJc03oL34MU8RzSqAJvmB8ocQO6Hg1ArZ nkZTDgBdoY19MdX2T3SXf+QaNCZrBh5X -----END CERTIFICATE-----Generated at Sat Jun 14 19:08:11 2025 by rpki-client