$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: T4IKwy97lGPcL7z8fWoxpR63aR4xelLljp177ClPeRA= Subject key identifier: 5C:23:50:B5:84:94:0C:BD:A8:7C:AD:80:A9:85:CB:15:3C:DE:7A:8C Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0A04 Signing time: Fri 20 Jun 2025 19:45:46 +0000 Manifest this update: Fri 20 Jun 2025 19:45:45 +0000 Manifest next update: Fri 27 Jun 2025 19:45:45 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: VnSE7gyKrpbpjrWpD+zgXzAJ4gweoN1wb0UVAqvahBE=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: vryPQgJZ9HPQvb4c/vnzkdnAafqVRFouOd+j23S6sMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 19:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Jun 20 19:45:45 2025 GMT Not After : Jun 27 19:45:45 2025 GMT Subject: CN=6855ba6a-d44d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3f:ec:4d:36:66:b9:0a:d4:fa:5b:4a:c2:90: 10:13:1d:75:a4:3e:06:4e:85:2e:1f:9c:0a:4f:85: 78:74:1e:2e:9f:ec:ac:0c:44:79:51:fa:a5:dc:b5: 63:a7:9c:3f:a7:76:ae:76:82:36:e4:40:ac:78:e6: 34:b8:41:eb:3d:42:77:d0:15:65:e8:c9:bb:7a:bf: 7d:a8:d8:95:db:3f:f2:aa:e8:bc:39:a4:8c:b5:b1: c0:85:11:c0:56:e6:a2:25:f1:5b:97:2f:6e:2d:dc: a1:63:88:58:3f:39:67:16:2a:5f:4a:22:7c:d7:75: 1b:63:17:f7:56:24:4f:62:43:3b:36:6c:4a:2d:af: ea:db:c0:c0:1e:f9:c0:79:ff:47:bf:95:a1:33:a3: c2:17:7f:63:01:ea:a5:a6:3d:4a:aa:ac:f7:40:8b: 24:4e:c6:e1:9a:e9:65:6e:ee:87:67:74:1c:db:72: 48:c0:86:0e:01:a2:e5:a0:ce:be:b2:9d:c6:59:38: 9e:97:37:39:0d:b7:d8:37:f4:f5:75:d0:db:25:06: 4b:76:3f:c9:1d:45:4b:cd:0f:94:2b:5e:0f:54:41: 05:dc:31:44:fc:a4:be:eb:97:6e:91:2e:0d:b2:31: 6f:fd:44:c2:e0:ce:0f:70:6c:44:a4:88:27:b2:d9: fe:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:23:50:B5:84:94:0C:BD:A8:7C:AD:80:A9:85:CB:15:3C:DE:7A:8C X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:1d:3c:dc:cb:02:ec:3b:1a:7f:e2:ce:1e:71:3c:90:e5:82: 26:a1:2c:53:e0:ea:e3:87:b6:16:41:14:aa:42:ea:6b:25:cb: 47:6f:38:c1:2e:1a:09:25:35:ea:5b:ab:fa:78:13:fd:59:80: f1:b4:4e:a7:a8:e4:d4:87:79:8f:4f:d0:e0:41:91:63:f8:cc: b3:2a:94:cf:54:29:f9:93:c0:e2:b2:05:7e:df:da:b6:9b:7d: 20:be:2c:98:d7:7f:04:a8:cd:02:80:b0:8c:c7:c4:01:aa:2b: 0e:4c:92:9d:89:13:8b:c4:27:24:7b:fd:37:48:fa:2e:a7:f6: df:d4:05:ea:58:7d:71:1c:df:f0:94:37:a0:0e:9b:bf:20:97: 0c:58:9e:41:08:5e:b3:3d:dd:d9:ec:be:f6:34:fd:6e:81:55: d9:eb:ba:21:2f:0b:f9:b7:18:f0:f4:73:97:ac:94:e7:1f:5d: 2e:92:7b:8e:68:44:2a:91:35:71:8c:42:ee:4b:7d:c0:48:68: 15:5e:b2:7d:77:39:69:ef:e2:73:5c:88:4b:3b:e1:0f:fa:d5: 52:4e:46:f4:cb:04:43:1b:df:2a:54:a6:8a:a3:24:f5:97:a3: 1b:c8:71:c8:e8:40:ca:9b:8d:ac:a1:7f:ac:ea:68:72:54:55: 4c:bb:4d:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjUwNjIwMTk0NTQ1WhcNMjUwNjI3MTk0NTQ1WjAYMRYwFAYD VQQDEw02ODU1YmE2YS1kNDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5D/sTTZmuQrU+ltKwpAQEx11pD4GToUuH5wKT4V4dB4un+ysDER5Ufql3LVj p5w/p3audoI25ECseOY0uEHrPUJ30BVl6Mm7er99qNiV2z/yqui8OaSMtbHAhRHA VuaiJfFbly9uLdyhY4hYPzlnFipfSiJ813UbYxf3ViRPYkM7NmxKLa/q28DAHvnA ef9Hv5WhM6PCF39jAeqlpj1Kqqz3QIskTsbhmullbu6HZ3Qc23JIwIYOAaLloM6+ sp3GWTielzc5DbfYN/T1ddDbJQZLdj/JHUVLzQ+UK14PVEEF3DFE/KS+65dukS4N sjFv/UTC4M4PcGxEpIgnstn+MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwjULWE lAy9qHytgKmFyxU83nqMMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtHTzcywLsOxp/4s4ecTyQ5YImoSxT4Orjh7YWQRSqQuprJctHbzjB LhoJJTXqW6v6eBP9WYDxtE6nqOTUh3mPT9DgQZFj+MyzKpTPVCn5k8DisgV+39q2 m30gviyY138EqM0CgLCMx8QBqisOTJKdiROLxCcke/03SPoup/bf1AXqWH1xHN/w lDegDpu/IJcMWJ5BCF6zPd3Z7L72NP1ugVXZ67ohLwv5txjw9HOXrJTnH10uknuO aEQqkTVxjELuS33ASGgVXrJ9dzlp7+JzXIhLO+EP+tVSTkb0ywRDG98qVKaKoyT1 l6MbyHHI6EDKm42soX+s6mhyVFVMu034 -----END CERTIFICATE-----Generated at Sun Jun 22 04:41:22 2025 by rpki-client