$ rpki-client -vvf rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft File: OPsGr2SfQA9ROZSTW-335JJwyKo.mft (raw, json) Hash identifier: iudVTecw6NKmeENZO/+QGbP0x2UNhd3wkNhuIPMxBdg= Subject key identifier: 14:8C:51:F9:DF:70:1C:C1:20:4C:71:4D:D7:1F:CE:27:AA:4A:DB:03 Authority key identifier: 38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA Certificate issuer: /CN=A9198267/serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Certificate serial: 0A2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft Manifest number: 0A1E Signing time: Sun 10 Aug 2025 19:48:50 +0000 Manifest this update: Sun 10 Aug 2025 19:48:50 +0000 Manifest next update: Sun 17 Aug 2025 19:48:50 +0000 Files and hashes: 1: OPsGr2SfQA9ROZSTW-335JJwyKo.crl (hash: 12XM7kXjUjbncmckLWFTHb/ztlEN3PAQorCFI+kZC2Q=) 2: 2F43EE7278CC11EAB69DAC75C4F9AE02.roa (hash: vryPQgJZ9HPQvb4c/vnzkdnAafqVRFouOd+j23S6sMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198267, serialNumber=38FB06AF649F400F513994935BEDF7E49270C8AA Validity Not Before: Aug 10 19:48:50 2025 GMT Not After : Aug 17 19:48:50 2025 GMT Subject: CN=6898f7a2-e39e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:61:9e:6d:6e:ac:0d:73:f2:e5:57:ee:94:ea: b2:e0:29:10:bc:8f:f3:88:8c:20:79:65:bc:8e:e7: 87:2d:0b:95:aa:a6:7c:e3:ff:95:02:06:ff:93:68: 32:24:64:81:65:b4:0d:9f:92:c5:c2:57:01:23:41: d3:b2:52:79:b7:5b:5f:75:b6:6d:0b:86:d1:4a:5b: 44:de:54:d6:c1:35:6e:b3:64:d5:c9:5e:50:2a:35: 7c:5e:ad:f7:a5:14:5d:d6:b1:12:dc:c2:49:96:0d: 10:8a:b7:33:5c:f8:d5:b2:64:b0:9f:1f:5c:f6:6c: 11:a2:3d:e4:64:de:6b:8e:11:3e:f2:70:b8:c8:1a: 86:24:15:b1:c1:75:7e:c2:4a:7f:25:9f:c6:af:16: f9:d8:a7:9b:d6:43:f8:79:65:4e:ce:6e:f3:18:07: 59:2e:27:2d:0c:c3:f7:ed:db:9c:ed:6e:ba:59:01: 75:50:ab:3b:91:45:24:df:03:de:be:01:9b:77:12: c2:87:37:4e:ee:df:1b:ae:e2:21:7c:70:fd:aa:dc: d5:66:b0:98:d9:ae:ee:de:ba:16:fc:93:8b:7b:86: 7a:48:c7:9e:b0:78:fc:ee:da:9a:9e:c9:95:63:5e: 6f:60:54:e4:3b:46:9e:9d:13:73:f3:90:3b:61:42: e4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8C:51:F9:DF:70:1C:C1:20:4C:71:4D:D7:1F:CE:27:AA:4A:DB:03 X509v3 Authority Key Identifier: keyid:38:FB:06:AF:64:9F:40:0F:51:39:94:93:5B:ED:F7:E4:92:70:C8:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OPsGr2SfQA9ROZSTW-335JJwyKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198267/02C86EAA78CB11EA820D7274C4F9AE02/OPsGr2SfQA9ROZSTW-335JJwyKo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e7:1c:a9:38:9c:4c:03:f0:27:39:19:49:2a:25:cd:eb:05: 0f:da:22:ef:aa:41:2a:79:16:c0:6f:c4:1c:c5:d4:26:72:4d: 3d:97:18:0a:1a:55:b3:b3:7c:cd:13:db:6c:df:ab:1b:7f:65: 6b:34:fc:d1:2a:de:92:f9:0b:41:72:e9:53:2c:d4:de:b8:c8: d7:d7:8b:47:c9:70:a5:68:f6:ef:5a:e6:74:f5:eb:d6:93:21: 5d:48:a5:09:a8:5e:f6:89:cc:94:ea:a6:d3:23:28:ff:af:db: 6e:83:ca:ee:05:61:0c:e7:ad:3b:83:4b:a0:08:c2:14:44:5a: 0f:b8:47:fb:98:7f:26:2e:cc:ef:3b:1e:42:c0:cd:ce:09:08: c8:6f:6f:05:a5:54:c7:84:d7:3b:f0:22:85:b2:90:19:e8:49: 67:52:08:3b:b1:55:c1:41:81:f4:4a:ea:1a:c7:85:39:80:e0: f9:65:cf:a8:b2:53:29:05:b9:e9:7e:6a:17:1e:d6:93:08:f3: 3a:64:32:59:c3:7c:b3:fe:40:fe:9a:14:48:b9:fd:05:bc:f3: a5:4d:e1:5f:9f:94:94:0b:a1:32:c1:f6:9d:6a:95:31:a6:ae: 96:72:43:75:1b:87:50:fc:45:9d:86:0b:f2:f4:68:a5:04:ee: 27:f4:10:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyNjcxMTAvBgNVBAUTKDM4RkIwNkFGNjQ5RjQwMEY1MTM5OTQ5MzVCRURGN0U0 OTI3MEM4QUEwHhcNMjUwODEwMTk0ODUwWhcNMjUwODE3MTk0ODUwWjAYMRYwFAYD VQQDEw02ODk4ZjdhMi1lMzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2GebW6sDXPy5VfulOqy4CkQvI/ziIwgeWW8jueHLQuVqqZ84/+VAgb/k2gy JGSBZbQNn5LFwlcBI0HTslJ5t1tfdbZtC4bRSltE3lTWwTVus2TVyV5QKjV8Xq33 pRRd1rES3MJJlg0QirczXPjVsmSwnx9c9mwRoj3kZN5rjhE+8nC4yBqGJBWxwXV+ wkp/JZ/Grxb52Keb1kP4eWVOzm7zGAdZLictDMP37duc7W66WQF1UKs7kUUk3wPe vgGbdxLChzdO7t8bruIhfHD9qtzVZrCY2a7u3roW/JOLe4Z6SMeesHj87tqansmV Y15vYFTkO0aenRNz85A7YULkVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSMUfnf cBzBIExxTdcfzieqStsDMB8GA1UdIwQYMBaAFDj7Bq9kn0APUTmUk1vt9+SScMiq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODI2Ny8wMkM4NkVBQTc4 Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFBOVJPWlNUVy0zMzVKSnd5 S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09Qc0dyMlNmUUE5Uk9aU1RXLTMzNUpKd3lLby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODI2Ny8wMkM4NkVBQTc4Q0IxMUVBODIwRDcyNzRDNEY5QUUwMi9PUHNHcjJTZlFB OVJPWlNUVy0zMzVKSnd5S28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc5xypOJxMA/AnORlJKiXN6wUP2iLvqkEqeRbAb8QcxdQmck09lxgK GlWzs3zNE9ts36sbf2VrNPzRKt6S+QtBculTLNTeuMjX14tHyXClaPbvWuZ09evW kyFdSKUJqF72icyU6qbTIyj/r9tug8ruBWEM5607g0ugCMIURFoPuEf7mH8mLszv Ox5CwM3OCQjIb28FpVTHhNc78CKFspAZ6ElnUgg7sVXBQYH0Suoax4U5gOD5Zc+o slMpBbnpfmoXHtaTCPM6ZDJZw3yz/kD+mhRIuf0FvPOlTeFfn5SUC6EywfadapUx pq6WckN1G4dQ/EWdhgvy9GilBO4n9BB6 -----END CERTIFICATE-----Generated at Mon Aug 11 04:27:06 2025 by rpki-client