$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: edVpT7AVWq89LNfnbLzu5S4zqySOGFMNKO5gN1taQM4= Subject key identifier: 5B:21:B6:3C:69:AB:29:8D:91:AF:AF:A4:FB:9F:15:76:47:09:25:E0 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 06FF Signing time: Thu 24 Apr 2025 21:44:25 +0000 Manifest this update: Thu 24 Apr 2025 21:44:24 +0000 Manifest next update: Thu 01 May 2025 21:44:24 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: HFR7EaAAYObChnNVq3kHoVZ9Bp9AZZNQy+VLhG295hU=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Apr 24 21:44:24 2025 GMT Not After : May 1 21:44:24 2025 GMT Subject: CN=680ab0b8-ad48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e2:84:86:b1:54:70:7c:70:eb:9b:d1:a3:a4: 3b:a3:c8:a4:34:73:54:da:1b:86:20:9a:cb:98:0b: ee:ae:0a:7e:89:ed:21:85:ef:d1:18:c4:e4:2e:c2: a1:13:87:4f:80:95:4d:27:f4:42:07:aa:d7:85:cb: 08:11:a1:20:7d:ca:9d:f2:d1:ef:f8:a4:07:6d:a2: be:a3:db:8f:15:6b:ca:fd:c1:3c:ef:c1:1a:fa:55: 1b:91:d6:af:5a:b9:cf:ff:30:48:5f:1d:b3:89:ab: 7e:ef:b0:41:57:af:46:2b:8e:11:59:7e:53:dc:dd: 32:89:d0:ab:bc:c1:8d:7d:d4:c2:02:5d:cf:3c:87: 62:d7:46:1c:58:60:b7:95:0a:35:b1:e4:d5:e3:ae: be:62:42:3f:b0:44:64:26:69:9e:b4:1e:03:58:76: 8f:ad:79:57:78:f3:7e:56:68:a8:48:bd:31:50:7b: 55:c7:d1:20:b6:29:a5:cd:f0:2e:e8:dc:7f:a7:a4: 12:08:36:3a:4f:7b:37:0f:64:a3:a8:e8:76:6b:dc: 7e:8b:7c:91:c0:c9:8e:b5:01:a4:28:c2:26:67:fb: 3a:38:fe:b3:9d:10:81:8f:94:3f:9b:04:3a:a0:f3: 2b:17:fb:2e:82:45:cc:1a:34:f7:e2:60:12:fc:54: 43:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:21:B6:3C:69:AB:29:8D:91:AF:AF:A4:FB:9F:15:76:47:09:25:E0 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:aa:28:b1:08:97:72:4f:c0:73:9d:93:00:a6:11:b1:22:b5: 94:52:bb:d6:4f:bb:74:d7:64:7a:d7:cd:96:fa:2f:28:e0:05: 49:75:58:30:69:a6:9d:5e:0d:2c:74:19:e1:41:a9:c4:2d:f4: a7:0d:43:35:88:76:7c:33:89:3c:f8:20:4a:21:89:1d:3b:ae: a3:65:61:18:41:a7:0d:a2:ec:0d:a6:a6:3f:0d:a1:90:8f:51: 52:b7:7a:80:a0:04:fc:83:a1:47:5c:9d:a6:86:66:09:2b:98: 89:c9:3f:8b:24:07:07:22:58:cc:6c:76:e1:da:d9:da:60:e9: 0d:34:9e:73:e1:ab:0a:6b:d9:5e:06:11:bf:df:b5:85:62:30: 9a:6c:12:cd:d6:c3:a0:c0:8a:4d:10:46:3a:b5:e7:a3:d4:11: 58:71:04:72:c4:df:1d:41:65:55:35:2f:8a:d5:b1:99:e0:fb: 8b:85:5a:cc:b7:ec:aa:c7:69:dd:3e:26:f5:eb:3f:70:a4:d7: 7c:0b:fc:d1:0d:3b:e8:2f:13:da:51:99:24:ee:a0:4a:7a:9e: c1:06:da:30:2f:70:70:5a:51:5d:2b:c2:76:6b:a3:97:ad:04: 30:bf:e5:a9:88:6f:5f:d1:cc:be:bb:fc:75:21:4d:96:88:9a: 64:99:29:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUwNDI0MjE0NDI0WhcNMjUwNTAxMjE0NDI0WjAYMRYwFAYD VQQDEw02ODBhYjBiOC1hZDQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+KEhrFUcHxw65vRo6Q7o8ikNHNU2huGIJrLmAvurgp+ie0hhe/RGMTkLsKh E4dPgJVNJ/RCB6rXhcsIEaEgfcqd8tHv+KQHbaK+o9uPFWvK/cE878Ea+lUbkdav WrnP/zBIXx2ziat+77BBV69GK44RWX5T3N0yidCrvMGNfdTCAl3PPIdi10YcWGC3 lQo1seTV466+YkI/sERkJmmetB4DWHaPrXlXePN+VmioSL0xUHtVx9EgtimlzfAu 6Nx/p6QSCDY6T3s3D2SjqOh2a9x+i3yRwMmOtQGkKMImZ/s6OP6znRCBj5Q/mwQ6 oPMrF/sugkXMGjT34mAS/FRDwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFshtjxp qymNka+vpPufFXZHCSXgMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2qiixCJdyT8BznZMAphGxIrWUUrvWT7t012R6182W+i8o4AVJdVgw aaadXg0sdBnhQanELfSnDUM1iHZ8M4k8+CBKIYkdO66jZWEYQacNouwNpqY/DaGQ j1FSt3qAoAT8g6FHXJ2mhmYJK5iJyT+LJAcHIljMbHbh2tnaYOkNNJ5z4asKa9le BhG/37WFYjCabBLN1sOgwIpNEEY6teej1BFYcQRyxN8dQWVVNS+K1bGZ4PuLhVrM t+yqx2ndPib16z9wpNd8C/zRDTvoLxPaUZkk7qBKep7BBtowL3BwWlFdK8J2a6OX rQQwv+WpiG9f0cy+u/x1IU2WiJpkmSnR -----END CERTIFICATE-----Generated at Sat Apr 26 04:21:00 2025 by rpki-client