$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft File: opeisJM4LkUIbKB87myXs2vkws0.mft (raw, json) Hash identifier: 6dCAk0DkNvSKZ4v1Ehv/zYf+oawBBl5Dk16QcQbGHgA= Subject key identifier: DD:35:E1:D8:17:69:A8:53:5A:B9:A4:47:D4:69:4A:97:A6:E8:A8:B0 Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 0739 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft Manifest number: 0732 Signing time: Mon 04 Aug 2025 22:08:08 +0000 Manifest this update: Mon 04 Aug 2025 22:08:08 +0000 Manifest next update: Mon 11 Aug 2025 22:08:08 +0000 Files and hashes: 1: opeisJM4LkUIbKB87myXs2vkws0.crl (hash: 1UoojxIifVxTzGmzJ1MFW1698JfWSluAG4XaPXa+BP8=) 2: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (hash: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 22:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82, serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Validity Not Before: Aug 4 22:08:08 2025 GMT Not After : Aug 11 22:08:08 2025 GMT Subject: CN=68912f48-2db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4e:6c:3a:66:74:54:e8:2a:ba:20:86:2e:4f: 40:48:ae:43:2d:fd:42:ac:52:8f:c3:e4:d0:0f:03: 1b:b1:ef:73:61:64:af:65:ca:26:ac:cf:b0:72:61: 5f:37:8b:d5:d0:6c:3c:46:fb:00:97:e6:48:7f:2e: 39:73:a8:5b:94:e5:d3:99:ab:e3:b2:a0:7a:d0:94: 13:3f:08:dd:5e:85:63:fd:a5:7c:4c:a9:3c:08:e4: d1:c0:12:22:c6:96:6e:66:60:0e:c4:c9:08:0e:0f: 54:5b:eb:b2:73:44:18:17:ec:dc:8d:65:dd:f5:6e: 0b:58:14:ea:1d:61:d7:24:c0:e8:8f:78:ef:58:d2: 1e:6f:82:c0:54:0e:f1:13:02:fb:8c:68:56:f8:62: 7a:6f:e6:9c:78:e2:d0:07:0b:96:70:af:f0:35:10: 59:c0:56:3d:67:47:89:48:b0:9c:37:61:39:7c:46: af:a4:35:e2:29:dc:88:93:a2:b6:ee:38:e7:30:3a: 01:ed:b7:20:e6:d1:5c:83:73:7a:b2:00:5f:3c:61: 24:37:a5:5c:28:a5:51:b2:60:c6:41:52:70:82:f6: 1f:76:d5:6a:28:77:2f:92:16:6e:34:5e:a9:b8:02: 3a:5e:af:b2:7a:d8:c1:ec:1d:51:34:01:95:52:35: d7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:35:E1:D8:17:69:A8:53:5A:B9:A4:47:D4:69:4A:97:A6:E8:A8:B0 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:42:24:46:12:c1:68:7d:34:ad:d1:55:2b:0d:ec:7c:df:a8: a7:24:e2:89:18:d7:dd:89:b2:f0:31:16:9d:d1:94:ea:58:e5: d5:10:5e:b8:51:f2:e1:44:7e:42:2a:c8:f1:24:ac:f1:ac:c4: 26:f6:19:a6:6e:ae:41:51:87:6a:1f:4f:74:fa:f2:b5:fb:31: 2d:7d:56:0c:e4:2f:d1:ed:a2:d1:e5:4d:c3:ad:c0:24:37:66: e9:24:03:8b:6a:8e:e5:b2:86:9e:2d:31:14:ac:fb:9f:69:e7: fe:2d:92:6a:f1:e1:76:9f:ed:2f:ec:8e:a2:48:3e:7d:6d:74: 9d:06:7b:b6:50:01:1f:73:ae:1a:f2:12:21:c7:47:5c:07:b3: 48:fb:bf:e7:1e:15:3a:10:09:30:3b:37:f5:3d:8d:f1:44:76: 62:3f:4d:3b:f7:b9:f8:01:d6:ed:0d:02:4c:f3:5c:41:c0:d8: fe:2c:53:d0:fe:ec:29:af:b7:ae:aa:c1:c5:ef:8d:eb:af:bc: ae:c8:38:ba:c7:91:aa:a0:4e:a4:f7:d0:f1:fc:08:84:71:c2: b6:ba:ce:41:a4:2b:91:e2:45:00:a2:d9:46:d6:9e:60:e6:81: cf:61:2f:25:8f:39:12:c2:54:df:c5:bb:ea:d5:55:3b:d5:13: 22:2e:f9:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUwODA0MjIwODA4WhcNMjUwODExMjIwODA4WjAYMRYwFAYD VQQDEw02ODkxMmY0OC0yZGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzU5sOmZ0VOgquiCGLk9ASK5DLf1CrFKPw+TQDwMbse9zYWSvZcomrM+wcmFf N4vV0Gw8RvsAl+ZIfy45c6hblOXTmavjsqB60JQTPwjdXoVj/aV8TKk8COTRwBIi xpZuZmAOxMkIDg9UW+uyc0QYF+zcjWXd9W4LWBTqHWHXJMDoj3jvWNIeb4LAVA7x EwL7jGhW+GJ6b+aceOLQBwuWcK/wNRBZwFY9Z0eJSLCcN2E5fEavpDXiKdyIk6K2 7jjnMDoB7bcg5tFcg3N6sgBfPGEkN6VcKKVRsmDGQVJwgvYfdtVqKHcvkhZuNF6p uAI6Xq+yetjB7B1RNAGVUjXX8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN014dgX aahTWrmkR9RpSpem6KiwMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUM4Mi8xOEREQkZEMjNERTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExr VUliS0I4N215WHMydmt3czAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0QiRGEsFofTSt0VUrDex836inJOKJGNfdibLwMRad0ZTqWOXVEF64 UfLhRH5CKsjxJKzxrMQm9hmmbq5BUYdqH090+vK1+zEtfVYM5C/R7aLR5U3DrcAk N2bpJAOLao7lsoaeLTEUrPufaef+LZJq8eF2n+0v7I6iSD59bXSdBnu2UAEfc64a 8hIhx0dcB7NI+7/nHhU6EAkwOzf1PY3xRHZiP00797n4AdbtDQJM81xBwNj+LFPQ /uwpr7euqsHF743rr7yuyDi6x5GqoE6k99Dx/AiEccK2us5BpCuR4kUAotlG1p5g 5oHPYS8ljzkSwlTfxbvq1VU71RMiLvnH -----END CERTIFICATE-----Generated at Wed Aug 6 09:40:31 2025 by rpki-client