$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: 0OEY7+i1XBXFe27YXrZNWkHF5ePJjmGNGc+bFViZ2ws= Subject key identifier: 7B:62:56:48:C5:1E:7C:CD:B2:CA:13:6D:63:56:87:F3:8F:F9:9E:EA Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06F8 Signing time: Fri 22 Aug 2025 22:08:23 +0000 Manifest this update: Fri 22 Aug 2025 22:08:22 +0000 Manifest next update: Fri 29 Aug 2025 22:08:22 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: QLC1R38nbpTkYylaAbjxuQj8F5f0FD9ffU9Zx04lPx8=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Aug 22 22:08:22 2025 GMT Not After : Aug 29 22:08:22 2025 GMT Subject: CN=68a8ea56-b172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:61:c1:79:c1:7e:b6:fa:3a:85:e2:00:a4:cc: 0d:50:c3:83:4c:ba:0d:47:b5:da:13:b4:1c:ae:85: e2:6b:d0:b8:02:da:20:fc:2e:ae:fa:01:9c:e4:a8: 3d:36:c1:71:e4:8c:03:60:00:93:3f:5c:80:b9:0f: 8a:74:72:5c:dd:28:21:11:19:66:e4:d9:81:d4:81: 5e:d6:e5:2d:96:60:79:59:04:57:1f:a6:9e:25:c7: 89:e8:90:a4:b3:c0:53:52:84:0d:9f:d2:2b:6b:5b: 7b:07:95:fe:18:38:fd:d8:cf:fd:e4:f0:68:35:aa: 86:06:47:09:eb:94:37:7d:d2:2d:51:dd:5e:30:8a: 44:3d:55:fc:0a:66:79:4c:e6:47:05:46:08:e3:56: 77:f4:d8:bc:d0:02:1b:80:3a:c0:e0:ec:68:21:a0: e6:8e:ae:27:e3:4e:09:46:2e:51:e8:c1:80:25:94: a2:34:c3:0a:75:54:e2:a0:73:9f:d3:b1:03:1b:a9: 09:ea:a9:24:52:11:ce:a0:70:78:c5:80:cd:10:ae: e5:81:96:fc:df:1a:7c:cb:3d:f0:59:db:e0:97:26: dd:9c:5e:49:d8:af:f5:e5:cf:2f:b5:9a:e1:d0:2a: 24:50:3d:bb:47:c4:a7:5f:93:6b:3c:87:68:38:d2: 70:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:62:56:48:C5:1E:7C:CD:B2:CA:13:6D:63:56:87:F3:8F:F9:9E:EA X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:82:dd:1a:78:f3:2c:37:07:8d:1c:9a:5a:40:24:7b:2b:ef: 82:cf:20:6c:6c:df:97:20:d2:a3:25:96:3e:36:f8:68:77:00: 96:3b:a1:a5:95:73:de:17:66:14:98:0b:bd:73:a5:ba:b9:37: 0d:91:03:c8:64:1b:71:b0:68:ed:15:e7:92:c5:41:00:77:91: 07:77:57:51:94:c7:8e:d5:bb:f1:cc:ed:fd:b4:cb:97:48:7b: 40:67:21:1a:2b:0e:89:a8:de:d5:79:86:17:cd:99:de:f7:67: 51:22:46:08:e7:ec:b5:c1:c3:c1:ad:0a:07:95:2f:43:c3:8e: 7b:7b:c3:53:5c:27:bc:42:04:3f:8c:57:49:1a:c6:70:94:0f: f4:f2:bd:6b:27:be:2a:9d:a0:35:2d:6e:28:49:4d:14:02:87: e7:c1:a7:82:50:86:c8:49:8a:98:24:f6:37:30:0e:ce:0f:c8: e9:d8:5c:43:27:f7:18:59:06:20:2b:fe:00:00:f9:db:37:a2: 35:45:f8:c0:28:60:b1:cc:bf:6c:6a:6c:1f:09:c1:d8:e2:a0: 0e:27:8f:7a:29:a7:1a:37:6e:06:59:60:ff:ac:d1:de:c2:51: 57:19:c7:cb:da:6e:ba:ff:2f:1c:2b:29:0d:d1:83:d8:93:ea: bf:f9:a7:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwODIyMjIwODIyWhcNMjUwODI5MjIwODIyWjAYMRYwFAYD VQQDEw02OGE4ZWE1Ni1iMTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2HBecF+tvo6heIApMwNUMODTLoNR7XaE7QcroXia9C4Atog/C6u+gGc5Kg9 NsFx5IwDYACTP1yAuQ+KdHJc3SghERlm5NmB1IFe1uUtlmB5WQRXH6aeJceJ6JCk s8BTUoQNn9Ira1t7B5X+GDj92M/95PBoNaqGBkcJ65Q3fdItUd1eMIpEPVX8CmZ5 TOZHBUYI41Z39Ni80AIbgDrA4OxoIaDmjq4n404JRi5R6MGAJZSiNMMKdVTioHOf 07EDG6kJ6qkkUhHOoHB4xYDNEK7lgZb83xp8yz3wWdvglybdnF5J2K/15c8vtZrh 0CokUD27R8SnX5NrPIdoONJwCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtiVkjF HnzNssoTbWNWh/OP+Z7qMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/gt0aePMsNweNHJpaQCR7K++CzyBsbN+XINKjJZY+NvhodwCWO6Gl lXPeF2YUmAu9c6W6uTcNkQPIZBtxsGjtFeeSxUEAd5EHd1dRlMeO1bvxzO39tMuX SHtAZyEaKw6JqN7VeYYXzZne92dRIkYI5+y1wcPBrQoHlS9Dw457e8NTXCe8QgQ/ jFdJGsZwlA/08r1rJ74qnaA1LW4oSU0UAofnwaeCUIbISYqYJPY3MA7OD8jp2FxD J/cYWQYgK/4AAPnbN6I1RfjAKGCxzL9samwfCcHY4qAOJ496KacaN24GWWD/rNHe wlFXGcfL2m66/y8cKykN0YPYk+q/+afZ -----END CERTIFICATE-----Generated at Sat Aug 23 23:37:18 2025 by rpki-client