$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: SDxjIf1h9D8Rj2URHtVf8rPpTX80i8lNKktlprQiwqU= Subject key identifier: 35:EF:43:2F:56:85:78:D2:2C:1B:88:E9:19:FF:9C:70:DC:A3:1C:2A Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 06D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06C3 Signing time: Sat 10 May 2025 21:46:07 +0000 Manifest this update: Sat 10 May 2025 21:46:07 +0000 Manifest next update: Sat 17 May 2025 21:46:07 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: jkvPwvK0D+8v2QXhPxlXnsV41ZPohmIwFy2pL694Am0=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1745 (0x6d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: May 10 21:46:07 2025 GMT Not After : May 17 21:46:07 2025 GMT Subject: CN=681fc91f-6279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9a:21:b4:74:e6:4f:82:c7:5d:d7:7c:a4:6c: e9:7b:11:40:2e:af:ec:5d:c2:7a:3c:85:0e:fa:8c: 88:4f:c4:3e:9d:69:5e:62:6b:ff:fb:b5:01:b0:31: 92:07:72:b4:de:2a:e5:70:61:e6:bc:12:85:10:ec: 3c:1a:68:ad:ab:68:0e:db:d1:2c:f0:ba:a9:2b:a2: 77:d7:c3:6d:17:ec:22:71:ca:db:b3:a0:88:27:cf: ef:fb:b6:03:c9:ac:f9:59:0a:06:1e:7e:19:55:82: 7c:a3:36:d5:33:89:14:13:b1:34:65:8f:38:1c:46: 8b:3f:cf:a4:a3:8b:2b:59:6e:ad:d2:c4:6d:54:47: 30:10:48:ba:05:81:e2:42:b6:9b:30:a2:c4:79:f3: 30:fd:5f:5d:dc:d1:7f:bc:ef:88:ab:24:be:58:2e: 10:ca:3b:db:1e:0a:61:48:d0:b5:0a:aa:a1:ca:df: ad:7e:91:f9:b8:78:ca:52:9e:d5:59:c4:a1:b0:41: fe:fb:9e:55:b1:f8:1e:52:d1:6d:27:f3:e5:17:11: 08:42:41:11:32:d3:44:ed:be:4a:13:97:8f:01:60: 31:d2:78:be:73:49:0c:15:b3:1e:0f:a9:7e:a7:43: 51:3d:25:60:d4:88:8e:be:2d:a8:e0:9a:97:3a:09: bb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EF:43:2F:56:85:78:D2:2C:1B:88:E9:19:FF:9C:70:DC:A3:1C:2A X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:cc:35:a5:c4:16:c1:b7:07:54:a5:25:f4:4c:4e:b1:23:14: 86:49:b0:1b:d6:7d:03:e8:4a:ad:c8:b6:7a:00:05:13:47:ef: 6d:27:be:87:c1:39:9a:a6:18:8a:e9:6e:13:a8:51:ae:95:49: 45:71:e8:eb:c8:58:cc:49:aa:d9:2f:9b:79:09:71:8c:df:a6: 88:a7:d7:21:22:7c:5c:16:39:54:23:11:62:49:a9:a8:88:23: 15:32:0e:c8:25:1e:f2:77:38:4c:e5:c1:e6:6e:fa:2f:3c:28: d0:00:a2:00:f6:70:da:3f:49:f2:63:fd:55:e6:f6:78:c8:8e: 92:50:b8:16:c6:90:0b:17:f4:8c:5a:03:eb:1b:21:a3:15:16: b4:fc:89:7b:6b:58:09:e6:a6:e2:8a:d9:6a:59:c7:4e:63:36: cc:64:b7:8c:54:53:0e:a0:ee:dd:49:26:82:db:dd:8d:16:e4: b5:35:2d:e3:50:48:ed:7c:e1:6d:31:e2:1b:a7:31:38:f6:a6: 94:de:69:3f:3f:91:8a:1d:56:18:16:03:25:9c:f5:ff:fe:bd: 08:0e:87:64:a8:f4:f2:d7:68:84:86:46:e1:9f:7b:22:04:4a: e7:17:4d:70:ef:da:9c:ed:02:1f:db:d8:da:e8:85:86:9b:6e: bf:67:7f:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwNTEwMjE0NjA3WhcNMjUwNTE3MjE0NjA3WjAYMRYwFAYD VQQDEw02ODFmYzkxZi02Mjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZohtHTmT4LHXdd8pGzpexFALq/sXcJ6PIUO+oyIT8Q+nWleYmv/+7UBsDGS B3K03irlcGHmvBKFEOw8Gmitq2gO29Es8LqpK6J318NtF+wiccrbs6CIJ8/v+7YD yaz5WQoGHn4ZVYJ8ozbVM4kUE7E0ZY84HEaLP8+ko4srWW6t0sRtVEcwEEi6BYHi QrabMKLEefMw/V9d3NF/vO+IqyS+WC4QyjvbHgphSNC1Cqqhyt+tfpH5uHjKUp7V WcShsEH++55VsfgeUtFtJ/PlFxEIQkERMtNE7b5KE5ePAWAx0ni+c0kMFbMeD6l+ p0NRPSVg1IiOvi2o4JqXOgm7QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXvQy9W hXjSLBuI6Rn/nHDcoxwqMB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvzDWlxBbBtwdUpSX0TE6xIxSGSbAb1n0D6EqtyLZ6AAUTR+9tJ76H wTmaphiK6W4TqFGulUlFcejryFjMSarZL5t5CXGM36aIp9chInxcFjlUIxFiSamo iCMVMg7IJR7ydzhM5cHmbvovPCjQAKIA9nDaP0nyY/1V5vZ4yI6SULgWxpALF/SM WgPrGyGjFRa0/Il7a1gJ5qbiitlqWcdOYzbMZLeMVFMOoO7dSSaC292NFuS1NS3j UEjtfOFtMeIbpzE49qaU3mk/P5GKHVYYFgMlnPX//r0IDodkqPTy12iEhkbhn3si BErnF01w79qc7QIf29ja6IWGm26/Z3+D -----END CERTIFICATE-----Generated at Sun May 11 10:47:36 2025 by rpki-client