$ rpki-client -vvf rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft File: DOpooCxSn4h1LGQt4NL--fXXoUo.mft (raw, json) Hash identifier: makSS2DI9lVuzwJTDtQtBaBkaJ3NTSERf8BqcOC6mYk= Subject key identifier: 2E:A8:B0:14:1C:F4:7B:5D:7D:1F:35:0E:E1:63:D8:5D:B0:E3:A9:7A Authority key identifier: 0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A Certificate issuer: /CN=A913025C/serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Certificate serial: 06EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft Manifest number: 06DD Signing time: Mon 30 Jun 2025 22:22:31 +0000 Manifest this update: Mon 30 Jun 2025 22:22:30 +0000 Manifest next update: Mon 07 Jul 2025 22:22:30 +0000 Files and hashes: 1: DOpooCxSn4h1LGQt4NL--fXXoUo.crl (hash: gNLhF+u/5o4hz8ytZODiJEoj1R7O9prQdVxX5Z1ytnQ=) 2: E072F73492DF11EE9803F859C4F9AE02.roa (hash: nGQeEW39Od+vQgXs87Jbi/bqrVd4uaNCNXUbjbZuGDU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1771 (0x6eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913025C, serialNumber=0CEA68A02C529F88752C642DE0D2FEF9F5D7A14A Validity Not Before: Jun 30 22:22:30 2025 GMT Not After : Jul 7 22:22:30 2025 GMT Subject: CN=68630e26-019a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:36:4f:37:3f:71:07:36:0e:e7:1d:a5:13:bb: 20:3d:cc:28:ed:d0:8d:97:1f:63:ff:02:6f:fa:77: d4:57:f9:42:4c:41:46:19:09:cb:75:d1:77:86:71: a1:02:12:07:4a:d6:b1:63:8f:2f:06:9a:9c:9e:cd: 5e:a4:b7:ba:3e:4c:8a:dc:87:c1:0c:39:a7:57:8f: cf:88:72:0b:f9:33:d0:5a:8a:b3:ac:d6:5b:b8:10: be:e7:1b:3a:fb:6b:b3:69:f3:60:ae:6d:df:59:5e: c3:39:e0:57:25:68:0b:ee:ad:d7:3e:92:55:5b:e9: fb:02:68:24:e5:11:a9:21:be:46:1a:06:40:06:2c: 5c:48:2f:db:fd:ac:8c:b3:9f:18:ac:a0:da:d1:e6: de:44:5e:aa:e2:80:70:80:de:63:63:e5:44:c8:6b: cf:c5:30:7f:4c:27:96:f9:bd:60:30:2f:7d:ba:53: b2:78:7e:0f:a0:f1:5a:ca:7a:ae:95:25:5b:50:eb: 6e:48:a8:80:37:fb:cf:6f:42:f8:d9:88:c6:e2:e0: ee:30:c9:61:f6:34:5a:47:a8:12:a4:99:1b:8b:db: 58:aa:44:62:80:b2:6d:91:83:f6:c9:4a:77:5a:29: 57:0f:64:43:8d:ba:35:29:59:46:e6:ae:5a:48:7b: f1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A8:B0:14:1C:F4:7B:5D:7D:1F:35:0E:E1:63:D8:5D:B0:E3:A9:7A X509v3 Authority Key Identifier: keyid:0C:EA:68:A0:2C:52:9F:88:75:2C:64:2D:E0:D2:FE:F9:F5:D7:A1:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DOpooCxSn4h1LGQt4NL--fXXoUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913025C/AC0558265E2511EBAB29892AC4F9AE02/DOpooCxSn4h1LGQt4NL--fXXoUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:31:1e:ee:63:17:f9:9e:7d:f0:80:32:2d:4f:e7:0b:b9:e3: cc:84:ec:33:d8:06:7c:d4:37:54:72:c3:47:0d:91:3a:c1:3e: 4e:41:15:ca:d4:32:31:1b:9b:75:5c:e0:31:99:4e:85:e0:d0: f2:f6:83:57:3a:93:da:40:08:61:70:22:5c:33:e2:d5:65:83: 47:6c:1a:38:f5:f9:69:83:ae:1c:50:4e:0c:7a:a3:03:8c:dd: 24:2e:57:1d:80:91:09:f4:4a:5e:49:2f:57:c6:24:3b:a5:d7: 8b:0f:43:fe:01:e0:d0:e0:2f:b5:f0:73:5d:0e:60:49:30:40: c1:77:4e:f9:36:e8:01:b4:60:a1:64:d2:35:45:73:fe:96:62: 00:e8:6b:82:83:b6:f0:be:9f:d4:92:0b:d8:f9:44:5e:7d:50: ba:84:f5:97:16:b4:e4:6f:5c:a8:8c:63:cb:8c:9e:3e:96:3a: 50:bf:3f:45:bc:ef:8e:a5:83:6e:d8:10:2b:4b:27:bf:7a:db: 6d:31:91:29:91:6e:d3:e8:99:71:ff:b0:4f:b4:29:79:e3:c0: bb:40:d4:b9:fa:ba:29:09:11:a8:fd:60:ff:dc:47:0b:49:f3: b3:76:9d:8d:2a:13:ac:fc:91:11:10:ee:71:87:ea:ca:da:a9: 75:f2:65:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAyNUMxMTAvBgNVBAUTKDBDRUE2OEEwMkM1MjlGODg3NTJDNjQyREUwRDJGRUY5 RjVEN0ExNEEwHhcNMjUwNjMwMjIyMjMwWhcNMjUwNzA3MjIyMjMwWjAYMRYwFAYD VQQDEw02ODYzMGUyNi0wMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTZPNz9xBzYO5x2lE7sgPcwo7dCNlx9j/wJv+nfUV/lCTEFGGQnLddF3hnGh AhIHStaxY48vBpqcns1epLe6PkyK3IfBDDmnV4/PiHIL+TPQWoqzrNZbuBC+5xs6 +2uzafNgrm3fWV7DOeBXJWgL7q3XPpJVW+n7Amgk5RGpIb5GGgZABixcSC/b/ayM s58YrKDa0ebeRF6q4oBwgN5jY+VEyGvPxTB/TCeW+b1gMC99ulOyeH4PoPFaynqu lSVbUOtuSKiAN/vPb0L42YjG4uDuMMlh9jRaR6gSpJkbi9tYqkRigLJtkYP2yUp3 WilXD2RDjbo1KVlG5q5aSHvxeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6osBQc 9HtdfR81DuFj2F2w46l6MB8GA1UdIwQYMBaAFAzqaKAsUp+IdSxkLeDS/vn116FK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDI1Qy9BQzA1NTgyNjVF MjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240aDFMR1F0NE5MLS1mWFhv VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPcG9vQ3hTbjRoMUxHUXQ0TkwtLWZYWG9Vby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDI1Qy9BQzA1NTgyNjVFMjUxMUVCQUIyOTg5MkFDNEY5QUUwMi9ET3Bvb0N4U240 aDFMR1F0NE5MLS1mWFhvVW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKMR7uYxf5nn3wgDItT+cLuePMhOwz2AZ81DdUcsNHDZE6wT5OQRXK 1DIxG5t1XOAxmU6F4NDy9oNXOpPaQAhhcCJcM+LVZYNHbBo49flpg64cUE4MeqMD jN0kLlcdgJEJ9EpeSS9XxiQ7pdeLD0P+AeDQ4C+18HNdDmBJMEDBd075NugBtGCh ZNI1RXP+lmIA6GuCg7bwvp/UkgvY+URefVC6hPWXFrTkb1yojGPLjJ4+ljpQvz9F vO+OpYNu2BArSye/etttMZEpkW7T6Jlx/7BPtCl548C7QNS5+ropCRGo/WD/3EcL SfOzdp2NKhOs/JEREO5xh+rK2ql18mVc -----END CERTIFICATE-----Generated at Tue Jul 1 11:25:54 2025 by rpki-client