$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft File: VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json) Hash identifier: P2IIIgzBv3gV6nwQp/GHy3wOnPde1VD56Gn2d5mX/I8= Subject key identifier: 2D:15:DB:99:F9:01:80:F0:83:BF:70:E9:3F:71:73:0B:B1:F5:84:00 Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 09D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft Manifest number: 09CF Signing time: Wed 02 Jul 2025 20:12:06 +0000 Manifest this update: Wed 02 Jul 2025 20:12:05 +0000 Manifest next update: Wed 09 Jul 2025 20:12:05 +0000 Files and hashes: 1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: wveTuMzu327o3dBmg8EIDOzEom4/QdtNpyZrL2VddEg=) 2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: KDJ+ohVUY2aGK5rtHUQLiPRKWsZuV9h/W6r/Y+qQ0VM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2518 (0x9d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: Jul 2 20:12:05 2025 GMT Not After : Jul 9 20:12:05 2025 GMT Subject: CN=68659295-43d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:84:6a:cb:7c:d3:5c:f1:c4:51:d4:1b:89:e6: e6:29:b2:7b:37:a6:1e:c1:92:fb:41:8e:50:fa:54: 81:78:6b:e1:51:e1:65:54:0f:7d:90:6c:1d:a6:07: 58:5a:7f:69:d3:a0:4f:e6:0b:61:9d:3d:04:bb:0e: 8f:13:a0:85:7e:ea:99:70:10:37:f9:1f:ee:cd:b5: 82:03:35:40:4c:ce:0c:1d:7f:2a:4c:cc:35:96:b7: 43:2c:be:85:39:b9:d4:d6:c9:31:af:1d:45:a7:ba: 5f:85:e8:55:b1:e4:6b:1b:90:f3:ca:e2:61:8a:af: 8e:55:ad:2b:3d:ee:6a:68:68:df:12:b5:9c:46:c4: 59:d3:cb:2e:f1:c2:3b:61:23:61:6e:43:b9:f3:ef: 7c:22:e2:68:9f:1c:74:de:d5:ca:65:be:c4:30:a2: 55:ac:44:ac:13:af:90:79:71:b1:a1:14:9a:12:3a: 0d:a3:9c:ed:24:8b:9b:3f:6a:fc:64:0e:3c:7d:e9: a4:9d:07:36:1c:2b:6a:6b:76:02:c9:e7:af:cf:d8: 08:91:24:6c:5e:7d:02:a8:e2:19:1f:ef:5c:f9:e1: 8b:a4:e5:27:f3:a4:09:7a:ae:ac:77:1b:7d:fe:97: cd:75:d1:2d:74:71:67:0e:ed:e3:40:ae:89:2c:e7: 8e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:15:DB:99:F9:01:80:F0:83:BF:70:E9:3F:71:73:0B:B1:F5:84:00 X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:3a:70:21:64:6f:03:2a:63:cd:54:8e:0a:f0:ec:5e:f4:25: eb:34:05:41:f7:ba:58:1a:9d:0b:50:27:a3:b6:ee:39:2d:e9: 23:1d:5a:cd:79:c7:ce:19:b7:0e:6b:10:17:86:e8:ab:f9:e4: 28:b2:49:3a:61:13:20:7e:81:9f:a5:1f:ab:14:03:9b:45:2e: 7d:9f:a3:b9:61:5c:b3:ec:1f:5a:46:26:cb:5e:a6:4f:eb:2d: 0d:e6:c3:98:a1:dc:b0:81:c8:8e:4d:25:b6:0e:3c:be:5d:a4: f5:16:f1:84:e7:c0:90:11:7c:63:65:38:22:69:a2:26:67:5f: e8:6f:bb:ee:54:47:4e:11:d4:67:96:72:0a:a3:7e:14:2d:f5: 50:c4:b9:ec:14:56:44:d0:81:8c:c3:00:f3:7b:a3:15:ca:87: db:98:cf:c9:f9:37:46:5b:db:bd:1d:77:ca:ef:74:cb:3e:cf: 3a:c6:40:9d:a0:e4:b5:35:dd:7b:43:84:0c:ff:62:44:eb:ab: 29:73:68:48:19:93:dc:9d:90:cd:01:56:c7:30:63:97:24:6b: fd:99:0a:e5:77:70:01:9f:be:07:46:7a:71:0f:2a:7e:d9:90: 22:c2:dc:32:5b:22:77:bd:33:d7:1f:c0:43:df:ba:13:36:e5: 76:d5:72:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUwNzAyMjAxMjA1WhcNMjUwNzA5MjAxMjA1WjAYMRYwFAYD VQQDEw02ODY1OTI5NS00M2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IRqy3zTXPHEUdQbiebmKbJ7N6YewZL7QY5Q+lSBeGvhUeFlVA99kGwdpgdY Wn9p06BP5gthnT0Euw6PE6CFfuqZcBA3+R/uzbWCAzVATM4MHX8qTMw1lrdDLL6F ObnU1skxrx1Fp7pfhehVseRrG5DzyuJhiq+OVa0rPe5qaGjfErWcRsRZ08su8cI7 YSNhbkO58+98IuJonxx03tXKZb7EMKJVrESsE6+QeXGxoRSaEjoNo5ztJIubP2r8 ZA48femknQc2HCtqa3YCyeevz9gIkSRsXn0CqOIZH+9c+eGLpOUn86QJeq6sdxt9 /pfNddEtdHFnDu3jQK6JLOeOuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0V25n5 AYDwg79w6T9xcwux9YQAMB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdDMS81MzQ0NzJDQzgzQjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05H OUJkZS1zYzBTVXJic0ZlMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQOnAhZG8DKmPNVI4K8Oxe9CXrNAVB97pYGp0LUCejtu45LekjHVrN ecfOGbcOaxAXhuir+eQoskk6YRMgfoGfpR+rFAObRS59n6O5YVyz7B9aRibLXqZP 6y0N5sOYodywgciOTSW2Djy+XaT1FvGE58CQEXxjZTgiaaImZ1/ob7vuVEdOEdRn lnIKo34ULfVQxLnsFFZE0IGMwwDze6MVyofbmM/J+TdGW9u9HXfK73TLPs86xkCd oOS1Nd17Q4QM/2JE66spc2hIGZPcnZDNAVbHMGOXJGv9mQrld3ABn74HRnpxDyp+ 2ZAiwtwyWyJ3vTPXH8BD37oTNuV21XJ8 -----END CERTIFICATE-----Generated at Thu Jul 3 17:59:43 2025 by rpki-client