$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft File: 09Fa7ppPiuXCgRCKfS062B1Oec0.mft (raw, json) Hash identifier: JfBRR6XCDH6ubrH6vNH4WUQNSorQE7+RKki51HkX2kM= Subject key identifier: 1B:F7:08:CC:22:BF:98:5A:76:5C:4F:06:E4:97:44:DF:53:CE:13:D8 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft Manifest number: 07FC Signing time: Fri 22 Aug 2025 21:10:30 +0000 Manifest this update: Fri 22 Aug 2025 21:10:29 +0000 Manifest next update: Fri 29 Aug 2025 21:10:29 +0000 Files and hashes: 1: 09Fa7ppPiuXCgRCKfS062B1Oec0.crl (hash: IIO1EKJ+34ub52xICuTj7uHHmzRD8hkxmHqrTqFb7nA=) 2: BF07B0DA16AF11F08B8C4061C4F9AE02.roa (hash: m5fvUWDyLmphSj+hveftDjH5v8ZvHtc3dCRNArmrofc=) 3: 29BC840E002711EB8FA6A142C4F9AE02.roa (hash: RVujGjgRtNml2s4B1MbyglZHc1wuuQ8z+GSwbNfvR2o=) 4: 1070E6CA9A8311EF8BE0F826C4F9AE02.roa (hash: 5usMHuwC29/GKSbCm/Fabiikjfpjet0V04t/dPRj3vM=) 5: BE79CDCE16AF11F08B8C4061C4F9AE02.roa (hash: AjNKnPWs+wQxA57p7oeqhPGR6IMIStHtSJ7A+NHTTwU=) 6: 38BE1074FC0F11EA8DEF4D28C4F9AE02.roa (hash: iWWPKNMJez26/4BW7/wljyQN/N1JrdnLJYQsd0J35V0=) 7: 3AA556009A8411EFB791ED77C4F9AE02.roa (hash: vJqvl3p3GZGjPo1+bFOu/lz3UGNmQtiNtsOQmfP7QoU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Aug 22 21:10:29 2025 GMT Not After : Aug 29 21:10:29 2025 GMT Subject: CN=68a8dcc6-d8b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:08:ca:06:f8:15:e3:a2:b9:06:10:de:fb:44: 3c:28:de:63:2a:bd:35:77:2b:e1:a7:0d:63:74:37: d7:a2:90:da:86:a5:b0:2d:66:bf:e0:5c:16:fc:11: 7d:01:bb:f4:77:60:3e:2b:40:3a:ff:d8:d0:b0:e4: 94:f3:11:9a:ce:51:6b:52:ad:dd:2a:d1:06:54:67: 81:07:25:92:33:c6:45:d0:1b:87:11:df:61:76:4f: 6d:38:17:88:5b:df:af:26:9e:53:1e:f3:4e:d3:45: cf:ca:9e:d4:fd:05:63:84:a7:31:14:f9:38:97:54: f0:b6:ad:e8:95:2f:ff:ef:c5:5e:27:8b:d5:9e:70: 75:ab:ae:14:f8:8c:b5:e7:51:fe:67:72:31:d0:b1: 92:d9:bd:1c:ff:4a:56:e3:d4:8f:4d:4b:d6:7b:d2: bf:3a:92:fb:5f:16:7f:32:40:cf:16:65:55:4c:01: 67:2a:d0:b9:07:0f:75:58:ef:17:a9:5d:8d:a1:14: cb:20:ba:11:1c:81:37:1d:e2:01:56:5f:d6:a8:33: ef:36:63:e2:4c:74:47:0f:83:a4:d7:b9:bc:9f:68: 29:80:ad:2d:7f:51:5d:15:8a:70:de:16:10:b7:eb: b4:a7:5d:79:e7:01:c0:e9:b0:0b:c9:3e:63:68:55: 57:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F7:08:CC:22:BF:98:5A:76:5C:4F:06:E4:97:44:DF:53:CE:13:D8 X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:2d:4c:0a:7c:97:d4:ae:47:e9:36:ce:99:ff:10:0e:ba:97: 7c:75:83:a2:6d:d7:29:dd:29:4c:de:ae:a2:2a:cb:f5:da:83: f8:ea:16:d9:5c:cf:4b:d0:e7:60:3d:35:b9:fa:f3:7d:f7:be: 92:5b:f3:54:19:78:ec:1a:85:14:d1:4f:aa:92:8b:d7:ab:c0: b1:c4:0a:b6:95:50:86:81:6b:28:81:66:6c:61:c1:16:d1:84: 8e:f8:be:78:f0:6b:c6:08:f5:07:58:ba:b5:6d:1d:fc:e5:f4: 0e:b5:69:93:49:c1:d0:07:2d:cd:83:95:de:0d:12:b9:0a:6b: 57:7c:8e:d0:c3:2e:d9:fd:61:65:59:c0:5c:03:fa:ee:0e:c1: 24:5a:09:7e:c9:61:33:8f:b4:db:37:6f:75:f8:f9:85:0e:ad: 5b:f4:d5:bf:25:42:5d:2d:33:ec:94:bb:28:88:09:82:61:04: fa:84:7a:c8:68:72:f1:a4:4c:6c:b8:a6:81:cd:e7:21:4b:05: e4:4e:7a:6c:64:5b:36:fe:20:ea:d1:b6:a2:41:aa:45:87:34: 4a:f9:70:39:7b:1f:8b:87:c0:69:f8:b4:86:a0:93:f7:a2:dc: 18:79:f7:8d:03:d3:12:e1:39:7e:9a:7f:d6:00:81:09:d4:09: f6:4f:76:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUwODIyMjExMDI5WhcNMjUwODI5MjExMDI5WjAYMRYwFAYD VQQDEw02OGE4ZGNjNi1kOGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAjKBvgV46K5BhDe+0Q8KN5jKr01dyvhpw1jdDfXopDahqWwLWa/4FwW/BF9 Abv0d2A+K0A6/9jQsOSU8xGazlFrUq3dKtEGVGeBByWSM8ZF0BuHEd9hdk9tOBeI W9+vJp5THvNO00XPyp7U/QVjhKcxFPk4l1Twtq3olS//78VeJ4vVnnB1q64U+Iy1 51H+Z3Ix0LGS2b0c/0pW49SPTUvWe9K/OpL7XxZ/MkDPFmVVTAFnKtC5Bw91WO8X qV2NoRTLILoRHIE3HeIBVl/WqDPvNmPiTHRHD4Ok17m8n2gpgK0tf1FdFYpw3hYQ t+u0p1155wHA6bALyT5jaFVXJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBv3CMwi v5hadlxPBuSXRN9TzhPYMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTdDMi80RTQyNkRFOEZCRUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1 WENnUkNLZlMwNjJCMU9lYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/LUwKfJfUrkfpNs6Z/xAOupd8dYOibdcp3SlM3q6iKsv12oP46hbZ XM9L0OdgPTW5+vN9976SW/NUGXjsGoUU0U+qkovXq8CxxAq2lVCGgWsogWZsYcEW 0YSO+L548GvGCPUHWLq1bR385fQOtWmTScHQBy3Ng5XeDRK5CmtXfI7Qwy7Z/WFl WcBcA/ruDsEkWgl+yWEzj7TbN291+PmFDq1b9NW/JUJdLTPslLsoiAmCYQT6hHrI aHLxpExsuKaBzechSwXkTnpsZFs2/iDq0baiQapFhzRK+XA5ex+Lh8Bp+LSGoJP3 otwYefeNA9MS4Tl+mn/WAIEJ1An2T3ap -----END CERTIFICATE-----Generated at Sat Aug 23 16:37:33 2025 by rpki-client