$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: vZYBKIuNflCMVBUBTc+YhvOYWCH9en+emiDIOdZ7u3k= Subject key identifier: 5D:56:13:C3:B4:5C:5D:36:07:D3:E7:89:B8:32:2B:54:4E:1E:A5:BF Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 0984 Signing time: Fri 22 Aug 2025 20:16:07 +0000 Manifest this update: Fri 22 Aug 2025 20:16:07 +0000 Manifest next update: Fri 29 Aug 2025 20:16:07 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: vF97VO5bXOXV7GkafYnD4T0GEkKK3vnApAqecnx4GkQ=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:16:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2468 (0x9a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Aug 22 20:16:07 2025 GMT Not After : Aug 29 20:16:07 2025 GMT Subject: CN=68a8d007-16ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:39:ad:f5:4b:51:af:02:d1:a6:0e:57:57:35: fa:32:a0:f1:1f:3c:26:cc:35:d6:35:c8:fb:42:e2: 97:f6:cd:aa:07:70:39:c2:c7:b4:ec:3e:ef:3b:ad: 60:c9:72:81:ae:80:32:b9:87:9d:91:b0:01:65:53: e9:fc:47:54:16:5d:c8:9e:ab:81:27:e9:6e:6e:63: 74:54:96:41:b6:1c:68:41:52:79:1b:94:9c:87:04: e1:21:95:c7:66:73:1d:fb:97:2e:8f:9c:5d:f6:b2: 5d:a4:aa:74:8a:cf:f1:85:a2:f0:9b:2c:77:2a:df: 6e:4b:7e:c5:7f:e8:71:97:08:9f:e2:9b:23:90:39: bb:99:51:d4:27:83:d3:62:0c:ee:e2:b5:87:87:a6: bf:06:0c:b7:48:44:96:e8:e2:85:40:81:93:33:fa: e1:d1:bc:dd:bc:37:2b:78:9a:95:7b:b7:33:b8:01: 93:64:56:33:45:d4:a1:d3:b5:9c:20:15:7e:b3:03: 2c:6f:17:bd:4f:60:bd:54:fc:62:85:36:d4:fa:8c: e3:73:0b:88:3b:a0:69:32:1a:24:3f:cb:7c:ab:04: 75:85:23:f3:c4:52:10:e5:49:22:75:51:c9:dc:44: ee:ee:4d:dd:95:a1:d9:df:07:a7:ce:7d:ca:81:b4: dc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:56:13:C3:B4:5C:5D:36:07:D3:E7:89:B8:32:2B:54:4E:1E:A5:BF X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:61:9c:4e:ef:f6:43:66:6f:fd:02:13:f5:5b:0b:1d:a1:52: 5d:7c:5e:95:a0:90:eb:7e:a0:f9:c6:65:c7:eb:41:0a:44:09: 36:c1:9f:e3:69:aa:1b:24:c0:8a:86:0f:01:3f:eb:9e:67:bd: f7:93:bd:9d:e1:9a:98:40:09:c7:28:83:98:69:25:b1:fa:fa: ed:6e:39:dc:d3:72:0b:2b:66:15:51:52:46:66:0e:08:ec:11: 65:5e:ff:7d:b3:ea:b1:1a:3d:e9:23:56:e2:22:48:38:bd:8f: 2e:63:b8:12:91:28:bc:53:5e:d9:96:33:f3:b0:57:e7:5b:51: 24:71:38:6b:6c:ef:9b:12:49:bf:79:e8:26:06:d6:08:5c:c3: d4:a4:d8:8f:84:d8:3e:27:06:8f:f5:29:f3:7f:43:66:ba:fa: 0b:74:03:bc:67:f2:f2:c5:85:cd:0c:54:e3:85:2a:84:a7:46: 18:ed:b2:25:1f:48:cc:59:72:1d:e5:ec:bc:05:fb:0f:e4:8d: 7e:64:6a:e9:81:7b:45:e9:f2:63:f0:7b:91:ef:23:ef:55:b1: 11:6b:5e:55:f1:eb:69:db:2b:49:b3:03:46:62:2f:f2:4f:06: ab:82:79:14:a1:6b:2a:8c:82:88:76:c6:96:51:0b:9f:93:75: e8:ab:d0:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwODIyMjAxNjA3WhcNMjUwODI5MjAxNjA3WjAYMRYwFAYD VQQDEw02OGE4ZDAwNy0xNmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjmt9UtRrwLRpg5XVzX6MqDxHzwmzDXWNcj7QuKX9s2qB3A5wse07D7vO61g yXKBroAyuYedkbABZVPp/EdUFl3InquBJ+lubmN0VJZBthxoQVJ5G5SchwThIZXH ZnMd+5cuj5xd9rJdpKp0is/xhaLwmyx3Kt9uS37Ff+hxlwif4psjkDm7mVHUJ4PT Ygzu4rWHh6a/Bgy3SESW6OKFQIGTM/rh0bzdvDcreJqVe7czuAGTZFYzRdSh07Wc IBV+swMsbxe9T2C9VPxihTbU+ozjcwuIO6BpMhokP8t8qwR1hSPzxFIQ5UkidVHJ 3ETu7k3dlaHZ3wenzn3KgbTcywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1WE8O0 XF02B9PnibgyK1ROHqW/MB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyYZxO7/ZDZm/9AhP1WwsdoVJdfF6VoJDrfqD5xmXH60EKRAk2wZ/j aaobJMCKhg8BP+ueZ733k72d4ZqYQAnHKIOYaSWx+vrtbjnc03ILK2YVUVJGZg4I 7BFlXv99s+qxGj3pI1biIkg4vY8uY7gSkSi8U17ZljPzsFfnW1EkcThrbO+bEkm/ eegmBtYIXMPUpNiPhNg+JwaP9Snzf0NmuvoLdAO8Z/LyxYXNDFTjhSqEp0YY7bIl H0jMWXId5ey8BfsP5I1+ZGrpgXtF6fJj8HuR7yPvVbERa15V8etp2ytJswNGYi/y TwargnkUoWsqjIKIdsaWUQufk3Xoq9Ae -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:44 2025 by rpki-client