$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: JSzXlG2v7FUKrdaTbQdBVpZay0iZ7vzISkkd7gNhe8o= Subject key identifier: 3A:5D:C5:1A:1A:C8:C6:CE:26:D5:7D:B9:79:85:51:F1:D7:54:3D:57 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 098A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 096A Signing time: Wed 02 Jul 2025 20:26:16 +0000 Manifest this update: Wed 02 Jul 2025 20:26:16 +0000 Manifest next update: Wed 09 Jul 2025 20:26:16 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: 8I4CCS0w/5bzZsSn3WFcMmv/eTYa1fzy97Z94D4yY78=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2442 (0x98a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Jul 2 20:26:16 2025 GMT Not After : Jul 9 20:26:16 2025 GMT Subject: CN=686595e8-1d57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:03:a9:c0:7f:8a:f5:23:f5:a3:5e:79:ea:71: ec:0f:8b:77:52:fe:39:02:b8:40:f7:8c:5f:57:8b: 66:9a:dc:b8:ef:6c:34:cf:c5:a4:46:e0:83:75:e9: 84:f8:f9:6c:84:27:7e:a4:72:22:88:a6:c5:b3:be: 56:1a:cf:07:7e:f9:87:7b:ae:74:80:3e:92:ba:b0: 7d:99:25:69:bc:bc:d9:45:34:e0:4b:c6:c9:76:7b: 10:c0:84:16:c3:d0:32:03:9c:f4:d6:37:65:eb:10: 81:f2:8d:50:94:73:21:a3:c5:9e:cc:6c:19:9f:3e: cc:70:10:c9:dc:8b:4f:20:84:1e:48:99:b1:f6:9e: 3c:fb:f3:d2:2f:e8:bb:e5:14:a1:f2:d1:ad:0a:f1: f6:36:50:f2:3c:f4:e1:bf:1b:87:22:bf:dd:6d:20: 96:f8:c3:dd:0c:ca:52:d6:d6:9c:67:12:a1:82:5a: 73:4f:be:84:d1:74:35:87:7c:0d:3c:f8:63:60:42: 4f:31:72:25:7e:f7:a0:68:ee:6e:ca:fe:9e:6a:77: 79:d5:58:9c:5c:cb:19:6a:c8:3e:ca:78:21:66:02: d9:7f:83:46:c7:eb:22:a7:23:03:29:40:b2:fb:e3: 27:ef:1c:a9:6c:19:20:1b:4d:19:61:3e:0f:03:bb: e1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:5D:C5:1A:1A:C8:C6:CE:26:D5:7D:B9:79:85:51:F1:D7:54:3D:57 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:9f:d1:38:1d:73:37:db:06:c4:63:ac:79:45:99:aa:70:9b: 8c:a9:bd:c2:fa:95:15:5b:10:fc:cd:c2:0a:f5:83:1a:0e:8e: 63:06:5a:21:e7:2d:2b:c5:35:c6:53:17:c1:f8:fc:d6:d0:67: 5f:16:a5:25:50:f1:b3:53:bc:a6:bb:8b:cc:7b:89:41:d2:ff: c2:9a:3d:16:6b:f7:49:48:28:4a:e0:d0:93:37:4c:93:ab:2d: 0c:5a:9e:4a:67:d5:be:4c:a9:08:ef:1f:5e:0b:58:9a:0a:80: ff:f0:6c:9b:fb:b7:5e:12:66:73:82:96:14:20:36:39:69:db: a0:a3:26:db:ac:b3:8c:d5:6e:d1:69:38:79:19:64:b0:e5:71: 67:72:a9:14:63:b6:9c:cf:d0:98:ee:fb:06:08:3a:82:88:b6: 7c:ec:5f:72:e7:b8:f0:38:3e:c2:62:96:76:22:8a:b3:1f:e5: b2:9b:d6:07:6f:3b:69:e3:ad:6d:86:c4:d0:a2:ed:c0:72:4a: e3:d2:f3:54:54:7d:6b:88:53:2f:c7:43:01:70:fc:d4:cc:a3: d6:42:6d:15:44:07:e9:82:47:ab:1d:51:85:ef:19:18:7f:f7: 73:a3:2d:e9:28:2f:f5:26:1a:10:2c:90:dd:df:c9:c7:c1:62: 45:72:11:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUwNzAyMjAyNjE2WhcNMjUwNzA5MjAyNjE2WjAYMRYwFAYD VQQDEw02ODY1OTVlOC0xZDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QOpwH+K9SP1o1556nHsD4t3Uv45ArhA94xfV4tmmty472w0z8WkRuCDdemE +PlshCd+pHIiiKbFs75WGs8HfvmHe650gD6SurB9mSVpvLzZRTTgS8bJdnsQwIQW w9AyA5z01jdl6xCB8o1QlHMho8WezGwZnz7McBDJ3ItPIIQeSJmx9p48+/PSL+i7 5RSh8tGtCvH2NlDyPPThvxuHIr/dbSCW+MPdDMpS1tacZxKhglpzT76E0XQ1h3wN PPhjYEJPMXIlfvegaO5uyv6eand51VicXMsZasg+ynghZgLZf4NGx+sipyMDKUCy ++Mn7xypbBkgG00ZYT4PA7vhHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpdxRoa yMbOJtV9uXmFUfHXVD1XMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAn9E4HXM32wbEY6x5RZmqcJuMqb3C+pUVWxD8zcIK9YMaDo5jBloh 5y0rxTXGUxfB+PzW0GdfFqUlUPGzU7ymu4vMe4lB0v/Cmj0Wa/dJSChK4NCTN0yT qy0MWp5KZ9W+TKkI7x9eC1iaCoD/8Gyb+7deEmZzgpYUIDY5adugoybbrLOM1W7R aTh5GWSw5XFncqkUY7acz9CY7vsGCDqCiLZ87F9y57jwOD7CYpZ2IoqzH+Wym9YH bztp461thsTQou3Ackrj0vNUVH1riFMvx0MBcPzUzKPWQm0VRAfpgkerHVGF7xkY f/dzoy3pKC/1JhoQLJDd38nHwWJFchHo -----END CERTIFICATE-----Generated at Thu Jul 3 06:02:12 2025 by rpki-client