$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft File: 09zhcUP5z134AE-MZZf7LIzMcEY.mft (raw, json) Hash identifier: s9IDpTtb3l5H5SvwVPFzL6Kg4P54KvKgT+yypbiaEXw= Subject key identifier: 9F:43:92:38:80:9E:0A:E5:63:EB:5F:4B:03:D2:A0:F1:E6:14:05:F5 Authority key identifier: D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 Certificate issuer: /CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft Manifest number: BC Signing time: Sat 23 Aug 2025 06:12:27 +0000 Manifest this update: Sat 23 Aug 2025 06:12:26 +0000 Manifest next update: Sat 30 Aug 2025 06:12:26 +0000 Files and hashes: 1: 09zhcUP5z134AE-MZZf7LIzMcEY.crl (hash: 0QpFRluWz2tKf8C9YhaRpbXha+VclM7crcZb73Yl0hM=) 2: 6A3FA88A693C11EF8B032237C4F9AE02.roa (hash: xlsUk+nBjbtHnwZ4MERgcwqdT/rxsOcTBiheef/VMVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7D74, serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Validity Not Before: Aug 23 06:12:26 2025 GMT Not After : Aug 30 06:12:26 2025 GMT Subject: CN=68a95bcb-19fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a2:88:59:2a:3d:79:9d:67:b1:a0:f6:a4:bb: 69:0d:d6:0d:f5:8f:91:f4:17:87:65:f4:ac:ad:13: 0f:b7:9d:a4:21:a8:52:ce:7b:8e:a4:34:33:0d:eb: df:6a:ba:1b:b2:9b:18:8b:b8:74:a6:c9:f2:d1:82: 42:22:ca:8b:1d:83:92:d3:aa:22:5a:e1:ed:e2:1c: 05:61:54:50:88:38:d3:35:00:3b:8d:a9:69:c0:1e: 8b:24:65:79:b9:85:4b:f8:cb:7b:43:98:89:68:00: 40:fb:e3:3d:35:d6:b5:22:a5:42:38:ed:c1:5a:6f: 69:5b:ef:8e:09:28:06:4d:91:87:74:08:e3:4c:14: 12:22:88:c3:b3:93:b3:7a:5e:1e:c3:58:78:51:6f: bf:f0:78:bf:e7:06:57:1d:04:05:c7:8b:7e:87:aa: 7e:15:a5:13:8f:67:43:14:37:bc:ff:13:18:97:47: 64:1b:a0:ad:30:fd:13:ca:97:ed:8a:a0:18:78:e3: 7d:20:48:56:18:f6:0f:53:fc:ab:d9:6e:02:1a:2d: d9:10:55:77:c7:9f:b3:05:f2:05:91:ad:49:80:e0: ba:c1:54:55:69:be:71:c9:73:76:1b:48:c0:61:aa: 28:02:09:9f:1c:a3:65:2d:75:91:7c:82:c2:a9:3d: 7a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:43:92:38:80:9E:0A:E5:63:EB:5F:4B:03:D2:A0:F1:E6:14:05:F5 X509v3 Authority Key Identifier: keyid:D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:68:38:43:db:3a:6e:33:c1:7c:a6:88:b9:87:84:a3:2e:ec: 9c:e5:ec:de:89:5d:f7:ad:98:92:d4:f6:2e:3b:5c:89:b8:c9: fc:ca:55:9e:58:3a:31:34:3b:b2:bb:f8:ba:78:5f:42:ab:5b: 98:cb:25:9b:0a:33:ab:1f:7e:af:c9:11:6e:db:e9:51:6e:7e: ae:81:9f:84:d6:ec:f0:61:e6:10:cb:c4:83:a0:d9:17:f2:5e: dd:27:09:97:f9:1f:c1:fc:25:f4:66:38:65:1b:33:49:1b:32: 43:6e:79:bb:26:8c:45:44:de:80:06:86:2f:ab:7b:15:b7:43: 4a:9e:28:ca:4d:41:21:ca:a3:2b:9f:90:66:3a:6e:09:52:17: 9b:fb:34:4e:6b:37:f1:7e:35:5c:0b:51:4a:6a:92:e6:5e:29: 85:78:33:99:26:4a:2d:94:22:45:d2:04:3c:42:8e:50:47:37: 45:10:fb:18:ae:a2:35:b2:2c:35:57:a0:90:47:f9:19:b2:24: 8a:22:f8:b9:c7:c3:49:79:98:56:c3:54:8a:04:4f:2b:7a:74: 65:73:5d:c9:c9:91:8f:1b:5e:3e:59:24:21:cb:23:28:04:42: 9b:4b:0d:89:5d:0b:aa:4c:61:67:5a:aa:74:40:42:f6:5c:31: ae:5a:b1:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdENzQxMTAvBgNVBAUTKEQzRENFMTcxNDNGOUNGNURGODAwNEY4QzY1OTdGQjJD OENDQzcwNDYwHhcNMjUwODIzMDYxMjI2WhcNMjUwODMwMDYxMjI2WjAYMRYwFAYD VQQDEw02OGE5NWJjYi0xOWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaKIWSo9eZ1nsaD2pLtpDdYN9Y+R9BeHZfSsrRMPt52kIahSznuOpDQzDevf arobspsYi7h0psny0YJCIsqLHYOS06oiWuHt4hwFYVRQiDjTNQA7jalpwB6LJGV5 uYVL+Mt7Q5iJaABA++M9Nda1IqVCOO3BWm9pW++OCSgGTZGHdAjjTBQSIojDs5Oz el4ew1h4UW+/8Hi/5wZXHQQFx4t+h6p+FaUTj2dDFDe8/xMYl0dkG6CtMP0Typft iqAYeON9IEhWGPYPU/yr2W4CGi3ZEFV3x5+zBfIFka1JgOC6wVRVab5xyXN2G0jA YaooAgmfHKNlLXWRfILCqT16LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ9DkjiA ngrlY+tfSwPSoPHmFAX1MB8GA1UdIwQYMBaAFNPc4XFD+c9d+ABPjGWX+yyMzHBG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0Q3NC8zNzhEOUEwQTY5 MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXoxMzRBRS1NWlpmN0xJek1j RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5emhjVVA1ejEzNEFFLU1aWmY3TEl6TWNFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0Q3NC8zNzhEOUEwQTY5MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXox MzRBRS1NWlpmN0xJek1jRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaaDhD2zpuM8F8poi5h4SjLuyc5ezeiV33rZiS1PYuO1yJuMn8ylWe WDoxNDuyu/i6eF9Cq1uYyyWbCjOrH36vyRFu2+lRbn6ugZ+E1uzwYeYQy8SDoNkX 8l7dJwmX+R/B/CX0ZjhlGzNJGzJDbnm7JoxFRN6ABoYvq3sVt0NKnijKTUEhyqMr n5BmOm4JUheb+zROazfxfjVcC1FKapLmXimFeDOZJkotlCJF0gQ8Qo5QRzdFEPsY rqI1siw1V6CQR/kZsiSKIvi5x8NJeZhWw1SKBE8renRlc13JyZGPG14+WSQhyyMo BEKbSw2JXQuqTGFnWqp0QEL2XDGuWrEQ -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:53 2025 by rpki-client