$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft File: 09zhcUP5z134AE-MZZf7LIzMcEY.mft (raw, json) Hash identifier: 9IqvMsf+tIveglXxEay5XesNtDgIGnfxM0BuDGDuZ3Q= Subject key identifier: B5:0D:82:06:A2:58:8C:0E:53:43:05:15:2D:DB:DB:24:23:3A:54:9F Authority key identifier: D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 Certificate issuer: /CN=A91F7D74/serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft Manifest number: A1 Signing time: Tue 01 Jul 2025 07:02:13 +0000 Manifest this update: Tue 01 Jul 2025 07:02:13 +0000 Manifest next update: Tue 08 Jul 2025 07:02:13 +0000 Files and hashes: 1: 09zhcUP5z134AE-MZZf7LIzMcEY.crl (hash: ov24bzsW+9lR/gGjgCg+R5HVq5cwGK4yOX2FBrzqe4Q=) 2: 6A3FA88A693C11EF8B032237C4F9AE02.roa (hash: xlsUk+nBjbtHnwZ4MERgcwqdT/rxsOcTBiheef/VMVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7D74, serialNumber=D3DCE17143F9CF5DF8004F8C6597FB2C8CCC7046 Validity Not Before: Jul 1 07:02:13 2025 GMT Not After : Jul 8 07:02:13 2025 GMT Subject: CN=686387f5-cc7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ba:a7:f3:0b:d9:47:b2:06:a7:3e:53:cd:bd: 4d:69:ab:0b:18:41:5f:07:07:00:fb:2e:76:82:6a: 7a:ea:96:20:be:e8:62:8b:62:57:7d:fa:33:65:96: 42:2d:cf:44:9b:2e:e3:47:1d:93:0a:72:df:d5:35: a1:54:66:23:21:68:cf:df:c8:bf:6f:96:71:b2:d0: 51:49:78:ca:84:9d:bb:ea:1d:4c:a0:fc:08:1a:49: 07:81:e9:90:38:f3:fe:f9:39:20:f8:e0:b7:6c:67: c7:e2:0a:3a:0c:5a:25:ea:60:4e:bb:43:51:ee:63: 2d:8e:0e:58:1a:6e:63:c9:5f:94:0e:03:ac:2a:1e: 75:8c:28:39:51:ae:4c:18:6a:c2:be:3d:04:09:22: 8d:fa:62:76:e6:bd:eb:0f:4e:a8:3c:23:e9:7d:75: e2:b6:14:c8:22:21:a9:12:2a:44:be:6a:ec:64:43: 28:9d:c8:ba:45:e0:53:99:d8:3b:6e:ef:cd:12:b7: f2:dd:24:b2:b5:a9:90:d8:fd:b2:34:73:ed:ec:66: 74:a9:81:ec:76:a1:57:19:13:d9:6f:b2:36:4e:76: b0:62:b0:d3:ae:f7:45:c0:90:4e:4a:97:bb:72:55: 2c:8e:a7:b9:43:f8:6d:69:b3:6a:24:8c:a4:e6:cf: 1a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:0D:82:06:A2:58:8C:0E:53:43:05:15:2D:DB:DB:24:23:3A:54:9F X509v3 Authority Key Identifier: keyid:D3:DC:E1:71:43:F9:CF:5D:F8:00:4F:8C:65:97:FB:2C:8C:CC:70:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09zhcUP5z134AE-MZZf7LIzMcEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7D74/378D9A0A692811EFAF711487C4F9AE02/09zhcUP5z134AE-MZZf7LIzMcEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d1:bd:fa:17:43:ce:8d:10:da:ae:85:57:20:8a:58:6c:11: 67:48:ee:b1:2d:ac:11:b4:20:f6:81:7e:c0:f0:9a:25:5f:d0: 2c:d3:3b:68:18:1d:1f:9e:bf:56:fc:d4:06:98:d8:6d:8b:24: 45:b5:ea:e9:95:34:44:80:24:21:83:16:b6:8f:60:92:e9:49: 06:9a:f5:cb:1b:c9:8a:ff:8a:1e:af:b6:74:89:67:ef:60:b5: 3f:bd:2d:2f:38:1d:85:6f:05:86:2a:07:73:f7:39:d7:d1:6f: 1e:57:00:8d:cf:7c:bd:49:b6:3c:68:f3:ac:6d:f8:66:04:8d: 08:dd:92:3e:b5:3c:0a:46:f9:16:02:89:f5:7a:8e:89:3f:18: c7:1a:d2:c2:15:5b:76:74:09:78:42:05:5f:e4:d3:e6:ae:bb: 6a:e7:b5:f6:69:85:45:53:20:be:f1:e1:6e:23:c6:22:5f:77: b5:f2:fa:ab:26:e3:04:0a:9e:fa:f4:83:b8:8d:18:80:b3:2a: 3b:67:24:d2:33:7f:fb:50:ee:ce:7c:3f:aa:d3:be:9e:33:8a: 9a:70:d2:45:56:8f:b6:86:69:96:bb:13:a7:7e:4c:56:df:a3: 1e:2e:6e:fc:17:9b:12:13:3a:cc:4a:8a:01:9c:d4:24:8f:c1: 6f:7f:17:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdENzQxMTAvBgNVBAUTKEQzRENFMTcxNDNGOUNGNURGODAwNEY4QzY1OTdGQjJD OENDQzcwNDYwHhcNMjUwNzAxMDcwMjEzWhcNMjUwNzA4MDcwMjEzWjAYMRYwFAYD VQQDEw02ODYzODdmNS1jYzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbqn8wvZR7IGpz5Tzb1NaasLGEFfBwcA+y52gmp66pYgvuhii2JXffozZZZC Lc9Emy7jRx2TCnLf1TWhVGYjIWjP38i/b5ZxstBRSXjKhJ276h1MoPwIGkkHgemQ OPP++Tkg+OC3bGfH4go6DFol6mBOu0NR7mMtjg5YGm5jyV+UDgOsKh51jCg5Ua5M GGrCvj0ECSKN+mJ25r3rD06oPCPpfXXithTIIiGpEipEvmrsZEMonci6ReBTmdg7 bu/NErfy3SSytamQ2P2yNHPt7GZ0qYHsdqFXGRPZb7I2TnawYrDTrvdFwJBOSpe7 clUsjqe5Q/htabNqJIyk5s8aZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUNggai WIwOU0MFFS3b2yQjOlSfMB8GA1UdIwQYMBaAFNPc4XFD+c9d+ABPjGWX+yyMzHBG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0Q3NC8zNzhEOUEwQTY5 MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXoxMzRBRS1NWlpmN0xJek1j RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5emhjVVA1ejEzNEFFLU1aWmY3TEl6TWNFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0Q3NC8zNzhEOUEwQTY5MjgxMUVGQUY3MTE0ODdDNEY5QUUwMi8wOXpoY1VQNXox MzRBRS1NWlpmN0xJek1jRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe0b36F0POjRDaroVXIIpYbBFnSO6xLawRtCD2gX7A8JolX9As0zto GB0fnr9W/NQGmNhtiyRFterplTREgCQhgxa2j2CS6UkGmvXLG8mK/4oer7Z0iWfv YLU/vS0vOB2FbwWGKgdz9znX0W8eVwCNz3y9SbY8aPOsbfhmBI0I3ZI+tTwKRvkW Aon1eo6JPxjHGtLCFVt2dAl4QgVf5NPmrrtq57X2aYVFUyC+8eFuI8YiX3e18vqr JuMECp769IO4jRiAsyo7ZyTSM3/7UO7OfD+q076eM4qacNJFVo+2hmmWuxOnfkxW 36MeLm78F5sSEzrMSooBnNQkj8Fvfxf0 -----END CERTIFICATE-----Generated at Thu Jul 3 06:11:15 2025 by rpki-client