$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft File: ao09a_bbD13jJOQgxXOwqRhDx5Q.mft (raw, json) Hash identifier: BEjwtjTJY02mcdn4Bstc7FflnyLttwWDvdXLJfGqMEk= Subject key identifier: BC:37:D5:B9:96:E7:FD:A3:13:B6:89:0A:F3:AF:25:9D:E1:52:BB:EC Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft Manifest number: 0155 Signing time: Thu 07 Aug 2025 04:37:42 +0000 Manifest this update: Thu 07 Aug 2025 04:37:41 +0000 Manifest next update: Thu 14 Aug 2025 04:37:41 +0000 Files and hashes: 1: ao09a_bbD13jJOQgxXOwqRhDx5Q.crl (hash: J87Cv/E3oKHo7/1Log2hiEGmIth5kJfm+8JD/xC4LsQ=) 2: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (hash: uM3aIpNluGtsYzZphAI84X+sXAAc8YbQ0FM++FIKSB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108, serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Aug 7 04:37:41 2025 GMT Not After : Aug 14 04:37:41 2025 GMT Subject: CN=68942d95-3980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1d:1a:df:3e:85:d7:42:cf:1d:7a:72:11:17: 00:3b:7b:9f:48:9c:62:4e:da:7b:e0:e1:c1:6c:19: d6:97:fe:e8:bf:ff:47:ab:82:f5:cb:a2:fd:4e:cc: d2:53:d8:88:13:22:fa:b9:5d:6f:40:f7:4f:7f:17: b1:25:2b:59:fd:e5:1d:47:c5:bd:cc:12:84:d6:d2: fe:91:0b:d7:09:bb:45:69:8f:47:df:09:75:f1:6b: 29:5a:c7:36:1c:60:28:84:f7:46:03:1e:b6:bf:7c: f8:bc:b9:9e:46:f1:fc:37:22:d8:b7:c7:d5:90:1e: 83:43:cc:3d:90:6f:fe:2c:a7:d1:43:61:c7:17:92: 2a:cd:67:bf:86:7d:3e:69:cc:75:66:0b:74:54:05: 06:c3:86:d5:e1:a0:c8:17:13:34:e2:60:a4:a7:44: 2f:1e:fe:47:33:5e:a4:4c:c6:74:fe:ae:d4:98:48: 6f:91:0e:07:5f:eb:15:52:a4:b4:88:e2:22:b7:d4: 07:1d:5a:d6:bd:6b:2a:50:0b:50:e6:9a:3f:eb:9b: 1a:be:9e:9d:93:83:00:5c:c8:1c:d3:99:d1:04:5a: 37:58:b4:81:a4:5a:fe:1e:a3:7c:81:dd:f6:2e:96: 44:cf:37:05:3a:cb:e3:c3:45:b7:5e:47:4a:3b:9f: ac:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:37:D5:B9:96:E7:FD:A3:13:B6:89:0A:F3:AF:25:9D:E1:52:BB:EC X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:60:bd:4b:41:94:22:dd:77:2e:23:d5:41:c2:d7:8d:67:31: 62:f9:07:d4:92:fc:56:89:80:86:3d:1c:46:91:c3:8a:1b:71: b8:04:f1:e3:84:ff:7b:d9:4c:9c:61:e5:42:e8:fd:cf:42:b7: ac:9f:f8:99:ad:83:d9:6a:0c:92:e5:c6:94:c4:b3:14:f4:67: 26:24:2f:e8:df:a7:ce:73:49:27:14:5a:54:4e:89:8d:e4:69: 0b:4c:f3:28:06:cf:2b:86:cc:5b:84:56:4d:be:35:67:b3:a7: cd:57:1c:25:d3:b1:15:c5:a1:3a:4f:df:40:98:f1:23:c5:6e: 13:5c:58:94:91:a2:5e:e6:f6:a1:3f:ff:7e:eb:7b:7f:ad:71: f1:ed:39:5d:1e:10:37:2d:1c:9d:c0:c6:a7:2b:47:25:a7:7f: b2:67:18:cc:5f:d5:20:98:ee:0c:ca:09:d8:2c:7d:0f:70:3d: 83:79:20:a0:66:dc:f8:de:fb:e1:41:9b:90:cc:5a:e2:c7:72: ad:4a:a4:4c:32:f0:75:97:67:19:7e:c3:c4:50:36:62:ef:d6: 50:d6:99:49:b2:a9:a9:c8:fa:ef:26:84:a6:fb:47:d7:3f:dc: 0d:8a:19:49:46:33:b8:ce:ff:ac:5e:07:b2:16:b3:13:c9:bb: f3:da:dc:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjUwODA3MDQzNzQxWhcNMjUwODE0MDQzNzQxWjAYMRYwFAYD VQQDEw02ODk0MmQ5NS0zOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApx0a3z6F10LPHXpyERcAO3ufSJxiTtp74OHBbBnWl/7ov/9Hq4L1y6L9TszS U9iIEyL6uV1vQPdPfxexJStZ/eUdR8W9zBKE1tL+kQvXCbtFaY9H3wl18WspWsc2 HGAohPdGAx62v3z4vLmeRvH8NyLYt8fVkB6DQ8w9kG/+LKfRQ2HHF5IqzWe/hn0+ acx1Zgt0VAUGw4bV4aDIFxM04mCkp0QvHv5HM16kTMZ0/q7UmEhvkQ4HX+sVUqS0 iOIit9QHHVrWvWsqUAtQ5po/65savp6dk4MAXMgc05nRBFo3WLSBpFr+HqN8gd32 LpZEzzcFOsvjw0W3XkdKO5+skQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLw31bmW 5/2jE7aJCvOvJZ3hUrvsMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTEwOC9GOTU4RkM0QTZDMDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQx M2pKT1FneFhPd3FSaER4NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALYL1LQZQi3XcuI9VBwteNZzFi+QfUkvxWiYCGPRxGkcOKG3G4BPHj hP972UycYeVC6P3PQresn/iZrYPZagyS5caUxLMU9GcmJC/o36fOc0knFFpUTomN 5GkLTPMoBs8rhsxbhFZNvjVns6fNVxwl07EVxaE6T99AmPEjxW4TXFiUkaJe5vah P/9+63t/rXHx7TldHhA3LRydwManK0clp3+yZxjMX9UgmO4MygnYLH0PcD2DeSCg Ztz43vvhQZuQzFrix3KtSqRMMvB1l2cZfsPEUDZi79ZQ1plJsqmpyPrvJoSm+0fX P9wNihlJRjO4zv+sXgeyFrMTybvz2tyX -----END CERTIFICATE-----Generated at Sat Aug 9 01:14:41 2025 by rpki-client