$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft File: ao09a_bbD13jJOQgxXOwqRhDx5Q.mft (raw, json) Hash identifier: kQ6crGKudAvZmA9QUqQBvlhQyxM7K4TUgU9GCloXugo= Subject key identifier: 0A:40:DC:83:BD:E3:7C:02:70:0E:C4:01:5B:6F:78:24:03:87:8A:8F Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: 013E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft Manifest number: 013B Signing time: Tue 17 Jun 2025 03:28:28 +0000 Manifest this update: Tue 17 Jun 2025 03:28:28 +0000 Manifest next update: Tue 24 Jun 2025 03:28:28 +0000 Files and hashes: 1: ao09a_bbD13jJOQgxXOwqRhDx5Q.crl (hash: 8fD7nY8752lzbeknk8VfRZaHJ7OdNONmpnE0B4a6DQ8=) 2: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (hash: uM3aIpNluGtsYzZphAI84X+sXAAc8YbQ0FM++FIKSB0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 03:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108, serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Jun 17 03:28:28 2025 GMT Not After : Jun 24 03:28:28 2025 GMT Subject: CN=6850e0dc-f413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c4:10:eb:3f:33:e7:ac:11:c2:34:f1:72:10: 57:f6:a7:12:d0:c4:aa:e1:b6:47:38:79:bc:8a:1b: ff:7f:65:da:dd:0b:fd:eb:f9:06:88:d1:20:4e:97: ac:5f:bb:18:e5:32:00:5c:5c:fe:bb:41:2f:0e:94: e1:69:ad:e2:48:47:8b:42:e7:40:fb:80:99:18:9a: 2b:e1:35:1c:31:02:07:6e:12:6b:b8:6f:88:1d:2e: ec:58:d0:13:89:8d:c8:95:31:4b:d6:76:84:21:93: ab:6f:5f:04:cd:3b:ac:e0:4b:5d:c9:3c:5f:9d:f0: 18:9a:4a:15:c0:b9:2d:0f:c6:42:74:14:36:20:73: 4d:db:b0:1d:3c:fc:40:44:13:b6:f7:f9:5b:e1:b3: 20:27:56:d6:52:d4:69:45:98:25:60:bb:12:2e:60: 54:9e:1e:ed:09:e0:2a:50:b3:70:56:08:32:5a:38: f0:92:35:f8:7e:ea:b4:54:7f:fc:75:c9:da:93:c6: eb:c0:72:4b:fe:79:59:e9:1c:41:32:ef:a9:02:d9: 78:b2:d7:d1:28:a9:b4:fd:b8:34:4d:aa:66:76:26: 05:4d:87:ce:5b:e2:d3:7b:1a:f1:cd:3b:7c:4d:46: 32:f7:38:ba:8e:e1:25:f0:39:8a:b0:01:47:9e:17: 5d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:40:DC:83:BD:E3:7C:02:70:0E:C4:01:5B:6F:78:24:03:87:8A:8F X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:db:15:26:ab:0a:3e:ca:52:71:2c:b6:fd:d4:93:80:a0:3d: 30:a7:ff:6f:ec:fa:f3:88:a0:4c:d1:f4:56:bb:40:a8:4e:31: fe:ef:5e:fd:f8:5f:05:5a:90:2a:8b:8d:2a:a2:81:a4:1c:d6: 19:6d:02:9a:ab:8a:97:81:fd:1f:4c:21:cb:9b:c2:45:18:71: c5:b1:10:7e:35:44:7a:3e:3f:84:95:8b:78:3c:e9:89:52:d7: b5:7b:76:b9:41:21:d5:d9:36:1d:92:cc:15:21:13:32:99:ec: ba:65:14:f0:5f:cc:6c:61:96:42:54:59:a3:02:dd:7d:74:e1: f0:93:70:75:be:22:89:8c:61:85:55:8f:dc:4d:c5:b4:27:91: 7e:80:62:6f:b6:d0:b5:10:32:f4:8b:fc:30:3f:b1:93:75:96: 2b:66:d2:65:09:a4:7c:48:40:33:3f:d2:3a:13:23:0c:a1:91: 2e:ef:f3:e8:35:be:5f:03:3a:64:8e:d7:a1:93:f2:a6:16:3d: cc:d3:27:20:5b:a3:0d:7d:98:e7:a5:e4:73:e9:8c:52:43:62: 80:d3:3f:85:0e:9a:43:21:b6:fd:d9:e5:65:7f:09:b1:ca:c4: 4c:1d:cd:ca:79:da:b1:77:80:fa:4d:ad:13:75:36:c9:d3:d2: 8a:0b:43:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjUwNjE3MDMyODI4WhcNMjUwNjI0MDMyODI4WjAYMRYwFAYD VQQDEw02ODUwZTBkYy1mNDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsQQ6z8z56wRwjTxchBX9qcS0MSq4bZHOHm8ihv/f2Xa3Qv96/kGiNEgTpes X7sY5TIAXFz+u0EvDpThaa3iSEeLQudA+4CZGJor4TUcMQIHbhJruG+IHS7sWNAT iY3IlTFL1naEIZOrb18EzTus4EtdyTxfnfAYmkoVwLktD8ZCdBQ2IHNN27AdPPxA RBO29/lb4bMgJ1bWUtRpRZglYLsSLmBUnh7tCeAqULNwVggyWjjwkjX4fuq0VH/8 dcnak8brwHJL/nlZ6RxBMu+pAtl4stfRKKm0/bg0TapmdiYFTYfOW+LTexrxzTt8 TUYy9zi6juEl8DmKsAFHnhdd+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApA3IO9 43wCcA7EAVtveCQDh4qPMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTEwOC9GOTU4RkM0QTZDMDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQx M2pKT1FneFhPd3FSaER4NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP2xUmqwo+ylJxLLb91JOAoD0wp/9v7PrziKBM0fRWu0CoTjH+7179 +F8FWpAqi40qooGkHNYZbQKaq4qXgf0fTCHLm8JFGHHFsRB+NUR6Pj+ElYt4POmJ Ute1e3a5QSHV2TYdkswVIRMymey6ZRTwX8xsYZZCVFmjAt19dOHwk3B1viKJjGGF VY/cTcW0J5F+gGJvttC1EDL0i/wwP7GTdZYrZtJlCaR8SEAzP9I6EyMMoZEu7/Po Nb5fAzpkjtehk/KmFj3M0ycgW6MNfZjnpeRz6YxSQ2KA0z+FDppDIbb92eVlfwmx ysRMHc3Kedqxd4D6Ta0TdTbJ09KKC0Pp -----END CERTIFICATE-----Generated at Tue Jun 17 20:21:16 2025 by rpki-client